$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa File: ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa (raw, json) Hash identifier: fK8qSx3/iR8WHZNc5Gd2pY9p/Gk7xsVDdBWXo0YcnvY= Subject key identifier: 04:39:D8:2F:E7:29:20:BA:76:20:7B:A8:44:2C:BF:65:38:A9:44:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3DAFFB585826B7CC4EDA391F8BBDEB2EC78B4F8C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa Signing time: Tue 28 Apr 2026 00:30:16 +0000 ROA not before: Tue 28 Apr 2026 00:30:16 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 152.24.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:af:fb:58:58:26:b7:cc:4e:da:39:1f:8b:bd:eb:2e:c7:8b:4f:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:30:16 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=6af8c1a1599eacd8f3a3737e2380f8a96cef06bfbab1ab91ea2107934311e4e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:6d:39:c8:5e:6d:b0:0e:c3:ba:b6:0f:5f:4a: 81:4f:13:2d:59:4d:26:45:21:32:47:39:5c:55:03: f1:42:a0:1e:31:df:51:f1:ec:df:42:84:3f:d1:a4: 3a:d7:ad:2b:84:3c:06:37:3b:84:84:73:fb:b8:5f: e2:64:0b:ff:04:b6:20:43:58:0d:54:5b:5f:74:ed: ab:cb:bf:86:c0:07:ae:19:5c:34:32:ac:b2:ab:bd: c2:0b:75:03:72:40:54:14:41:91:34:72:ac:c6:85: 99:42:16:ab:b6:b0:1b:c3:45:3d:6b:1f:fd:cf:8c: d0:0d:b3:30:cf:fa:af:d8:5e:54:2b:54:60:d0:ba: 0f:17:9a:07:46:cf:c1:00:67:72:e4:7b:a8:d1:04: 7f:20:d1:e2:0c:4c:6a:49:6b:59:db:1c:6a:28:f2: ff:51:2e:a8:2a:fd:59:42:48:0c:c7:80:c1:69:ef: a0:1d:80:0a:2f:ff:5e:48:3d:6a:eb:8f:5b:c7:1f: b9:e4:90:76:33:ed:20:30:27:35:a7:df:e0:1b:ba: ff:39:5c:48:85:2f:da:08:ef:d8:86:b7:56:ee:83: e0:1c:82:eb:6f:9e:1b:fb:f0:bb:93:38:20:d4:63: e4:f5:8d:c2:8f:39:0f:31:19:63:a7:11:05:30:37: 8a:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:39:D8:2F:E7:29:20:BA:76:20:7B:A8:44:2C:BF:65:38:A9:44:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ce802f82-6d5a-453e-b8c9-f5ee559bf8c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.24.0.0/16 Signature Algorithm: sha256WithRSAEncryption 87:7c:84:14:6c:21:d1:30:4d:c4:d5:4a:1d:52:30:de:5b:a8: c7:b3:26:e3:cb:0e:b8:eb:73:90:76:e6:2c:bc:c4:da:ad:73: 10:18:ed:a0:fa:98:44:0d:2b:35:ca:ab:3e:bf:25:9e:8a:d8: 78:ec:0f:cf:c0:92:e6:14:83:1e:c5:c9:b7:40:dc:21:cc:14: d3:02:45:10:cb:3a:05:ce:a3:3f:91:c4:91:8a:10:5f:f1:1f: 6c:e1:84:a4:b2:c5:b8:c5:4b:32:e8:75:56:ee:87:de:c4:eb: a1:3f:dc:40:09:c9:f7:93:46:e1:f9:b2:73:96:ac:79:db:13: 56:35:78:66:e5:2e:c8:fd:48:9d:2e:a3:cb:77:58:6a:a8:a3: a8:9e:b7:24:81:4b:f2:d6:5f:2f:ee:3b:b4:55:ca:9b:0c:72: b8:71:73:26:23:74:be:a4:6e:0f:5a:dc:d1:95:f5:d6:a3:23: 9b:ec:27:4c:6b:b8:8e:71:ee:ad:fc:b6:9a:2e:97:84:d3:4b: 5f:1a:15:a3:be:0b:58:ec:6e:a8:30:39:02:3e:ed:00:9d:d1: 3d:e0:40:b9:61:b7:a7:f9:0d:13:22:26:10:24:28:24:7f:96: 7b:be:10:ee:fb:37:e7:cf:37:a0:f3:c8:06:eb:71:a0:ce:37: b9:0c:02:4d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPa/7WFgmt8xO2jkfi73rLseLT4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAzMDE2WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWY4YzFhMTU5OWVhY2Q4ZjNhMzczN2UyMzgwZjhhOTZj ZWYwNmJmYmFiMWFiOTFlYTIxMDc5MzQzMTFlNGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdbTnIXm2wDsO6tg9fSoFPEy1ZTSZFITJHOVxVA/FCoB4x 31Hx7N9ChD/RpDrXrSuEPAY3O4SEc/u4X+JkC/8EtiBDWA1UW1907avLv4bAB64Z XDQyrLKrvcILdQNyQFQUQZE0cqzGhZlCFqu2sBvDRT1rH/3PjNANszDP+q/YXlQr VGDQug8XmgdGz8EAZ3Lke6jRBH8g0eIMTGpJa1nbHGoo8v9RLqgq/VlCSAzHgMFp 76AdgAov/15IPWrrj1vHH7nkkHYz7SAwJzWn3+Abuv85XEiFL9oI79iGt1bug+Ac gutvnhv78LuTOCDUY+T1jcKPOQ8xGWOnEQUwN4p5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBDnYL+cpILp2IHuoRCy/ZTipROUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NlODAyZjgyLTZkNWEtNDUzZS1iOGM5LWY1ZWU1NTliZjhjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCYGDANBgkqhkiG9w0BAQsFAAOCAQEAh3yEFGwh0TBNxNVKHVIw3luox7Mm 48sOuOtzkHbmLLzE2q1zEBjtoPqYRA0rNcqrPr8lnorYeOwPz8CS5hSDHsXJt0Dc IcwU0wJFEMs6Bc6jP5HEkYoQX/EfbOGEpLLFuMVLMuh1Vu6H3sTroT/cQAnJ95NG 4fmyc5asedsTVjV4ZuUuyP1InS6jy3dYaqijqJ63JIFL8tZfL+47tFXKmwxyuHFz JiN0vqRuD1rc0ZX11qMjm+wnTGu4jnHurfy2mi6XhNNLXxoVo74LWOxuqDA5Aj7t AJ3RPeBAuWG3p/kNEyImECQoJH+We74Q7vs35883oPPIButxoM43uQwCTQ== -----END CERTIFICATE-----Generated at Wed May 13 07:19:14 2026 by rpki-client