$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cbb141b-4875-4336-9c00-31dd3fab35a5.roa File: 9cbb141b-4875-4336-9c00-31dd3fab35a5.roa (raw, json) Hash identifier: pFkwl7BPWk9qsf4nfRHSqoXn/ynxJaHFVvCHs8pdwns= Subject key identifier: 1A:B3:77:32:54:14:21:17:96:E4:24:60:28:A4:4E:FB:5D:87:70:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B53B05BE7C98288B454D6B62D4D52603E2A3E87 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cbb141b-4875-4336-9c00-31dd3fab35a5.roa Signing time: Tue 12 May 2026 01:00:54 +0000 ROA not before: Tue 12 May 2026 01:00:54 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:53:b0:5b:e7:c9:82:88:b4:54:d6:b6:2d:4d:52:60:3e:2a:3e:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:00:54 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=1deabed5bbeac001df4364cbf2601431f068354c21868569c6e1a1f668aa1943, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:35:d4:b0:4d:82:1c:6a:79:db:0b:df:04:33: ef:8b:eb:f2:6f:be:ce:1c:ab:67:b8:95:bd:0a:3d: 26:04:60:8f:79:48:03:35:30:14:be:42:51:7d:39: 21:e7:a4:c8:d7:82:89:fd:cb:82:a9:86:c4:a2:ae: 6a:47:8d:78:79:72:3b:a8:ca:4d:ad:6b:35:94:b8: ed:fe:45:c2:ea:ed:f7:39:e9:00:2a:8f:60:40:fc: 09:63:1d:94:a3:7b:13:9e:0f:fb:9c:a5:dc:93:a9: 16:51:87:7f:28:d7:ed:40:42:58:19:5e:28:7c:94: 1c:18:2d:b2:b3:2f:35:74:46:3a:76:65:d9:f1:f8: c1:2b:f3:41:54:6a:69:d1:45:61:fa:d7:ac:57:bc: 42:ea:2a:3e:07:f5:80:02:ba:31:cf:a0:5b:ca:67: a1:37:72:08:4d:00:9a:46:f4:1b:da:ee:bd:7a:d2: a7:10:dc:cd:98:38:10:40:b4:04:f6:f3:0a:d5:7c: 28:8b:65:12:84:d0:7d:dd:8e:74:b9:b8:4c:60:a2: 74:c4:49:4f:2f:c8:8f:54:f3:c1:88:bf:77:b8:29: dc:33:05:43:e7:c6:1c:66:14:1b:aa:88:83:d9:f5: 9d:03:bf:ff:bc:6c:c7:5f:9a:33:2c:e3:ed:5f:2c: fa:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:B3:77:32:54:14:21:17:96:E4:24:60:28:A4:4E:FB:5D:87:70:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9cbb141b-4875-4336-9c00-31dd3fab35a5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.125.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:b5:8d:aa:22:44:bc:63:e0:97:91:05:a9:f0:51:26:1c:fe: ae:58:db:b1:5a:57:b4:ff:31:6d:d3:4f:a8:4e:db:eb:01:07: da:15:e0:09:b3:70:10:cc:a5:67:5f:e6:23:3a:6a:80:22:48: a8:a3:01:de:5f:d1:95:e0:e4:94:a2:1e:f7:69:f1:87:2e:34: 08:8e:01:32:db:a3:e2:fc:d8:ed:08:b5:85:b2:df:82:e0:24: bd:31:81:52:bf:82:e7:90:aa:81:23:d0:ca:b9:41:d8:c9:a2: ac:7a:95:26:e0:02:f4:8f:da:4b:01:b3:8a:2f:98:ee:11:07: b7:c9:c3:21:bf:53:b2:d7:73:12:55:24:ee:43:79:56:ce:e6: dd:6d:a8:68:a6:95:fe:ec:59:c2:30:f3:33:90:13:f5:d9:49: 80:0a:65:14:3b:c8:4d:d1:2e:ec:1c:1e:3e:b5:2b:9b:0b:4b: 82:d6:53:96:fa:5f:cc:e7:06:61:e3:10:43:f9:6b:e3:a1:27: 2b:4b:d6:de:fc:15:ab:0b:de:8e:bd:0c:12:97:67:68:70:8d: b2:18:a6:44:67:cf:86:cf:b4:0a:43:55:01:89:3a:95:ec:7d: 6d:96:76:ef:ea:61:d4:16:6d:20:04:fd:a8:f6:ab:7c:19:02: 94:2c:e3:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS1OwW+fJgoi0VNa2LU1SYD4qPocwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEwMDU0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGVhYmVkNWJiZWFjMDAxZGY0MzY0Y2JmMjYwMTQzMWYw NjgzNTRjMjE4Njg1NjljNmUxYTFmNjY4YWExOTQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2NdSwTYIcannbC98EM++L6/Jvvs4cq2e4lb0KPSYEYI95 SAM1MBS+QlF9OSHnpMjXgon9y4KphsSirmpHjXh5cjuoyk2tazWUuO3+RcLq7fc5 6QAqj2BA/AljHZSjexOeD/ucpdyTqRZRh38o1+1AQlgZXih8lBwYLbKzLzV0Rjp2 Zdnx+MEr80FUamnRRWH616xXvELqKj4H9YACujHPoFvKZ6E3cghNAJpG9Bva7r16 0qcQ3M2YOBBAtAT28wrVfCiLZRKE0H3djnS5uExgonTESU8vyI9U88GIv3e4Kdwz BUPnxhxmFBuqiIPZ9Z0Dv/+8bMdfmjMs4+1fLPpDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGrN3MlQUIReW5CRgKKRO+12HcAMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljYmIxNDFiLTQ4NzUtNDMzNi05YzAwLTMxZGQzZmFiMzVhNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsH0wDQYJKoZIhvcNAQELBQADggEBAEu1jaoiRLxj4JeRBanwUSYc/q5Y 27FaV7T/MW3TT6hO2+sBB9oV4AmzcBDMpWdf5iM6aoAiSKijAd5f0ZXg5JSiHvdp 8YcuNAiOATLbo+L82O0ItYWy34LgJL0xgVK/gueQqoEj0Mq5QdjJoqx6lSbgAvSP 2ksBs4ovmO4RB7fJwyG/U7LXcxJVJO5DeVbO5t1tqGimlf7sWcIw8zOQE/XZSYAK ZRQ7yE3RLuwcHj61K5sLS4LWU5b6X8znBmHjEEP5a+OhJytL1t78FasL3o69DBKX Z2hwjbIYpkRnz4bPtApDVQGJOpXsfW2Wdu/qYdQWbSAE/aj2q3wZApQs4zo= -----END CERTIFICATE-----Generated at Tue May 12 21:51:40 2026 by rpki-client