$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa File: 52248f94-30ea-4ecd-abe4-da5a8409a81b.roa (raw, json) Hash identifier: pchcoU6+CebeWEoEdM/mDDhVFQXfzxpotshsBKlu6ZY= Subject key identifier: 5A:D6:52:B3:4A:A0:A2:AF:0C:2E:AC:5A:4E:25:26:01:41:A7:C8:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 738C2479FB7D71AB4F57FAFCCC1FECA607D569C2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa Signing time: Sat 09 May 2026 00:31:39 +0000 ROA not before: Sat 09 May 2026 00:31:39 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.146.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:8c:24:79:fb:7d:71:ab:4f:57:fa:fc:cc:1f:ec:a6:07:d5:69:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:31:39 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=dbbe96c88c498307921280659fd544a9badc76db454211e5e5c07f76b6bee57d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6f:62:13:58:0e:a7:e7:3f:5c:69:2e:61:51: 9a:07:b9:ce:47:e5:6c:ca:92:3e:83:f5:39:67:43: 91:2e:69:f5:05:9b:87:d4:12:19:1e:01:1a:71:2c: a4:4c:c2:cc:56:e3:c4:6e:44:ec:cc:6c:c4:27:16: b0:2b:3c:f2:d4:c1:53:2e:aa:85:37:d1:e5:2d:53: 36:e0:e3:c1:f0:b5:c3:a1:de:ff:0e:11:cc:84:69: dc:b5:4a:0a:da:07:5d:29:cf:6e:a0:eb:05:89:0c: e5:73:5a:9c:b7:6e:ac:c8:c6:aa:02:b3:60:dd:b6: 53:7a:3e:89:69:24:ca:44:25:6e:2c:f7:13:e9:b4: e1:16:1b:b6:ff:c1:01:6a:72:67:de:59:2b:7e:4a: 58:31:2f:74:58:3b:3a:a9:37:2d:86:ed:ee:69:c8: 14:f4:37:1b:c9:e5:e5:fb:85:e2:63:04:9a:60:75: 64:3f:bc:31:6b:d8:69:1b:70:3e:ec:8f:5f:e4:b6: ff:47:22:0b:69:e8:81:95:87:3c:93:08:d8:76:c7: 02:88:08:7c:d3:10:45:a6:e2:a8:25:bb:e4:98:34: c0:f1:bb:c9:32:32:a0:6e:c0:bd:48:8e:e9:de:15: 75:06:40:f8:9d:88:a6:63:a3:b5:6c:0e:64:73:7f: f3:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:D6:52:B3:4A:A0:A2:AF:0C:2E:AC:5A:4E:25:26:01:41:A7:C8:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52248f94-30ea-4ecd-abe4-da5a8409a81b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.146.0/23 Signature Algorithm: sha256WithRSAEncryption 0d:2a:e7:da:3c:dc:e3:04:0f:3e:f3:50:42:ff:ec:1e:d5:43: 05:97:9b:89:d4:8c:d5:e5:9d:2a:0e:c1:b3:ce:17:46:23:66: d4:21:e9:6c:d1:07:7d:f5:30:39:1f:ce:c4:7c:d2:f4:b0:d8: e9:d8:d6:5b:f6:20:dd:4d:77:30:f4:e2:7a:5d:58:40:13:3b: 8b:e4:da:e0:3e:f8:38:45:b9:5e:a9:3d:14:10:4d:f3:f1:97: 05:bc:c6:67:39:cf:04:75:e1:1d:82:08:95:84:32:ec:a4:bb: 36:ba:10:d1:cd:dd:89:71:91:84:30:df:d1:10:bf:b0:da:d0: 6f:87:41:83:98:23:65:7c:79:09:82:78:87:9f:17:88:bd:e2: bf:b0:40:8c:60:40:98:94:3d:77:f0:b2:9f:79:11:0c:72:bd: b0:b4:aa:98:ac:0d:c9:07:9a:8e:ba:ef:a1:e1:66:65:fc:11: 04:6e:c0:a6:2c:51:38:8a:4f:4e:be:c5:6b:ee:cf:c5:9a:73: 07:32:01:22:a0:61:f4:45:75:72:f8:89:ec:4c:21:10:4d:c6: 48:42:33:88:f0:8d:7d:4e:3b:5c:72:be:72:eb:b3:23:48:e7: b5:54:cd:8a:74:14:0b:8b:f7:72:4b:1b:73:e9:0b:b8:9f:15: b4:12:4b:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc4wkeft9catPV/r8zB/spgfVacIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA5MDAzMTM5WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYmJlOTZjODhjNDk4MzA3OTIxMjgwNjU5ZmQ1NDRhOWJh ZGM3NmRiNDU0MjExZTVlNWMwN2Y3NmI2YmVlNTdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEb2ITWA6n5z9caS5hUZoHuc5H5WzKkj6D9TlnQ5EuafUF m4fUEhkeARpxLKRMwsxW48RuROzMbMQnFrArPPLUwVMuqoU30eUtUzbg48HwtcOh 3v8OEcyEady1SgraB10pz26g6wWJDOVzWpy3bqzIxqoCs2DdtlN6PolpJMpEJW4s 9xPptOEWG7b/wQFqcmfeWSt+SlgxL3RYOzqpNy2G7e5pyBT0NxvJ5eX7heJjBJpg dWQ/vDFr2GkbcD7sj1/ktv9HIgtp6IGVhzyTCNh2xwKICHzTEEWm4qglu+SYNMDx u8kyMqBuwL1IjuneFXUGQPidiKZjo7VsDmRzf/NRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWtZSs0qgoq8MLqxaTiUmAUGnyJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMjQ4Zjk0LTMwZWEtNGVjZC1hYmU0LWRhNWE4NDA5YTgxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAJIwDQYJKoZIhvcNAQELBQADggEBAA0q59o83OMEDz7zUEL/7B7VQwWX m4nUjNXlnSoOwbPOF0YjZtQh6WzRB331MDkfzsR80vSw2OnY1lv2IN1NdzD04npd WEATO4vk2uA++DhFuV6pPRQQTfPxlwW8xmc5zwR14R2CCJWEMuykuza6ENHN3Ylx kYQw39EQv7Da0G+HQYOYI2V8eQmCeIefF4i94r+wQIxgQJiUPXfwsp95EQxyvbC0 qpisDckHmo6676HhZmX8EQRuwKYsUTiKT06+xWvuz8WacwcyASKgYfRFdXL4iexM IRBNxkhCM4jwjX1OO1xyvnLrsyNI57VUzYp0FAuL93JLG3PpC7ifFbQSS50= -----END CERTIFICATE-----Generated at Tue May 12 21:58:20 2026 by rpki-client