$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeb5a04b-af2e-493c-a824-8181a14a14c0.roa File: aeb5a04b-af2e-493c-a824-8181a14a14c0.roa (raw, json) Hash identifier: 3MRPeVgQdFf/GtMs20gNXSkkjog4K173LwFj4m0z+6c= Subject key identifier: 3A:96:D6:8C:80:09:EA:43:04:0F:E9:B7:ED:06:27:BE:C3:EB:ED:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D3CBC03208521A2E4525145DA30B74EDD9C02B7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeb5a04b-af2e-493c-a824-8181a14a14c0.roa Signing time: Tue 12 May 2026 00:21:25 +0000 ROA not before: Tue 12 May 2026 00:21:25 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.100.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:3c:bc:03:20:85:21:a2:e4:52:51:45:da:30:b7:4e:dd:9c:02:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 00:21:25 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=9d36d85ff0eec8c270f16d0de75e1e1397224af7d49017dda1a26ae5e4ec5cd8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:de:75:80:99:49:cc:4d:81:7c:31:f7:c6:25: 9b:f5:b9:2e:da:fb:39:56:a4:e0:4b:b6:4c:b8:4f: 2d:03:65:08:24:9d:84:ef:9b:58:1f:43:94:5f:f5: 3a:d4:4e:ce:62:1e:5e:aa:65:dd:58:a3:75:ae:94: c2:92:65:e9:d5:73:06:d7:ce:4a:67:e7:93:6b:cc: 0b:44:b7:37:14:c9:91:e9:98:6b:e7:8a:a9:9f:52: ef:c4:c0:37:fb:09:61:cc:73:d4:6c:d0:81:dc:0e: 72:c0:2b:ba:dc:f2:d1:27:7d:14:a0:4f:86:f0:65: 9c:cd:a2:9b:66:49:d7:d7:4e:4d:bb:20:fd:b4:83: f0:fd:66:9b:11:1d:40:81:31:58:4b:66:cd:27:d8: d0:a8:dc:87:2f:75:80:e0:3e:36:43:09:0c:7b:54: cd:bc:46:ea:23:46:a9:f0:67:15:c5:ba:55:89:66: 92:91:fd:88:c5:69:a0:15:15:1a:f3:46:85:ee:64: 59:67:70:85:24:ae:59:b1:d9:c1:99:10:59:ef:5b: bb:e1:08:50:33:76:f1:77:83:d6:46:fd:52:a5:c7: 75:4c:98:3a:3d:b6:56:d8:9d:96:30:86:c7:f4:71: 24:b6:2d:31:d4:da:1b:d2:14:55:ab:33:50:1c:c6: e9:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:96:D6:8C:80:09:EA:43:04:0F:E9:B7:ED:06:27:BE:C3:EB:ED:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeb5a04b-af2e-493c-a824-8181a14a14c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.100.0/24 Signature Algorithm: sha256WithRSAEncryption b2:5c:59:ef:c2:e8:50:59:a4:39:14:b7:de:95:a8:e0:fd:ce: 8b:b8:31:30:4a:72:8b:fc:21:41:96:ca:6e:98:36:2f:a1:17: 27:af:a1:0f:f7:8e:91:4e:b0:68:2c:65:65:05:25:fc:a1:85: 91:ec:30:ad:ce:05:21:fe:ff:d4:96:e1:fd:cc:89:7f:07:51: a1:b7:41:8b:31:cf:41:38:7d:94:72:6d:46:77:76:c3:cb:60: 27:19:99:a7:56:e3:17:55:98:81:6e:9c:83:63:bb:da:0f:04: ef:f3:d4:b7:dd:f2:7d:d3:1b:d6:4f:cc:dd:ee:57:db:ca:cf: 63:9f:da:7c:f7:58:65:78:d9:27:65:dc:50:e8:e1:40:56:26: d1:9b:ef:dc:66:d6:2e:17:2c:0a:d7:f2:43:ab:54:8e:44:15: 26:8e:30:a3:75:8c:c6:54:98:07:c2:2d:91:ac:e6:f0:3c:6f: a4:09:ed:43:c3:ef:43:c4:a2:30:c2:fc:bf:70:a7:04:95:d0: 33:35:54:fc:74:5d:d9:c9:21:95:e2:08:a3:7b:be:1e:88:41: f9:f1:cd:1c:a6:80:45:18:66:49:6b:63:e4:e8:48:13:b6:5b: df:57:4c:71:21:c4:41:db:b2:37:ca:ed:5d:28:90:45:e7:2d: 30:f3:85:8e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULTy8AyCFIaLkUlFF2jC3Tt2cArcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDAyMTI1WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDM2ZDg1ZmYwZWVjOGMyNzBmMTZkMGRlNzVlMWUxMzk3 MjI0YWY3ZDQ5MDE3ZGRhMWEyNmFlNWU0ZWM1Y2Q4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD33nWAmUnMTYF8MffGJZv1uS7a+zlWpOBLtky4Ty0DZQgk nYTvm1gfQ5Rf9TrUTs5iHl6qZd1Yo3WulMKSZenVcwbXzkpn55NrzAtEtzcUyZHp mGvniqmfUu/EwDf7CWHMc9Rs0IHcDnLAK7rc8tEnfRSgT4bwZZzNoptmSdfXTk27 IP20g/D9ZpsRHUCBMVhLZs0n2NCo3IcvdYDgPjZDCQx7VM28RuojRqnwZxXFulWJ ZpKR/YjFaaAVFRrzRoXuZFlncIUkrlmx2cGZEFnvW7vhCFAzdvF3g9ZG/VKlx3VM mDo9tlbYnZYwhsf0cSS2LTHU2hvSFFWrM1AcxukdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOpbWjIAJ6kMED+m37QYnvsPr7XcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlYjVhMDRiLWFmMmUtNDkzYy1hODI0LTgxODFhMTRhMTRjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsGQwDQYJKoZIhvcNAQELBQADggEBALJcWe/C6FBZpDkUt96VqOD9zou4 MTBKcov8IUGWym6YNi+hFyevoQ/3jpFOsGgsZWUFJfyhhZHsMK3OBSH+/9SW4f3M iX8HUaG3QYsxz0E4fZRybUZ3dsPLYCcZmadW4xdVmIFunINju9oPBO/z1Lfd8n3T G9ZPzN3uV9vKz2Of2nz3WGV42Sdl3FDo4UBWJtGb79xm1i4XLArX8kOrVI5EFSaO MKN1jMZUmAfCLZGs5vA8b6QJ7UPD70PEojDC/L9wpwSV0DM1VPx0XdnJIZXiCKN7 vh6IQfnxzRymgEUYZklrY+ToSBO2W99XTHEhxEHbsjfK7V0okEXnLTDzhY4= -----END CERTIFICATE-----Generated at Tue May 12 21:50:58 2026 by rpki-client