$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7cedeac-0833-47ed-853e-0aaeed16cf21.roa File: c7cedeac-0833-47ed-853e-0aaeed16cf21.roa (raw, json) Hash identifier: SG6IYIn7tV/fLIOXQEXJm0/GZiUrtvoWujLU3Qe9KAU= Subject key identifier: A4:66:2B:A2:65:33:04:B4:48:68:ED:8A:35:8F:F0:D0:10:D0:BD:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1AE6862BE4B6129080AA5B78C50C37A5E155DBCE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7cedeac-0833-47ed-853e-0aaeed16cf21.roa Signing time: Mon 04 May 2026 00:11:19 +0000 ROA not before: Mon 04 May 2026 00:11:19 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.248.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:e6:86:2b:e4:b6:12:90:80:aa:5b:78:c5:0c:37:a5:e1:55:db:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:11:19 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=a1ecb910731afb0991015a0f6f8968ea4982ff02b165c8e6e879be67e2965304, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:46:ef:6f:e3:bc:6b:91:17:73:c6:d3:5c:38: ea:96:21:bb:aa:0f:b0:18:b8:ef:4a:80:94:bc:78: a6:2f:76:f4:94:e1:a0:80:eb:23:64:80:ad:c5:5d: e2:7f:0a:a4:6e:fe:ed:e9:12:91:2a:6b:9a:f0:28: 07:ef:a8:af:8f:79:7a:d3:c2:f9:41:d0:17:72:a5: 9e:a0:b1:ac:e6:4e:2a:fa:b5:1b:82:b7:8a:c6:17: c3:da:08:9a:36:e0:66:67:0d:4e:79:55:7e:a5:86: 9b:8e:39:54:79:07:44:e8:9e:d7:02:f2:3e:3c:84: c9:cf:51:f2:11:be:8b:76:63:94:0b:2f:40:c1:39: e5:93:92:a6:64:55:55:8d:35:89:47:17:a5:01:9d: b1:f7:48:e3:c3:a5:c6:e6:58:3b:02:34:f6:7e:d9: e1:16:16:3f:21:56:a6:d4:81:c0:de:71:da:a7:0f: c8:04:3b:3c:a0:d2:5c:29:7d:da:91:9e:53:66:79: 83:c5:cd:41:9a:41:f2:da:84:e5:2b:f6:98:a3:a8: 40:7f:bf:7a:25:b6:a4:4f:a0:af:e9:2e:3d:0a:c1: ac:74:e6:f6:8d:39:6e:4b:36:97:05:86:df:51:5c: c4:c4:bf:19:3c:a7:38:2d:d8:70:76:d0:07:c0:c3: 29:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:66:2B:A2:65:33:04:B4:48:68:ED:8A:35:8F:F0:D0:10:D0:BD:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7cedeac-0833-47ed-853e-0aaeed16cf21.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.248.0/21 Signature Algorithm: sha256WithRSAEncryption a4:a7:93:c1:f1:aa:19:f3:4d:18:cc:a7:e0:70:b2:71:16:36: 1f:27:d3:c6:74:d1:49:d5:a0:96:a1:9a:1a:19:25:27:20:1a: cb:96:76:f9:c0:1f:ce:cf:ea:29:44:7c:43:20:d7:93:8e:47: fd:f4:93:40:22:71:ea:b5:3a:72:57:3d:4b:83:26:48:bf:79: 6d:6a:cd:3c:85:32:e1:12:cd:a5:a1:75:ca:07:4b:46:d7:56: 40:2b:57:ab:1d:18:ce:15:64:b3:5f:68:63:39:f9:f8:49:cd: a7:a1:b0:48:88:63:e7:6a:f6:97:2d:75:e8:17:ee:83:50:8e: 7a:81:b9:97:e5:72:7f:d2:a3:ed:4e:0a:b0:77:c5:a0:1b:1e: 8d:f0:ce:ea:2f:ae:99:85:c4:67:f4:94:94:e7:35:4f:9d:6a: f0:44:49:97:25:c2:15:2a:67:fc:36:97:68:10:e1:19:34:99: d5:6c:48:f8:61:fa:bf:e6:68:02:47:34:e8:ac:8d:ba:a5:c9: 8c:52:8e:5e:1a:16:80:ae:6a:ac:6e:5b:03:cf:25:69:1c:aa: f8:af:66:60:85:8f:ef:fc:e4:cc:2d:36:53:84:da:4d:45:bc: 3b:b3:b6:2c:f2:67:66:98:3f:57:e9:77:4e:ea:89:5b:88:bf: 55:21:f1:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGuaGK+S2EpCAqlt4xQw3peFV284wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAxMTE5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWVjYjkxMDczMWFmYjA5OTEwMTVhMGY2Zjg5NjhlYTQ5 ODJmZjAyYjE2NWM4ZTZlODc5YmU2N2UyOTY1MzA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiRu9v47xrkRdzxtNcOOqWIbuqD7AYuO9KgJS8eKYvdvSU 4aCA6yNkgK3FXeJ/CqRu/u3pEpEqa5rwKAfvqK+PeXrTwvlB0BdypZ6gsazmTir6 tRuCt4rGF8PaCJo24GZnDU55VX6lhpuOOVR5B0TontcC8j48hMnPUfIRvot2Y5QL L0DBOeWTkqZkVVWNNYlHF6UBnbH3SOPDpcbmWDsCNPZ+2eEWFj8hVqbUgcDecdqn D8gEOzyg0lwpfdqRnlNmeYPFzUGaQfLahOUr9pijqEB/v3oltqRPoK/pLj0Kwax0 5vaNOW5LNpcFht9RXMTEvxk8pzgt2HB20AfAwylLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpGYromUzBLRIaO2KNY/w0BDQvX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M3Y2VkZWFjLTA4MzMtNDdlZC04NTNlLTBhYWVlZDE2Y2YyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNgPgwDQYJKoZIhvcNAQELBQADggEBAKSnk8HxqhnzTRjMp+BwsnEWNh8n 08Z00UnVoJahmhoZJScgGsuWdvnAH87P6ilEfEMg15OOR/30k0Aiceq1OnJXPUuD Jki/eW1qzTyFMuESzaWhdcoHS0bXVkArV6sdGM4VZLNfaGM5+fhJzaehsEiIY+dq 9pctdegX7oNQjnqBuZflcn/So+1OCrB3xaAbHo3wzuovrpmFxGf0lJTnNU+davBE SZclwhUqZ/w2l2gQ4Rk0mdVsSPhh+r/maAJHNOisjbqlyYxSjl4aFoCuaqxuWwPP JWkcqvivZmCFj+/85MwtNlOE2k1FvDuztizyZ2aYP1fpd07qiVuIv1Uh8Ys= -----END CERTIFICATE-----Generated at Wed May 13 08:17:07 2026 by rpki-client