$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa File: 2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa (raw, json) Hash identifier: N8PucHyJS25T+/ALYbKDrLfGTlAW+NW/6atlUfWxMP4= Subject key identifier: A0:F0:4E:92:D8:99:39:0F:75:24:75:71:CB:8F:F1:1D:3E:6B:5C:D9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52D380B9635A98BB2BA88C0DF8D6A96BCB2064B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa Signing time: Wed 29 Apr 2026 00:20:34 +0000 ROA not before: Wed 29 Apr 2026 00:20:34 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:d3:80:b9:63:5a:98:bb:2b:a8:8c:0d:f8:d6:a9:6b:cb:20:64:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:34 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=132d3620019b057c95a1be2f68c21e11fb1fead2090b9577ada46e3e2c263c24, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:5a:4f:e1:a7:2f:4b:d5:d4:a4:50:f4:4d:b8: 4a:d7:cb:d8:14:9c:e7:bc:94:6e:64:b9:66:78:b0: b6:6d:5e:9b:82:a2:91:7f:c9:b0:09:42:29:70:d6: c6:3e:5f:17:f6:e4:53:37:38:c6:c1:12:22:af:a0: 88:cf:55:22:bd:76:3b:bb:f1:d2:73:37:ee:e7:46: dc:f3:c4:77:48:c3:43:ea:a1:e8:af:e1:58:f2:55: 2c:b8:fb:be:fb:74:23:2c:dc:04:b6:74:89:98:da: 04:bf:43:11:a4:83:74:67:eb:be:24:12:50:86:ea: c0:81:52:86:1a:ec:2f:1b:47:26:53:0d:92:ae:8e: 80:25:26:7d:1c:49:fa:f4:32:61:a0:42:55:61:c6: 0f:fa:73:f1:56:fa:dc:8c:31:2e:13:c9:72:fd:61: f1:5d:ba:23:03:fc:fd:2b:fb:d8:08:e5:d7:d5:69: 1b:99:cd:25:b9:26:83:c6:54:1a:a4:60:0c:3e:43: c2:63:9f:3c:ea:1d:ed:3d:0e:0e:83:a8:08:48:ba: 11:ce:8a:b1:e5:db:41:e9:ea:b4:eb:5c:dc:1d:39: be:b6:57:f2:9a:ae:02:3f:9d:23:05:0f:30:9f:eb: 60:39:59:49:9d:10:73:b5:ef:0e:9e:29:d7:c6:99: 13:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F0:4E:92:D8:99:39:0F:75:24:75:71:CB:8F:F1:1D:3E:6B:5C:D9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2bf6a79d-e7fb-4b23-b878-c49ed99191e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.162.0/24 Signature Algorithm: sha256WithRSAEncryption 2c:f8:dc:77:81:b4:9d:81:ac:71:61:75:70:e1:31:1f:ca:4f: f2:19:5b:e1:64:12:cb:d5:8e:5d:2c:19:09:78:77:ba:b5:dc: 44:19:21:91:0a:87:26:8d:4e:b1:c6:bb:95:1f:bf:f1:51:84: ac:37:1b:5b:cc:11:5a:35:25:5a:67:02:a3:7c:8b:99:37:38: 46:dd:9f:ef:31:64:cd:f5:ad:ff:d0:5d:a4:c5:00:13:7d:d5: 9e:aa:40:44:c0:3a:e8:47:d8:91:e7:06:96:c5:83:7e:08:83: 82:4d:79:9f:7e:ab:59:18:c2:a0:64:66:fb:23:5c:83:ba:d1: b4:42:00:0c:5d:96:03:4b:a2:a5:5e:f4:96:42:f6:18:8b:ed: 9b:8e:03:5b:03:56:9b:ec:84:9b:dd:48:f5:6a:f4:27:3c:d2: 40:df:2e:1d:51:a1:0c:19:03:d3:73:88:f7:22:bc:61:55:cd: 7c:89:b6:13:24:12:1c:7f:57:ca:39:4c:bd:92:22:a8:e5:e5: d5:d5:8b:58:25:d3:aa:da:73:a5:98:30:dc:71:27:03:c9:4e: cd:2f:64:62:25:b4:7e:97:fb:3b:02:eb:08:a5:57:d9:4e:ee: cf:e5:76:15:3c:77:56:54:e5:c5:d1:6a:9e:97:8c:b5:7c:36: 97:7c:0f:10 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUtOAuWNamLsrqIwN+Napa8sgZLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMDM0WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzJkMzYyMDAxOWIwNTdjOTVhMWJlMmY2OGMyMWUxMWZi MWZlYWQyMDkwYjk1NzdhZGE0NmUzZTJjMjYzYzI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+Wk/hpy9L1dSkUPRNuErXy9gUnOe8lG5kuWZ4sLZtXpuC opF/ybAJQilw1sY+Xxf25FM3OMbBEiKvoIjPVSK9dju78dJzN+7nRtzzxHdIw0Pq oeiv4VjyVSy4+777dCMs3AS2dImY2gS/QxGkg3Rn674kElCG6sCBUoYa7C8bRyZT DZKujoAlJn0cSfr0MmGgQlVhxg/6c/FW+tyMMS4TyXL9YfFduiMD/P0r+9gI5dfV aRuZzSW5JoPGVBqkYAw+Q8JjnzzqHe09Dg6DqAhIuhHOirHl20Hp6rTrXNwdOb62 V/KargI/nSMFDzCf62A5WUmdEHO17w6eKdfGmRONAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoPBOktiZOQ91JHVxy4/xHT5rXNkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiZjZhNzlkLWU3ZmItNGIyMy1iODc4LWM0OWVkOTkxOTFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36IwDQYJKoZIhvcNAQELBQADggEBACz43HeBtJ2BrHFhdXDhMR/KT/IZ W+FkEsvVjl0sGQl4d7q13EQZIZEKhyaNTrHGu5Ufv/FRhKw3G1vMEVo1JVpnAqN8 i5k3OEbdn+8xZM31rf/QXaTFABN91Z6qQETAOuhH2JHnBpbFg34Ig4JNeZ9+q1kY wqBkZvsjXIO60bRCAAxdlgNLoqVe9JZC9hiL7ZuOA1sDVpvshJvdSPVq9Cc80kDf Lh1RoQwZA9NziPcivGFVzXyJthMkEhx/V8o5TL2SIqjl5dXVi1gl06rac6WYMNxx JwPJTs0vZGIltH6X+zsC6wilV9lO7s/ldhU8d1ZU5cXRap6XjLV8Npd8DxA= -----END CERTIFICATE-----Generated at Tue May 12 21:40:30 2026 by rpki-client