$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84e6874c-07ac-4922-884c-207aa2ad4b6b.roa File: 84e6874c-07ac-4922-884c-207aa2ad4b6b.roa (raw, json) Hash identifier: w8Md6sntzsTwymI2Dhm37WFSG/5VGIBv9Q0gmP9QhEE= Subject key identifier: 2A:E4:CB:59:2B:CB:C0:DA:D9:7A:00:0D:5E:12:1B:A7:D8:E7:D7:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DEA30A9D73645E03F2482356F4E2C57CF27F0D5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84e6874c-07ac-4922-884c-207aa2ad4b6b.roa Signing time: Tue 05 May 2026 00:50:50 +0000 ROA not before: Tue 05 May 2026 00:50:50 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 184.72.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:ea:30:a9:d7:36:45:e0:3f:24:82:35:6f:4e:2c:57:cf:27:f0:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:50:50 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=186f120aa0632613cefd864cbbcf091688cd6283299bb017fefc99cadd92f4f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:8c:e1:c9:d5:df:07:ac:c1:bf:ca:02:ae:0a: 00:9e:59:aa:fb:7e:e8:8c:f4:1b:3d:80:39:66:d7: fc:68:cf:ee:e5:d1:2b:e6:ed:5b:f8:b6:7f:ed:70: a4:e4:5e:18:10:d7:5d:90:e9:2a:16:72:8e:d5:e1: 40:f3:4c:97:95:73:74:c9:5e:ce:b7:1b:21:d4:2a: d8:e8:f7:3c:b2:c5:84:d1:63:51:19:91:c9:04:b1: 3d:b7:b6:b7:0e:36:cd:64:60:9c:f5:de:3c:3f:37: 12:c5:cb:06:04:7e:15:e3:89:0b:0e:25:bc:75:f5: 89:93:73:60:5c:9a:24:36:f0:18:c2:bd:48:97:2a: bb:21:10:f6:7c:c0:36:2e:20:d4:76:e3:e2:2d:4a: 38:76:87:9e:c2:a4:72:aa:a0:f4:b6:58:a4:ab:a6: d5:2b:bf:f3:31:1b:e5:a4:6a:58:60:93:a6:06:78: 69:e8:dc:80:03:c8:5b:b8:cc:ac:bf:24:f5:da:a2: ea:85:30:5d:b1:a0:ce:b0:4b:ee:7a:63:4f:f5:d5: fe:17:49:5e:0b:e1:39:64:7b:9e:12:76:57:3e:a3: 13:df:fa:cf:27:9b:c3:14:86:18:c7:16:98:c9:6a: 0d:d9:68:8f:8f:e1:27:a8:b7:15:33:08:01:56:30: f5:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:E4:CB:59:2B:CB:C0:DA:D9:7A:00:0D:5E:12:1B:A7:D8:E7:D7:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84e6874c-07ac-4922-884c-207aa2ad4b6b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.72.128.0/18 Signature Algorithm: sha256WithRSAEncryption 45:1a:ae:be:f4:e3:51:fd:04:3c:27:84:2b:4f:ae:f5:95:0a: 33:d1:50:c4:b0:a1:84:0a:6e:15:da:6e:91:34:ca:24:97:04: 8f:e6:77:56:d5:f6:1f:0c:01:02:11:88:7e:d4:a6:b3:b7:92: 25:01:ff:a2:59:e4:28:24:bb:56:96:f5:8a:4f:36:24:31:c6: 9b:e2:7b:14:b2:2f:ce:7e:9f:8d:1f:f1:81:c9:05:70:b3:10: 96:98:26:7c:7d:1f:a9:d0:fc:9b:f5:07:6d:4c:a6:e2:15:71: 85:75:39:ce:10:5b:a0:b7:e8:4d:c3:bc:31:e8:61:4a:7e:b2: d9:21:c7:63:7d:ff:5b:3b:39:bc:64:b1:36:9a:00:56:df:12: aa:05:83:ee:38:be:7e:76:dd:94:de:56:67:79:f0:00:02:01: bb:a7:80:b5:c3:69:34:3a:ef:f9:18:58:00:ed:45:49:fd:aa: 9c:cb:fa:11:af:99:85:cf:cb:70:57:09:8f:e1:c2:f0:82:31: 40:7b:d4:c5:70:f5:2d:9c:72:64:46:6c:ac:dc:d0:a4:5c:e4: 7d:3a:6c:d6:3e:7f:28:83:47:86:53:7d:92:6f:8e:d1:df:1b: e4:c9:a0:29:d0:a4:03:56:55:4e:bb:4d:3d:30:9e:ab:63:87: f7:7d:a4:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfeowqdc2ReA/JII1b04sV88n8NUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA1MDUwWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxODZmMTIwYWEwNjMyNjEzY2VmZDg2NGNiYmNmMDkxNjg4 Y2Q2MjgzMjk5YmIwMTdmZWZjOTljYWRkOTJmNGYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4jOHJ1d8HrMG/ygKuCgCeWar7fuiM9Bs9gDlm1/xoz+7l 0Svm7Vv4tn/tcKTkXhgQ112Q6SoWco7V4UDzTJeVc3TJXs63GyHUKtjo9zyyxYTR Y1EZkckEsT23trcONs1kYJz13jw/NxLFywYEfhXjiQsOJbx19YmTc2BcmiQ28BjC vUiXKrshEPZ8wDYuINR24+ItSjh2h57CpHKqoPS2WKSrptUrv/MxG+Wkalhgk6YG eGno3IADyFu4zKy/JPXaouqFMF2xoM6wS+56Y0/11f4XSV4L4Tlke54Sdlc+oxPf +s8nm8MUhhjHFpjJag3ZaI+P4SeotxUzCAFWMPXJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKuTLWSvLwNrZegANXhIbp9jn1/4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0ZTY4NzRjLTA3YWMtNDkyMi04ODRjLTIwN2FhMmFkNGI2Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4SIAwDQYJKoZIhvcNAQELBQADggEBAEUarr7041H9BDwnhCtPrvWVCjPR UMSwoYQKbhXabpE0yiSXBI/md1bV9h8MAQIRiH7UprO3kiUB/6JZ5Cgku1aW9YpP NiQxxpviexSyL85+n40f8YHJBXCzEJaYJnx9H6nQ/Jv1B21MpuIVcYV1Oc4QW6C3 6E3DvDHoYUp+stkhx2N9/1s7ObxksTaaAFbfEqoFg+44vn523ZTeVmd58AACAbun gLXDaTQ67/kYWADtRUn9qpzL+hGvmYXPy3BXCY/hwvCCMUB71MVw9S2ccmRGbKzc 0KRc5H06bNY+fyiDR4ZTfZJvjtHfG+TJoCnQpANWVU67TT0wnqtjh/d9pOI= -----END CERTIFICATE-----Generated at Wed May 13 01:26:47 2026 by rpki-client