$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa File: 7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa (raw, json) Hash identifier: jEocw3DTuYHIH+rbWq2aIoH5lzHGsCF+8SCiWfdCZJs= Subject key identifier: 61:51:C7:DA:95:15:B3:C1:F2:60:7E:88:9C:27:BE:F9:23:B6:8E:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44BFB529AA040FD41DA117602A9ADA5E65DAB78A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa Signing time: Mon 04 May 2026 00:20:12 +0000 ROA not before: Mon 04 May 2026 00:20:12 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:bf:b5:29:aa:04:0f:d4:1d:a1:17:60:2a:9a:da:5e:65:da:b7:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:20:12 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=cd135761e09e571449b545802ee4d63f0c22e91e41d312c590e99ac2019294b6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ef:81:fd:01:0a:39:be:c8:aa:83:10:00:37: 51:09:c3:dc:5a:c2:67:57:87:ec:46:13:f1:eb:91: fd:92:53:5d:7c:a3:ab:e8:12:6f:10:64:57:68:eb: 04:17:5f:19:04:54:ff:58:7d:4d:4c:9c:9f:af:0b: a0:e0:b4:2f:e5:53:ad:a4:0d:b9:a8:b4:46:3e:ee: 4d:9d:9e:98:27:cf:02:d6:00:61:e9:9d:5c:ea:f5: eb:1d:e1:51:f7:a2:fa:ce:9f:77:a6:9c:d1:eb:bd: c0:c6:66:da:31:1a:fd:96:ca:f3:6d:5c:49:6a:4d: 1a:0a:19:34:13:60:40:e3:92:7b:af:b7:33:73:89: 8b:a9:8f:87:74:6a:26:2d:f7:53:10:35:d4:aa:56: a3:37:2e:18:68:86:43:d8:a4:af:32:7a:bd:5c:4e: fd:99:38:2d:67:0c:e4:6c:74:a0:34:14:7c:8d:e8: 35:be:52:95:e7:70:63:6e:03:65:a0:76:be:88:e7: 11:6d:fe:19:89:ca:d4:02:d1:7a:82:58:c8:e2:3e: 15:af:c2:d4:86:66:e7:89:bd:b3:83:35:cf:f3:b2: a1:37:a6:9e:6a:64:11:69:df:e8:c4:9d:23:2a:5e: 88:79:14:e4:73:f2:4e:a6:64:2b:56:eb:ec:42:8f: 51:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:51:C7:DA:95:15:B3:C1:F2:60:7E:88:9C:27:BE:F9:23:B6:8E:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7ae17cb9-05a6-4062-9ea9-723cef1d92c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.240.0/21 Signature Algorithm: sha256WithRSAEncryption cf:d6:8e:3e:aa:17:dc:36:47:d0:1c:43:1b:33:54:c6:5b:ea: ca:63:ef:c1:1c:5e:24:69:e0:17:1b:5a:8e:0b:8b:fd:ce:b1: 24:b1:32:bc:37:8a:01:8c:ee:0c:eb:53:37:41:89:ed:c7:3c: 43:87:c6:5c:16:1d:bc:ed:63:8c:ec:81:3b:df:e4:10:d9:27: 2c:53:84:6f:15:1e:19:39:83:2b:eb:1a:49:ee:c4:7a:59:b5: ea:26:30:e5:7f:87:9e:9f:72:f1:80:0e:05:9f:11:82:09:e8: 35:1a:d0:f8:e6:b5:47:96:59:97:73:75:cf:8f:e1:cd:94:37: 0e:01:73:f5:a2:47:47:4b:a5:fd:40:5b:39:fe:c5:ed:06:d8: ab:84:55:91:b9:08:94:c4:59:61:29:b1:f5:93:45:05:87:5d: 8a:5b:a2:e9:df:f5:ab:e2:ed:d3:62:b3:51:2a:22:ce:13:74: e6:b7:7a:95:db:27:4b:05:35:a1:ba:f4:6f:ae:7a:48:22:b3: 3c:44:60:98:96:eb:fe:d7:aa:23:15:2f:cd:a5:95:66:72:13: db:03:8e:04:89:80:cd:9c:3f:9f:e0:b7:17:9d:ee:89:9e:f0: 63:bb:08:5b:fd:a3:b3:0c:4b:6a:56:d4:50:c2:ef:3d:f1:53: 7b:84:fc:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURL+1KaoED9QdoRdgKpraXmXat4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAyMDEyWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDEzNTc2MWUwOWU1NzE0NDliNTQ1ODAyZWU0ZDYzZjBj MjJlOTFlNDFkMzEyYzU5MGU5OWFjMjAxOTI5NGI2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDH74H9AQo5vsiqgxAAN1EJw9xawmdXh+xGE/Hrkf2SU118 o6voEm8QZFdo6wQXXxkEVP9YfU1MnJ+vC6DgtC/lU62kDbmotEY+7k2dnpgnzwLW AGHpnVzq9esd4VH3ovrOn3emnNHrvcDGZtoxGv2WyvNtXElqTRoKGTQTYEDjknuv tzNziYupj4d0aiYt91MQNdSqVqM3LhhohkPYpK8yer1cTv2ZOC1nDORsdKA0FHyN 6DW+UpXncGNuA2Wgdr6I5xFt/hmJytQC0XqCWMjiPhWvwtSGZueJvbODNc/zsqE3 pp5qZBFp3+jEnSMqXoh5FORz8k6mZCtW6+xCj1H3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYVHH2pUVs8HyYH6InCe++SO2jiEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhZTE3Y2I5LTA1YTYtNDA2Mi05ZWE5LTcyM2NlZjFkOTJjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNgPAwDQYJKoZIhvcNAQELBQADggEBAM/Wjj6qF9w2R9AcQxszVMZb6spj 78EcXiRp4BcbWo4Li/3OsSSxMrw3igGM7gzrUzdBie3HPEOHxlwWHbztY4zsgTvf 5BDZJyxThG8VHhk5gyvrGknuxHpZteomMOV/h56fcvGADgWfEYIJ6DUa0PjmtUeW WZdzdc+P4c2UNw4Bc/WiR0dLpf1AWzn+xe0G2KuEVZG5CJTEWWEpsfWTRQWHXYpb ounf9avi7dNis1EqIs4TdOa3epXbJ0sFNaG69G+uekgiszxEYJiW6/7XqiMVL82l lWZyE9sDjgSJgM2cP5/gtxed7ome8GO7CFv9o7MMS2pW1FDC7z3xU3uE/CA= -----END CERTIFICATE-----Generated at Tue May 12 21:54:50 2026 by rpki-client