$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa File: 2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa (raw, json) Hash identifier: r/BVkjUmZcCBr/jbIB+vpPhtwc8L0bKWROUyRJkjhJM= Subject key identifier: 5B:AC:E8:E9:1C:57:C2:25:4B:B4:E3:BC:37:05:6E:D5:2F:E6:8A:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 429A0D981674A9627D8E487B283E75D47E284250 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa Signing time: Sat 09 May 2026 00:10:48 +0000 ROA not before: Sat 09 May 2026 00:10:48 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 207.21.240.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:9a:0d:98:16:74:a9:62:7d:8e:48:7b:28:3e:75:d4:7e:28:42:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:48 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=bf06cc23e362e5bc2697c0201669db988577b7abf724ad22e9e6206fb69d3a45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:e1:1a:49:d4:92:26:44:4b:a3:24:27:e3:8e: f2:01:4a:9c:e8:ac:43:c8:1e:cd:db:b5:46:c7:b4: 31:83:95:1e:e6:b8:2a:c4:db:ad:74:68:d1:db:52: 7d:d5:04:dd:6b:00:b9:c6:6c:f3:5d:56:4d:81:91: 79:ce:77:41:96:b1:63:73:2f:03:06:56:49:38:58: 19:e4:2c:53:b4:50:1e:00:80:bd:36:78:88:22:a0: b6:b2:38:c8:fc:94:cc:41:ed:dd:c4:73:8a:1e:75: 2f:bc:a3:72:8f:46:70:1c:b8:95:68:26:53:c7:11: 31:aa:cd:73:fa:c3:c5:82:04:ef:27:9d:6a:6d:e3: 61:6f:86:c8:37:41:fd:8c:4a:73:80:e4:15:fe:db: ee:44:4e:89:09:d9:79:f0:8d:14:77:c3:ef:86:c8: 54:58:0a:a7:11:e0:ce:57:e7:20:59:fd:e3:f8:f8: 3d:49:46:f7:12:71:3d:7c:7b:6e:e9:99:4a:ce:05: 85:49:a4:12:38:f8:56:91:3e:2c:a5:6a:bb:17:25: 05:80:b9:76:c7:f1:eb:8d:1b:b3:4e:2b:18:a2:61: 00:6d:f5:2c:53:29:06:f6:85:b7:25:5d:b7:ab:d3: 9a:35:b9:b0:f1:f8:8b:e1:6e:64:e0:5d:f5:e4:a6: 80:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:AC:E8:E9:1C:57:C2:25:4B:B4:E3:BC:37:05:6E:D5:2F:E6:8A:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2edf8204-bf2c-49e4-b210-cc2b92b584ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.21.240.0/22 Signature Algorithm: sha256WithRSAEncryption 60:59:ae:fb:70:83:f3:91:64:0e:73:b8:4f:75:12:c8:9c:af: 6b:17:4e:11:28:45:d1:43:51:58:b6:25:b0:5c:63:4a:55:3d: b6:0c:3a:31:4b:74:72:47:09:e1:0b:a5:35:b6:e7:6b:22:04: f5:82:09:66:82:02:05:92:b2:18:6d:97:5d:fa:64:0b:69:3c: be:a0:5d:6c:6c:6d:30:f5:c2:27:12:f9:40:b1:da:47:24:8b: 89:89:b6:26:69:16:ff:b4:25:cf:16:4f:e0:10:11:1c:81:17: 6c:e4:1b:3a:9a:3a:fe:3f:32:7d:73:68:49:ef:2c:f6:91:64: c3:6f:40:8e:6d:02:9c:14:d6:38:c9:82:76:6c:54:12:73:fe: 2d:b7:6c:82:b9:7d:45:6c:ba:12:bd:83:9e:4a:df:ec:64:12: 8c:73:7b:1b:c0:68:e3:8e:9a:26:22:c2:79:b6:52:54:ca:80: 8b:b5:57:27:cb:da:f9:12:39:cf:3d:0e:fd:99:52:42:7e:ce: 40:c9:5b:f9:eb:3e:5c:0c:9d:4b:61:0f:45:77:0c:77:3d:59: a6:ab:f0:6e:a5:84:b9:d1:4f:00:9d:fc:83:6a:93:67:1c:1c: 22:e3:db:70:00:4c:bc:93:39:03:69:64:ad:9a:78:96:95:e8: 6b:d0:22:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQpoNmBZ0qWJ9jkh7KD511H4oQlAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA5MDAxMDQ4WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZjA2Y2MyM2UzNjJlNWJjMjY5N2MwMjAxNjY5ZGI5ODg1 NzdiN2FiZjcyNGFkMjJlOWU2MjA2ZmI2OWQzYTQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+4RpJ1JImREujJCfjjvIBSpzorEPIHs3btUbHtDGDlR7m uCrE2610aNHbUn3VBN1rALnGbPNdVk2BkXnOd0GWsWNzLwMGVkk4WBnkLFO0UB4A gL02eIgioLayOMj8lMxB7d3Ec4oedS+8o3KPRnAcuJVoJlPHETGqzXP6w8WCBO8n nWpt42Fvhsg3Qf2MSnOA5BX+2+5ETokJ2XnwjRR3w++GyFRYCqcR4M5X5yBZ/eP4 +D1JRvcScT18e27pmUrOBYVJpBI4+FaRPiylarsXJQWAuXbH8euNG7NOKxiiYQBt 9SxTKQb2hbclXber05o1ubDx+IvhbmTgXfXkpoDvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW6zo6RxXwiVLtOO8NwVu1S/mipwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZGY4MjA0LWJmMmMtNDllNC1iMjEwLWNjMmI5MmI1ODRlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALPFfAwDQYJKoZIhvcNAQELBQADggEBAGBZrvtwg/ORZA5zuE91Esicr2sX ThEoRdFDUVi2JbBcY0pVPbYMOjFLdHJHCeELpTW252siBPWCCWaCAgWSshhtl136 ZAtpPL6gXWxsbTD1wicS+UCx2kcki4mJtiZpFv+0Jc8WT+AQERyBF2zkGzqaOv4/ Mn1zaEnvLPaRZMNvQI5tApwU1jjJgnZsVBJz/i23bIK5fUVsuhK9g55K3+xkEoxz exvAaOOOmiYiwnm2UlTKgIu1VyfL2vkSOc89Dv2ZUkJ+zkDJW/nrPlwMnUthD0V3 DHc9Waar8G6lhLnRTwCd/INqk2ccHCLj23AATLyTOQNpZK2aeJaV6GvQIhQ= -----END CERTIFICATE-----Generated at Tue May 12 22:14:06 2026 by rpki-client