$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c8a61e-4b54-49e6-9a8e-e3229656a9ad.roa File: 27c8a61e-4b54-49e6-9a8e-e3229656a9ad.roa (raw, json) Hash identifier: NkpKXHbSXySZIcYqujPPwDCIh816+ihThfTwSAwMH0E= Subject key identifier: BE:56:32:D5:27:E1:3F:1D:C7:15:1F:50:18:7A:60:98:6A:67:8F:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4253240B7DACCB6D8D46D5FA6CA074DE35B7C294 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c8a61e-4b54-49e6-9a8e-e3229656a9ad.roa Signing time: Wed 29 Apr 2026 01:00:09 +0000 ROA not before: Wed 29 Apr 2026 01:00:09 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.240.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:53:24:0b:7d:ac:cb:6d:8d:46:d5:fa:6c:a0:74:de:35:b7:c2:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 01:00:09 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=af20840306eae03d06097a67b12a4a23b6dfc80a2440e02c18575de6ba3fcf07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:44:88:81:81:95:c6:fd:b4:ba:39:b2:34:6b: b3:ba:d5:c2:62:9d:3a:5c:42:0b:93:33:02:99:30: 75:85:b6:71:dc:f0:0b:81:85:1d:18:6d:8c:a8:e2: 42:18:c2:75:15:a1:9a:28:27:68:08:0f:c5:65:0a: 12:fe:54:03:49:58:ae:23:73:6f:57:0e:8a:cc:8f: 37:65:4c:e7:22:c4:dd:ce:af:17:74:a9:c8:7e:bb: de:d0:8c:3e:22:ab:d7:32:03:6c:d8:3d:07:85:37: 44:76:b1:ef:52:ad:5c:84:75:c0:25:18:57:ac:33: 05:04:93:c9:cf:f0:7a:b6:3d:eb:64:de:a9:cd:c3: 8d:54:73:80:af:3f:84:5a:e9:21:16:49:a3:9e:3c: 51:5b:6f:f0:ae:d7:88:32:a1:06:ba:20:5a:5d:7a: 5a:7a:9d:0c:99:9e:01:23:fe:24:ab:97:e3:d0:8d: d8:6f:00:3f:66:bb:c7:80:9c:eb:ef:7a:65:c7:9a: 31:20:b5:9c:c6:b8:b3:78:51:a6:fc:90:a3:2b:be: 2b:cc:91:ca:45:a2:22:fc:38:e0:11:53:cc:75:99: 8c:90:1c:4f:30:c4:df:a2:fc:bd:29:55:2e:7b:3a: a8:e8:2d:18:d9:f6:a0:6a:17:c7:e1:6c:ab:5b:a2: 58:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:56:32:D5:27:E1:3F:1D:C7:15:1F:50:18:7A:60:98:6A:67:8F:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c8a61e-4b54-49e6-9a8e-e3229656a9ad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.240.64.0/18 Signature Algorithm: sha256WithRSAEncryption 22:fd:8e:c3:25:0d:9d:37:d7:37:cd:92:70:f6:ab:c2:41:5e: ec:62:69:0c:7f:f1:66:4b:b7:af:cb:93:d7:b4:89:e7:1c:67: bc:5f:44:b8:73:2c:28:52:bb:47:d4:c6:e9:bd:ac:0e:3d:d7: 15:fd:4b:16:35:48:a8:d2:e6:10:9c:80:7c:9c:11:bb:ab:1c: d7:8e:e1:2f:e2:37:1a:46:cf:9c:35:56:56:64:a4:7f:1e:16: 10:90:7e:3a:5f:93:3f:7e:93:cc:64:6a:ee:09:67:23:3e:e2: 4d:4b:c8:f9:c9:5f:a4:a3:df:e7:57:f3:42:72:86:ec:aa:65: 12:4e:56:ae:59:6c:2b:05:71:f8:3f:a8:cd:01:b9:56:d0:2d: 04:03:2a:a9:67:83:e0:8c:f4:18:c5:fe:14:c2:f9:06:1f:ca: e9:86:a5:27:01:dc:8b:cd:09:9c:07:9c:b6:0f:ca:5e:21:4b: f0:88:2e:ef:52:36:c6:d6:21:46:c4:14:21:40:4d:95:7a:bb: e2:df:c8:e4:61:f4:c3:53:76:26:d1:95:a4:6f:fb:77:6c:49: ce:8e:40:37:49:a3:d0:87:94:d6:52:03:d0:83:73:d7:ad:cb: f6:24:f6:b7:2a:c0:f7:a8:19:82:10:3c:be:dc:59:19:06:a1: 6f:9a:2c:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQlMkC32sy22NRtX6bKB03jW3wpQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDEwMDA5WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZjIwODQwMzA2ZWFlMDNkMDYwOTdhNjdiMTJhNGEyM2I2 ZGZjODBhMjQ0MGUwMmMxODU3NWRlNmJhM2ZjZjA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4RIiBgZXG/bS6ObI0a7O61cJinTpcQguTMwKZMHWFtnHc 8AuBhR0YbYyo4kIYwnUVoZooJ2gID8VlChL+VANJWK4jc29XDorMjzdlTOcixN3O rxd0qch+u97QjD4iq9cyA2zYPQeFN0R2se9SrVyEdcAlGFesMwUEk8nP8Hq2Petk 3qnNw41Uc4CvP4Ra6SEWSaOePFFbb/Cu14gyoQa6IFpdelp6nQyZngEj/iSrl+PQ jdhvAD9mu8eAnOvvemXHmjEgtZzGuLN4Uab8kKMrvivMkcpFoiL8OOARU8x1mYyQ HE8wxN+i/L0pVS57OqjoLRjZ9qBqF8fhbKtbolihAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvlYy1SfhPx3HFR9QGHpgmGpnjwcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YzhhNjFlLTRiNTQtNDllNi05YThlLWUzMjI5NjU2YTlhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZG8EAwDQYJKoZIhvcNAQELBQADggEBACL9jsMlDZ031zfNknD2q8JBXuxi aQx/8WZLt6/Lk9e0ieccZ7xfRLhzLChSu0fUxum9rA491xX9SxY1SKjS5hCcgHyc EburHNeO4S/iNxpGz5w1VlZkpH8eFhCQfjpfkz9+k8xkau4JZyM+4k1LyPnJX6Sj 3+dX80JyhuyqZRJOVq5ZbCsFcfg/qM0BuVbQLQQDKqlng+CM9BjF/hTC+QYfyumG pScB3IvNCZwHnLYPyl4hS/CILu9SNsbWIUbEFCFATZV6u+LfyORh9MNTdibRlaRv +3dsSc6OQDdJo9CHlNZSA9CDc9ety/Yk9rcqwPeoGYIQPL7cWRkGoW+aLJ0= -----END CERTIFICATE-----Generated at Tue May 12 22:05:07 2026 by rpki-client