$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa File: 5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa (raw, json) Hash identifier: aOoghgdX0JxbTzaZLoBYIl7SsCa7n2FShzZDfjJWcu8= Subject key identifier: F8:33:EA:FE:25:3B:3C:36:A9:FB:D3:3A:A3:15:C2:C6:35:66:89:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 616369DC8FA369E2501F8CAC395556CCA93E37B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa Signing time: Tue 05 May 2026 00:30:13 +0000 ROA not before: Tue 05 May 2026 00:30:13 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.92.128.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:63:69:dc:8f:a3:69:e2:50:1f:8c:ac:39:55:56:cc:a9:3e:37:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:30:13 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=f59f374f0223c747957f1d9fa299d0ef17631ed1059e0a90d87a10f15c8ab11a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:3d:e5:04:0d:ee:2c:c2:7b:c2:0d:ef:92:81: 0b:51:bb:f5:0b:81:c6:6a:69:37:22:e8:04:07:5e: 18:7f:35:9f:30:73:5e:6d:fc:b1:82:6d:c6:5d:ef: fa:6b:b0:e3:78:26:05:67:20:a0:40:0c:ca:38:86: aa:e3:6f:b1:8a:4d:af:65:9c:ab:70:f2:40:05:33: 52:c6:eb:86:10:f2:c8:91:a0:07:62:ed:89:3d:2e: 42:8a:99:75:ab:45:96:e5:cd:f8:b1:6b:97:aa:1f: fb:ac:52:26:8c:f3:1d:d4:8b:fc:7f:f7:28:87:dc: 0e:4e:27:8d:dd:fb:66:68:53:67:b5:3c:6c:2d:37: da:20:74:de:61:af:2e:2d:f9:9c:2d:a8:e5:ef:e1: 4f:a1:dc:e0:71:5f:0d:a8:fa:9e:f2:14:ca:4a:5a: 83:59:94:8c:62:5f:7f:15:bb:44:04:b7:60:af:31: ca:93:b8:9a:8b:fc:41:3c:59:8b:5d:fe:ef:38:31: 2e:dc:3e:45:22:73:d1:84:87:be:60:1e:c9:c8:87: dc:17:5e:60:c7:3e:1d:b1:27:84:cd:f2:88:65:2a: 27:95:42:a8:66:4a:0c:70:5b:56:60:1d:77:07:67: 39:19:a3:7b:1b:28:20:3e:04:96:00:41:32:42:5b: 71:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:33:EA:FE:25:3B:3C:36:A9:FB:D3:3A:A3:15:C2:C6:35:66:89:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ec3d9fb-97af-4d5a-9505-babad7d3b04b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.92.128.0/21 Signature Algorithm: sha256WithRSAEncryption 96:c1:5c:01:ee:10:82:63:32:86:24:15:88:57:8a:d6:65:96: 6b:c1:91:b3:51:48:ec:2b:81:87:40:1e:34:98:38:10:f5:94: a0:8a:cb:88:09:52:1a:31:29:7c:3d:d7:5f:2c:31:93:be:a8: 50:f5:4d:07:26:f4:14:cf:17:b9:4f:15:d3:f2:91:0d:8b:af: 8e:69:1c:c8:76:04:54:56:4a:70:1c:ea:3a:ca:c0:e9:29:9a: b4:71:69:1c:3e:c9:a4:c8:b4:ed:52:f3:39:51:1e:2c:68:b4: 87:05:b0:76:8b:e5:de:58:35:65:d9:bf:6d:a6:66:66:a4:38: 39:c6:90:9d:bb:31:44:92:77:b4:87:03:40:79:e1:56:92:bf: 74:a9:aa:65:d2:24:61:37:e2:08:4b:60:90:b1:f4:ee:ae:48: c0:84:e9:3a:35:bf:23:b0:48:3f:fd:7a:56:ab:38:2b:dc:8e: 40:89:c2:d9:07:11:72:cb:26:3d:71:6a:6b:ec:a7:41:98:19: 1a:80:19:42:9d:38:41:e6:7c:50:29:16:a7:d6:85:4f:25:24: 23:9a:57:33:3f:7c:86:d1:cb:3d:22:00:34:0a:fd:12:b3:9e: 70:d8:7e:f2:02:24:3b:83:15:97:02:43:85:5d:51:c8:99:1c: f5:da:b3:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYWNp3I+jaeJQH4ysOVVWzKk+N7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAzMDEzWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNTlmMzc0ZjAyMjNjNzQ3OTU3ZjFkOWZhMjk5ZDBlZjE3 NjMxZWQxMDU5ZTBhOTBkODdhMTBmMTVjOGFiMTFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQPeUEDe4swnvCDe+SgQtRu/ULgcZqaTci6AQHXhh/NZ8w c15t/LGCbcZd7/prsON4JgVnIKBADMo4hqrjb7GKTa9lnKtw8kAFM1LG64YQ8siR oAdi7Yk9LkKKmXWrRZblzfixa5eqH/usUiaM8x3Ui/x/9yiH3A5OJ43d+2ZoU2e1 PGwtN9ogdN5hry4t+ZwtqOXv4U+h3OBxXw2o+p7yFMpKWoNZlIxiX38Vu0QEt2Cv McqTuJqL/EE8WYtd/u84MS7cPkUic9GEh75gHsnIh9wXXmDHPh2xJ4TN8ohlKieV QqhmSgxwW1ZgHXcHZzkZo3sbKCA+BJYAQTJCW3HXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+DPq/iU7PDap+9M6oxXCxjVmiaEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlYzNkOWZiLTk3YWYtNGQ1YS05NTA1LWJhYmFkN2QzYjA0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRXIAwDQYJKoZIhvcNAQELBQADggEBAJbBXAHuEIJjMoYkFYhXitZllmvB kbNRSOwrgYdAHjSYOBD1lKCKy4gJUhoxKXw9118sMZO+qFD1TQcm9BTPF7lPFdPy kQ2Lr45pHMh2BFRWSnAc6jrKwOkpmrRxaRw+yaTItO1S8zlRHixotIcFsHaL5d5Y NWXZv22mZmakODnGkJ27MUSSd7SHA0B54VaSv3SpqmXSJGE34ghLYJCx9O6uSMCE 6To1vyOwSD/9elarOCvcjkCJwtkHEXLLJj1xamvsp0GYGRqAGUKdOEHmfFApFqfW hU8lJCOaVzM/fIbRyz0iADQK/RKznnDYfvICJDuDFZcCQ4VdUciZHPXas8k= -----END CERTIFICATE-----Generated at Wed May 13 00:56:07 2026 by rpki-client