$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/382ea034-1760-4f7d-9696-46829dbcbd76.roa File: 382ea034-1760-4f7d-9696-46829dbcbd76.roa (raw, json) Hash identifier: 4hA5Vzj53fqfLpW2nqTYzFPiSRjFMaWouY4gFbmX2Xc= Subject key identifier: 01:8A:F9:E4:83:FE:13:3E:B4:25:B7:0D:F9:20:C9:DE:2A:70:66:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35C77B4BD2A62E697BE70BA191FA7E537278FB61 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/382ea034-1760-4f7d-9696-46829dbcbd76.roa Signing time: Tue 12 May 2026 01:11:44 +0000 ROA not before: Tue 12 May 2026 01:11:44 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.107.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:c7:7b:4b:d2:a6:2e:69:7b:e7:0b:a1:91:fa:7e:53:72:78:fb:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:11:44 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=97a0b655c52c74473435933146853dfff777e0b4e00830d9498976829bbbcf58, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:65:3b:7e:5e:4d:85:ec:40:a8:cc:5c:60:db: 3a:16:69:f8:69:71:ef:ba:d1:97:72:27:35:7b:73: 08:94:4d:5e:94:02:8d:d8:e1:86:01:a6:6c:ed:b2: 3e:eb:f7:ee:ec:24:75:4f:0e:cb:be:34:12:a1:47: 82:65:07:23:a2:8c:21:ef:d0:64:25:4d:20:ce:05: f1:3e:3b:f7:15:e1:c4:d1:65:51:63:3c:2d:4f:0d: 9c:6a:d8:81:3a:17:a2:ce:8b:e3:fe:20:b1:6d:43: 4c:b5:5a:80:fa:8d:bc:01:f2:76:19:38:b9:61:9b: fa:89:30:2a:12:42:7a:7f:57:a4:44:5c:84:47:89: 69:60:13:7b:cd:28:83:98:a6:51:c9:4a:6e:ed:de: 81:52:58:49:84:17:14:83:fb:27:93:96:f0:fb:ba: 22:37:cb:3f:99:bc:55:57:94:33:fd:2d:1e:14:70: 2c:7b:8d:37:a6:a1:e0:99:ba:e6:ad:3e:4b:e2:63: 25:33:b2:56:73:b4:7a:c3:9f:8d:18:9b:2c:29:8a: a2:18:fb:4e:0d:6b:30:cd:15:0b:2a:55:8c:92:f4: 20:a1:f7:12:3e:05:66:2b:c1:ff:79:cf:cb:84:10: cf:9d:2b:f0:41:8d:10:0b:87:93:60:ed:f6:4e:1a: 6b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:8A:F9:E4:83:FE:13:3E:B4:25:B7:0D:F9:20:C9:DE:2A:70:66:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/382ea034-1760-4f7d-9696-46829dbcbd76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.107.0/24 Signature Algorithm: sha256WithRSAEncryption 17:8c:2b:d8:99:42:82:9f:d6:ca:1e:d9:3f:d4:b0:6b:08:ec: a5:6e:b8:c3:d7:65:6c:d9:a3:a1:13:f0:be:f4:0e:1b:32:f4: 09:83:a4:67:e9:21:c5:45:2e:df:bc:b9:a8:16:99:ab:4c:02: e7:04:36:3e:ea:a1:72:c1:7f:33:dd:7b:85:09:b4:88:77:f4: 0f:49:79:2f:39:6e:35:38:41:47:19:bc:68:9e:43:a7:88:08: f6:ad:7b:c9:ea:bb:4a:01:ab:8c:5f:06:cc:a0:af:25:2f:22: e3:6f:b0:f3:94:10:ee:eb:81:8f:49:6c:56:01:bc:7c:e8:f4: 4a:6a:1c:58:9f:39:fe:0e:d0:38:2b:c7:5c:5f:55:c3:77:9f: b2:6a:1c:c2:25:47:cd:a6:f2:7f:aa:69:c9:92:96:c0:af:eb: d3:f8:f8:75:7a:97:c9:4b:f3:e2:da:c9:5d:f4:02:a1:d8:ed: 37:57:fe:9e:c4:5c:70:f0:f9:e8:34:1e:cc:5e:22:44:4a:1f: c4:51:73:1c:bc:34:dd:b0:58:d7:5d:6b:6d:1f:59:42:58:42: 93:d6:7d:7d:8d:16:25:0e:72:08:69:5b:9f:7a:4a:9d:aa:59: f7:a8:93:36:4e:a6:0f:dc:11:ae:74:cc:f9:19:6d:36:98:9f: 32:ba:89:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNcd7S9KmLml75wuhkfp+U3J4+2EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDExMTQ0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2EwYjY1NWM1MmM3NDQ3MzQzNTkzMzE0Njg1M2RmZmY3 NzdlMGI0ZTAwODMwZDk0OTg5NzY4MjliYmJjZjU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmZTt+Xk2F7ECozFxg2zoWafhpce+60ZdyJzV7cwiUTV6U Ao3Y4YYBpmztsj7r9+7sJHVPDsu+NBKhR4JlByOijCHv0GQlTSDOBfE+O/cV4cTR ZVFjPC1PDZxq2IE6F6LOi+P+ILFtQ0y1WoD6jbwB8nYZOLlhm/qJMCoSQnp/V6RE XIRHiWlgE3vNKIOYplHJSm7t3oFSWEmEFxSD+yeTlvD7uiI3yz+ZvFVXlDP9LR4U cCx7jTemoeCZuuatPkviYyUzslZztHrDn40YmywpiqIY+04NazDNFQsqVYyS9CCh 9xI+BWYrwf95z8uEEM+dK/BBjRALh5Ng7fZOGmuzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAYr55IP+Ez60JbcN+SDJ3ipwZsUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MmVhMDM0LTE3NjAtNGY3ZC05Njk2LTQ2ODI5ZGJjYmQ3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmGswDQYJKoZIhvcNAQELBQADggEBABeMK9iZQoKf1soe2T/UsGsI7KVu uMPXZWzZo6ET8L70Dhsy9AmDpGfpIcVFLt+8uagWmatMAucENj7qoXLBfzPde4UJ tIh39A9JeS85bjU4QUcZvGieQ6eICPate8nqu0oBq4xfBsygryUvIuNvsPOUEO7r gY9JbFYBvHzo9EpqHFifOf4O0Dgrx1xfVcN3n7JqHMIlR82m8n+qacmSlsCv69P4 +HV6l8lL8+LayV30AqHY7TdX/p7EXHDw+eg0HsxeIkRKH8RRcxy8NN2wWNdda20f WUJYQpPWfX2NFiUOcghpW596Sp2qWfeokzZOpg/cEa50zPkZbTaYnzK6icA= -----END CERTIFICATE-----Generated at Wed May 13 00:56:54 2026 by rpki-client