$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa File: 6205efa3-adeb-4c79-a841-af02822a7d3f.roa (raw, json) Hash identifier: Zu902Poi1Wa3boTQ2n123KCWv1HbpN/jDJl3cZFRphY= Subject key identifier: 02:7B:87:57:45:27:C4:C6:26:F8:A2:80:79:0D:AB:1D:A5:DC:E9:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2824BF6AF16F6F9ED4C076AD0A584DF722BAC372 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa Signing time: Wed 06 May 2026 00:40:12 +0000 ROA not before: Wed 06 May 2026 00:40:12 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 66.152.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:24:bf:6a:f1:6f:6f:9e:d4:c0:76:ad:0a:58:4d:f7:22:ba:c3:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:40:12 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=b1170f046e7c11adf3bbd6e3bdf98434e0f06582c2c0be9bae5a97157e50ace0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:9c:59:03:16:16:9b:48:8d:a4:0f:74:f0:4b: 07:0e:8d:c2:6a:a7:c0:c0:68:50:b2:f1:e1:8a:50: aa:f7:bb:33:ad:b8:1a:75:d2:75:b5:fb:6b:c4:cf: f3:fe:f4:f9:dc:a4:34:eb:18:c5:86:72:6b:e1:92: c3:54:2c:8c:c8:8e:e5:b6:17:7f:5f:64:6a:ec:5a: c1:1d:ea:94:52:46:bf:3e:01:c1:73:d9:f2:d9:27: 8d:41:7f:5b:9a:ea:c1:1f:5b:4c:a2:3f:04:f0:3d: 01:4b:93:63:f2:00:6c:55:e1:2e:ce:5d:50:22:61: af:ff:7e:d9:e4:fc:fd:3f:e5:3f:e3:b0:ec:74:6c: d0:65:d1:4d:6c:00:54:6f:59:ea:05:bb:f8:cb:56: 7f:45:66:ae:a6:d2:bd:0f:65:8b:da:7a:bc:19:5e: a5:af:e9:12:68:e9:57:fd:89:14:79:f5:81:88:1f: c7:32:04:92:dc:6e:1e:75:36:be:c0:ce:2e:25:9b: 6f:70:21:22:19:ed:0b:1a:e6:e9:51:f2:77:d0:4a: 69:18:80:a8:be:55:87:d6:26:2d:18:b9:a3:9d:15: 13:f0:8a:e4:e8:62:96:4f:b1:80:c6:bf:de:2d:54: 88:f9:5a:a7:67:07:7f:92:e3:22:cb:f5:7e:77:af: 91:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:7B:87:57:45:27:C4:C6:26:F8:A2:80:79:0D:AB:1D:A5:DC:E9:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6205efa3-adeb-4c79-a841-af02822a7d3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5d:85:33:5f:ee:c6:5a:a0:6e:00:f0:bf:eb:e2:56:62:5f:7f: 7e:2c:c3:20:3d:dd:2a:54:1e:d8:99:05:88:e0:7c:aa:e0:e3: 4f:e5:16:0e:3b:89:47:b6:ac:e8:96:9f:a4:84:3a:b7:f0:53: ce:44:eb:c4:9e:3c:8d:c2:59:db:9c:b2:bc:ca:23:cc:71:21: 21:44:05:85:4b:50:e9:c8:5b:98:bf:75:f6:e9:8d:40:e5:e3: 1d:8f:10:6a:16:d2:10:ce:2a:44:1d:a1:60:69:35:2a:21:8a: ba:be:c2:8c:3d:c7:e6:40:9e:c6:69:ba:3b:ad:58:dd:2b:90: a3:fc:49:f7:41:77:0d:42:c6:56:ea:6a:da:36:63:fb:2d:68: 29:ab:52:5a:68:0f:42:1d:82:fd:e1:68:75:0e:7f:6f:86:4b: b2:00:2d:c2:4d:5f:d8:d5:6f:ea:e1:31:63:98:e4:88:89:90: c8:1c:9d:54:eb:f9:ff:61:af:05:f3:28:e6:00:34:4b:cd:3c: a8:0f:68:c6:ef:35:7f:f1:14:f0:c2:89:5e:d2:8d:16:ed:98: 6c:df:87:a3:71:80:bc:a3:90:70:19:19:26:11:f3:44:19:54: 5a:b1:6d:e3:4a:64:ec:01:e5:2c:21:aa:ba:4d:ba:a6:26:b9: 76:cf:fa:c6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKCS/avFvb57UwHatClhN9yK6w3IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDA0MDEyWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTE3MGYwNDZlN2MxMWFkZjNiYmQ2ZTNiZGY5ODQzNGUw ZjA2NTgyYzJjMGJlOWJhZTVhOTcxNTdlNTBhY2UwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXnFkDFhabSI2kD3TwSwcOjcJqp8DAaFCy8eGKUKr3uzOt uBp10nW1+2vEz/P+9PncpDTrGMWGcmvhksNULIzIjuW2F39fZGrsWsEd6pRSRr8+ AcFz2fLZJ41Bf1ua6sEfW0yiPwTwPQFLk2PyAGxV4S7OXVAiYa//ftnk/P0/5T/j sOx0bNBl0U1sAFRvWeoFu/jLVn9FZq6m0r0PZYvaerwZXqWv6RJo6Vf9iRR59YGI H8cyBJLcbh51Nr7Azi4lm29wISIZ7Qsa5ulR8nfQSmkYgKi+VYfWJi0YuaOdFRPw iuToYpZPsYDGv94tVIj5WqdnB3+S4yLL9X53r5E1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAnuHV0UnxMYm+KKAeQ2rHaXc6TowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyMDVlZmEzLWFkZWItNGM3OS1hODQxLWFmMDI4MjJhN2QzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCmAAwDQYJKoZIhvcNAQELBQADggEBAF2FM1/uxlqgbgDwv+viVmJff34s wyA93SpUHtiZBYjgfKrg40/lFg47iUe2rOiWn6SEOrfwU85E68SePI3CWducsrzK I8xxISFEBYVLUOnIW5i/dfbpjUDl4x2PEGoW0hDOKkQdoWBpNSohirq+wow9x+ZA nsZpujutWN0rkKP8SfdBdw1Cxlbqato2Y/staCmrUlpoD0Idgv3haHUOf2+GS7IA LcJNX9jVb+rhMWOY5IiJkMgcnVTr+f9hrwXzKOYANEvNPKgPaMbvNX/xFPDCiV7S jRbtmGzfh6NxgLyjkHAZGSYR80QZVFqxbeNKZOwB5SwhqrpNuqYmuXbP+sY= -----END CERTIFICATE-----Generated at Tue May 12 21:50:12 2026 by rpki-client