$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94c7d246-be3d-42bd-bbc9-120f38252e6d.roa File: 94c7d246-be3d-42bd-bbc9-120f38252e6d.roa (raw, json) Hash identifier: u4Lu3P7F90e5vfMM/GZ7hqoSyVGbK3s23/Lzuf6PWt0= Subject key identifier: D3:82:9C:86:5E:E1:7E:DE:B3:81:BB:4D:2F:A9:14:C4:FB:74:95:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05CF11F1EFD20D7138748A9DE456DE79E140B9BA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94c7d246-be3d-42bd-bbc9-120f38252e6d.roa Signing time: Tue 12 May 2026 01:11:20 +0000 ROA not before: Tue 12 May 2026 01:11:20 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.76.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:cf:11:f1:ef:d2:0d:71:38:74:8a:9d:e4:56:de:79:e1:40:b9:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:11:20 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=69a2cdd10dae6bee423427fa6d28e7e080bea9a98bf16a94cd4df5e62eafbc9c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:36:63:66:51:cc:28:0c:e2:75:00:cb:27:6c: 67:c6:de:37:52:c5:2b:b6:cc:83:b4:b2:00:c0:7d: 92:d9:d2:e4:04:f3:9c:dc:3c:72:89:84:db:d7:61: d4:c6:6c:77:f6:64:04:99:9e:8f:9f:32:8a:0b:cb: 1b:a5:2b:df:a4:83:cc:29:bf:fd:be:69:98:46:1d: 83:78:dc:6c:1c:b4:82:7b:88:f8:d0:66:b2:ff:2f: 7b:69:f4:ea:b0:07:92:58:72:5e:5f:3f:0d:a2:a7: 4f:c2:d2:5a:72:3f:90:73:56:64:ae:42:9c:16:a0: 41:11:dc:b5:a7:5e:21:39:9a:3b:f0:fa:30:8a:81: 46:85:fc:da:62:60:6d:57:29:3d:f8:8a:41:46:3b: 16:8c:47:b4:47:af:2a:33:76:c9:73:88:4a:7a:d7: a7:73:41:d4:bd:fa:2b:a3:10:fc:5e:14:1e:d1:8d: 58:40:a5:3d:19:36:01:a2:7a:2d:f1:0f:0d:73:b4: 1a:b0:3d:e5:e1:a5:6b:76:6f:a8:b4:53:c9:ff:ac: 31:d5:06:17:91:14:0d:d4:25:7c:c8:a1:c1:e7:1f: 72:ad:1c:f3:b5:ad:17:5e:f5:41:77:b7:12:c6:fd: cd:49:bd:4d:d3:65:66:7c:5a:39:5e:d7:66:93:30: 57:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:82:9C:86:5E:E1:7E:DE:B3:81:BB:4D:2F:A9:14:C4:FB:74:95:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/94c7d246-be3d-42bd-bbc9-120f38252e6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.76.0/24 Signature Algorithm: sha256WithRSAEncryption c4:27:82:e8:33:af:07:c7:32:a9:38:3a:e1:9a:d1:eb:4c:00: dc:12:96:0b:bc:c0:8c:d6:1c:9d:90:7b:f2:a7:22:4e:a4:f8: 00:fb:28:d1:f0:6b:1e:83:7c:12:7c:c9:0a:f5:cd:35:ed:02: 22:5b:9b:47:5a:96:17:d6:c8:6e:c0:ad:46:cb:a8:16:c5:cc: fc:39:13:6e:45:dd:71:1a:76:e1:e7:2b:9e:0f:bf:dd:1a:aa: a4:71:9b:4e:a2:6e:55:29:ab:f0:51:85:30:82:f8:3f:bc:71: 03:3d:ab:f6:8d:c0:55:49:84:6a:3e:57:a1:60:ce:11:8a:aa: 8a:26:fa:03:4b:7f:92:d0:d9:5c:67:ec:43:f1:b3:75:b4:9d: 68:8c:0c:b2:c7:3a:38:79:9e:04:8d:74:bc:85:ae:18:b6:cc: 81:8d:64:00:7b:34:be:0e:e5:f9:c1:47:f8:f5:45:61:e6:4c: 81:b6:f3:1a:b3:4a:64:73:d5:d6:6e:23:f5:e0:26:fa:59:67: 01:c7:86:95:b8:81:80:d8:0f:15:48:19:7b:64:13:14:a2:3f: 0c:a7:1b:9e:2a:9c:fd:68:bb:42:67:2a:b9:f2:59:c6:95:31: 93:f6:c0:88:59:c4:72:f1:06:71:a6:22:0b:4d:1c:e1:c5:43: a8:aa:61:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBc8R8e/SDXE4dIqd5FbeeeFAubowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDExMTIwWhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2OWEyY2RkMTBkYWU2YmVlNDIzNDI3ZmE2ZDI4ZTdlMDgw YmVhOWE5OGJmMTZhOTRjZDRkZjVlNjJlYWZiYzljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClNmNmUcwoDOJ1AMsnbGfG3jdSxSu2zIO0sgDAfZLZ0uQE 85zcPHKJhNvXYdTGbHf2ZASZno+fMooLyxulK9+kg8wpv/2+aZhGHYN43GwctIJ7 iPjQZrL/L3tp9OqwB5JYcl5fPw2ip0/C0lpyP5BzVmSuQpwWoEER3LWnXiE5mjvw +jCKgUaF/NpiYG1XKT34ikFGOxaMR7RHryozdslziEp616dzQdS9+iujEPxeFB7R jVhApT0ZNgGiei3xDw1ztBqwPeXhpWt2b6i0U8n/rDHVBheRFA3UJXzIocHnH3Kt HPO1rRde9UF3txLG/c1JvU3TZWZ8Wjle12aTMFflAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU04Kchl7hft6zgbtNL6kUxPt0leswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0YzdkMjQ2LWJlM2QtNDJiZC1iYmM5LTEyMGYzODI1MmU2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmEwwDQYJKoZIhvcNAQELBQADggEBAMQngugzrwfHMqk4OuGa0etMANwS lgu8wIzWHJ2Qe/KnIk6k+AD7KNHwax6DfBJ8yQr1zTXtAiJbm0dalhfWyG7ArUbL qBbFzPw5E25F3XEaduHnK54Pv90aqqRxm06iblUpq/BRhTCC+D+8cQM9q/aNwFVJ hGo+V6FgzhGKqoom+gNLf5LQ2Vxn7EPxs3W0nWiMDLLHOjh5ngSNdLyFrhi2zIGN ZAB7NL4O5fnBR/j1RWHmTIG28xqzSmRz1dZuI/XgJvpZZwHHhpW4gYDYDxVIGXtk ExSiPwynG54qnP1ou0JnKrnyWcaVMZP2wIhZxHLxBnGmIgtNHOHFQ6iqYZk= -----END CERTIFICATE-----Generated at Tue May 12 21:52:24 2026 by rpki-client