$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e8dc870-a029-4c0b-af03-f7d00dd60108.roa File: 5e8dc870-a029-4c0b-af03-f7d00dd60108.roa (raw, json) Hash identifier: DGqO5QADjmpPyPd6iqLelnPMx++QIHXs0pvmgnHAwAE= Subject key identifier: EB:DF:C0:54:5A:C3:30:CB:F1:1C:F6:E6:EA:D8:9C:FA:EE:C3:61:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 317C0DE60A47CAEE095CF77AB86F791CE677D685 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e8dc870-a029-4c0b-af03-f7d00dd60108.roa Signing time: Tue 12 May 2026 00:30:46 +0000 ROA not before: Tue 12 May 2026 00:30:46 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.47.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:7c:0d:e6:0a:47:ca:ee:09:5c:f7:7a:b8:6f:79:1c:e6:77:d6:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 00:30:46 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=86003e66025e51463d8a13ea2715b96b1ec79b3a72edb41d5ad81ffd40773d26, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f1:75:a4:0a:5c:db:cd:eb:66:58:81:14:35: bc:16:ca:8e:7c:bd:3a:a2:44:96:c0:fc:9d:35:45: b2:fa:55:29:d4:3f:4e:8c:e2:ac:47:b6:32:8a:80: 6c:22:fc:d9:0d:e5:70:9e:b0:4b:12:68:6f:50:be: 59:81:cd:db:fc:51:d8:d3:82:92:12:54:19:53:b3: db:49:18:20:28:a8:cf:93:5f:b2:b2:a0:a2:e2:b0: b8:7d:07:9f:44:1e:ea:d2:60:92:a7:12:3e:01:3a: ad:f7:8b:ac:e6:b7:36:ab:83:b3:a9:9a:9a:2c:68: 9f:81:d9:ba:67:c5:c8:e0:5b:0f:e8:62:23:44:85: ee:83:de:51:89:6e:77:04:52:2d:ea:e9:ed:44:6b: 68:cf:8f:78:9b:56:ad:f9:b4:73:73:ba:be:86:35: 5b:6b:b3:3c:e0:9e:bd:0a:5a:54:c8:2b:ed:78:fc: 70:0e:72:17:e2:77:27:c8:8a:3c:59:1c:e5:94:cb: cf:03:42:33:2b:cf:ec:54:a9:4a:07:9d:ac:99:74: 94:bb:77:89:73:ba:f5:69:b7:06:68:0d:58:4b:dc: 3f:ce:14:b8:db:16:cc:ae:9a:f9:ed:83:e0:49:9b: 5c:9b:c0:2a:24:1f:fc:40:2d:60:01:de:db:60:e4: 9a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:DF:C0:54:5A:C3:30:CB:F1:1C:F6:E6:EA:D8:9C:FA:EE:C3:61:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5e8dc870-a029-4c0b-af03-f7d00dd60108.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.47.0/24 Signature Algorithm: sha256WithRSAEncryption 2f:73:54:1b:71:cf:33:63:6b:34:34:12:85:90:87:cf:2c:66: 1b:39:6c:9b:b6:e7:94:b4:f4:fb:52:ed:d8:12:8d:36:d2:33: 95:18:5e:2f:fd:11:f5:5a:f6:c3:88:85:80:c3:c2:8d:02:b8: 29:8a:25:82:4a:ca:72:f3:b2:d9:f2:33:ae:a3:23:52:5e:86: c4:22:e1:c3:87:0f:a0:7a:55:23:14:0d:a4:54:e3:41:39:db: 7c:4f:d2:65:ac:9b:69:7a:a4:e5:0d:0d:1f:f6:9f:db:dd:8d: 22:39:83:31:34:55:55:d6:97:cf:14:a9:83:28:45:0c:7a:65: 82:48:f1:92:10:4f:e0:80:6f:25:48:6d:c7:b9:92:d3:b5:c7: 34:23:e4:a8:cb:1f:d8:74:64:54:b6:ab:0d:18:a8:b8:d6:15: db:03:13:7f:a9:0d:6d:d8:ee:ff:4b:b9:a5:c7:39:94:f9:35: e6:b7:e7:1e:ab:fd:c9:29:2c:59:46:6f:11:b3:bd:d1:3f:44: 74:35:86:c7:a9:94:55:b1:a1:a7:4d:e4:ac:e3:96:ca:e7:15: 8c:13:aa:b1:4a:10:3a:0c:96:06:d4:d8:2d:bc:34:81:82:cc: e5:59:2d:3b:e5:9c:57:30:00:81:14:3b:0a:b9:5a:46:b6:0c: a4:b7:f6:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMXwN5gpHyu4JXPd6uG95HOZ31oUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDAzMDQ2WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NjAwM2U2NjAyNWU1MTQ2M2Q4YTEzZWEyNzE1Yjk2YjFl Yzc5YjNhNzJlZGI0MWQ1YWQ4MWZmZDQwNzczZDI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/8XWkClzbzetmWIEUNbwWyo58vTqiRJbA/J01RbL6VSnU P06M4qxHtjKKgGwi/NkN5XCesEsSaG9QvlmBzdv8UdjTgpISVBlTs9tJGCAoqM+T X7KyoKLisLh9B59EHurSYJKnEj4BOq33i6zmtzarg7OpmposaJ+B2bpnxcjgWw/o YiNEhe6D3lGJbncEUi3q6e1Ea2jPj3ibVq35tHNzur6GNVtrszzgnr0KWlTIK+14 /HAOchfidyfIijxZHOWUy88DQjMrz+xUqUoHnayZdJS7d4lzuvVptwZoDVhL3D/O FLjbFsyumvntg+BJm1ybwCokH/xALWAB3ttg5JqfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU69/AVFrDMMvxHPbm6tic+u7DYZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlOGRjODcwLWEwMjktNGMwYi1hZjAzLWY3ZDAwZGQ2MDEwOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmC8wDQYJKoZIhvcNAQELBQADggEBAC9zVBtxzzNjazQ0EoWQh88sZhs5 bJu255S09PtS7dgSjTbSM5UYXi/9EfVa9sOIhYDDwo0CuCmKJYJKynLzstnyM66j I1JehsQi4cOHD6B6VSMUDaRU40E523xP0mWsm2l6pOUNDR/2n9vdjSI5gzE0VVXW l88UqYMoRQx6ZYJI8ZIQT+CAbyVIbce5ktO1xzQj5KjLH9h0ZFS2qw0YqLjWFdsD E3+pDW3Y7v9LuaXHOZT5Nea35x6r/ckpLFlGbxGzvdE/RHQ1hseplFWxoadN5Kzj lsrnFYwTqrFKEDoMlgbU2C28NIGCzOVZLTvlnFcwAIEUOwq5Wka2DKS39gE= -----END CERTIFICATE-----Generated at Wed May 13 07:28:24 2026 by rpki-client