$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa File: 9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa (raw, json) Hash identifier: KgQV5FCJ4a1V4A8Qtw7RO3KFpYxRDuTbL//s/TE6g8A= Subject key identifier: 67:28:A7:9C:1E:65:67:3F:D6:CD:0F:4B:4B:BE:44:77:38:C2:1E:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CA3AC058E2CC3AF891C2C2D48C791CBF00E6455 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa Signing time: Tue 05 May 2026 00:40:38 +0000 ROA not before: Tue 05 May 2026 00:40:38 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.177.24.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:a3:ac:05:8e:2c:c3:af:89:1c:2c:2d:48:c7:91:cb:f0:0e:64:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:40:38 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=d6cb79f4171b8824089d5b3e84f4858b440cfb1af8d927f8fade6ad75535aa83, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:b5:cc:d0:3c:e7:1c:9f:19:97:f4:f6:a2:a9: 86:f4:ec:2d:a2:22:0b:e1:9a:88:d4:5a:8a:7d:31: d4:2b:ef:34:ec:0b:a0:8a:a2:bf:2f:fd:37:0e:e4: 40:9a:cd:f8:0e:33:81:33:1f:57:ed:e4:c6:4e:40: 5b:60:2f:15:8e:35:34:6d:de:c6:71:d1:b0:d5:0f: c6:50:db:2a:97:ba:e9:48:59:69:d6:4f:d8:54:bb: bf:0d:04:86:78:ab:3d:eb:8f:69:96:f9:24:81:3d: e9:58:f7:b1:24:76:81:e2:b4:4d:3a:ab:71:4f:16: 0e:7b:03:4f:bc:74:d3:a9:40:cf:1b:ac:60:ae:f6: d3:1d:99:c1:5c:94:29:ea:19:65:5b:07:bb:b1:87: 42:ed:d7:d6:93:77:10:c5:31:fc:02:1e:e1:62:7e: 12:9c:83:c8:5e:60:3e:4a:9a:42:5c:d7:e4:4a:18: 6d:e2:7a:51:2b:3b:38:86:e3:c7:6c:68:2c:20:39: 28:09:d3:d6:72:8c:1c:2d:4e:0c:4c:02:76:82:bf: be:15:a6:9f:8f:88:d1:32:75:6b:4e:3b:c0:c4:b1: 77:3f:ca:a6:a9:4e:9d:75:c4:19:4a:2e:1b:8c:dc: 17:0a:9a:10:b1:fe:83:c1:13:62:df:02:45:31:c3: 03:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:28:A7:9C:1E:65:67:3F:D6:CD:0F:4B:4B:BE:44:77:38:C2:1E:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9827ecd3-75ce-449e-9930-c4d237b2e2f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.177.24.0/21 Signature Algorithm: sha256WithRSAEncryption 9c:64:d0:74:5c:53:32:24:2c:d5:19:14:d2:ac:6f:c4:71:9c: 61:a5:ee:90:db:82:66:59:cd:ed:1a:be:2d:0a:54:75:71:52: 27:71:0c:12:cd:ce:f7:86:29:24:63:3c:48:4c:e4:ea:79:1f: 91:f2:5d:81:6b:13:4d:b1:f0:7f:c4:be:bb:1e:83:ba:c3:3b: 1e:c8:11:2e:be:dd:77:65:3d:52:14:08:6e:98:3e:bb:8d:1d: 0d:fa:53:c3:48:dd:3a:1e:d3:b2:a1:6d:20:8d:77:38:39:95: 9c:48:41:93:e1:b2:20:07:9d:2e:ed:7a:00:2a:ce:18:ec:b3: 52:e5:15:26:26:f3:18:d6:7f:85:4a:2b:c0:6e:da:9b:a6:f0: 5c:ef:56:cb:52:aa:2f:b6:97:ec:c1:a9:98:0c:a0:26:cd:c3: 9b:65:3b:d2:8d:cf:1a:d3:88:1e:fb:86:84:6f:d3:b0:d3:22: 74:3f:80:b5:ce:87:4a:73:27:bc:72:18:c3:41:09:9f:50:58: 38:63:09:28:d8:1a:26:85:81:b7:d7:52:66:e4:d3:e7:5f:57: a9:5f:e2:fa:77:40:c7:b8:7e:6f:0d:3c:b6:07:39:10:fd:2e: a4:aa:2f:08:5d:6a:06:c0:4c:58:63:d3:4a:4a:e4:38:3f:17: 8f:17:26:11 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULKOsBY4sw6+JHCwtSMeRy/AOZFUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MDM4WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNmNiNzlmNDE3MWI4ODI0MDg5ZDViM2U4NGY0ODU4YjQ0 MGNmYjFhZjhkOTI3ZjhmYWRlNmFkNzU1MzVhYTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCStczQPOccnxmX9PaiqYb07C2iIgvhmojUWop9MdQr7zTs C6CKor8v/TcO5ECazfgOM4EzH1ft5MZOQFtgLxWONTRt3sZx0bDVD8ZQ2yqXuulI WWnWT9hUu78NBIZ4qz3rj2mW+SSBPelY97EkdoHitE06q3FPFg57A0+8dNOpQM8b rGCu9tMdmcFclCnqGWVbB7uxh0Lt19aTdxDFMfwCHuFifhKcg8heYD5KmkJc1+RK GG3ielErOziG48dsaCwgOSgJ09ZyjBwtTgxMAnaCv74Vpp+PiNEydWtOO8DEsXc/ yqapTp11xBlKLhuM3BcKmhCx/oPBE2LfAkUxwwMFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZyinnB5lZz/WzQ9LS75EdzjCHsQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4MjdlY2QzLTc1Y2UtNDQ5ZS05OTMwLWM0ZDIzN2IyZTJmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPRsRgwDQYJKoZIhvcNAQELBQADggEBAJxk0HRcUzIkLNUZFNKsb8RxnGGl 7pDbgmZZze0avi0KVHVxUidxDBLNzveGKSRjPEhM5Op5H5HyXYFrE02x8H/Evrse g7rDOx7IES6+3XdlPVIUCG6YPruNHQ36U8NI3Toe07KhbSCNdzg5lZxIQZPhsiAH nS7tegAqzhjss1LlFSYm8xjWf4VKK8Bu2pum8FzvVstSqi+2l+zBqZgMoCbNw5tl O9KNzxrTiB77hoRv07DTInQ/gLXOh0pzJ7xyGMNBCZ9QWDhjCSjYGiaFgbfXUmbk 0+dfV6lf4vp3QMe4fm8NPLYHORD9LqSqLwhdagbATFhj00pK5Dg/F48XJhE= -----END CERTIFICATE-----Generated at Tue May 12 22:15:11 2026 by rpki-client