$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30daddce-6506-4548-abca-4110cddb5ecf.roa File: 30daddce-6506-4548-abca-4110cddb5ecf.roa (raw, json) Hash identifier: sRJhnXd/W9+Fxv72oeP6L2m/GruIPFtKwkw0lbkKr20= Subject key identifier: 33:07:60:3E:EA:8E:90:01:18:36:BD:50:7D:46:76:99:FE:53:75:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7EB202F826B7F3D17BEF75DA0FB92EA4AA331C70 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30daddce-6506-4548-abca-4110cddb5ecf.roa Signing time: Mon 04 May 2026 01:01:15 +0000 ROA not before: Mon 04 May 2026 01:01:15 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 44.216.196.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:b2:02:f8:26:b7:f3:d1:7b:ef:75:da:0f:b9:2e:a4:aa:33:1c:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:01:15 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=9ec3f95c8f7a68cced77a529396afc05d6f0d2bdfa3b1be9e2e8083b14f3b6c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:ba:57:17:14:ee:3e:f9:b8:a7:2a:bc:2c:86: bb:ab:4e:84:49:61:36:8b:ec:00:1a:49:35:6b:52: cd:19:36:e7:f1:a3:d3:84:7c:96:e3:95:a9:79:08: 09:c3:a4:b2:79:c0:e0:cd:27:44:77:ee:97:be:2a: 88:8e:62:2f:ff:53:ba:32:38:79:c0:cb:f4:b1:53: 89:18:4a:81:ba:7b:77:f1:14:10:5c:1a:0b:27:4f: dd:ed:a1:7a:33:35:de:39:d8:77:3a:d9:78:f8:31: 93:a4:21:df:ad:c7:a1:78:5c:a7:0c:f0:bd:54:d9: 3c:69:17:79:e3:35:36:bc:9b:6f:20:ce:99:a0:2d: 84:2d:0d:81:b3:ac:ef:72:5f:77:fd:7e:cd:25:8b: 37:0f:7b:3f:5a:09:4d:06:fa:5a:ce:e0:9c:ac:a4: 4d:82:a8:04:e6:59:b0:bf:c6:a0:8f:1a:43:ac:b2: be:c8:aa:d6:bb:3b:46:fe:9c:e6:36:ac:8e:97:33: 6a:be:66:7f:06:95:37:dd:4f:1b:88:03:33:4c:a9: 0a:ab:9b:4f:b3:03:c8:2d:8b:07:bb:c1:3c:63:49: ca:46:af:36:3c:f6:c8:4a:b4:4e:4c:5d:1f:32:f0: 3c:dd:de:03:1d:13:e7:9c:bd:a4:36:bf:b5:d7:c7: 9d:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:07:60:3E:EA:8E:90:01:18:36:BD:50:7D:46:76:99:FE:53:75:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30daddce-6506-4548-abca-4110cddb5ecf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.196.0/22 Signature Algorithm: sha256WithRSAEncryption 77:09:07:8e:c0:cd:77:64:98:a6:4f:f5:96:44:1d:c1:6d:4d: 71:03:c5:39:17:ef:28:d3:8a:75:24:5d:86:97:54:a0:7a:1b: 19:5a:03:38:95:e8:1f:c0:5a:50:cd:39:8a:cb:4f:f8:39:ad: 5a:e9:a4:eb:ee:fa:fd:5d:7c:51:38:da:8e:15:75:a2:d2:ed: 36:ac:b5:fe:4f:ad:2d:f8:a3:30:06:d7:86:71:61:d0:6f:23: bc:8b:52:64:0c:51:c6:57:ff:75:39:47:23:51:39:85:b7:92: 9e:6f:14:86:87:a6:1a:e3:25:6f:3b:0a:ae:c5:32:63:4c:bc: 49:c0:7a:a5:c0:df:ba:36:58:f5:64:a9:8d:0f:38:9c:e7:a5: 9e:ae:61:dc:9d:ca:7a:da:01:9c:4a:28:fa:d5:fb:f4:c7:61: 23:ac:9e:d5:4d:9c:e2:51:b7:f4:b8:41:86:06:d5:26:12:13: de:a2:f3:bb:1e:5b:c3:af:71:c2:9a:c5:2b:15:44:4f:36:3d: cb:68:b1:2f:be:34:58:77:b2:4b:59:16:04:4b:87:3e:24:12: 82:88:49:22:6b:71:49:f3:21:d0:de:80:33:24:95:a4:6b:cb: d1:e7:80:71:ca:68:b1:f1:6e:d1:fc:a9:8e:f4:e8:e3:3e:e6: 72:52:1e:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfrIC+Ca389F773XaD7kupKozHHAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEwMTE1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWMzZjk1YzhmN2E2OGNjZWQ3N2E1MjkzOTZhZmMwNWQ2 ZjBkMmJkZmEzYjFiZTllMmU4MDgzYjE0ZjNiNmMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGulcXFO4++binKrwshrurToRJYTaL7AAaSTVrUs0ZNufx o9OEfJbjlal5CAnDpLJ5wODNJ0R37pe+KoiOYi//U7oyOHnAy/SxU4kYSoG6e3fx FBBcGgsnT93toXozNd452Hc62Xj4MZOkId+tx6F4XKcM8L1U2TxpF3njNTa8m28g zpmgLYQtDYGzrO9yX3f9fs0lizcPez9aCU0G+lrO4JyspE2CqATmWbC/xqCPGkOs sr7Iqta7O0b+nOY2rI6XM2q+Zn8GlTfdTxuIAzNMqQqrm0+zA8gtiwe7wTxjScpG rzY89shKtE5MXR8y8Dzd3gMdE+ecvaQ2v7XXx50RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMwdgPuqOkAEYNr1QfUZ2mf5TdZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwZGFkZGNlLTY1MDYtNDU0OC1hYmNhLTQxMTBjZGRiNWVjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2MQwDQYJKoZIhvcNAQELBQADggEBAHcJB47AzXdkmKZP9ZZEHcFtTXED xTkX7yjTinUkXYaXVKB6GxlaAziV6B/AWlDNOYrLT/g5rVrppOvu+v1dfFE42o4V daLS7Tastf5PrS34ozAG14ZxYdBvI7yLUmQMUcZX/3U5RyNROYW3kp5vFIaHphrj JW87Cq7FMmNMvEnAeqXA37o2WPVkqY0POJznpZ6uYdydynraAZxKKPrV+/THYSOs ntVNnOJRt/S4QYYG1SYSE96i87seW8OvccKaxSsVRE82PctosS++NFh3sktZFgRL hz4kEoKISSJrcUnzIdDegDMklaRry9HngHHKaLHxbtH8qY706OM+5nJSHuU= -----END CERTIFICATE-----Generated at Wed May 13 03:39:55 2026 by rpki-client