$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e34b6f6-970c-422b-a50a-c63cbe392aab.roa File: 2e34b6f6-970c-422b-a50a-c63cbe392aab.roa (raw, json) Hash identifier: nSP3HxRFC/kuap07V6KGHQyKQ81EAX503VZ9YYlZquA= Subject key identifier: 5E:BE:B8:8A:51:97:4B:B9:41:53:EB:9D:0E:E5:C6:0C:EC:6B:3E:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5593B9B059A2CFEE4C5C963B759F943ABFCB559B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e34b6f6-970c-422b-a50a-c63cbe392aab.roa Signing time: Tue 12 May 2026 00:20:05 +0000 ROA not before: Tue 12 May 2026 00:20:05 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.85.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:93:b9:b0:59:a2:cf:ee:4c:5c:96:3b:75:9f:94:3a:bf:cb:55:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 00:20:05 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=3789f6d04d39d663bc39f50f9264a3c9f8ef9a3fe2c7b7b41ea6a0b408280939, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:dc:5c:cf:34:e2:39:8c:69:87:29:a0:79:a5: 07:0c:24:12:4e:93:f4:52:2a:7c:e4:2b:1a:10:04: a5:25:59:e7:72:87:0e:8b:2d:bf:43:6b:c0:f3:90: e9:9f:ae:2f:aa:19:cf:37:4e:6a:7b:30:11:7c:36: 97:0d:d4:3a:bb:5a:b7:63:d0:92:cf:1e:a3:ff:96: f5:af:60:83:5f:b4:49:c6:9c:fb:b5:2f:e7:31:33: d1:db:87:13:f4:40:73:41:94:19:1a:78:0c:73:c4: 49:8a:cc:a1:1d:fc:86:18:e4:e3:d5:a1:5c:03:99: 69:87:1f:ea:29:d2:29:47:cb:78:15:a4:c9:0e:c6: 95:5c:5b:bc:b8:ba:99:e1:3b:ca:0b:58:e8:63:1c: a5:59:19:f8:f8:8c:26:99:91:13:1b:34:1f:0f:1a: 3f:3c:a0:8d:ec:69:65:17:0f:ce:d9:a6:f6:4b:b0: 95:4f:bf:bc:32:da:e3:0a:17:8c:e9:d4:a9:dd:41: fb:f1:11:f2:35:f4:02:55:73:b1:91:0f:9a:f1:12: 0b:2a:82:5b:66:c4:a0:ce:18:2d:18:22:20:45:c1: 22:60:fa:22:bf:3c:02:a7:8d:aa:5a:a9:1d:9b:6d: 10:8a:2e:93:e3:22:70:0c:19:cd:e9:e2:ba:2a:c5: e5:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:BE:B8:8A:51:97:4B:B9:41:53:EB:9D:0E:E5:C6:0C:EC:6B:3E:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2e34b6f6-970c-422b-a50a-c63cbe392aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.85.0/24 Signature Algorithm: sha256WithRSAEncryption 35:b5:c8:ff:10:ad:53:d5:9b:80:64:e6:af:6a:6e:81:35:2b: 52:a7:30:d2:91:e5:85:e5:a5:0c:ae:e5:65:c4:01:47:cd:c4: 5c:f9:01:cd:53:e8:f3:eb:69:50:ef:c2:75:1b:12:35:2d:96: bb:2c:03:ff:38:42:74:79:b9:04:b8:f6:db:42:52:2f:37:9d: 4d:1c:ba:e6:19:ae:7e:d3:a1:75:a6:23:47:ce:48:2b:e1:db: 0b:05:79:be:c7:05:81:aa:54:60:91:73:61:d3:ee:4f:87:ec: 87:87:ca:df:8f:7d:d4:67:0e:98:72:d3:11:c9:a2:f4:aa:bb: 41:64:3a:40:16:03:88:8a:45:20:3e:0a:ce:a3:17:81:cf:33: ef:50:e6:cf:d5:ab:a9:58:99:5a:61:47:ba:c6:13:b8:b2:3a: 45:da:ce:38:28:d8:c8:9f:65:36:e0:db:1e:da:c1:4f:89:0e: 02:fc:dd:7c:f9:12:71:70:f0:67:5c:bf:fa:d1:ab:df:ef:6a: d3:fd:e3:69:40:58:d9:1c:b9:fd:c2:28:60:5c:76:4c:2f:53: 00:1b:2b:ca:61:cb:6d:0b:5b:2e:d6:42:75:93:83:0f:e6:04: 7b:2f:78:4f:68:40:ad:b5:50:f5:e7:f7:46:f1:bd:15:30:4c: 68:eb:c0:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVZO5sFmiz+5MXJY7dZ+UOr/LVZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDAyMDA1WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNzg5ZjZkMDRkMzlkNjYzYmMzOWY1MGY5MjY0YTNjOWY4 ZWY5YTNmZTJjN2I3YjQxZWE2YTBiNDA4MjgwOTM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz3FzPNOI5jGmHKaB5pQcMJBJOk/RSKnzkKxoQBKUlWedy hw6LLb9Da8DzkOmfri+qGc83Tmp7MBF8NpcN1Dq7Wrdj0JLPHqP/lvWvYINftEnG nPu1L+cxM9HbhxP0QHNBlBkaeAxzxEmKzKEd/IYY5OPVoVwDmWmHH+op0ilHy3gV pMkOxpVcW7y4upnhO8oLWOhjHKVZGfj4jCaZkRMbNB8PGj88oI3saWUXD87ZpvZL sJVPv7wy2uMKF4zp1KndQfvxEfI19AJVc7GRD5rxEgsqgltmxKDOGC0YIiBFwSJg +iK/PAKnjapaqR2bbRCKLpPjInAMGc3p4roqxeWZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXr64ilGXS7lBU+udDuXGDOxrPsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlMzRiNmY2LTk3MGMtNDIyYi1hNTBhLWM2M2NiZTM5MmFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmFUwDQYJKoZIhvcNAQELBQADggEBADW1yP8QrVPVm4Bk5q9qboE1K1Kn MNKR5YXlpQyu5WXEAUfNxFz5Ac1T6PPraVDvwnUbEjUtlrssA/84QnR5uQS49ttC Ui83nU0cuuYZrn7ToXWmI0fOSCvh2wsFeb7HBYGqVGCRc2HT7k+H7IeHyt+PfdRn Dphy0xHJovSqu0FkOkAWA4iKRSA+Cs6jF4HPM+9Q5s/Vq6lYmVphR7rGE7iyOkXa zjgo2MifZTbg2x7awU+JDgL83Xz5EnFw8Gdcv/rRq9/vatP942lAWNkcuf3CKGBc dkwvUwAbK8phy20LWy7WQnWTgw/mBHsveE9oQK21UPXn90bxvRUwTGjrwPg= -----END CERTIFICATE-----Generated at Tue May 12 21:50:52 2026 by rpki-client