$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98bde87c-ce2e-4295-8b0f-ca4ee64d5242.roa File: 98bde87c-ce2e-4295-8b0f-ca4ee64d5242.roa (raw, json) Hash identifier: 4mbEiZ7JZBA48ls2OPgkd7cLph0e/aVNud89gnPwrF8= Subject key identifier: 69:A0:B3:7E:00:99:4E:38:38:60:32:67:46:65:58:8E:EC:AE:B7:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 61F175A8C69150D586C4B0F934BADC413878261B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98bde87c-ce2e-4295-8b0f-ca4ee64d5242.roa Signing time: Tue 12 May 2026 00:30:09 +0000 ROA not before: Tue 12 May 2026 00:30:09 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.3.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:f1:75:a8:c6:91:50:d5:86:c4:b0:f9:34:ba:dc:41:38:78:26:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 00:30:09 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=be1dbe1c659bbb2244f86735b0051c8ad1da8ff84f2f47f2de9bdacc2151055e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ff:6b:3e:d2:a0:0c:cf:c3:05:35:25:22:84: 41:88:6f:a8:af:01:c3:ff:fc:fb:d8:76:69:61:73: c0:f2:47:2d:5f:37:ed:f5:58:99:f0:62:36:07:fa: de:2e:b4:f3:ba:be:81:4d:ab:8c:78:cf:c3:ee:8b: 01:5b:2a:cc:56:1f:0c:69:ed:24:56:b0:60:c1:45: 56:1e:ee:12:6a:81:a1:d2:a0:50:91:8f:44:d6:a3: 3f:80:31:8b:e7:97:92:24:22:61:37:f2:a5:6a:21: 3a:3e:8e:f5:e3:7e:44:3d:5b:9a:e6:c8:c1:3b:78: 3b:fb:e4:6d:48:08:5e:db:13:a9:03:fc:f3:c0:61: 4f:34:59:5e:ea:b7:6a:ba:f6:5d:15:c6:f7:a1:7b: 1b:fd:f3:77:59:c5:34:4c:1e:b6:89:4f:73:00:6f: 9a:7a:88:45:f9:99:22:df:80:9a:1f:27:ac:7a:2f: 01:e5:a5:88:30:5f:29:3c:9b:d7:2b:ea:7d:c5:97: 1e:86:65:2d:68:9c:23:39:96:1e:3a:77:e4:aa:c1: c4:01:3a:56:15:94:57:07:09:f8:74:37:b5:60:e7: 4f:e7:4b:59:58:30:4f:a3:c8:cb:3f:d2:af:42:df: 61:e3:ef:49:ca:2b:9d:c9:9c:49:f8:82:4c:2d:c4: 15:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:A0:B3:7E:00:99:4E:38:38:60:32:67:46:65:58:8E:EC:AE:B7:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98bde87c-ce2e-4295-8b0f-ca4ee64d5242.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.3.0/24 Signature Algorithm: sha256WithRSAEncryption 4f:8c:73:d2:32:99:dc:05:2a:dc:84:c0:b3:24:08:1b:fc:91: 18:1a:2f:34:11:36:5c:90:b2:ec:ca:77:2f:9f:b1:93:57:f1: 6e:12:d4:28:20:75:9f:da:be:51:6d:ce:96:5a:10:c1:41:78: 47:f0:54:a1:69:a8:2d:f5:f7:6d:49:51:86:6c:8f:5d:15:3a: 33:3c:bd:c0:1f:cb:05:19:8a:05:1d:2e:61:a1:ff:8e:85:58: d2:3e:2e:e9:c2:a1:92:db:9f:cd:ec:40:ee:4b:fd:7c:a6:dc: fe:ba:01:a1:f8:ee:19:78:bb:c8:86:54:87:cd:bb:cd:1f:09: af:02:09:6b:e3:84:e6:b5:b6:9d:b8:4a:4b:65:09:8e:71:9c: 80:ca:00:8c:37:c0:c2:8e:ad:e6:f8:f5:65:57:42:ab:60:c5: e0:59:9d:9e:71:41:95:ad:95:d4:32:36:01:a3:fa:2d:f0:6b: 3f:20:1e:b6:67:ab:d2:cb:68:de:f0:60:ca:d3:b4:30:63:15: de:92:52:8d:f7:3c:a1:0d:8e:ec:86:d0:6f:80:a8:b2:e3:1e: be:f1:de:49:90:1f:56:f1:ee:d2:40:da:c8:3b:62:22:3e:7c: 90:b1:75:82:64:ad:13:ad:65:b1:d3:f6:ad:34:a2:5d:39:ff: 0f:9e:68:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYfF1qMaRUNWGxLD5NLrcQTh4JhswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDAzMDA5WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTFkYmUxYzY1OWJiYjIyNDRmODY3MzViMDA1MWM4YWQx ZGE4ZmY4NGYyZjQ3ZjJkZTliZGFjYzIxNTEwNTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDy/2s+0qAMz8MFNSUihEGIb6ivAcP//PvYdmlhc8DyRy1f N+31WJnwYjYH+t4utPO6voFNq4x4z8PuiwFbKsxWHwxp7SRWsGDBRVYe7hJqgaHS oFCRj0TWoz+AMYvnl5IkImE38qVqITo+jvXjfkQ9W5rmyME7eDv75G1ICF7bE6kD /PPAYU80WV7qt2q69l0Vxvehexv983dZxTRMHraJT3MAb5p6iEX5mSLfgJofJ6x6 LwHlpYgwXyk8m9cr6n3Flx6GZS1onCM5lh46d+SqwcQBOlYVlFcHCfh0N7Vg50/n S1lYME+jyMs/0q9C32Hj70nKK53JnEn4gkwtxBWzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaaCzfgCZTjg4YDJnRmVYjuyut1gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YmRlODdjLWNlMmUtNDI5NS04YjBmLWNhNGVlNjRkNTI0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmAMwDQYJKoZIhvcNAQELBQADggEBAE+Mc9IymdwFKtyEwLMkCBv8kRga LzQRNlyQsuzKdy+fsZNX8W4S1CggdZ/avlFtzpZaEMFBeEfwVKFpqC31921JUYZs j10VOjM8vcAfywUZigUdLmGh/46FWNI+LunCoZLbn83sQO5L/Xym3P66AaH47hl4 u8iGVIfNu80fCa8CCWvjhOa1tp24SktlCY5xnIDKAIw3wMKOreb49WVXQqtgxeBZ nZ5xQZWtldQyNgGj+i3waz8gHrZnq9LLaN7wYMrTtDBjFd6SUo33PKENjuyG0G+A qLLjHr7x3kmQH1bx7tJA2sg7YiI+fJCxdYJkrROtZbHT9q00ol05/w+eaLg= -----END CERTIFICATE-----Generated at Tue May 12 22:31:08 2026 by rpki-client