$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa File: 2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa (raw, json) Hash identifier: Fd4RcSc+/OCM8nlq4Ev7JC+ISZ27mCP9HVFjDsxKAqg= Subject key identifier: 5E:1A:CC:EA:8A:64:89:76:45:2E:03:13:69:DD:B7:31:DF:CA:79:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21D376F5904F02FCDA79FB23535056A0A52A117F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa Signing time: Mon 04 May 2026 00:40:54 +0000 ROA not before: Mon 04 May 2026 00:40:54 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 45.34.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:d3:76:f5:90:4f:02:fc:da:79:fb:23:53:50:56:a0:a5:2a:11:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:40:54 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=1cbbfafbdfd4e68c2d9b073fab1e87b077d84c3ce75288cc2903a9949d7afb1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a8:84:38:fb:8f:81:85:89:bd:b0:83:f9:32: 8e:bf:4a:3e:49:2c:b4:89:b8:97:13:8f:69:f2:4b: 33:2f:3e:58:49:81:60:a7:1f:f7:a7:e5:59:e3:b7: 8d:e5:68:f4:3a:2d:d7:08:33:f7:65:1f:1a:24:d0: a2:4a:b2:53:17:1c:7e:2f:6c:d8:25:bf:c8:47:06: 5a:67:c6:35:c1:70:c1:f8:31:8c:cd:f0:cf:38:af: 23:ca:b0:0d:0a:e4:64:08:d1:04:91:4a:8a:f7:e0: b0:07:4a:de:07:fb:87:48:9f:80:7b:2c:5f:93:a1: bc:b8:7b:75:60:36:75:b6:cb:a2:6f:57:bd:98:0a: 4e:a1:94:9c:37:5f:da:a2:2e:b5:0d:30:45:67:7a: c2:66:84:63:f7:3a:68:ad:ce:d9:22:03:40:87:e6: ae:52:f9:fa:0f:35:fb:0c:34:9c:51:2f:10:73:5e: 53:6f:3f:0a:a7:af:91:cb:4b:68:52:b4:f8:e5:18: 41:e2:ed:f3:4b:c4:ec:5b:1c:16:fb:01:47:e5:9f: f9:cd:fe:1c:15:9e:9c:96:40:4f:84:3a:e1:fb:8a: 6f:d1:ba:01:ab:50:2c:fb:46:4d:d8:5c:82:7f:61: 3f:e5:b2:64:fa:82:0b:e1:0c:ec:56:73:e5:a4:e6: 36:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:1A:CC:EA:8A:64:89:76:45:2E:03:13:69:DD:B7:31:DF:CA:79:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b6e15d2-9bc0-465a-abc0-9a96615bc918.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.34.0.0/15 Signature Algorithm: sha256WithRSAEncryption 40:4d:71:c1:8b:84:0f:19:eb:0c:f3:a1:ff:94:e8:78:68:fe: 5a:4f:5a:6e:31:38:fa:7f:f5:ea:64:30:ba:62:3f:7c:96:a9: da:1b:01:8e:31:4b:41:f0:4e:24:29:ab:97:58:06:d6:6a:7d: 41:56:e4:34:8d:06:9b:56:7d:96:48:1a:71:61:39:84:47:2c: a5:35:b0:1b:3b:61:7a:3c:19:56:a1:3b:c0:aa:f2:5b:45:45: e8:72:c9:0e:e2:84:6f:38:44:6b:83:6f:2c:40:13:90:8f:5f: 0b:3a:93:3f:3b:9b:1d:be:a2:1f:d7:dd:b8:55:7b:13:ef:be: ea:eb:61:fc:4a:7f:39:cf:93:af:28:2f:c4:03:7d:15:d2:ae: dd:52:f2:29:a5:02:d6:76:bf:6d:3e:bd:74:c6:aa:a6:2f:52: 76:29:7d:9e:b3:d0:5d:1a:26:25:c7:49:31:89:e7:aa:77:3a: c0:0e:86:12:a6:fa:57:f2:3a:e6:c1:23:e3:e9:a7:28:c6:ef: 6e:d4:74:8f:f9:9d:fe:01:85:61:df:48:a9:4a:f8:b1:ab:f5: 63:dd:6b:78:3a:68:85:bc:de:b8:42:d2:64:38:b7:e0:5e:cd: 80:40:b2:60:6b:2a:81:2e:f9:32:b0:53:c2:06:70:4d:6f:38: f4:a0:60:c6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIdN29ZBPAvzaefsjU1BWoKUqEX8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA0MDU0WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2JiZmFmYmRmZDRlNjhjMmQ5YjA3M2ZhYjFlODdiMDc3 ZDg0YzNjZTc1Mjg4Y2MyOTAzYTk5NDlkN2FmYjFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrqIQ4+4+BhYm9sIP5Mo6/Sj5JLLSJuJcTj2nySzMvPlhJ gWCnH/en5Vnjt43laPQ6LdcIM/dlHxok0KJKslMXHH4vbNglv8hHBlpnxjXBcMH4 MYzN8M84ryPKsA0K5GQI0QSRSor34LAHSt4H+4dIn4B7LF+Toby4e3VgNnW2y6Jv V72YCk6hlJw3X9qiLrUNMEVnesJmhGP3OmitztkiA0CH5q5S+foPNfsMNJxRLxBz XlNvPwqnr5HLS2hStPjlGEHi7fNLxOxbHBb7AUfln/nN/hwVnpyWQE+EOuH7im/R ugGrUCz7Rk3YXIJ/YT/lsmT6ggvhDOxWc+Wk5jbhAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXhrM6opkiXZFLgMTad23Md/KeWAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiNmUxNWQyLTliYzAtNDY1YS1hYmMwLTlhOTY2MTViYzkxOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEtIjANBgkqhkiG9w0BAQsFAAOCAQEAQE1xwYuEDxnrDPOh/5ToeGj+Wk9a bjE4+n/16mQwumI/fJap2hsBjjFLQfBOJCmrl1gG1mp9QVbkNI0Gm1Z9lkgacWE5 hEcspTWwGzthejwZVqE7wKryW0VF6HLJDuKEbzhEa4NvLEATkI9fCzqTPzubHb6i H9fduFV7E+++6uth/Ep/Oc+TrygvxAN9FdKu3VLyKaUC1na/bT69dMaqpi9Sdil9 nrPQXRomJcdJMYnnqnc6wA6GEqb6V/I65sEj4+mnKMbvbtR0j/md/gGFYd9IqUr4 sav1Y91reDpohbzeuELSZDi34F7NgECyYGsqgS75MrBTwgZwTW849KBgxg== -----END CERTIFICATE-----Generated at Tue May 12 21:54:31 2026 by rpki-client