$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43670a2e-057d-42dc-92c9-04d175dba99a.roa File: 43670a2e-057d-42dc-92c9-04d175dba99a.roa (raw, json) Hash identifier: c84K4a5NEQ7xCrT38RpgbHaTUOUOsFLZrkOlXwZXUjM= Subject key identifier: 66:74:77:DD:B1:BA:C9:32:15:7C:C0:B0:16:F6:22:5F:DC:29:99:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CEDA03650FE3031304D7159BFB4F99478A799C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43670a2e-057d-42dc-92c9-04d175dba99a.roa Signing time: Tue 12 May 2026 01:00:54 +0000 ROA not before: Tue 12 May 2026 01:00:54 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.56.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:ed:a0:36:50:fe:30:31:30:4d:71:59:bf:b4:f9:94:78:a7:99:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:00:54 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=5a0ad7bcc8b42825c5fef914192ac1fa72ecf2dd3c9c40a7c5a368d23b26cee4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:b3:d9:86:f2:2d:25:60:74:4a:14:6c:1e:67: b2:80:62:59:02:5a:07:a9:ba:a2:55:2c:b5:36:98: 70:94:da:e0:a0:e5:8f:69:f4:6c:9c:9d:e3:7e:b0: 37:29:2c:4f:89:4e:cf:f1:0f:42:8e:be:66:ce:5f: 5d:98:3f:8b:f9:10:5d:23:ed:d5:33:d8:12:1d:f4: f3:c4:b4:39:55:4f:45:07:46:99:9e:73:1d:9e:2a: 94:dd:b4:f3:03:b2:1f:0c:37:7f:b8:8d:4a:9a:2e: c0:0b:8d:97:42:7e:93:bd:0e:ce:33:71:28:47:0f: f0:c5:93:f1:79:4e:18:3c:cf:06:c0:ad:3f:1f:af: bd:5c:72:2a:a3:04:61:34:36:89:6a:bc:9f:99:34: 23:e9:ad:c3:36:e5:4f:3d:3d:91:2e:56:ee:08:6d: a6:20:f9:d9:e9:c0:47:8c:c3:cb:6f:89:01:f1:e0: ac:56:86:58:74:04:1e:f1:2e:56:89:3d:14:07:8a: c8:4b:4c:c0:36:bd:67:b3:5c:9f:ba:de:e7:6e:ed: 8b:be:ce:54:87:e7:b8:17:3e:3b:2d:72:38:84:c0: 5f:02:45:9a:04:e7:f4:1a:72:40:63:7b:ed:ca:ad: 05:ee:4d:40:95:8f:29:21:ff:e8:0f:54:e6:04:06: 93:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:74:77:DD:B1:BA:C9:32:15:7C:C0:B0:16:F6:22:5F:DC:29:99:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43670a2e-057d-42dc-92c9-04d175dba99a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.56.0/24 Signature Algorithm: sha256WithRSAEncryption 1a:1c:e3:e7:b6:a0:a9:31:28:2f:59:28:c2:4d:dd:da:6c:20: 5c:43:ac:39:0f:e5:a5:99:bb:64:7b:a1:0d:9c:fd:4d:35:8e: d6:27:98:12:91:4a:05:09:14:08:f0:2d:66:8d:4a:e6:ad:d9: df:b8:af:dd:bb:55:44:98:64:98:b4:19:62:d7:a8:32:8a:a4: 74:98:8b:d8:5e:f3:04:e2:e6:c2:96:5b:2c:84:e6:3b:16:50: 62:ce:57:9d:b3:ec:c8:3c:cd:63:62:84:f7:39:a0:8e:f2:53: ca:c2:f7:05:70:fe:68:72:f6:db:3d:5f:08:5e:25:e6:63:bf: d6:34:d9:3f:31:43:82:b6:ab:45:b4:06:7e:84:eb:b2:2a:f2: 9b:ef:34:a2:1a:2e:66:40:8b:d3:a9:ff:7a:09:cd:55:55:87: d5:bd:36:7d:53:b9:fb:cc:a8:06:11:a6:47:a1:db:98:34:b7: 81:8f:a2:25:f6:a3:19:fd:b4:3d:ff:d9:2c:bd:f2:3c:9d:9f: 23:ca:08:c8:bf:76:47:a2:24:6a:0b:bf:0c:2a:07:9d:15:94: b0:0c:c7:86:11:8c:24:de:9b:4d:e1:31:9b:c8:07:05:34:1f: b3:4a:f6:24:1f:26:90:73:70:fd:90:0f:3c:b4:79:cd:dd:64: 95:0c:e6:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDO2gNlD+MDEwTXFZv7T5lHinmcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEwMDU0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTBhZDdiY2M4YjQyODI1YzVmZWY5MTQxOTJhYzFmYTcy ZWNmMmRkM2M5YzQwYTdjNWEzNjhkMjNiMjZjZWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPs9mG8i0lYHRKFGweZ7KAYlkCWgepuqJVLLU2mHCU2uCg 5Y9p9GycneN+sDcpLE+JTs/xD0KOvmbOX12YP4v5EF0j7dUz2BId9PPEtDlVT0UH Rpmecx2eKpTdtPMDsh8MN3+4jUqaLsALjZdCfpO9Ds4zcShHD/DFk/F5Thg8zwbA rT8fr71cciqjBGE0NolqvJ+ZNCPprcM25U89PZEuVu4IbaYg+dnpwEeMw8tviQHx 4KxWhlh0BB7xLlaJPRQHishLTMA2vWezXJ+63udu7Yu+zlSH57gXPjstcjiEwF8C RZoE5/QackBje+3KrQXuTUCVjykh/+gPVOYEBpPPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZnR33bG6yTIVfMCwFvYiX9wpmb4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNjcwYTJlLTA1N2QtNDJkYy05MmM5LTA0ZDE3NWRiYTk5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsDgwDQYJKoZIhvcNAQELBQADggEBABoc4+e2oKkxKC9ZKMJN3dpsIFxD rDkP5aWZu2R7oQ2c/U01jtYnmBKRSgUJFAjwLWaNSuat2d+4r927VUSYZJi0GWLX qDKKpHSYi9he8wTi5sKWWyyE5jsWUGLOV52z7Mg8zWNihPc5oI7yU8rC9wVw/mhy 9ts9XwheJeZjv9Y02T8xQ4K2q0W0Bn6E67Iq8pvvNKIaLmZAi9Op/3oJzVVVh9W9 Nn1TufvMqAYRpkeh25g0t4GPoiX2oxn9tD3/2Sy98jydnyPKCMi/dkeiJGoLvwwq B50VlLAMx4YRjCTem03hMZvIBwU0H7NK9iQfJpBzcP2QDzy0ec3dZJUM5u8= -----END CERTIFICATE-----Generated at Tue May 12 21:52:18 2026 by rpki-client