$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752b4d6-9da4-44b3-80c5-238c0eccb401.roa File: 5752b4d6-9da4-44b3-80c5-238c0eccb401.roa (raw, json) Hash identifier: 3If+FW5d4FQol59eTPyKf0e4+NMg7ZEgyAL+QaeH84o= Subject key identifier: 57:A1:37:CA:22:37:FA:FC:F2:7A:C6:66:D5:7D:87:55:1F:F8:4E:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13F8E27B562C5485475518C2840568A144DACE0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752b4d6-9da4-44b3-80c5-238c0eccb401.roa Signing time: Mon 27 Apr 2026 00:10:46 +0000 ROA not before: Mon 27 Apr 2026 00:10:46 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 142.4.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:f8:e2:7b:56:2c:54:85:47:55:18:c2:84:05:68:a1:44:da:ce:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:10:46 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=312409abdf371e6f1c76f6bedb957e86bc74e6138f32ca4a9795a0ff56656933, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:11:f4:2b:df:12:be:f2:9c:34:a0:33:9f:f6: d5:a5:81:cb:5c:0d:e8:c4:3e:5b:50:f5:11:95:b2: e6:b2:da:01:09:6a:2f:3a:f7:36:4e:24:35:5e:27: 04:77:97:67:8e:4b:e0:51:05:7c:fc:84:59:29:6e: 36:4a:d3:64:9a:62:b3:0e:ab:f9:27:ce:97:f1:c4: db:67:de:1a:10:f3:88:be:ab:3d:79:16:2d:81:98: 3a:0d:6f:b0:a6:5e:f8:c2:9d:b3:24:82:a1:20:b2: c7:9f:f1:96:c0:91:ac:49:b1:bf:ec:84:90:b6:3c: c7:3c:84:29:b9:0c:3e:3a:d5:06:1a:61:ff:08:a8: 40:bc:e9:05:44:65:f8:0b:6e:48:c3:b2:0d:c0:47: 71:aa:5a:fe:ce:b7:f2:0b:74:77:7a:9a:a7:7f:23: a3:3c:bd:b9:a9:02:fb:aa:d3:e8:d0:38:c9:65:c0: 9b:f4:e6:9e:b0:aa:09:80:7a:14:02:f0:2a:83:99: c0:85:ee:38:a1:46:52:e6:c6:25:dd:12:e2:32:f0: 1b:32:03:a2:a2:e7:44:07:b5:30:30:1d:93:87:53: eb:ba:b5:f8:50:4a:dc:e4:27:63:0d:58:6b:f3:3a: 9e:3f:34:a5:56:f4:0b:a8:f2:34:f7:f1:dc:8b:68: 71:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:A1:37:CA:22:37:FA:FC:F2:7A:C6:66:D5:7D:87:55:1F:F8:4E:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5752b4d6-9da4-44b3-80c5-238c0eccb401.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 142.4.160.0/19 Signature Algorithm: sha256WithRSAEncryption 6f:e4:7d:71:36:6f:78:58:20:8f:bd:1b:fd:c3:d3:ee:3c:84: 14:e7:3b:74:ca:4a:37:bc:7f:57:ce:fd:25:46:12:24:a6:c6: b7:cd:41:9a:21:62:e3:b1:12:c9:e4:3c:9a:a1:66:a8:cc:91: 78:59:09:a7:8c:80:f8:64:17:08:10:9e:e0:13:6f:4c:17:19: 06:4f:dc:1d:cf:f9:03:a9:e2:13:71:a5:4a:97:1f:53:fb:c5: ce:84:1b:a3:df:83:97:ee:00:b0:64:fe:f8:f9:5a:03:6b:1a: c2:7a:aa:24:31:be:9b:7a:0e:27:b6:5e:e1:b8:97:dc:3c:ea: 8c:44:09:ec:ff:8d:32:70:23:d7:02:3f:15:45:37:12:ec:76: e9:4a:54:8b:d5:a4:ce:cd:94:a5:1a:25:8e:fe:91:80:3a:69: 2d:2e:72:70:86:f2:c8:89:58:2e:3f:1d:25:d5:33:59:d2:8f: 44:3d:9a:f2:38:af:b3:59:ce:0d:3c:e0:df:11:2f:09:76:dd: 4d:14:23:3a:d3:bb:b9:46:5a:d7:eb:38:0a:84:eb:f6:c0:d0: 6e:31:71:fe:56:29:6f:35:dd:68:db:cf:d2:8a:c3:f9:60:1a: cc:05:b9:54:47:03:31:16:99:7e:f5:c6:d4:56:a5:38:82:4a: 98:3a:59:68 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE/jie1YsVIVHVRjChAVooUTazg4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAxMDQ2WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTI0MDlhYmRmMzcxZTZmMWM3NmY2YmVkYjk1N2U4NmJj NzRlNjEzOGYzMmNhNGE5Nzk1YTBmZjU2NjU2OTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCREfQr3xK+8pw0oDOf9tWlgctcDejEPltQ9RGVsuay2gEJ ai869zZOJDVeJwR3l2eOS+BRBXz8hFkpbjZK02SaYrMOq/knzpfxxNtn3hoQ84i+ qz15Fi2BmDoNb7CmXvjCnbMkgqEgssef8ZbAkaxJsb/shJC2PMc8hCm5DD461QYa Yf8IqEC86QVEZfgLbkjDsg3AR3GqWv7Ot/ILdHd6mqd/I6M8vbmpAvuq0+jQOMll wJv05p6wqgmAehQC8CqDmcCF7jihRlLmxiXdEuIy8BsyA6Ki50QHtTAwHZOHU+u6 tfhQStzkJ2MNWGvzOp4/NKVW9Auo8jT38dyLaHGXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV6E3yiI3+vzyesZm1X2HVR/4TkcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3NTJiNGQ2LTlkYTQtNDRiMy04MGM1LTIzOGMwZWNjYjQwMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWOBKAwDQYJKoZIhvcNAQELBQADggEBAG/kfXE2b3hYII+9G/3D0+48hBTn O3TKSje8f1fO/SVGEiSmxrfNQZohYuOxEsnkPJqhZqjMkXhZCaeMgPhkFwgQnuAT b0wXGQZP3B3P+QOp4hNxpUqXH1P7xc6EG6Pfg5fuALBk/vj5WgNrGsJ6qiQxvpt6 Die2XuG4l9w86oxECez/jTJwI9cCPxVFNxLsdulKVIvVpM7NlKUaJY7+kYA6aS0u cnCG8siJWC4/HSXVM1nSj0Q9mvI4r7NZzg084N8RLwl23U0UIzrTu7lGWtfrOAqE 6/bA0G4xcf5WKW813Wjbz9KKw/lgGswFuVRHAzEWmX71xtRWpTiCSpg6WWg= -----END CERTIFICATE-----Generated at Tue May 12 21:58:58 2026 by rpki-client