$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa File: 4c1bc95a-5d0c-487e-bf1d-56809964528a.roa (raw, json) Hash identifier: wn8gAnyBBL7bj9lErZfq+dJlQoOFgTc6cXki0CnRKM4= Subject key identifier: 4D:C5:6E:01:43:37:8B:DB:9A:A8:95:76:86:8A:DC:ED:8A:CE:2B:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17F6A49C7493670D821646A407B31D3485F0C5FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa Signing time: Tue 05 May 2026 00:40:36 +0000 ROA not before: Tue 05 May 2026 00:40:36 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 184.73.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:f6:a4:9c:74:93:67:0d:82:16:46:a4:07:b3:1d:34:85:f0:c5:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:40:36 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=d45ebc0147c93cdf0dc7590124f9f6fe33a81a6cd1d5654939e5395d12e701cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:af:db:f0:ba:bf:2c:ac:4e:53:8d:a1:96:df: 38:77:9d:c2:c4:cd:8b:bd:38:65:02:91:98:10:a0: bc:6a:92:c9:c6:28:0d:fc:cc:3e:91:f6:4a:c1:20: 04:78:8d:a4:66:e3:87:1c:e9:5c:1e:8b:ac:2b:e4: f0:66:33:64:ad:a5:c5:9f:75:39:a8:13:dc:ed:78: ad:2a:29:c6:d6:93:6f:2f:78:8f:41:52:a3:02:da: bc:e6:3d:de:7c:57:40:76:5f:29:15:7b:6d:35:6b: 2d:40:51:2b:ea:90:63:d3:8f:00:ab:c9:37:40:0c: 40:69:72:ea:7e:70:65:24:a3:7e:ff:26:30:3b:dc: 2d:26:77:e2:b1:fe:b7:1b:20:a5:6c:5d:9f:b8:06: 25:e2:7e:fc:0b:ef:04:c3:4a:dd:ee:6a:e4:6d:7c: 6b:2d:4d:d5:29:91:42:3c:e6:7d:f0:8b:23:46:55: 83:66:09:49:dc:4a:25:6e:36:5a:bc:dd:f7:ac:22: 09:cb:44:18:3f:8a:ee:e8:a2:8f:a1:19:18:ec:cc: 66:79:19:3d:d9:48:d7:64:cd:7f:0a:17:0c:ba:89: ea:b5:a6:8d:ec:73:bf:d5:41:6a:f7:2c:88:09:75: 0f:44:d3:86:cc:55:59:20:40:b6:80:0e:31:7b:d0: 19:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:C5:6E:01:43:37:8B:DB:9A:A8:95:76:86:8A:DC:ED:8A:CE:2B:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c1bc95a-5d0c-487e-bf1d-56809964528a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.144.0/21 Signature Algorithm: sha256WithRSAEncryption 1d:50:e0:32:6e:49:ba:ee:e4:40:db:34:74:1c:67:16:7b:e1: 24:a8:2e:2d:18:35:1c:af:53:36:cb:15:ac:a7:70:79:75:e5: e3:c3:f5:9f:92:c1:29:50:c0:db:36:14:97:5d:c6:9a:91:4a: 08:4c:b7:b1:2e:f3:79:3f:d3:ae:18:59:d9:18:32:44:57:18: f9:dc:13:4c:4d:62:08:37:27:1c:53:10:df:cd:38:cd:9f:f2: 55:c4:b0:39:68:08:df:61:16:de:91:f3:30:01:0d:e4:fa:ee: ba:5c:d4:d7:bd:51:a5:f1:0f:84:6b:cf:b9:e1:e0:fd:1b:08: 54:d2:61:83:ab:b6:1f:f3:b5:c3:c5:85:8e:32:33:65:da:69: b9:27:be:8c:74:56:81:58:80:92:31:ad:75:98:12:89:b5:20: a0:0f:b2:ee:8f:8b:57:1f:18:66:97:32:5f:e3:0c:26:67:2a: 02:f1:75:22:dd:24:f5:0f:2b:d4:1d:48:b8:f7:6f:87:62:1a: 46:b1:d0:b9:01:81:5f:40:d0:47:b7:90:d9:88:1d:da:21:0e: e4:ca:6f:58:bd:90:78:ad:b7:81:22:f5:4e:41:cf:88:6f:53: 07:e3:f2:e8:67:78:de:b1:bf:cb:d8:41:6e:61:41:82:3d:cf: af:aa:11:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF/aknHSTZw2CFkakB7MdNIXwxf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MDM2WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDVlYmMwMTQ3YzkzY2RmMGRjNzU5MDEyNGY5ZjZmZTMz YTgxYTZjZDFkNTY1NDkzOWU1Mzk1ZDEyZTcwMWNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDr9vwur8srE5TjaGW3zh3ncLEzYu9OGUCkZgQoLxqksnG KA38zD6R9krBIAR4jaRm44cc6Vwei6wr5PBmM2StpcWfdTmoE9zteK0qKcbWk28v eI9BUqMC2rzmPd58V0B2XykVe201ay1AUSvqkGPTjwCryTdADEBpcup+cGUko37/ JjA73C0md+Kx/rcbIKVsXZ+4BiXifvwL7wTDSt3uauRtfGstTdUpkUI85n3wiyNG VYNmCUncSiVuNlq83fesIgnLRBg/iu7ooo+hGRjszGZ5GT3ZSNdkzX8KFwy6ieq1 po3sc7/VQWr3LIgJdQ9E04bMVVkgQLaADjF70BljAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTcVuAUM3i9uaqJV2horc7YrOK6swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjMWJjOTVhLTVkMGMtNDg3ZS1iZjFkLTU2ODA5OTY0NTI4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZAwDQYJKoZIhvcNAQELBQADggEBAB1Q4DJuSbru5EDbNHQcZxZ74SSo Li0YNRyvUzbLFayncHl15ePD9Z+SwSlQwNs2FJddxpqRSghMt7Eu83k/064YWdkY MkRXGPncE0xNYgg3JxxTEN/NOM2f8lXEsDloCN9hFt6R8zABDeT67rpc1Ne9UaXx D4Rrz7nh4P0bCFTSYYOrth/ztcPFhY4yM2Xaabknvox0VoFYgJIxrXWYEom1IKAP su6Pi1cfGGaXMl/jDCZnKgLxdSLdJPUPK9QdSLj3b4diGkax0LkBgV9A0Ee3kNmI HdohDuTKb1i9kHitt4Ei9U5Bz4hvUwfj8uhneN6xv8vYQW5hQYI9z6+qEW4= -----END CERTIFICATE-----Generated at Wed May 13 01:21:09 2026 by rpki-client