$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b624d9cc-a7a2-4009-8cac-c0856276648d.roa File: b624d9cc-a7a2-4009-8cac-c0856276648d.roa (raw, json) Hash identifier: CKL1QVexMlZw5/TI47e9okweFifRdWNrowr5wTF3eG4= Subject key identifier: 85:E7:90:C5:2F:AD:E7:13:3E:9C:DA:73:B5:BA:C0:B4:7D:D5:D1:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BDE728184121929F8CA5635B42459D6B7039CEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b624d9cc-a7a2-4009-8cac-c0856276648d.roa Signing time: Tue 05 May 2026 00:50:07 +0000 ROA not before: Tue 05 May 2026 00:50:07 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.114.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:de:72:81:84:12:19:29:f8:ca:56:35:b4:24:59:d6:b7:03:9c:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:50:07 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=702c3f6f95ab177c41b27c521cf95064c465bba7e8801380d9706c0b3fc3c105, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c2:f9:e4:b1:d3:ed:ba:1f:c1:aa:37:e3:09: 3f:02:2b:9f:79:75:a9:b8:e7:3e:b0:88:0f:63:3a: 16:16:75:d4:7e:08:25:77:e3:2b:36:5c:50:73:1e: 83:0b:95:5b:d5:8c:a6:60:3e:7c:b0:f1:6a:ee:89: ed:34:7c:d4:0c:42:17:a1:54:9e:12:2a:34:68:28: 04:6b:e6:92:ea:11:b6:1a:8d:ea:b6:12:59:fe:6f: bd:25:97:0c:fd:e1:56:b1:6f:16:f7:00:e5:7a:4a: e5:06:a0:08:27:b9:83:77:e4:7a:00:7b:45:02:6a: b0:a3:9d:6b:16:63:0d:1f:22:59:e8:d4:1e:ea:63: 51:ac:a5:2b:2a:ef:1c:0d:8d:36:ec:53:a1:18:82: 50:ae:99:78:aa:ab:63:4a:6f:d8:98:f9:59:7b:49: 40:cf:dd:8a:54:9f:8c:9c:ae:ea:14:03:9c:0c:68: 4d:91:59:65:f8:35:7f:54:d2:05:ae:df:3f:21:a7: 00:ee:07:b2:cc:42:d0:37:2b:22:fb:29:b1:d6:43: ed:cd:4a:da:5d:39:44:06:0d:e2:85:c4:bc:9b:29: f1:a0:6a:fd:78:51:29:ad:8d:97:69:6c:1d:b9:16: 46:a8:77:a5:45:c0:88:fb:a7:74:f4:d5:ae:06:39: de:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:E7:90:C5:2F:AD:E7:13:3E:9C:DA:73:B5:BA:C0:B4:7D:D5:D1:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b624d9cc-a7a2-4009-8cac-c0856276648d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.114.224.0/19 Signature Algorithm: sha256WithRSAEncryption 2a:76:06:88:ad:b3:d3:18:d3:4e:f9:ab:b3:c5:c5:3a:ed:c4: 8e:86:48:26:4f:68:98:af:12:cc:05:cb:b5:9a:ce:3c:46:06: 0e:e7:07:6b:81:74:88:f6:6b:ad:2f:f5:22:79:25:9a:35:87: 22:cf:1b:c6:97:36:33:79:28:e1:6b:79:73:61:48:bb:de:da: 58:76:40:c5:b9:d1:07:99:8a:d9:d1:02:48:b7:04:d4:20:e3: 9a:3c:f4:70:4b:70:d6:ba:92:41:2d:0a:59:c6:bb:52:3d:1c: aa:a0:ab:4c:1d:6b:58:c9:dd:ff:3d:b0:e0:c5:fb:8d:48:20: d2:10:a0:d6:5f:54:34:6e:f7:08:6c:27:53:d1:36:c4:e3:dc: cf:b0:bf:89:0b:c8:a8:ed:3f:84:f5:42:c1:d0:89:95:d8:77: c5:c6:67:26:18:23:5f:8d:0b:7e:0c:16:ae:bb:a5:79:b5:f9: d5:61:87:95:96:9e:32:d0:f4:5c:82:59:07:4c:7b:b5:89:47: ae:25:a0:e8:c7:f1:a1:2d:15:a1:1c:87:5d:9c:8e:46:f8:ea: ad:fa:66:39:5a:54:f3:47:f3:cb:06:57:f4:f4:fa:24:85:38: c3:2c:6b:41:26:d9:e3:b1:f1:b7:ea:73:69:8e:88:22:ef:a4: 91:d6:6c:ac -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW95ygYQSGSn4ylY1tCRZ1rcDnO8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA1MDA3WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MDJjM2Y2Zjk1YWIxNzdjNDFiMjdjNTIxY2Y5NTA2NGM0 NjViYmE3ZTg4MDEzODBkOTcwNmMwYjNmYzNjMTA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4wvnksdPtuh/BqjfjCT8CK595dam45z6wiA9jOhYWddR+ CCV34ys2XFBzHoMLlVvVjKZgPnyw8Wruie00fNQMQhehVJ4SKjRoKARr5pLqEbYa jeq2Eln+b70llwz94Vaxbxb3AOV6SuUGoAgnuYN35HoAe0UCarCjnWsWYw0fIlno 1B7qY1GspSsq7xwNjTbsU6EYglCumXiqq2NKb9iY+Vl7SUDP3YpUn4ycruoUA5wM aE2RWWX4NX9U0gWu3z8hpwDuB7LMQtA3KyL7KbHWQ+3NStpdOUQGDeKFxLybKfGg av14USmtjZdpbB25Fkaod6VFwIj7p3T01a4GOd49AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUheeQxS+t5xM+nNpztbrAtH3V0WMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I2MjRkOWNjLWE3YTItNDAwOS04Y2FjLWMwODU2Mjc2NjQ4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXRcuAwDQYJKoZIhvcNAQELBQADggEBACp2Boits9MY0075q7PFxTrtxI6G SCZPaJivEswFy7WazjxGBg7nB2uBdIj2a60v9SJ5JZo1hyLPG8aXNjN5KOFreXNh SLve2lh2QMW50QeZitnRAki3BNQg45o89HBLcNa6kkEtClnGu1I9HKqgq0wda1jJ 3f89sODF+41IINIQoNZfVDRu9whsJ1PRNsTj3M+wv4kLyKjtP4T1QsHQiZXYd8XG ZyYYI1+NC34MFq67pXm1+dVhh5WWnjLQ9FyCWQdMe7WJR64loOjH8aEtFaEch12c jkb46q36ZjlaVPNH88sGV/T0+iSFOMMsa0Em2eOx8bfqc2mOiCLvpJHWbKw= -----END CERTIFICATE-----Generated at Tue May 12 21:43:10 2026 by rpki-client