$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa File: 225a370b-b7ff-4d29-8cc6-b57287923a22.roa (raw, json) Hash identifier: hfQvwLVbLyOMoigOEjF85wyb1dR4cWWsZiho0p6rEL0= Subject key identifier: 05:9A:AE:41:63:44:46:DB:2D:B5:29:2A:2B:E9:E0:A5:1A:C5:3C:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57DB8AF2E7B5802B1084D376A90601FBCA82ECA0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa Signing time: Fri 15 May 2026 01:11:17 +0000 ROA not before: Fri 15 May 2026 01:11:17 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:db:8a:f2:e7:b5:80:2b:10:84:d3:76:a9:06:01:fb:ca:82:ec:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:11:17 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=e535d137689e37d4fd332bf0f2e113579891dc9d6d09af6dc9349e4cae9c2819, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:57:4b:c9:4c:06:df:5e:49:26:27:81:9b:9c: eb:7a:93:14:05:c7:00:a5:98:ff:08:b5:20:bc:f0: d5:27:01:a4:1a:92:5f:f3:ef:48:b6:b1:47:d7:a5: f6:c0:39:42:d1:d1:e9:87:dd:4e:a4:c4:7a:5b:89: fa:6a:10:cc:03:b7:43:67:9f:49:79:4c:f0:cc:18: 17:8d:00:8b:54:e9:6b:af:ab:89:4d:ae:ba:b8:c1: 32:22:8d:8c:d7:5f:e8:a4:a9:b0:81:e7:db:6d:97: ea:db:41:08:40:8c:e4:1c:a5:a3:e3:0b:32:b1:26: f7:39:30:82:5d:7c:77:ed:7e:70:f8:d0:f2:10:dc: 26:14:90:fb:76:4d:e3:b6:36:d9:f2:dc:15:fe:3e: 6b:c4:b0:69:e2:e2:49:1d:5a:85:54:ca:e6:78:7b: db:14:fb:f7:b1:38:02:e8:11:55:78:57:d8:2e:13: 26:16:d6:ae:7e:5a:6d:03:89:9f:13:f0:b8:83:c6: dc:cc:8f:7a:c6:6d:f3:cc:0e:7f:1e:88:6a:94:9b: 9f:c6:88:8f:f2:2a:42:84:13:1b:11:15:6f:67:c7: 12:e2:25:65:83:3b:91:f2:41:64:3c:9f:8b:b9:8f: 2f:6c:99:61:05:57:0a:b7:84:50:3d:95:f6:07:fb: 1a:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9A:AE:41:63:44:46:DB:2D:B5:29:2A:2B:E9:E0:A5:1A:C5:3C:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.4.0/22 Signature Algorithm: sha256WithRSAEncryption 6d:52:b2:dd:b4:70:be:fa:55:ac:d3:57:c8:63:2f:e3:43:ed: fb:16:55:de:79:1a:0b:e6:dc:67:b1:fb:df:fe:33:47:59:bd: db:4c:3d:25:28:06:80:9d:62:ae:97:e2:5e:71:79:98:c0:32: d1:56:be:58:14:0f:a5:5d:b0:92:78:af:55:6a:70:89:6a:ca: 3b:e8:95:81:25:2b:e4:b2:04:55:09:53:3f:5c:64:03:c5:4e: 6e:d4:4b:49:40:49:2a:68:e5:67:14:48:63:d6:eb:82:56:bc: 84:a6:00:c2:6b:29:b3:85:4a:81:02:7c:72:95:00:38:21:89: 6d:61:2c:85:b8:53:d9:92:39:cb:d6:36:0a:eb:b4:9e:60:44: 15:33:c1:50:6b:a9:67:be:21:26:e7:55:2a:98:99:2b:80:0d: f1:23:95:7f:7d:fb:94:ed:89:c2:2c:40:82:81:b6:f1:e0:44: fc:a9:61:6e:22:bb:84:db:d9:95:ac:9a:88:df:46:c3:18:54: bd:37:85:c8:ed:25:ef:9e:e1:ea:05:40:93:ac:a5:ec:72:76: 38:a6:1b:a8:0e:1b:89:df:96:ef:e1:21:82:fa:71:0a:4a:bc: 6e:1b:c5:cb:92:11:9a:ab:b0:bf:90:67:b8:35:d8:aa:f0:b4: 1d:b8:eb:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV9uK8ue1gCsQhNN2qQYB+8qC7KAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDExMTE3WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTM1ZDEzNzY4OWUzN2Q0ZmQzMzJiZjBmMmUxMTM1Nzk4 OTFkYzlkNmQwOWFmNmRjOTM0OWU0Y2FlOWMyODE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDoV0vJTAbfXkkmJ4GbnOt6kxQFxwClmP8ItSC88NUnAaQa kl/z70i2sUfXpfbAOULR0emH3U6kxHpbifpqEMwDt0Nnn0l5TPDMGBeNAItU6Wuv q4lNrrq4wTIijYzXX+ikqbCB59ttl+rbQQhAjOQcpaPjCzKxJvc5MIJdfHftfnD4 0PIQ3CYUkPt2TeO2Ntny3BX+PmvEsGni4kkdWoVUyuZ4e9sU+/exOALoEVV4V9gu EyYW1q5+Wm0DiZ8T8LiDxtzMj3rGbfPMDn8eiGqUm5/GiI/yKkKEExsRFW9nxxLi JWWDO5HyQWQ8n4u5jy9smWEFVwq3hFA9lfYH+xqfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBZquQWNERtsttSkqK+ngpRrFPNcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNWEzNzBiLWI3ZmYtNGQyOS04Y2M2LWI1NzI4NzkyM2EyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsgQwDQYJKoZIhvcNAQELBQADggEBAG1Sst20cL76VazTV8hjL+ND7fsW Vd55Ggvm3Gex+9/+M0dZvdtMPSUoBoCdYq6X4l5xeZjAMtFWvlgUD6VdsJJ4r1Vq cIlqyjvolYElK+SyBFUJUz9cZAPFTm7US0lASSpo5WcUSGPW64JWvISmAMJrKbOF SoECfHKVADghiW1hLIW4U9mSOcvWNgrrtJ5gRBUzwVBrqWe+ISbnVSqYmSuADfEj lX99+5TticIsQIKBtvHgRPypYW4iu4Tb2ZWsmojfRsMYVL03hcjtJe+e4eoFQJOs pexydjimG6gOG4nflu/hIYL6cQpKvG4bxcuSEZqrsL+QZ7g12KrwtB246+Q= -----END CERTIFICATE-----Generated at Sat Jun 13 09:36:35 2026 by rpki-client