$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e5185ec-4635-44c8-b41a-3ac1a2ac0e6d.roa File: 7e5185ec-4635-44c8-b41a-3ac1a2ac0e6d.roa (raw, json) Hash identifier: A0XB5q+bH471BGZws+ZhU/9Q6cV5LGM0+A0oE2ydT74= Subject key identifier: F2:21:B0:1E:EB:DA:C7:30:C9:37:DC:78:28:27:0F:CE:EE:6A:C7:DC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77983B1373C5F03350DB69B6AF1EB4F6B0FBB36D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e5185ec-4635-44c8-b41a-3ac1a2ac0e6d.roa Signing time: Tue 12 May 2026 21:46:50 +0000 ROA not before: Tue 12 May 2026 21:46:50 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 63.249.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:98:3b:13:73:c5:f0:33:50:db:69:b6:af:1e:b4:f6:b0:fb:b3:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 21:46:50 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=fd4d6f6decd75b4df4db0c4d08fad56a771e56fe96b04ff9d5a3702ff2800843, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e0:2a:a2:60:f7:d2:a5:49:51:4a:34:bd:99: aa:e8:ab:e1:85:11:38:94:89:6b:c1:fc:5c:be:6d: 0c:dd:ea:57:df:81:bb:23:71:c7:c5:4b:69:f1:2a: a5:45:92:32:37:ca:5f:c1:b1:8d:b2:03:d5:99:a5: 63:7e:dd:b5:0c:92:80:d8:a4:a4:cc:b5:11:57:61: e4:01:42:02:b4:40:66:e9:47:37:72:8f:79:82:c5: 52:87:d7:5f:d6:c1:a5:3c:45:09:6b:75:58:50:d5: 48:a1:aa:57:31:ca:01:e0:de:f1:d2:f5:63:a8:5d: 07:3c:48:39:aa:fc:ba:2c:e1:90:99:c8:eb:9b:34: fb:6c:2d:3c:20:14:b7:a3:79:70:4c:74:9f:73:24: e9:c4:96:70:d4:c4:77:1a:7e:eb:ac:78:29:4d:47: 19:f6:42:20:af:9e:a4:07:29:c3:44:f8:0a:5d:bc: ef:46:b5:d4:86:57:c0:94:d3:6f:3a:2a:a5:ab:64: 19:70:34:5e:ae:5e:5a:d6:41:bb:74:13:7c:dd:7f: 73:56:eb:e6:cf:31:7e:1c:ee:18:af:49:28:3b:3c: cc:93:7f:ca:42:15:26:63:73:5e:8d:39:cb:af:ae: 92:96:49:bd:2d:93:cf:c0:b9:35:e0:8c:b0:3b:6d: 50:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:21:B0:1E:EB:DA:C7:30:C9:37:DC:78:28:27:0F:CE:EE:6A:C7:DC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e5185ec-4635-44c8-b41a-3ac1a2ac0e6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.249.192.0/19 Signature Algorithm: sha256WithRSAEncryption 99:f1:f6:9b:c5:06:f2:6a:b3:c6:78:57:8b:09:df:83:a0:93: 66:65:ec:d7:52:d6:65:4f:0b:64:60:34:58:80:a3:dc:3f:3b: 56:37:c4:59:6c:38:4a:ca:b7:b9:a9:6a:0f:1b:25:7e:c9:0f: 5e:e8:0e:0c:ba:b6:76:38:76:ec:7e:d4:e0:d6:f2:e6:53:64: 33:c9:47:86:e0:14:b1:76:23:ed:5d:ce:b1:b3:91:cc:90:35: 6c:dc:b3:0d:8e:f0:f7:9c:29:b7:5f:02:2a:68:79:b0:20:5b: 78:9d:c7:f0:23:a4:63:ad:9e:31:e5:b2:5e:0a:2f:39:8b:3c: 8c:0c:43:50:61:39:44:bc:49:18:5c:c8:af:c5:79:ad:02:c7: 3e:91:91:bc:8a:4d:b0:67:8d:dd:c4:7b:4e:76:1d:ce:54:74: c7:76:65:0b:f9:ea:e8:d7:81:0b:2e:59:7c:9a:eb:86:3d:6b: 8b:a7:4d:8d:5f:c4:0d:e3:45:76:75:c0:37:de:74:e3:e8:e8: a1:db:c3:e4:c2:ff:a1:c8:90:1c:4d:b7:86:6d:7f:ed:35:0c: 06:1f:97:ca:7f:67:4b:2c:40:f4:c9:73:11:dd:13:30:c1:97: 3e:98:3d:d3:84:2e:8a:72:5c:fe:a4:84:2f:0a:49:8d:d7:81: af:5a:bc:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd5g7E3PF8DNQ22m2rx609rD7s20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMjE0NjUwWhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDRkNmY2ZGVjZDc1YjRkZjRkYjBjNGQwOGZhZDU2YTc3 MWU1NmZlOTZiMDRmZjlkNWEzNzAyZmYyODAwODQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ4CqiYPfSpUlRSjS9maroq+GFETiUiWvB/Fy+bQzd6lff gbsjccfFS2nxKqVFkjI3yl/BsY2yA9WZpWN+3bUMkoDYpKTMtRFXYeQBQgK0QGbp Rzdyj3mCxVKH11/WwaU8RQlrdVhQ1UihqlcxygHg3vHS9WOoXQc8SDmq/Los4ZCZ yOubNPtsLTwgFLejeXBMdJ9zJOnElnDUxHcafuuseClNRxn2QiCvnqQHKcNE+Apd vO9GtdSGV8CU0286KqWrZBlwNF6uXlrWQbt0E3zdf3NW6+bPMX4c7hivSSg7PMyT f8pCFSZjc16NOcuvrpKWSb0tk8/AuTXgjLA7bVDfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8iGwHuvaxzDJN9x4KCcPzu5qx9wwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdlNTE4NWVjLTQ2MzUtNDRjOC1iNDFhLTNhYzFhMmFjMGU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU/+cAwDQYJKoZIhvcNAQELBQADggEBAJnx9pvFBvJqs8Z4V4sJ34Ogk2Zl 7NdS1mVPC2RgNFiAo9w/O1Y3xFlsOErKt7mpag8bJX7JD17oDgy6tnY4dux+1ODW 8uZTZDPJR4bgFLF2I+1dzrGzkcyQNWzcsw2O8PecKbdfAipoebAgW3idx/AjpGOt njHlsl4KLzmLPIwMQ1BhOUS8SRhcyK/Fea0Cxz6RkbyKTbBnjd3Ee052Hc5UdMd2 ZQv56ujXgQsuWXya64Y9a4unTY1fxA3jRXZ1wDfedOPo6KHbw+TC/6HIkBxNt4Zt f+01DAYfl8p/Z0ssQPTJcxHdEzDBlz6YPdOELopyXP6khC8KSY3Xga9avOM= -----END CERTIFICATE-----Generated at Wed May 13 06:38:28 2026 by rpki-client