$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa File: 2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa (raw, json) Hash identifier: l2Ljn+aCTDmw9Z/GKTMFQstSS14IJkjEOeZZI42otw4= Subject key identifier: 28:B4:DA:2B:BC:29:C7:C6:BF:53:71:49:AC:B0:43:39:E2:C0:8B:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4231FF3A2DCCB42F6E2BB380A06FBB4972D07146 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa Signing time: Fri 15 May 2026 01:11:19 +0000 ROA not before: Fri 15 May 2026 01:11:19 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.4.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:31:ff:3a:2d:cc:b4:2f:6e:2b:b3:80:a0:6f:bb:49:72:d0:71:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:11:19 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=266d6c3877c4ff0c0dec44d416362fb6370dd65fe3f58e4e58933d0926a29cb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:22:69:e6:48:0f:d3:a0:1a:b5:f8:95:f6:92: 6e:c0:ec:33:6f:63:45:1f:1b:94:cd:08:1e:8f:92: 27:18:f1:7c:40:a2:b2:8c:b8:5d:b8:85:e9:c0:c7: 88:e5:61:6f:68:d4:9e:c4:11:37:bf:59:96:c3:4f: a0:c0:86:31:2a:ad:c6:d0:04:22:8b:14:a7:fc:9c: 6d:05:d3:82:26:5b:0b:5b:a3:51:68:ca:a7:0e:ec: d6:81:72:c8:e5:a6:d1:d4:3b:ad:5c:13:7b:f7:ff: 16:29:3d:74:dc:d2:15:b4:1f:b3:33:67:51:34:89: e0:0e:41:cd:88:ba:cb:46:d1:8a:dd:b1:0b:3e:87: cd:9a:a1:98:8b:b7:ca:ad:d1:48:7e:2f:ac:46:c8: b1:a6:fe:4a:9a:80:fd:ef:cf:15:1b:f1:58:d1:da: a6:2a:a5:99:eb:ff:c1:bb:20:e2:97:cb:35:71:e0: b3:72:77:db:64:04:b8:3f:1e:7e:03:aa:3c:5a:3b: 27:13:24:9c:e9:cf:75:16:3c:57:6d:28:61:6c:18: 72:82:b8:df:c0:5e:63:ef:c4:3d:49:5f:d2:92:5d: 64:91:a5:bc:10:14:3a:71:e3:d8:c8:54:88:9d:6f: a9:45:a5:25:a3:36:14:c8:8d:a3:5e:fa:18:81:90: f0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:B4:DA:2B:BC:29:C7:C6:BF:53:71:49:AC:B0:43:39:E2:C0:8B:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2a4a5c37-6429-4730-82fb-4ab5c589cd7d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.4.0/22 Signature Algorithm: sha256WithRSAEncryption 94:a2:30:97:a4:e1:9a:af:6b:64:9b:e9:ab:13:51:40:f3:0e: 02:3a:35:d6:1d:b3:39:f5:b0:8a:82:b6:5e:6c:75:1f:37:18: 39:95:b2:25:90:06:a9:64:6b:4a:94:8d:11:50:e5:1a:2f:0f: 1e:ed:e5:e6:75:57:6f:92:d9:78:b4:5e:57:73:85:72:c6:cb: 12:a6:44:be:31:e9:36:9d:31:2e:2c:0d:0b:0e:60:b8:e3:6f: d8:d0:07:a5:7f:94:bc:28:7a:85:e8:1a:cb:96:3b:2c:31:94: 0a:3f:25:f9:ab:0e:18:a2:31:77:44:03:2b:1a:f3:9e:d9:ca: 34:b8:b2:bb:0b:8c:81:a3:44:e5:f5:fe:32:c3:28:a5:22:30: dc:01:53:16:0c:ad:7f:32:9a:1f:01:2d:f2:6b:a4:19:73:30: e5:fd:c5:e0:e8:df:e9:1b:32:e9:27:28:be:42:e5:e3:72:7d: 6b:e2:44:6c:12:b8:12:4e:b2:31:73:b9:8f:f4:c8:2e:d3:ed: f9:04:1d:46:bf:cf:8e:6d:4d:48:cb:5c:da:4e:b9:2a:f6:cd: f1:19:4c:a5:6f:cd:b4:b4:86:41:b9:74:6e:76:66:f0:69:53: 41:aa:ca:3e:d8:ca:1c:3c:0e:dc:16:d4:e4:93:78:a6:77:ba: 4b:ad:6c:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQjH/Oi3MtC9uK7OAoG+7SXLQcUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDExMTE5WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNjZkNmMzODc3YzRmZjBjMGRlYzQ0ZDQxNjM2MmZiNjM3 MGRkNjVmZTNmNThlNGU1ODkzM2QwOTI2YTI5Y2I0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVImnmSA/ToBq1+JX2km7A7DNvY0UfG5TNCB6PkicY8XxA orKMuF24henAx4jlYW9o1J7EETe/WZbDT6DAhjEqrcbQBCKLFKf8nG0F04ImWwtb o1FoyqcO7NaBcsjlptHUO61cE3v3/xYpPXTc0hW0H7MzZ1E0ieAOQc2IustG0Yrd sQs+h82aoZiLt8qt0Uh+L6xGyLGm/kqagP3vzxUb8VjR2qYqpZnr/8G7IOKXyzVx 4LNyd9tkBLg/Hn4DqjxaOycTJJzpz3UWPFdtKGFsGHKCuN/AXmPvxD1JX9KSXWSR pbwQFDpx49jIVIidb6lFpSWjNhTIjaNe+hiBkPDBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKLTaK7wpx8a/U3FJrLBDOeLAi8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJhNGE1YzM3LTY0MjktNDczMC04MmZiLTRhYjVjNTg5Y2Q3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKdrwQwDQYJKoZIhvcNAQELBQADggEBAJSiMJek4Zqva2Sb6asTUUDzDgI6 NdYdszn1sIqCtl5sdR83GDmVsiWQBqlka0qUjRFQ5RovDx7t5eZ1V2+S2Xi0Xldz hXLGyxKmRL4x6TadMS4sDQsOYLjjb9jQB6V/lLwoeoXoGsuWOywxlAo/JfmrDhii MXdEAysa857ZyjS4srsLjIGjROX1/jLDKKUiMNwBUxYMrX8ymh8BLfJrpBlzMOX9 xeDo3+kbMuknKL5C5eNyfWviRGwSuBJOsjFzuY/0yC7T7fkEHUa/z45tTUjLXNpO uSr2zfEZTKVvzbS0hkG5dG52ZvBpU0Gqyj7Yyhw8DtwW1OSTeKZ3ukutbL0= -----END CERTIFICATE-----Generated at Sat Jun 13 05:49:52 2026 by rpki-client