$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a128055-89f2-4d33-91a5-5d6fcff45064.roa File: 6a128055-89f2-4d33-91a5-5d6fcff45064.roa (raw, json) Hash identifier: qIDLKsKd2v/szM8IDs73Sk1XYJ2v5Jmxhgo2oBncB88= Subject key identifier: 87:E2:46:B6:93:6E:5C:40:EE:5B:8A:87:D4:F9:A4:2C:57:84:1E:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F629AC0942642FCBC56DD2DDDCBEF3510833D9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a128055-89f2-4d33-91a5-5d6fcff45064.roa Signing time: Tue 05 May 2026 00:20:47 +0000 ROA not before: Tue 05 May 2026 00:20:47 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.177.32.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:62:9a:c0:94:26:42:fc:bc:56:dd:2d:dd:cb:ef:35:10:83:3d:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:20:47 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=7fbbd90e99cffc0ba751ab8ed03bd24cf788f205c03f3bf9125627d7dde8bd45, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e6:48:be:67:37:a8:01:34:19:f9:92:69:5c: 42:6a:b2:ae:94:1f:2e:fb:fd:e7:20:d4:e5:06:5f: f0:ed:ac:bf:2b:0a:91:1c:eb:ce:3e:2a:4a:22:bc: 5c:9b:d6:3d:6f:af:27:8f:44:39:b6:7c:dd:5e:68: c5:5b:b7:5b:4b:f3:7c:6c:eb:18:22:ed:2d:9a:91: 63:d7:e0:1e:ce:6d:7c:04:a7:5e:62:e9:f3:f9:bd: a0:69:7b:15:1a:02:6f:0f:0a:cd:75:22:97:48:ee: 6d:09:1a:3b:5a:ae:0a:e0:b8:96:65:4f:a0:1d:9b: ce:de:20:3e:ec:ac:35:2d:43:14:52:01:c8:f6:36: 3c:88:0d:6f:5e:9c:eb:95:54:cb:fa:fc:ba:9f:0b: 26:9e:4c:2f:cd:13:94:f5:8e:a1:ef:fd:75:37:0b: 20:2f:e3:fd:d8:d7:5a:cb:ad:12:e4:26:05:0d:f5: fd:47:0f:15:ee:1d:dd:83:f0:e2:4a:5b:d2:cc:4a: 26:ed:04:c7:93:76:e4:20:11:45:fb:cc:41:06:d2: 02:28:9b:18:91:8b:3c:12:63:60:d1:cb:aa:f7:38: ad:d3:be:c5:ad:e1:ce:75:d3:a9:09:67:b5:f3:da: 27:7e:1c:6f:c1:95:32:af:6d:79:e4:4b:46:b0:c3: b2:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:E2:46:B6:93:6E:5C:40:EE:5B:8A:87:D4:F9:A4:2C:57:84:1E:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a128055-89f2-4d33-91a5-5d6fcff45064.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.32.0/19 Signature Algorithm: sha256WithRSAEncryption 70:aa:10:2e:4c:45:c9:90:0c:d1:1b:71:7a:fa:f2:4e:4a:bb: cc:3c:ef:56:69:4a:9c:7d:3f:dd:36:e5:e6:8b:bc:cf:29:32: 3b:b7:57:88:33:d6:4c:50:f8:6e:ab:8e:37:fc:d7:b4:62:a0: 81:05:ac:3f:c5:57:20:fb:ea:26:8a:4e:18:96:19:d8:a7:59: 70:0f:9e:33:c1:90:12:3c:71:d8:5a:a6:35:73:74:22:01:2d: 61:91:fd:1a:6b:d1:48:c9:a7:08:84:95:4a:1e:b6:74:0e:d1: 03:4d:10:7e:61:a7:9a:01:1f:7e:e5:83:56:4a:52:f8:87:f9: ac:72:42:94:4e:91:8f:8e:6d:f1:6e:a4:56:7b:5a:6e:36:ff: 22:52:f2:c5:91:e6:1a:81:3e:18:30:b1:a2:fc:75:f9:7a:86: 69:10:d0:5f:81:03:d4:32:c3:85:ec:da:96:41:84:06:ec:d1: 8d:8c:bf:3f:9b:35:da:85:e4:7c:3d:c6:95:5d:61:f8:c2:ec: 48:66:39:94:40:ea:2a:74:f6:3a:6e:98:5c:13:cc:6d:66:b0: b8:5d:28:5c:46:91:e2:02:07:ad:4e:db:47:f1:f0:ee:62:30: 1a:2c:8c:53:b9:06:b4:ae:8f:8d:69:2a:0f:8a:43:70:98:eb: 49:3b:1c:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb2KawJQmQvy8Vt0t3cvvNRCDPZswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAyMDQ3WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmJiZDkwZTk5Y2ZmYzBiYTc1MWFiOGVkMDNiZDI0Y2Y3 ODhmMjA1YzAzZjNiZjkxMjU2MjdkN2RkZThiZDQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi5ki+ZzeoATQZ+ZJpXEJqsq6UHy77/ecg1OUGX/DtrL8r CpEc684+KkoivFyb1j1vryePRDm2fN1eaMVbt1tL83xs6xgi7S2akWPX4B7ObXwE p15i6fP5vaBpexUaAm8PCs11IpdI7m0JGjtargrguJZlT6Adm87eID7srDUtQxRS Acj2NjyIDW9enOuVVMv6/LqfCyaeTC/NE5T1jqHv/XU3CyAv4/3Y11rLrRLkJgUN 9f1HDxXuHd2D8OJKW9LMSibtBMeTduQgEUX7zEEG0gIomxiRizwSY2DRy6r3OK3T vsWt4c5106kJZ7Xz2id+HG/BlTKvbXnkS0aww7I/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUh+JGtpNuXEDuW4qH1PmkLFeEHnkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhMTI4MDU1LTg5ZjItNGQzMy05MWE1LTVkNmZjZmY0NTA2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRsSAwDQYJKoZIhvcNAQELBQADggEBAHCqEC5MRcmQDNEbcXr68k5Ku8w8 71ZpSpx9P9025eaLvM8pMju3V4gz1kxQ+G6rjjf817RioIEFrD/FVyD76iaKThiW GdinWXAPnjPBkBI8cdhapjVzdCIBLWGR/Rpr0UjJpwiElUoetnQO0QNNEH5hp5oB H37lg1ZKUviH+axyQpROkY+ObfFupFZ7Wm42/yJS8sWR5hqBPhgwsaL8dfl6hmkQ 0F+BA9Qyw4Xs2pZBhAbs0Y2Mvz+bNdqF5Hw9xpVdYfjC7EhmOZRA6ip09jpumFwT zG1msLhdKFxGkeICB61O20fx8O5iMBosjFO5BrSuj41pKg+KQ3CY60k7HI4= -----END CERTIFICATE-----Generated at Tue May 12 21:50:52 2026 by rpki-client