$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa File: 0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa (raw, json) Hash identifier: EsFmfM+9Oe/jW0kiooLXJ3228aqBFImTit88d9KXmhQ= Subject key identifier: D9:89:2D:F4:62:6A:FA:21:17:8C:05:86:2D:48:39:9B:AB:31:7E:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74F31ACB4A9C34E8E37848E99B96A5D06D9D5519 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa Signing time: Mon 04 May 2026 01:10:45 +0000 ROA not before: Mon 04 May 2026 01:10:45 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:f3:1a:cb:4a:9c:34:e8:e3:78:48:e9:9b:96:a5:d0:6d:9d:55:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:10:45 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=3b4efae9d7a82f28a78069be0bbff63346cf4c4bcb104c278ec066a3fc58f6aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:21:2a:72:7a:69:d8:36:e1:59:6d:2d:53:ca: 38:ee:78:91:98:e0:7d:e4:b9:f0:63:2d:02:fa:9f: ec:2d:c8:9a:c2:c1:09:a2:15:f0:50:e3:8f:00:c4: db:c0:fa:17:95:62:4d:c9:f3:c7:82:3d:02:83:0b: 68:20:6b:7a:0c:23:50:ff:cc:a3:95:19:49:2e:44: e4:71:1c:19:d6:8e:d8:a9:2d:3a:77:13:0d:85:70: d1:14:92:22:54:4e:16:93:dd:18:7c:8a:2b:2c:80: 7d:ac:f7:8a:22:35:73:1a:52:36:e4:de:76:77:9c: 6a:8a:3a:9f:b8:40:f7:17:25:95:dd:c0:a6:f6:1e: 28:ec:cd:d6:14:fc:ae:0e:cc:11:ab:1d:03:e0:c4: ef:ec:bb:e2:9e:4c:a6:41:bf:5d:92:d8:0e:97:a8: b4:4d:03:48:ee:30:9e:62:45:59:81:02:1a:3e:8d: 87:bf:1c:7e:f9:d8:32:c4:b4:e6:a8:87:0e:23:ec: d5:2e:9e:7b:20:a1:35:c7:15:73:22:da:fa:f3:26: ab:e0:a7:67:b2:0c:8b:72:d4:0c:81:04:57:8c:d8: 49:3e:ba:ea:47:ee:64:be:74:a2:9a:81:5b:da:0e: 38:c8:dc:2c:74:23:aa:a8:33:79:8e:97:12:c5:64: 82:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:89:2D:F4:62:6A:FA:21:17:8C:05:86:2D:48:39:9B:AB:31:7E:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0d5db1ef-788a-43c1-a576-eebf7d6c7b32.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.128.0/20 Signature Algorithm: sha256WithRSAEncryption 2b:43:f8:3e:1d:9d:15:7f:8d:18:80:93:80:c8:f2:04:4a:80: 78:d7:a1:ab:85:ed:e3:eb:c5:5a:b3:44:74:b3:8e:61:11:5c: a8:23:0e:49:da:63:89:30:4a:2c:fd:11:7b:03:a6:07:dc:f1: 1b:eb:4e:a8:96:cb:e1:c7:1c:99:70:ff:f6:f5:93:64:dc:dc: 4a:06:44:bf:82:76:89:f7:3a:b1:db:89:b6:a0:57:24:a6:7d: 0c:10:f9:fb:56:0f:bf:fd:38:fa:fb:9a:aa:d7:40:3c:52:63: 37:dd:df:30:fb:d8:4d:6d:a5:78:d7:62:ac:c0:87:e1:57:b6: 7c:90:12:b9:76:be:9b:e0:49:f3:f6:fb:2e:4d:3a:22:60:05: e7:34:99:a2:91:82:06:17:36:e0:48:8a:18:80:8a:82:5a:62: 61:b3:51:77:e3:ee:94:ca:d7:08:af:8f:bb:ba:a7:ec:fb:25: ba:b1:bc:a5:36:8f:d8:28:51:8a:48:4b:6c:a7:82:cc:94:5b: 18:71:66:f4:01:3b:88:db:02:a5:57:fc:91:6c:e6:b8:c4:a5: cd:38:db:b0:de:ce:59:48:a9:18:ec:88:b2:e7:b6:f4:3c:8f: ee:f9:2e:20:da:1d:ad:33:5f:79:ea:26:06:28:91:39:66:9a: 08:36:f8:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdPMay0qcNOjjeEjpm5al0G2dVRkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDExMDQ1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjRlZmFlOWQ3YTgyZjI4YTc4MDY5YmUwYmJmZjYzMzQ2 Y2Y0YzRiY2IxMDRjMjc4ZWMwNjZhM2ZjNThmNmFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRISpyemnYNuFZbS1TyjjueJGY4H3kufBjLQL6n+wtyJrC wQmiFfBQ448AxNvA+heVYk3J88eCPQKDC2gga3oMI1D/zKOVGUkuRORxHBnWjtip LTp3Ew2FcNEUkiJUThaT3Rh8iissgH2s94oiNXMaUjbk3nZ3nGqKOp+4QPcXJZXd wKb2HijszdYU/K4OzBGrHQPgxO/su+KeTKZBv12S2A6XqLRNA0juMJ5iRVmBAho+ jYe/HH752DLEtOaohw4j7NUunnsgoTXHFXMi2vrzJqvgp2eyDIty1AyBBFeM2Ek+ uupH7mS+dKKagVvaDjjI3Cx0I6qoM3mOlxLFZIKPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU2Ykt9GJq+iEXjAWGLUg5m6sxfsMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBkNWRiMWVmLTc4OGEtNDNjMS1hNTc2LWVlYmY3ZDZjN2IzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFroAwDQYJKoZIhvcNAQELBQADggEBACtD+D4dnRV/jRiAk4DI8gRKgHjX oauF7ePrxVqzRHSzjmERXKgjDknaY4kwSiz9EXsDpgfc8RvrTqiWy+HHHJlw//b1 k2Tc3EoGRL+Cdon3OrHbibagVySmfQwQ+ftWD7/9OPr7mqrXQDxSYzfd3zD72E1t pXjXYqzAh+FXtnyQErl2vpvgSfP2+y5NOiJgBec0maKRggYXNuBIihiAioJaYmGz UXfj7pTK1wivj7u6p+z7JbqxvKU2j9goUYpIS2yngsyUWxhxZvQBO4jbAqVX/JFs 5rjEpc0427DezllIqRjsiLLntvQ8j+75LiDaHa0zX3nqJgYokTlmmgg2+Ow= -----END CERTIFICATE-----Generated at Wed May 13 01:00:21 2026 by rpki-client