$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fbdea52-d793-4be9-81a1-89ad122859f8.roa File: 6fbdea52-d793-4be9-81a1-89ad122859f8.roa (raw, json) Hash identifier: x2jbvDMsPf94AgRmUaTZeXsbP1OxR2F4ssadz7e/oks= Subject key identifier: 71:F6:F6:19:2E:A2:ED:AB:57:6A:7E:EC:77:86:A6:88:F8:75:25:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B28D6ED9A6F450D230FA941978C559A8780F75A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fbdea52-d793-4be9-81a1-89ad122859f8.roa Signing time: Tue 12 May 2026 01:21:54 +0000 ROA not before: Tue 12 May 2026 01:21:54 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.115.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:28:d6:ed:9a:6f:45:0d:23:0f:a9:41:97:8c:55:9a:87:80:f7:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:21:54 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=8f6591aa93100b35706ac45c4b8622fb2f212c917a8a4cac50cdbf805eb5d7c0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:33:99:37:bf:36:4d:8c:59:42:c9:6b:e8:dd: 5a:bd:98:cd:27:05:54:96:fe:0c:24:ba:e3:5e:0d: cf:3f:fe:45:41:27:63:91:7c:57:58:86:07:9a:a9: 13:14:c7:9c:99:15:5e:6b:14:47:05:9c:b0:41:13: 14:6e:46:7b:6b:54:f0:ee:d7:bd:4b:9d:a4:4e:70: f8:2f:7b:8d:7f:4b:20:61:ca:92:f3:0c:11:42:e9: bb:51:78:20:d2:f6:38:80:a3:6f:06:4b:0c:fd:d9: 7e:0a:96:15:81:48:44:1f:24:8f:5c:ff:f4:bd:61: 6d:77:29:c3:84:79:37:41:75:c7:3b:46:a8:aa:60: 7e:c0:49:d9:75:11:a6:2e:51:07:4b:a9:74:d9:43: 5b:94:34:01:b6:7d:cb:94:09:21:d5:8e:4e:0e:ca: 6b:08:ce:1d:f3:a4:2a:75:57:b1:9b:e3:1d:b6:e3: 30:0e:74:e0:bc:a3:da:fc:58:8d:fc:f1:8b:5b:f6: 92:52:78:f6:fc:2a:24:02:6b:75:e6:2c:2d:04:7b: ae:f0:6d:33:3f:06:e9:5a:29:e8:81:0d:52:53:88: 26:7a:2c:25:d1:59:0b:9c:83:4a:a0:d8:5e:2d:cf: 30:e7:c8:35:e0:1f:49:34:7b:89:75:42:27:96:26: a9:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F6:F6:19:2E:A2:ED:AB:57:6A:7E:EC:77:86:A6:88:F8:75:25:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6fbdea52-d793-4be9-81a1-89ad122859f8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.115.0/24 Signature Algorithm: sha256WithRSAEncryption 54:b3:80:0f:8f:0d:40:89:04:28:cf:b0:1d:4a:93:5e:d6:cc: aa:ec:1b:82:40:a5:af:56:49:96:4c:7c:72:fa:49:f4:1a:6f: 02:41:66:1c:ee:e0:60:ae:4b:cb:05:b3:25:9b:b6:e4:d6:14: 3b:59:ec:c5:bd:2b:8e:95:6b:5c:5c:88:4c:c9:27:a7:78:1b: db:96:f3:4a:71:16:c8:c5:92:e2:45:c6:02:a9:29:07:13:75: 96:ee:6d:91:7d:0c:33:9e:ea:51:74:45:08:5f:d1:c8:ab:d7: fd:03:51:78:ca:31:3c:d9:e3:ee:21:c9:22:74:70:db:d4:a0: e7:86:74:3a:61:ab:9b:22:24:12:38:c5:38:41:4a:6b:e8:4c: a9:b1:1c:bf:4f:3c:c2:ef:e5:59:3d:c0:98:57:cb:41:7a:fd: be:98:f8:ab:43:67:43:4d:f0:e5:13:d3:51:67:57:09:dd:c0: 34:59:d4:d4:ee:c4:c8:bb:b9:8a:b0:6a:b5:2d:1c:5e:e4:38: c0:8d:65:f4:d6:7a:05:ac:43:f3:f6:20:bb:3f:74:25:fb:05: 83:5f:42:90:26:50:1d:4d:dd:d4:a9:40:bd:aa:55:2a:20:13: 33:e2:f1:d5:f3:f1:bf:65:81:0a:b3:9d:e2:05:d3:6d:a3:79: 15:d2:66:63 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGyjW7ZpvRQ0jD6lBl4xVmoeA91owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEyMTU0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZjY1OTFhYTkzMTAwYjM1NzA2YWM0NWM0Yjg2MjJmYjJm MjEyYzkxN2E4YTRjYWM1MGNkYmY4MDVlYjVkN2MwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxM5k3vzZNjFlCyWvo3Vq9mM0nBVSW/gwkuuNeDc8//kVB J2ORfFdYhgeaqRMUx5yZFV5rFEcFnLBBExRuRntrVPDu171LnaROcPgve41/SyBh ypLzDBFC6btReCDS9jiAo28GSwz92X4KlhWBSEQfJI9c//S9YW13KcOEeTdBdcc7 RqiqYH7ASdl1EaYuUQdLqXTZQ1uUNAG2fcuUCSHVjk4OymsIzh3zpCp1V7Gb4x22 4zAOdOC8o9r8WI388Ytb9pJSePb8KiQCa3XmLC0Ee67wbTM/BulaKeiBDVJTiCZ6 LCXRWQucg0qg2F4tzzDnyDXgH0k0e4l1QieWJqnXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcfb2GS6i7atXan7sd4amiPh1Ja0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmYmRlYTUyLWQ3OTMtNGJlOS04MWExLTg5YWQxMjI4NTlmOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmHMwDQYJKoZIhvcNAQELBQADggEBAFSzgA+PDUCJBCjPsB1Kk17WzKrs G4JApa9WSZZMfHL6SfQabwJBZhzu4GCuS8sFsyWbtuTWFDtZ7MW9K46Va1xciEzJ J6d4G9uW80pxFsjFkuJFxgKpKQcTdZbubZF9DDOe6lF0RQhf0cir1/0DUXjKMTzZ 4+4hySJ0cNvUoOeGdDphq5siJBI4xThBSmvoTKmxHL9PPMLv5Vk9wJhXy0F6/b6Y +KtDZ0NN8OUT01FnVwndwDRZ1NTuxMi7uYqwarUtHF7kOMCNZfTWegWsQ/P2ILs/ dCX7BYNfQpAmUB1N3dSpQL2qVSogEzPi8dXz8b9lgQqzneIF022jeRXSZmM= -----END CERTIFICATE-----Generated at Wed May 13 01:39:09 2026 by rpki-client