$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa File: 2d163000-da92-4a82-87fe-0bc2263033d1.roa (raw, json) Hash identifier: FZst8Sk7ycmMYTlrg+h6sjDI9HtFRdKodalSxch2plw= Subject key identifier: 4A:51:A4:F4:A6:30:F4:77:F4:9B:61:E4:F0:C5:EB:85:DF:CA:16:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FDCAD0DFAB511CC978DE3D26374D9014AD1466B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa Signing time: Fri 08 May 2026 00:21:17 +0000 ROA not before: Fri 08 May 2026 00:21:17 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:dc:ad:0d:fa:b5:11:cc:97:8d:e3:d2:63:74:d9:01:4a:d1:46:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:21:17 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=949b669cc7825e215eb888aa9bb66e80512709e0f98c01c51cb228ac5b30b4f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:fe:ce:cb:65:1f:ad:ce:b6:d0:09:a8:b4:f7: eb:16:c1:ba:e7:a8:f5:5d:3f:c8:d1:1f:71:61:2d: 23:2e:5f:d9:fa:07:40:4f:5f:b5:56:75:64:3c:31: d3:b5:be:bb:df:e9:b5:21:83:c8:83:eb:ab:c0:18: 0c:f0:a3:df:04:ba:6b:ec:57:e0:cb:97:a3:8e:e4: 5e:c2:d9:b8:85:1b:d8:a6:0b:aa:ce:e7:46:c5:08: 17:81:5c:0a:49:dc:08:c5:73:13:96:e8:ae:79:41: 7c:74:68:8e:16:61:7c:09:4c:dc:25:d5:62:22:2c: 9f:96:1a:fa:58:0d:09:da:07:a5:92:8e:f2:fd:21: c6:ed:a1:f5:5e:0b:a2:bd:51:59:0e:0d:b1:ba:75: 1a:3d:33:49:23:37:1f:42:60:b5:54:57:38:08:0a: a8:36:26:de:28:43:0f:1a:57:24:4c:22:6d:23:44: 7f:da:31:13:9e:c6:4d:72:a0:49:a9:c8:75:ca:1d: c1:7d:0f:b7:72:21:a4:ac:26:0c:39:e8:b5:d7:61: a5:22:7f:9f:f8:21:30:73:c0:e8:14:73:1f:a2:40: b7:84:6c:69:19:1f:66:ef:a4:3e:be:86:37:20:59: 9d:48:cc:c4:50:6d:1b:45:c1:36:ec:04:24:ad:1f: 69:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:51:A4:F4:A6:30:F4:77:F4:9B:61:E4:F0:C5:EB:85:DF:CA:16:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.64.0/23 Signature Algorithm: sha256WithRSAEncryption 57:cf:ae:00:b0:16:86:8e:50:9d:28:28:ce:7f:c2:e4:99:af: 7f:14:90:0e:14:49:a5:8e:65:b6:3c:2f:67:5b:f4:f2:81:3e: 77:67:9e:1c:77:fd:bd:0f:89:9f:63:4c:94:a7:99:e7:65:62: 0e:da:0b:ee:49:18:15:aa:0d:0a:6b:64:ce:c1:7e:df:dd:57: 27:8e:d9:8f:80:02:6c:e3:24:83:f5:30:0f:fa:54:7b:7c:96: c1:5f:69:ac:1c:4d:0e:e4:c9:22:e5:47:79:ab:a1:a5:e9:11: 3b:ec:44:23:04:5c:00:91:90:ed:97:2c:a7:a4:41:81:a8:fd: fd:fa:02:d2:42:ca:d8:23:b6:1a:05:97:bd:ce:c5:23:a3:fd: fe:6a:89:17:1c:cc:14:08:39:c7:23:da:36:c4:98:80:79:45: 35:52:99:db:ae:ae:e6:57:5d:bc:2d:89:5b:1a:8d:1c:e4:65: 70:7e:e3:f0:f4:60:27:3e:65:2e:b1:15:c2:15:39:4d:4c:6a: a0:46:8e:45:0f:31:47:34:6c:3d:14:3f:95:42:8c:18:e1:cb: c0:23:5b:fc:ac:f1:a8:81:6f:5e:b1:2e:88:c6:88:21:3d:47: db:18:08:eb:41:d6:d4:a1:13:03:87:de:6c:82:d7:ac:f5:9a: ba:13:90:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf9ytDfq1EcyXjePSY3TZAUrRRmswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA4MDAyMTE3WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDliNjY5Y2M3ODI1ZTIxNWViODg4YWE5YmI2NmU4MDUx MjcwOWUwZjk4YzAxYzUxY2IyMjhhYzViMzBiNGYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCF/s7LZR+tzrbQCai09+sWwbrnqPVdP8jRH3FhLSMuX9n6 B0BPX7VWdWQ8MdO1vrvf6bUhg8iD66vAGAzwo98EumvsV+DLl6OO5F7C2biFG9im C6rO50bFCBeBXApJ3AjFcxOW6K55QXx0aI4WYXwJTNwl1WIiLJ+WGvpYDQnaB6WS jvL9IcbtofVeC6K9UVkODbG6dRo9M0kjNx9CYLVUVzgICqg2Jt4oQw8aVyRMIm0j RH/aMROexk1yoEmpyHXKHcF9D7dyIaSsJgw56LXXYaUif5/4ITBzwOgUcx+iQLeE bGkZH2bvpD6+hjcgWZ1IzMRQbRtFwTbsBCStH2nzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSlGk9KYw9Hf0m2Hk8MXrhd/KFmEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkMTYzMDAwLWRhOTItNGE4Mi04N2ZlLTBiYzIyNjMwMzNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFODEAwDQYJKoZIhvcNAQELBQADggEBAFfPrgCwFoaOUJ0oKM5/wuSZr38U kA4USaWOZbY8L2db9PKBPndnnhx3/b0PiZ9jTJSnmedlYg7aC+5JGBWqDQprZM7B ft/dVyeO2Y+AAmzjJIP1MA/6VHt8lsFfaawcTQ7kySLlR3mroaXpETvsRCMEXACR kO2XLKekQYGo/f36AtJCytgjthoFl73OxSOj/f5qiRcczBQIOccj2jbEmIB5RTVS mduuruZXXbwtiVsajRzkZXB+4/D0YCc+ZS6xFcIVOU1MaqBGjkUPMUc0bD0UP5VC jBjhy8AjW/ys8aiBb16xLojGiCE9R9sYCOtB1tShEwOH3myC16z1mroTkKc= -----END CERTIFICATE-----Generated at Tue May 12 21:58:42 2026 by rpki-client