$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa File: 570db642-6bdc-4f5f-a286-d6a5418c1967.roa (raw, json) Hash identifier: Fk/gr/upxb70JRlS0azvmZwpllcgTJGJY7Tpi2w4keE= Subject key identifier: F1:66:56:7B:1B:C6:C8:19:44:33:A2:16:49:10:6F:6D:39:F6:34:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78C6BE211082A63E30B41B37C9ADFD5CC69122B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa Signing time: Wed 06 May 2026 00:20:07 +0000 ROA not before: Wed 06 May 2026 00:20:07 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 93.75.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:c6:be:21:10:82:a6:3e:30:b4:1b:37:c9:ad:fd:5c:c6:91:22:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:20:07 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=8934fe957864c2d1f6755cd571fdc864ea8675de7bd55cd04789d14c069a3cd7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:02:ae:66:ed:49:a0:59:6d:ae:aa:e8:b5:66: 69:ff:0a:f0:dc:ba:49:c5:49:71:3c:54:bd:c8:dc: 1e:cc:57:1e:c8:b3:ee:30:ea:fb:b2:5d:f6:be:e8: 57:36:7e:c8:53:64:95:2f:42:35:1b:4d:79:50:a1: c4:41:c8:5b:86:8d:54:fc:48:f0:c6:d4:fc:3c:32: 07:e0:35:3c:35:dd:ce:64:c6:c6:a6:e3:99:cf:9f: c0:4b:f3:7e:51:14:84:ef:e0:c4:06:07:1d:cb:e5: 1e:76:bf:68:80:3a:d5:0f:ad:6f:bd:a6:88:20:d1: bf:7d:b3:0b:1b:3e:87:4d:e3:60:2f:8c:1e:63:f6: 53:2b:c5:54:6e:2d:dc:c0:4e:1c:e7:aa:a2:51:9c: 93:69:e2:29:f3:81:06:2d:7f:2d:01:a2:12:d9:88: 90:42:8b:dd:0f:49:fa:0f:33:ac:68:ee:48:b2:00: 0d:c8:8c:4c:6a:19:e5:97:e5:06:b6:54:d5:e6:7f: 7c:ea:00:55:d4:99:c3:70:65:df:d6:a7:53:d2:ef: e0:34:0b:5d:1f:cf:9a:ea:29:54:da:20:84:e3:e4: 6f:78:6d:cd:ac:45:ac:3f:7f:ad:77:84:ab:13:ef: ca:88:2b:4f:7f:d2:42:82:44:62:f1:2c:46:4f:07: 82:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:66:56:7B:1B:C6:C8:19:44:33:A2:16:49:10:6F:6D:39:F6:34:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/570db642-6bdc-4f5f-a286-d6a5418c1967.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.75.0.0/16 Signature Algorithm: sha256WithRSAEncryption 02:02:b2:f3:ab:23:62:62:2b:d3:6e:bc:bf:10:88:e9:dc:08: 8f:de:96:ac:c5:72:b6:6e:81:6d:30:b7:ab:c0:1d:48:ab:c4: e2:98:49:9f:30:c4:1b:a9:cb:04:5f:57:03:75:28:09:15:e1: d0:d6:57:99:24:af:de:09:38:ba:7b:fe:d6:5e:e3:f7:bf:fa: c8:c8:c8:95:b6:eb:5e:51:54:ba:e7:dd:da:2a:87:ab:98:1b: 08:67:8e:e8:87:39:26:f9:e8:c9:87:34:79:c2:2d:d9:fa:c5: 5b:7f:c9:85:ba:db:7a:da:b3:7b:fa:e7:d6:88:81:a8:b9:c8: ff:9f:b7:6d:a6:5d:78:a8:1d:6d:bb:f4:36:d1:8a:a2:c4:76: 13:09:0b:48:0a:97:81:5d:a2:49:89:a5:b4:f7:b9:fb:de:49: cb:01:ba:f7:dd:fd:e4:45:ff:88:1e:42:c6:81:0f:80:eb:ea: ed:e5:36:42:56:50:68:ab:7c:b8:c1:cc:2f:0a:cf:b1:7f:c3: dc:d1:15:a0:a3:99:85:1c:35:c0:08:57:52:8d:14:36:71:a4: 08:f7:f7:da:59:7c:39:5b:21:bf:6f:40:26:0f:74:f0:7d:fb: 31:a5:e5:26:d5:00:66:c2:11:bb:d7:e2:2f:1e:08:95:d1:72: f2:83:64:0d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeMa+IRCCpj4wtBs3ya39XMaRIrMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMDA3WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTM0ZmU5NTc4NjRjMmQxZjY3NTVjZDU3MWZkYzg2NGVh ODY3NWRlN2JkNTVjZDA0Nzg5ZDE0YzA2OWEzY2Q3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdAq5m7UmgWW2uqui1Zmn/CvDcuknFSXE8VL3I3B7MVx7I s+4w6vuyXfa+6Fc2fshTZJUvQjUbTXlQocRByFuGjVT8SPDG1Pw8MgfgNTw13c5k xsam45nPn8BL835RFITv4MQGBx3L5R52v2iAOtUPrW+9pogg0b99swsbPodN42Av jB5j9lMrxVRuLdzAThznqqJRnJNp4inzgQYtfy0BohLZiJBCi90PSfoPM6xo7kiy AA3IjExqGeWX5Qa2VNXmf3zqAFXUmcNwZd/Wp1PS7+A0C10fz5rqKVTaIITj5G94 bc2sRaw/f613hKsT78qIK09/0kKCRGLxLEZPB4JDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8WZWexvGyBlEM6IWSRBvbTn2NJIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3MGRiNjQyLTZiZGMtNGY1Zi1hMjg2LWQ2YTU0MThjMTk2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBdSzANBgkqhkiG9w0BAQsFAAOCAQEAAgKy86sjYmIr0268vxCI6dwIj96W rMVytm6BbTC3q8AdSKvE4phJnzDEG6nLBF9XA3UoCRXh0NZXmSSv3gk4unv+1l7j 97/6yMjIlbbrXlFUuufd2iqHq5gbCGeO6Ic5JvnoyYc0ecIt2frFW3/Jhbrbetqz e/rn1oiBqLnI/5+3baZdeKgdbbv0NtGKosR2EwkLSAqXgV2iSYmltPe5+95JywG6 99395EX/iB5CxoEPgOvq7eU2QlZQaKt8uMHMLwrPsX/D3NEVoKOZhRw1wAhXUo0U NnGkCPf32ll8OVshv29AJg908H37MaXlJtUAZsIRu9fiLx4IldFy8oNkDQ== -----END CERTIFICATE-----Generated at Wed May 13 02:24:53 2026 by rpki-client