$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2651bd32-be0e-47db-b5f3-aa5e30add0da.roa File: 2651bd32-be0e-47db-b5f3-aa5e30add0da.roa (raw, json) Hash identifier: uN94l0DQi2fGPgCDPoDOYliCL8gFZt2PN/KNv3eSIhU= Subject key identifier: 6E:B1:29:BB:6C:97:64:E5:88:4B:06:89:8D:7E:3B:FB:82:95:30:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B7FAB535A5E57BBFB5E2E8E0E5F353EECE5ECD5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2651bd32-be0e-47db-b5f3-aa5e30add0da.roa Signing time: Wed 20 May 2026 00:30:12 +0000 ROA not before: Wed 20 May 2026 00:30:12 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.143.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:7f:ab:53:5a:5e:57:bb:fb:5e:2e:8e:0e:5f:35:3e:ec:e5:ec:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:30:12 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=f2be41557ba405c69576229781128967f8f283576cc395da84f50d8bf86b12f4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f1:5a:f3:7c:da:04:e0:ad:0f:f3:dc:7c:2b: ff:9f:6e:d1:92:55:3b:02:c3:58:65:38:11:87:aa: 65:2b:5d:2b:a5:bf:12:8d:b3:34:a2:4d:57:49:96: 1f:e8:da:f1:b2:37:91:8e:94:b2:51:f7:a7:f4:64: ff:e9:63:d9:87:fa:1a:b3:9c:8f:0d:e4:c2:37:97: aa:79:42:f1:bb:2d:65:f0:6c:74:03:e7:6f:1a:3d: 94:0c:16:70:b6:48:d4:6a:dc:fd:fc:0b:01:dc:a3: 76:d4:cd:6f:fd:41:3f:bb:8c:6d:74:ee:5f:c4:1a: e9:67:85:11:62:0a:ba:a6:ae:66:7f:9c:e7:f3:c6: 59:d6:b0:bd:61:15:16:aa:13:6a:f2:d6:c4:1a:82: 99:38:08:64:25:3d:e8:4d:31:30:9c:ae:9d:35:a3: 5f:7a:17:0c:d1:05:28:37:a5:de:43:cd:b4:71:69: 17:24:55:6a:da:de:f3:bc:01:a6:e8:cb:67:94:bc: 65:ca:17:42:e7:8e:10:bd:f1:83:46:64:b8:f3:e0: a8:a1:b7:34:0a:c4:61:66:75:36:d5:c1:7b:a7:be: bd:91:ee:fd:c4:f9:ff:85:5e:e7:da:71:30:9c:a1: a8:d7:92:eb:de:5e:9f:76:0c:84:02:9e:f5:24:04: 2b:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B1:29:BB:6C:97:64:E5:88:4B:06:89:8D:7E:3B:FB:82:95:30:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2651bd32-be0e-47db-b5f3-aa5e30add0da.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.143.0.0/17 Signature Algorithm: sha256WithRSAEncryption 56:39:a0:6c:25:a2:f8:ca:7f:94:df:dc:70:7f:85:c7:58:74: 74:d4:d2:71:ef:73:04:75:ff:95:75:fe:30:8e:76:f7:cd:2e: 80:2c:92:6c:dc:ba:77:6d:ff:70:ab:37:19:e3:b5:49:79:5d: 74:96:2d:76:a8:0c:e8:8e:63:7b:68:bf:45:1d:49:22:ed:67: b6:7f:35:07:4d:2d:fb:f5:31:c5:8d:73:aa:51:54:02:c7:5d: 59:dc:49:32:d9:e0:8d:e5:8c:25:ba:5b:9b:7e:3d:0b:2d:57: 83:f5:7f:66:c2:b7:42:42:8d:03:59:60:9b:92:ee:dd:a4:ba: 41:dd:bc:41:20:0c:14:60:c1:c4:69:bd:67:31:6f:31:38:7e: 1a:f6:39:40:66:de:36:60:b7:be:7b:9d:c4:05:45:cd:05:97: c8:d6:5f:50:43:59:05:02:3c:aa:c0:27:29:b6:c6:4c:13:d4: 4e:3d:7a:c0:4e:07:ef:10:b0:d3:47:e6:3c:7e:a8:aa:35:82: 39:5c:85:a6:a4:4c:5b:91:43:84:25:93:81:4d:04:94:b5:61: f1:3c:02:ba:5c:74:70:1a:2e:4a:f7:ac:63:d3:8a:57:14:9d: 6b:7f:83:ac:76:a3:9b:00:37:13:86:69:45:46:ac:55:1a:00: 46:22:05:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUG3+rU1peV7v7Xi6ODl81Puzl7NUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAzMDEyWhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMmJlNDE1NTdiYTQwNWM2OTU3NjIyOTc4MTEyODk2N2Y4 ZjI4MzU3NmNjMzk1ZGE4NGY1MGQ4YmY4NmIxMmY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDl8VrzfNoE4K0P89x8K/+fbtGSVTsCw1hlOBGHqmUrXSul vxKNszSiTVdJlh/o2vGyN5GOlLJR96f0ZP/pY9mH+hqznI8N5MI3l6p5QvG7LWXw bHQD528aPZQMFnC2SNRq3P38CwHco3bUzW/9QT+7jG107l/EGulnhRFiCrqmrmZ/ nOfzxlnWsL1hFRaqE2ry1sQagpk4CGQlPehNMTCcrp01o196FwzRBSg3pd5DzbRx aRckVWra3vO8Aaboy2eUvGXKF0LnjhC98YNGZLjz4KihtzQKxGFmdTbVwXunvr2R 7v3E+f+FXufacTCcoajXkuveXp92DIQCnvUkBCunAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbrEpu2yXZOWISwaJjX47+4KVMPYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI2NTFiZDMyLWJlMGUtNDdkYi1iNWYzLWFhNWUzMGFkZDBkYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeIjwAwDQYJKoZIhvcNAQELBQADggEBAFY5oGwlovjKf5Tf3HB/hcdYdHTU 0nHvcwR1/5V1/jCOdvfNLoAskmzcundt/3CrNxnjtUl5XXSWLXaoDOiOY3tov0Ud SSLtZ7Z/NQdNLfv1McWNc6pRVALHXVncSTLZ4I3ljCW6W5t+PQstV4P1f2bCt0JC jQNZYJuS7t2kukHdvEEgDBRgwcRpvWcxbzE4fhr2OUBm3jZgt757ncQFRc0Fl8jW X1BDWQUCPKrAJym2xkwT1E49esBOB+8QsNNH5jx+qKo1gjlchaakTFuRQ4Qlk4FN BJS1YfE8ArpcdHAaLkr3rGPTilcUnWt/g6x2o5sANxOGaUVGrFUaAEYiBUk= -----END CERTIFICATE-----Generated at Sat Jun 13 08:16:57 2026 by rpki-client