$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa File: 119594d3-1a17-4118-856d-889f2bef824e.roa (raw, json) Hash identifier: qPQOhBUk4P0hqVgVRDQDMV0hG52NDV+xxaoZ7Yg4mmg= Subject key identifier: 34:BC:25:F9:55:BD:70:CD:D6:E5:8D:01:CE:C8:A9:2C:D1:5B:1B:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61E3C6FF1AA93F673F2C4B14CC34888CEB3DD627 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa Signing time: Mon 04 May 2026 00:20:11 +0000 ROA not before: Mon 04 May 2026 00:20:11 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:e3:c6:ff:1a:a9:3f:67:3f:2c:4b:14:cc:34:88:8c:eb:3d:d6:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:20:11 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=5a65bc68f1e0dea48423363aa151e7251f58421ce0ca02725b2797b288ad554c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:c6:fc:fb:ec:4b:7b:ca:a4:39:72:d6:23:b4: 2e:da:ac:ca:f6:c1:d8:36:51:1f:1f:5e:4e:68:14: 10:52:ba:d8:08:5d:cc:97:80:35:33:41:01:f6:9f: 73:06:16:7a:73:85:94:48:35:3a:78:4b:10:fd:bd: fa:aa:df:b4:4b:1c:a2:f5:e1:fa:a8:66:dc:d3:7b: 46:9b:9d:a5:75:e2:74:99:f3:fe:88:ef:b8:89:c1: 49:d1:1b:ba:0d:e2:9b:e3:26:8f:84:9f:ce:7d:18: 0b:2c:e8:2a:2f:ee:62:85:98:26:bc:3a:86:68:5c: c1:5a:48:1e:08:3e:94:b1:70:07:7c:12:90:d2:49: 01:6c:40:de:b5:9f:3e:0e:43:58:d4:61:2a:68:ff: e2:d7:fd:20:0b:3c:6e:b7:e5:af:5d:8d:7a:6d:4e: 00:65:5c:97:2f:36:22:cc:0e:5b:92:5e:bd:0d:b1: 77:1c:b2:de:9a:d3:25:6a:d2:05:78:97:00:7c:83: 7c:b5:1b:06:46:28:e8:2f:21:87:0c:23:f4:1d:c5: 0a:7e:19:22:78:82:a6:b0:65:cd:73:cc:09:5a:d7: 80:33:0a:f0:d3:7a:92:f5:b7:95:34:df:6c:53:3c: ae:43:95:be:69:9e:52:7c:19:ed:d7:11:db:01:b2: 44:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:BC:25:F9:55:BD:70:CD:D6:E5:8D:01:CE:C8:A9:2C:D1:5B:1B:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/119594d3-1a17-4118-856d-889f2bef824e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.168.0/21 Signature Algorithm: sha256WithRSAEncryption 09:5a:fd:4d:3d:bb:52:07:db:23:e6:0f:65:8b:4b:9e:02:ee: e1:a5:1e:6c:ef:4a:a1:2b:24:ea:ee:f6:67:ff:4c:92:f8:65: e3:ba:2d:da:b3:25:c5:88:49:6b:81:b8:6a:de:30:10:19:1c: 3e:1b:28:e3:4a:22:a3:40:a7:b1:95:48:83:f8:4e:5d:ff:e8: ea:f8:74:04:60:f1:74:79:fa:e6:2b:1f:82:1a:2e:de:84:64: 3f:01:5f:d5:1e:1d:1c:5c:4a:a1:10:f7:d5:72:27:9a:50:82: 97:df:46:5c:14:37:58:95:e2:66:0c:8b:0a:15:42:c0:1d:78: 53:74:f4:72:4e:e2:c6:d3:62:b0:af:68:28:6a:c6:e6:2f:49: 9a:6c:bb:39:27:3e:b3:dd:da:96:0d:77:e1:84:ab:58:c5:3d: 7c:b4:44:09:f5:8f:80:eb:73:df:ba:32:41:2d:8a:37:b0:e9: 40:78:0b:a8:1b:d3:eb:10:e7:ab:0d:a9:45:84:77:73:39:a7: 2f:06:cc:c8:1e:5b:a1:80:46:6d:17:5e:d0:65:41:c2:ed:1d: 94:de:d3:26:73:88:c9:07:49:31:74:3a:7b:b2:35:ed:23:06: de:14:23:68:75:f0:89:a4:16:b2:75:61:80:53:6c:be:f1:8a: b9:03:19:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYePG/xqpP2c/LEsUzDSIjOs91icwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAyMDExWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTY1YmM2OGYxZTBkZWE0ODQyMzM2M2FhMTUxZTcyNTFm NTg0MjFjZTBjYTAyNzI1YjI3OTdiMjg4YWQ1NTRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGxvz77Et7yqQ5ctYjtC7arMr2wdg2UR8fXk5oFBBSutgI XcyXgDUzQQH2n3MGFnpzhZRINTp4SxD9vfqq37RLHKL14fqoZtzTe0abnaV14nSZ 8/6I77iJwUnRG7oN4pvjJo+En859GAss6Cov7mKFmCa8OoZoXMFaSB4IPpSxcAd8 EpDSSQFsQN61nz4OQ1jUYSpo/+LX/SALPG635a9djXptTgBlXJcvNiLMDluSXr0N sXccst6a0yVq0gV4lwB8g3y1GwZGKOgvIYcMI/QdxQp+GSJ4gqawZc1zzAla14Az CvDTepL1t5U032xTPK5Dlb5pnlJ8Ge3XEdsBskRFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNLwl+VW9cM3W5Y0BzsipLNFbG+gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExOTU5NGQzLTFhMTctNDExOC04NTZkLTg4OWYyYmVmODI0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMFrqgwDQYJKoZIhvcNAQELBQADggEBAAla/U09u1IH2yPmD2WLS54C7uGl HmzvSqErJOru9mf/TJL4ZeO6LdqzJcWISWuBuGreMBAZHD4bKONKIqNAp7GVSIP4 Tl3/6Or4dARg8XR5+uYrH4IaLt6EZD8BX9UeHRxcSqEQ99VyJ5pQgpffRlwUN1iV 4mYMiwoVQsAdeFN09HJO4sbTYrCvaChqxuYvSZpsuzknPrPd2pYNd+GEq1jFPXy0 RAn1j4Drc9+6MkEtijew6UB4C6gb0+sQ56sNqUWEd3M5py8GzMgeW6GARm0XXtBl QcLtHZTe0yZziMkHSTF0OnuyNe0jBt4UI2h18ImkFrJ1YYBTbL7xirkDGb0= -----END CERTIFICATE-----Generated at Wed May 13 03:12:04 2026 by rpki-client