$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa File: 4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa (raw, json) Hash identifier: hgFm2gpRt7e9llg5qTIliTlh44WK0XElAEQ+kQwe6bI= Subject key identifier: 27:98:5E:5A:59:A2:A4:47:31:1C:25:1B:E3:41:FD:16:9E:76:07:3C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56739EE895E8632896CF03C0EF34044F0FADFA99 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa Signing time: Wed 06 May 2026 00:21:32 +0000 ROA not before: Wed 06 May 2026 00:21:32 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 157.52.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:73:9e:e8:95:e8:63:28:96:cf:03:c0:ef:34:04:4f:0f:ad:fa:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:21:32 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=f23e40c4eaf7b56ae1c7fcb94931f2ca58e020c5c975b3322ba92193d5f351c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7b:27:9f:09:b7:13:08:18:d5:de:ee:cb:7f: 26:82:32:89:f8:33:e4:4a:40:ef:a0:22:0d:90:5b: b0:d1:51:42:5d:6d:7a:5d:e3:c3:26:a9:d1:4d:b3: e5:18:25:65:00:45:bb:76:4c:39:fd:1e:29:ac:7b: d8:8c:5a:a2:c8:02:d8:f5:12:a4:57:48:57:fe:ca: 57:b6:c4:4f:92:71:4b:85:3f:42:f9:e2:8a:9c:51: 4a:0c:10:50:76:4c:b0:e0:ad:e0:72:e1:05:70:e1: e3:c4:10:fb:10:45:06:84:79:4a:77:19:c4:81:46: dc:7c:68:55:34:17:8d:47:58:b2:d9:0b:33:4b:a1: 97:dc:94:f6:2a:6f:e4:18:73:57:d8:5b:82:39:bb: f1:97:46:1a:30:41:fd:c0:6a:6e:a0:12:01:fa:ca: 4d:0f:7a:cb:57:47:7a:82:0d:47:ac:8a:ba:6c:79: a7:9f:17:4d:a5:37:c5:ca:71:dd:1b:73:1c:e2:44: 87:9d:9c:83:fd:99:f0:05:d6:6c:da:ee:06:fd:64: ea:e3:4f:c6:89:5c:9c:fa:b2:db:b3:89:0a:e6:da: bc:dc:6d:ec:23:32:37:91:27:94:09:56:74:9e:38: bd:a5:74:09:d6:a9:95:0b:af:38:3b:7a:0e:03:b9: 4e:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:98:5E:5A:59:A2:A4:47:31:1C:25:1B:E3:41:FD:16:9E:76:07:3C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4a3b8fad-9258-46d6-b69b-f0193aa2914e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.52.128.0/17 Signature Algorithm: sha256WithRSAEncryption a7:a4:1d:42:ab:d5:95:e1:fa:9d:71:94:45:cd:28:ec:18:9f: c2:fe:5b:13:ae:18:37:58:b3:e1:85:ae:3e:26:a6:70:ff:c9: 3e:c7:e0:88:f3:54:36:24:f2:ff:8a:77:25:32:94:7d:2d:5a: bb:94:79:f0:d0:0a:30:c5:d1:aa:60:3c:6e:24:32:37:dd:25: 94:ea:5f:dd:ea:a3:df:74:3f:54:df:ad:b7:b9:cc:ec:d6:c5: 9c:2c:b0:48:94:f6:3c:a1:39:00:e2:f7:74:33:97:9b:8a:41: 28:85:64:d3:7b:49:49:74:ca:3b:c0:f8:8b:3a:17:e0:61:01: 5c:9b:aa:b2:b8:b9:6e:97:7b:d0:8f:4f:b8:7d:17:88:61:d8: af:fa:9b:e5:d3:1a:cb:b5:f9:ec:6a:3a:3a:c8:eb:07:dc:fb: 6d:2d:b0:20:9a:7e:e9:3d:b3:35:4b:a4:42:a8:87:fe:2e:56: 9d:63:cd:e0:c0:b5:56:01:93:8e:20:9c:b3:8e:d4:b9:4f:89: 18:f8:e1:45:cd:7f:38:ea:98:2c:fd:c8:6d:f7:28:fe:8f:68: c9:fd:29:57:dd:44:f8:23:f9:d3:93:f3:10:f2:42:dc:d2:44: 35:f1:43:9d:01:bf:dc:79:a6:cf:d5:b7:01:33:1c:b1:52:55: 71:44:73:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVnOe6JXoYyiWzwPA7zQETw+t+pkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMTMyWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjNlNDBjNGVhZjdiNTZhZTFjN2ZjYjk0OTMxZjJjYTU4 ZTAyMGM1Yzk3NWIzMzIyYmE5MjE5M2Q1ZjM1MWMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5eyefCbcTCBjV3u7LfyaCMon4M+RKQO+gIg2QW7DRUUJd bXpd48MmqdFNs+UYJWUARbt2TDn9Himse9iMWqLIAtj1EqRXSFf+yle2xE+ScUuF P0L54oqcUUoMEFB2TLDgreBy4QVw4ePEEPsQRQaEeUp3GcSBRtx8aFU0F41HWLLZ CzNLoZfclPYqb+QYc1fYW4I5u/GXRhowQf3Aam6gEgH6yk0PestXR3qCDUesirps eaefF02lN8XKcd0bcxziRIednIP9mfAF1mza7gb9ZOrjT8aJXJz6stuziQrm2rzc bewjMjeRJ5QJVnSeOL2ldAnWqZULrzg7eg4DuU73AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJ5heWlmipEcxHCUb40H9Fp52BzwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRhM2I4ZmFkLTkyNTgtNDZkNi1iNjliLWYwMTkzYWEyOTE0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAedNIAwDQYJKoZIhvcNAQELBQADggEBAKekHUKr1ZXh+p1xlEXNKOwYn8L+ WxOuGDdYs+GFrj4mpnD/yT7H4IjzVDYk8v+KdyUylH0tWruUefDQCjDF0apgPG4k MjfdJZTqX93qo990P1Tfrbe5zOzWxZwssEiU9jyhOQDi93Qzl5uKQSiFZNN7SUl0 yjvA+Is6F+BhAVybqrK4uW6Xe9CPT7h9F4hh2K/6m+XTGsu1+exqOjrI6wfc+20t sCCafuk9szVLpEKoh/4uVp1jzeDAtVYBk44gnLOO1LlPiRj44UXNfzjqmCz9yG33 KP6PaMn9KVfdRPgj+dOT8xDyQtzSRDXxQ50Bv9x5ps/VtwEzHLFSVXFEc/M= -----END CERTIFICATE-----Generated at Wed May 13 03:09:01 2026 by rpki-client