$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96775b6e-d2c7-45b1-b153-6189276f8a53.roa File: 96775b6e-d2c7-45b1-b153-6189276f8a53.roa (raw, json) Hash identifier: R//tlOad1lyan3tjkkX6pOlB/1JhCT5WWoSH088eVjI= Subject key identifier: 90:3A:39:A0:77:A3:63:0D:08:04:FF:BD:E4:8C:60:8A:B3:03:7D:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5846947D5014514ABBD84D657E5B8A08D74E35DD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96775b6e-d2c7-45b1-b153-6189276f8a53.roa Signing time: Tue 05 May 2026 00:11:07 +0000 ROA not before: Tue 05 May 2026 00:11:07 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 184.73.152.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:46:94:7d:50:14:51:4a:bb:d8:4d:65:7e:5b:8a:08:d7:4e:35:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:11:07 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=01eb0f5f3164050218e2550b4d7d85bb35a12614429c37cc99746109fcef5312, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:c3:78:8c:b6:b3:b6:13:5c:9f:8e:6d:c3:f7: 21:66:ad:3a:51:d4:cb:11:1f:0d:b1:3b:6a:24:fa: 72:68:f7:3d:1f:92:d9:b2:4d:2d:68:e9:af:65:b6: 9c:95:7e:b6:be:85:be:4f:80:02:de:7c:03:5c:0f: 6b:31:be:2c:4f:c2:19:da:25:2a:cf:ec:ca:2c:df: 8f:1b:6a:8a:60:e8:cf:d8:bc:65:a9:f5:cd:08:8c: 6f:07:37:3c:0a:63:93:ee:aa:9d:f7:de:62:59:e9: d7:57:ef:05:3a:a8:16:04:ef:04:c4:48:2c:7f:9d: a8:16:bf:ab:23:6f:4b:95:72:e9:51:27:20:56:50: 61:8b:59:a5:e6:db:de:6b:5a:85:64:bb:64:a7:02: 5d:49:43:f1:bd:f9:8c:93:e1:58:02:43:87:b9:35: 4d:2c:f5:56:29:56:66:ad:f0:e7:6e:ed:85:82:5d: 64:66:ed:02:56:ad:df:f7:0b:bc:d8:c2:82:0e:8b: 5e:b9:f1:74:da:52:17:64:f9:44:54:77:d7:41:a9: 86:da:78:8e:26:21:cb:e0:37:03:f1:a0:4f:11:55: 16:bf:53:13:30:6b:37:66:7f:65:3d:2f:74:f5:19: 82:a6:3c:f6:93:c0:6c:b4:08:53:2f:0b:04:5f:df: d9:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:3A:39:A0:77:A3:63:0D:08:04:FF:BD:E4:8C:60:8A:B3:03:7D:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96775b6e-d2c7-45b1-b153-6189276f8a53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.73.152.0/21 Signature Algorithm: sha256WithRSAEncryption 75:32:87:79:78:c9:1f:77:26:10:85:f1:b1:4d:13:a8:c2:d2: af:8f:59:d4:81:cb:49:55:28:65:8b:76:f5:2d:87:7f:2a:d3: 8b:af:ac:f3:b6:a9:ec:46:c1:11:d8:6c:6b:81:9d:b1:aa:f1: 1e:66:cd:11:4c:48:c5:eb:cd:93:4e:6d:81:40:80:22:f8:80: f8:8e:ea:17:9a:65:ab:cd:f3:05:6e:a7:c1:58:e1:a7:80:42: 96:28:a1:64:ee:04:de:18:24:39:11:1b:3f:2b:ec:b0:9a:f7: 92:f8:4d:3a:c9:31:6c:73:d6:95:ef:5d:da:0b:9b:2c:f5:5f: 3a:3d:db:81:6a:d7:03:93:19:b4:d6:4b:74:a2:be:ac:c8:a1: e1:52:00:da:04:4c:00:48:5c:5c:1f:49:ce:83:05:cd:2b:6e: c6:72:1a:e9:c4:47:1f:82:a4:9a:62:88:9f:09:01:c5:40:d9: df:fa:88:82:30:fc:7c:d8:3a:95:4e:77:97:81:56:a8:3e:08: a2:a9:5b:8a:c3:3c:2c:98:4d:91:15:9e:b3:18:9f:06:a8:d5: f7:b1:f3:8d:6f:a0:ce:2d:20:c1:11:07:bd:fb:a4:87:e5:ec: 9a:24:e5:cf:17:19:d4:2c:f1:1a:ad:31:c8:ac:67:cd:94:64: 39:58:c8:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWEaUfVAUUUq72E1lfluKCNdONd0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAxMTA3WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWViMGY1ZjMxNjQwNTAyMThlMjU1MGI0ZDdkODViYjM1 YTEyNjE0NDI5YzM3Y2M5OTc0NjEwOWZjZWY1MzEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWw3iMtrO2E1yfjm3D9yFmrTpR1MsRHw2xO2ok+nJo9z0f ktmyTS1o6a9ltpyVfra+hb5PgALefANcD2sxvixPwhnaJSrP7Mos348baopg6M/Y vGWp9c0IjG8HNzwKY5Puqp333mJZ6ddX7wU6qBYE7wTESCx/nagWv6sjb0uVculR JyBWUGGLWaXm295rWoVku2SnAl1JQ/G9+YyT4VgCQ4e5NU0s9VYpVmat8Odu7YWC XWRm7QJWrd/3C7zYwoIOi1658XTaUhdk+URUd9dBqYbaeI4mIcvgNwPxoE8RVRa/ UxMwazdmf2U9L3T1GYKmPPaTwGy0CFMvCwRf39kNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkDo5oHejYw0IBP+95IxgirMDfSEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk2Nzc1YjZlLWQyYzctNDViMS1iMTUzLTYxODkyNzZmOGE1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAO4SZgwDQYJKoZIhvcNAQELBQADggEBAHUyh3l4yR93JhCF8bFNE6jC0q+P WdSBy0lVKGWLdvUth38q04uvrPO2qexGwRHYbGuBnbGq8R5mzRFMSMXrzZNObYFA gCL4gPiO6heaZavN8wVup8FY4aeAQpYooWTuBN4YJDkRGz8r7LCa95L4TTrJMWxz 1pXvXdoLmyz1Xzo924Fq1wOTGbTWS3SivqzIoeFSANoETABIXFwfSc6DBc0rbsZy GunERx+CpJpiiJ8JAcVA2d/6iIIw/HzYOpVOd5eBVqg+CKKpW4rDPCyYTZEVnrMY nwao1fex841voM4tIMERB737pIfl7Jok5c8XGdQs8RqtMcisZ82UZDlYyCo= -----END CERTIFICATE-----Generated at Tue May 12 21:42:49 2026 by rpki-client