$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9ec487-664e-4418-bc4a-75e8cb6cc751.roa File: 2f9ec487-664e-4418-bc4a-75e8cb6cc751.roa (raw, json) Hash identifier: DAWavHW5XzX2+RIwfK/No0Gc4P3MdWQzwufAMmwkWpo= Subject key identifier: 74:D9:E1:FD:EF:59:D7:CA:D3:B6:71:CD:EC:C7:36:61:8B:4A:BD:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73DEB8A4FDD9D58F44A8E2139C52F46A187A1362 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9ec487-664e-4418-bc4a-75e8cb6cc751.roa Signing time: Tue 12 May 2026 00:50:42 +0000 ROA not before: Tue 12 May 2026 00:50:42 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:de:b8:a4:fd:d9:d5:8f:44:a8:e2:13:9c:52:f4:6a:18:7a:13:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 00:50:42 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=745456491e96f416d83805120175a4d031ed7c40a423cceeb6848fae64d12dea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:7c:a2:80:09:64:c7:49:ff:45:47:6a:34:40: f3:4f:51:32:ea:c9:5d:9c:27:13:92:5b:d0:44:58: c7:99:e4:9e:fc:43:71:90:3c:52:7f:ac:b8:9f:a7: 26:6c:89:d7:c5:48:07:1f:56:4c:76:20:4c:bb:3b: 86:9e:b1:49:39:08:4b:82:28:12:8e:91:bf:86:12: 69:9f:1a:08:87:da:aa:a9:8b:67:83:1c:3f:18:1d: 75:4e:bd:bb:96:81:0a:a0:7f:ce:3e:6a:f2:58:2c: b9:3b:ca:3e:74:f0:ce:4a:98:04:d0:5a:5e:88:6f: 12:05:5a:93:36:10:2e:72:37:5c:0b:a9:07:e5:56: c7:fa:02:f2:a2:bf:48:69:33:83:3d:83:05:48:ee: c6:a3:50:08:ff:80:80:a4:93:78:11:77:2f:8d:2a: db:3a:68:7c:dc:ca:06:68:64:5e:72:d1:d2:bc:27: 66:5a:c4:7d:8e:09:c6:b2:3a:f8:06:3a:c2:66:a1: 4c:df:4c:0c:9a:7c:50:01:aa:fb:2a:fd:4a:a3:0c: fe:6b:8b:35:86:47:6f:1e:6c:aa:d7:9d:39:d7:6f: 56:5f:6b:1b:b2:a7:48:a1:c7:5f:e0:21:d4:a4:bd: 89:ca:f9:2f:44:e8:6e:a1:55:41:e6:46:61:65:1a: 88:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D9:E1:FD:EF:59:D7:CA:D3:B6:71:CD:EC:C7:36:61:8B:4A:BD:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9ec487-664e-4418-bc4a-75e8cb6cc751.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.138.0/24 Signature Algorithm: sha256WithRSAEncryption 43:71:0d:08:31:36:18:29:cb:74:cd:76:f0:4c:a9:70:b0:5d: 92:07:ca:c9:de:30:5b:14:fa:82:7a:68:19:43:aa:7c:56:0f: 01:9c:04:1a:4a:03:fa:85:d2:5d:fc:59:ef:0d:5b:5e:34:0b: 05:62:22:09:77:f2:bb:88:04:ed:fc:99:76:f7:53:2b:a6:a7: 94:fa:a9:fd:83:9e:35:7a:65:66:a5:09:0f:bb:bd:2b:50:91: 42:96:66:c3:f4:35:31:5e:c1:7e:80:40:8e:a0:83:34:e0:38: 12:2b:39:1a:11:ad:1a:43:a4:61:89:d2:10:90:7c:66:41:b1: 0e:81:8d:df:89:a4:86:84:c1:3e:1e:36:aa:7c:e1:22:8f:ab: 3f:a5:d9:57:e6:f8:5d:1e:aa:2a:51:09:2a:4e:c5:bc:63:3a: dc:a8:d7:9c:26:4e:a0:7f:56:d9:a5:53:08:c3:f7:20:11:14: 42:db:90:b5:d7:1f:db:47:03:e7:11:96:11:15:df:52:45:4f: 41:e3:34:6f:d4:08:f3:00:9d:57:8e:d5:e4:c1:12:48:ce:8e: 43:d6:6b:8d:1a:bf:2f:b2:0e:d2:e9:1e:29:ef:2e:20:cd:c8: 67:68:a5:29:c3:2f:e8:81:28:c3:f1:08:52:49:95:03:ff:0f: 32:33:02:88 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc964pP3Z1Y9EqOITnFL0ahh6E2IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDA1MDQyWhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDU0NTY0OTFlOTZmNDE2ZDgzODA1MTIwMTc1YTRkMDMx ZWQ3YzQwYTQyM2NjZWViNjg0OGZhZTY0ZDEyZGVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrfKKACWTHSf9FR2o0QPNPUTLqyV2cJxOSW9BEWMeZ5J78 Q3GQPFJ/rLifpyZsidfFSAcfVkx2IEy7O4aesUk5CEuCKBKOkb+GEmmfGgiH2qqp i2eDHD8YHXVOvbuWgQqgf84+avJYLLk7yj508M5KmATQWl6IbxIFWpM2EC5yN1wL qQflVsf6AvKiv0hpM4M9gwVI7sajUAj/gICkk3gRdy+NKts6aHzcygZoZF5y0dK8 J2ZaxH2OCcayOvgGOsJmoUzfTAyafFABqvsq/UqjDP5rizWGR28ebKrXnTnXb1Zf axuyp0ihx1/gIdSkvYnK+S9E6G6hVUHmRmFlGoi/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdNnh/e9Z18rTtnHN7Mc2YYtKvXMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmOWVjNDg3LTY2NGUtNDQxOC1iYzRhLTc1ZThjYjZjYzc1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsIowDQYJKoZIhvcNAQELBQADggEBAENxDQgxNhgpy3TNdvBMqXCwXZIH ysneMFsU+oJ6aBlDqnxWDwGcBBpKA/qF0l38We8NW140CwViIgl38ruIBO38mXb3 Uyump5T6qf2DnjV6ZWalCQ+7vStQkUKWZsP0NTFewX6AQI6ggzTgOBIrORoRrRpD pGGJ0hCQfGZBsQ6Bjd+JpIaEwT4eNqp84SKPqz+l2Vfm+F0eqipRCSpOxbxjOtyo 15wmTqB/VtmlUwjD9yARFELbkLXXH9tHA+cRlhEV31JFT0HjNG/UCPMAnVeO1eTB EkjOjkPWa40avy+yDtLpHinvLiDNyGdopSnDL+iBKMPxCFJJlQP/DzIzAog= -----END CERTIFICATE-----Generated at Wed May 13 00:19:15 2026 by rpki-client