$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22c9a730-4525-4f9f-9737-1126e2e464db.roa File: 22c9a730-4525-4f9f-9737-1126e2e464db.roa (raw, json) Hash identifier: kMQZ+nSl+kRZKxgDpd6n3CC8RhDc1wUZNxKfCoklFHY= Subject key identifier: B5:AE:9A:6A:5D:15:54:BE:26:49:E1:91:FC:92:9C:97:D2:3F:3C:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 121D0E00C75C1AE20DA4F7B0FF8C4A638DBEE224 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22c9a730-4525-4f9f-9737-1126e2e464db.roa Signing time: Tue 05 May 2026 00:51:17 +0000 ROA not before: Tue 05 May 2026 00:51:17 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.151.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:1d:0e:00:c7:5c:1a:e2:0d:a4:f7:b0:ff:8c:4a:63:8d:be:e2:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:51:17 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=2aa3d98e6e2dda473cbaf96ca8506d9fb12595c906ebd8b055f3812bebd0d959, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:4b:23:ef:48:58:a6:93:44:ec:18:da:d6:92: 2b:b0:02:e3:82:ee:d3:b0:f0:ec:94:4c:1c:d1:58: e0:9f:77:fc:b6:10:b9:bb:9e:29:3c:0d:d0:ef:e9: 60:57:ce:67:37:87:12:f3:7b:58:a7:2e:9b:e5:9d: 69:b1:5f:51:f7:ff:b1:cd:8c:fd:1b:21:ce:59:7e: d0:cb:90:8f:dc:94:06:96:a2:1d:76:4a:a0:3b:f8: b7:b3:75:6e:99:db:a8:64:50:00:61:f7:50:ef:84: d8:30:09:ce:b3:11:36:55:86:fd:8f:ad:92:82:10: 98:fb:5c:18:34:10:33:ff:74:9c:2f:b6:ec:a9:6b: c1:6c:dd:09:94:d3:ef:68:24:26:33:9a:69:e3:e6: 33:b4:19:ac:f0:c2:ed:e4:a2:07:61:b7:b8:42:94: af:51:bb:0b:fa:44:04:3e:49:70:55:7d:58:50:d7: 51:85:c8:9e:c4:fc:1e:cc:76:d9:cf:c8:1e:b5:4a: 4a:eb:3c:45:e7:1f:22:10:fd:b1:91:fe:49:15:7b: d1:ff:0b:7a:07:f9:25:8e:af:e1:3c:92:fd:30:e1: 21:1e:26:4a:09:f2:f2:37:b1:8e:b8:03:36:f8:bc: b9:16:57:f4:bf:a5:cb:97:c7:6f:16:4f:ea:92:c2: 3d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:AE:9A:6A:5D:15:54:BE:26:49:E1:91:FC:92:9C:97:D2:3F:3C:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22c9a730-4525-4f9f-9737-1126e2e464db.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.151.0.0/16 Signature Algorithm: sha256WithRSAEncryption c7:3e:ea:91:91:da:5d:8e:b5:9d:22:b2:8c:85:55:6c:ee:6a: e2:a7:b8:88:c8:d8:2d:d5:59:37:9b:ca:92:1f:72:ee:d3:ab: 36:d4:a7:f2:b9:de:2d:53:54:b6:a1:a1:c0:ba:fd:cb:2c:c5: ba:dd:02:41:69:18:72:a4:4c:b5:8b:5b:2c:be:ca:e9:aa:43: ca:58:55:d5:9b:17:9e:64:9d:5e:82:a3:94:14:41:0a:fd:89: 0c:2b:74:b3:6d:52:a3:cd:f9:94:c1:cd:d3:47:e2:dd:9a:f1: 17:3e:5f:63:93:e6:77:32:47:2b:cb:53:8c:88:d6:ef:5b:b2: 7b:8e:57:5e:b8:a3:ef:42:2f:6a:1d:3d:0b:3e:78:b5:6c:d8: 19:45:f6:f6:2d:c5:09:a6:a8:58:5d:fa:7a:16:45:d5:96:77: 25:4f:81:4e:08:aa:2a:4e:36:e2:23:a1:02:60:68:aa:94:1f: b8:97:a0:09:75:87:80:3f:71:52:b4:cc:ba:01:32:ee:11:39: d4:70:c1:20:96:f6:d5:14:8d:9a:d4:c0:66:cb:51:c4:be:9b: d2:29:1a:52:aa:2a:e8:f5:48:3a:81:ff:2a:7f:ba:2d:ec:23: 3e:4b:2e:bb:84:c6:b1:2f:d7:9e:fe:32:72:33:b1:6a:41:83: 42:52:8d:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEh0OAMdcGuINpPew/4xKY42+4iQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA1MTE3WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYWEzZDk4ZTZlMmRkYTQ3M2NiYWY5NmNhODUwNmQ5ZmIx MjU5NWM5MDZlYmQ4YjA1NWYzODEyYmViZDBkOTU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCLSyPvSFimk0TsGNrWkiuwAuOC7tOw8OyUTBzRWOCfd/y2 ELm7nik8DdDv6WBXzmc3hxLze1inLpvlnWmxX1H3/7HNjP0bIc5ZftDLkI/clAaW oh12SqA7+LezdW6Z26hkUABh91DvhNgwCc6zETZVhv2PrZKCEJj7XBg0EDP/dJwv tuypa8Fs3QmU0+9oJCYzmmnj5jO0Gazwwu3kogdht7hClK9Ruwv6RAQ+SXBVfVhQ 11GFyJ7E/B7MdtnPyB61SkrrPEXnHyIQ/bGR/kkVe9H/C3oH+SWOr+E8kv0w4SEe JkoJ8vI3sY64Azb4vLkWV/S/pcuXx28WT+qSwj1XAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUta6aal0VVL4mSeGR/JKcl9I/POMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyYzlhNzMwLTQ1MjUtNGY5Zi05NzM3LTExMjZlMmU0NjRkYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4lzANBgkqhkiG9w0BAQsFAAOCAQEAxz7qkZHaXY61nSKyjIVVbO5q4qe4 iMjYLdVZN5vKkh9y7tOrNtSn8rneLVNUtqGhwLr9yyzFut0CQWkYcqRMtYtbLL7K 6apDylhV1ZsXnmSdXoKjlBRBCv2JDCt0s21So835lMHN00fi3ZrxFz5fY5PmdzJH K8tTjIjW71uye45XXrij70Ivah09Cz54tWzYGUX29i3FCaaoWF36ehZF1ZZ3JU+B TgiqKk424iOhAmBoqpQfuJegCXWHgD9xUrTMugEy7hE51HDBIJb21RSNmtTAZstR xL6b0ikaUqoq6PVIOoH/Kn+6LewjPksuu4TGsS/Xnv4ycjOxakGDQlKNyg== -----END CERTIFICATE-----Generated at Tue May 12 21:42:33 2026 by rpki-client