$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3112a797-d560-40be-8b71-e2eefd7e01b2.roa File: 3112a797-d560-40be-8b71-e2eefd7e01b2.roa (raw, json) Hash identifier: 2cYGzDrzZsEclvQ5nZBa+eIpQvwEQ0Xf+L03cAMm6HM= Subject key identifier: 6C:6A:EA:6B:86:25:DC:FD:DE:53:5B:F5:A7:EC:1F:A1:8C:6A:D3:38 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 646882E310AFF9B784B244715DD8DE57F4ADE3EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3112a797-d560-40be-8b71-e2eefd7e01b2.roa Signing time: Fri 08 May 2026 00:00:11 +0000 ROA not before: Fri 08 May 2026 00:00:11 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 75.47.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:68:82:e3:10:af:f9:b7:84:b2:44:71:5d:d8:de:57:f4:ad:e3:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:00:11 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=2fb615bf5609bfff8ddfd797286edcaa1a06e2351cb5f9ed7324c6732f3574d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a8:28:2b:c3:12:85:75:84:0d:c1:60:d5:5a: 92:12:98:0e:9b:29:19:a2:6e:0b:b9:eb:77:15:8f: dd:b5:55:e4:37:ef:ba:5c:5a:27:90:09:21:a5:53: e3:42:f4:4f:ec:07:bc:95:f7:60:95:60:4d:73:52: 8b:2f:06:3c:32:df:c6:6a:f7:ec:52:ab:96:48:26: 58:c9:d9:09:2d:56:dc:c5:ec:84:5f:0f:fd:24:a3: 96:dd:b5:a6:74:54:e2:dc:9b:5b:ee:63:da:dd:d3: 06:ac:3a:ab:17:87:ce:fb:4f:2f:52:73:57:2a:47: b1:19:ae:ea:eb:76:e9:12:14:4f:6a:78:95:e9:71: f8:63:94:00:a4:94:00:5c:36:2f:03:4e:72:99:7b: 94:68:fc:98:07:ea:0c:ff:55:25:f5:78:38:72:1d: f1:98:99:12:d2:43:46:63:48:c8:a4:25:91:34:db: 3b:7e:26:e9:f1:83:10:de:cd:9b:b8:5d:3b:56:eb: 0f:d5:da:0d:7a:6d:c8:2c:4f:f8:2e:75:41:5b:cc: 15:c2:66:5d:b0:dc:82:1c:20:42:a4:41:6b:e1:c4: f6:9d:95:cd:7f:a6:12:77:fb:41:e7:9a:42:c8:28: eb:bb:a5:30:02:7d:5e:75:ec:ef:1d:57:fa:cb:b8: ea:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:6A:EA:6B:86:25:DC:FD:DE:53:5B:F5:A7:EC:1F:A1:8C:6A:D3:38 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3112a797-d560-40be-8b71-e2eefd7e01b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.47.0.0/18 Signature Algorithm: sha256WithRSAEncryption c2:f6:29:d4:e2:cb:e9:22:c9:19:5a:d2:d9:af:c3:e9:68:2e: db:81:19:8d:c0:04:44:c2:9d:79:87:3f:7f:66:f3:ec:6f:6f: 3a:b2:94:68:1f:2c:91:69:30:97:7b:36:09:23:4e:ed:34:f6: be:2d:4b:5a:9e:7b:27:a2:d8:5e:f5:4c:0c:dc:ee:57:6c:15: 74:e4:cf:db:6d:bc:24:6e:5e:67:cf:8b:a2:cb:cb:d6:68:a9: d8:81:ff:1c:7f:b1:e6:9d:66:89:10:f3:8d:86:aa:a6:86:13: 2b:86:01:1c:b2:52:53:90:17:d8:ea:91:77:1a:3c:5b:44:77: d2:8c:d3:f3:62:68:26:0b:32:53:76:1d:a4:cc:9f:f1:ba:55: ab:45:26:5d:2f:84:5e:ab:a4:2f:4e:99:c7:7c:09:a5:4d:86: bc:03:16:f1:34:82:c2:04:7e:37:46:6d:3b:e8:7c:dd:30:c6: eb:ae:3a:81:80:2f:97:b7:96:80:ba:f4:a9:06:d7:16:87:a4: 72:30:76:97:ce:c6:c4:75:00:0e:a2:c6:3b:94:05:55:68:13: 0a:4e:54:50:19:55:32:0b:09:31:4b:de:6b:31:6b:17:c2:00: 4e:ab:c8:ef:f6:95:93:86:70:26:f0:07:dc:c1:58:7b:33:9e: d8:51:2f:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZGiC4xCv+beEskRxXdjeV/St4+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA4MDAwMDExWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZmI2MTViZjU2MDliZmZmOGRkZmQ3OTcyODZlZGNhYTFh MDZlMjM1MWNiNWY5ZWQ3MzI0YzY3MzJmMzU3NGQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+qCgrwxKFdYQNwWDVWpISmA6bKRmibgu563cVj921VeQ3 77pcWieQCSGlU+NC9E/sB7yV92CVYE1zUosvBjwy38Zq9+xSq5ZIJljJ2QktVtzF 7IRfD/0ko5bdtaZ0VOLcm1vuY9rd0wasOqsXh877Ty9Sc1cqR7EZrurrdukSFE9q eJXpcfhjlACklABcNi8DTnKZe5Ro/JgH6gz/VSX1eDhyHfGYmRLSQ0ZjSMikJZE0 2zt+JunxgxDezZu4XTtW6w/V2g16bcgsT/gudUFbzBXCZl2w3IIcIEKkQWvhxPad lc1/phJ3+0HnmkLIKOu7pTACfV517O8dV/rLuOqDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbGrqa4Yl3P3eU1v1p+wfoYxq0zgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxMTJhNzk3LWQ1NjAtNDBiZS04YjcxLWUyZWVmZDdlMDFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLLwAwDQYJKoZIhvcNAQELBQADggEBAML2KdTiy+kiyRla0tmvw+loLtuB GY3ABETCnXmHP39m8+xvbzqylGgfLJFpMJd7NgkjTu009r4tS1qeeyei2F71TAzc 7ldsFXTkz9ttvCRuXmfPi6LLy9ZoqdiB/xx/seadZokQ842GqqaGEyuGARyyUlOQ F9jqkXcaPFtEd9KM0/NiaCYLMlN2HaTMn/G6VatFJl0vhF6rpC9Omcd8CaVNhrwD FvE0gsIEfjdGbTvofN0wxuuuOoGAL5e3loC69KkG1xaHpHIwdpfOxsR1AA6ixjuU BVVoEwpOVFAZVTILCTFL3msxaxfCAE6ryO/2lZOGcCbwB9zBWHsznthRL58= -----END CERTIFICATE-----Generated at Tue May 12 23:33:55 2026 by rpki-client