$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4c4795-22e8-4d68-ae7d-e133fada7905.roa File: 0e4c4795-22e8-4d68-ae7d-e133fada7905.roa (raw, json) Hash identifier: CTpbZlHONznQ1HGyI6KiuMbmuwyMUd/B1M/SbbH9BJ0= Subject key identifier: BD:BC:8D:01:D8:71:2C:D6:6C:10:26:4D:AE:95:64:96:FE:EB:E5:15 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A2E6357691090BF324DA87A1211450C7E2C2D0F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4c4795-22e8-4d68-ae7d-e133fada7905.roa Signing time: Tue 12 May 2026 01:10:06 +0000 ROA not before: Tue 12 May 2026 01:10:06 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.23.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:2e:63:57:69:10:90:bf:32:4d:a8:7a:12:11:45:0c:7e:2c:2d:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:10:06 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=bae9056b444e23579f806a5c0cc55e4f4ee9e0e8d0f8c4f9a4d39c22e623301c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:3f:93:e8:26:4e:8e:24:a7:18:92:3e:2b:6d: c1:58:04:ed:ca:64:6d:b5:7a:f9:0e:b7:03:65:2f: b7:8d:df:3b:01:35:a6:4d:8c:42:92:92:5c:73:50: 4c:0b:fd:55:8f:f7:18:e0:d0:1f:e5:59:91:46:f5: 58:75:d8:13:9b:da:da:de:67:fd:25:18:af:da:9f: 24:78:02:7e:8b:ca:a2:2f:2d:9d:e0:03:22:a9:66: f3:d2:d2:75:b1:3c:c6:57:d3:3f:33:e3:40:f9:53: 43:28:5e:51:60:4c:01:fc:14:8b:45:d5:a6:29:8d: 59:ef:2c:11:49:34:f1:b9:be:75:7a:97:cd:77:b4: cf:64:f4:cb:3f:43:ae:24:00:c4:3b:cb:c9:78:af: 5a:52:82:15:23:31:80:23:0c:56:af:c9:7e:79:2a: c0:e2:ca:5b:6a:3f:91:d6:a2:96:be:f3:d8:d5:ef: 89:f6:5a:9b:aa:f2:0e:b3:fc:2d:54:a2:1d:f5:d7: 93:4d:56:42:68:12:e3:b3:80:6a:44:12:9d:7d:a4: e6:bb:41:e8:f9:91:b9:f7:49:97:fc:02:22:42:c9: 7c:fb:11:9f:ba:09:92:f5:da:cb:63:b2:57:99:13: ec:76:23:92:e8:9e:0a:32:99:33:d3:04:00:1d:28: b7:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:BC:8D:01:D8:71:2C:D6:6C:10:26:4D:AE:95:64:96:FE:EB:E5:15 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0e4c4795-22e8-4d68-ae7d-e133fada7905.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.23.0/24 Signature Algorithm: sha256WithRSAEncryption 0f:ea:03:69:b0:a8:3e:11:93:40:10:cd:63:98:9a:6e:0c:f5: ab:61:2f:4c:69:33:0e:dc:14:13:d8:5e:21:a7:d7:46:75:fa: c6:a4:c5:68:bd:c6:5f:ce:01:70:9a:76:3e:d2:36:2f:0f:2e: ea:8c:6b:21:04:30:64:7a:db:0e:4d:c2:92:45:85:ee:9f:db: aa:2e:2d:9b:0c:74:03:90:7a:b8:76:53:97:58:8c:b6:3e:da: 56:57:4c:5f:ea:2c:53:aa:06:3d:ea:57:d1:1d:ed:34:69:9d: 68:18:64:8f:2c:13:7b:ce:41:a0:50:f7:57:83:3a:b6:c4:60: 2c:dd:fb:c7:32:04:5c:d1:8e:ed:6b:e3:3c:92:c9:69:68:26: 1e:1f:d8:e4:3c:7a:93:1e:68:a0:25:5c:f2:f1:8f:5c:46:b1: b3:e6:b5:86:c1:b5:17:89:4d:96:08:59:05:94:05:81:24:fa: 47:dc:5e:3d:09:ed:bd:0d:4a:58:f0:4a:95:3e:1f:8b:0b:35: d3:02:90:76:8c:33:86:ec:c7:b2:71:76:2c:30:6a:92:54:f1: b6:36:0d:15:8e:ad:60:56:b9:76:4d:38:cb:2b:29:68:8a:e6: a9:60:92:9c:23:0f:19:b9:3e:11:5b:b7:f0:ca:1d:b4:a0:98: 40:55:51:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUei5jV2kQkL8yTah6EhFFDH4sLQ8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDExMDA2WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWU5MDU2YjQ0NGUyMzU3OWY4MDZhNWMwY2M1NWU0ZjRl ZTllMGU4ZDBmOGM0ZjlhNGQzOWMyMmU2MjMzMDFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKP5PoJk6OJKcYkj4rbcFYBO3KZG21evkOtwNlL7eN3zsB NaZNjEKSklxzUEwL/VWP9xjg0B/lWZFG9Vh12BOb2treZ/0lGK/anyR4An6LyqIv LZ3gAyKpZvPS0nWxPMZX0z8z40D5U0MoXlFgTAH8FItF1aYpjVnvLBFJNPG5vnV6 l813tM9k9Ms/Q64kAMQ7y8l4r1pSghUjMYAjDFavyX55KsDiyltqP5HWopa+89jV 74n2Wpuq8g6z/C1Uoh3115NNVkJoEuOzgGpEEp19pOa7Qej5kbn3SZf8AiJCyXz7 EZ+6CZL12stjsleZE+x2I5LongoymTPTBAAdKLd1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvbyNAdhxLNZsECZNrpVklv7r5RUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBlNGM0Nzk1LTIyZTgtNGQ2OC1hZTdkLWUxMzNmYWRhNzkwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmBcwDQYJKoZIhvcNAQELBQADggEBAA/qA2mwqD4Rk0AQzWOYmm4M9ath L0xpMw7cFBPYXiGn10Z1+sakxWi9xl/OAXCadj7SNi8PLuqMayEEMGR62w5NwpJF he6f26ouLZsMdAOQerh2U5dYjLY+2lZXTF/qLFOqBj3qV9Ed7TRpnWgYZI8sE3vO QaBQ91eDOrbEYCzd+8cyBFzRju1r4zySyWloJh4f2OQ8epMeaKAlXPLxj1xGsbPm tYbBtReJTZYIWQWUBYEk+kfcXj0J7b0NSljwSpU+H4sLNdMCkHaMM4bsx7Jxdiww apJU8bY2DRWOrWBWuXZNOMsrKWiK5qlgkpwjDxm5PhFbt/DKHbSgmEBVUQk= -----END CERTIFICATE-----Generated at Tue May 12 22:14:32 2026 by rpki-client