$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa File: 5238a6c5-a106-4b94-9f46-2c619db863c6.roa (raw, json) Hash identifier: LU5riqmmCsDXjRxJJsyPQ5Wfzavr36ESZ5b8gqkRd3g= Subject key identifier: 93:E7:1E:FB:D6:73:B2:49:43:8E:98:07:E2:5E:E2:A2:8A:00:00:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 535A02E05139277781503F66DB1DB52CEEE8CA6F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa Signing time: Sat 16 May 2026 00:21:17 +0000 ROA not before: Sat 16 May 2026 00:21:17 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.150.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:5a:02:e0:51:39:27:77:81:50:3f:66:db:1d:b5:2c:ee:e8:ca:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:21:17 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=229d0e2d7626053c94b106851b8490cc41f2b9cc75993ff0faaab332c7ebf7e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:50:d3:4a:f8:da:a0:af:24:74:74:94:70:32: 01:10:53:6e:32:36:16:63:27:90:c6:6a:33:f4:36: 25:5b:47:f5:25:a4:2d:70:3f:50:c1:48:15:24:67: 07:e2:c7:18:71:8f:1d:e9:96:de:5b:90:4f:19:6a: f0:6c:a9:b1:f7:f7:3e:ad:a3:21:d5:06:1e:96:3a: 2c:c9:eb:e2:9b:d5:d0:d0:d3:ad:f6:77:da:de:d1: 68:c2:90:f2:dd:2d:c2:86:cb:f7:37:fd:b5:ff:0a: 28:fd:95:c4:64:d3:4b:b4:dc:65:e0:c6:08:d4:48: 25:e2:6d:f6:e3:30:fb:30:4d:13:7f:f7:5a:c6:58: 11:5f:7c:cc:2c:d7:ea:33:4b:29:e9:9b:88:84:06: 9a:f9:5c:15:d9:9e:5f:f3:be:95:83:21:0e:09:65: 58:d0:20:74:1e:9f:8a:4c:88:b7:28:08:c7:84:ee: 96:7c:d3:5d:d6:69:bf:48:85:d7:36:ac:cb:98:b5: 0f:4f:c5:0e:e6:49:3c:98:ae:3f:82:77:07:02:0e: 51:a6:8c:86:e5:fe:cf:18:17:ca:2c:38:b8:7d:ae: 53:c0:0d:be:3f:dd:42:58:6d:e2:6f:79:c6:57:59: 8d:e3:60:f9:77:e6:5c:1f:3d:36:fb:b8:fe:e4:56: e0:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:E7:1E:FB:D6:73:B2:49:43:8E:98:07:E2:5E:E2:A2:8A:00:00:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5238a6c5-a106-4b94-9f46-2c619db863c6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.150.192.0/19 Signature Algorithm: sha256WithRSAEncryption b2:37:34:ee:2a:d0:7c:0c:bd:6b:70:cd:79:47:37:17:c4:60: 56:38:9f:05:84:b0:02:89:df:b1:74:be:1e:ee:ff:d0:ce:d9: af:1f:a8:4a:49:a1:d8:7d:fe:87:4f:bf:73:e8:73:9c:d2:be: 91:f7:b5:3a:61:e6:53:dc:e3:8a:b8:b9:45:01:6e:dc:33:c8: 6b:4b:ac:cc:98:10:3c:7c:f1:c2:ec:55:2c:5f:35:48:88:5c: 43:68:93:8b:64:0d:50:93:fd:99:fd:d5:10:7a:68:1f:4f:64: 70:98:90:e6:86:ab:7c:09:6b:8a:74:ca:d7:6f:62:a7:1a:81: 5d:4f:67:e0:f8:9a:e1:b6:92:48:ad:1e:3b:25:a5:6d:dd:c2: 38:68:ef:c6:c4:85:6a:b0:95:ed:a8:b0:4d:b6:af:2d:17:ee: 4d:72:06:2b:97:4c:86:8a:e0:2f:5e:d4:8e:79:61:55:df:a6: 18:d1:6a:e7:2b:48:07:d5:2a:96:ff:3d:c8:e6:ee:9d:83:63: b1:b2:b0:f9:a4:d3:73:49:2a:5e:b6:15:13:18:50:ff:39:36: 83:af:c3:9f:2e:c7:12:4d:20:15:9d:8c:80:31:71:15:aa:d2: 0e:5f:ae:e9:f4:23:eb:4a:51:27:86:2a:86:cf:53:8e:e7:99: 8e:6c:04:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU1oC4FE5J3eBUD9m2x21LO7oym8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDAyMTE3WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjlkMGUyZDc2MjYwNTNjOTRiMTA2ODUxYjg0OTBjYzQx ZjJiOWNjNzU5OTNmZjBmYWFhYjMzMmM3ZWJmN2U4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgUNNK+NqgryR0dJRwMgEQU24yNhZjJ5DGajP0NiVbR/Ul pC1wP1DBSBUkZwfixxhxjx3plt5bkE8ZavBsqbH39z6toyHVBh6WOizJ6+Kb1dDQ 0632d9re0WjCkPLdLcKGy/c3/bX/Cij9lcRk00u03GXgxgjUSCXibfbjMPswTRN/ 91rGWBFffMws1+ozSynpm4iEBpr5XBXZnl/zvpWDIQ4JZVjQIHQen4pMiLcoCMeE 7pZ8013Wab9Ihdc2rMuYtQ9PxQ7mSTyYrj+CdwcCDlGmjIbl/s8YF8osOLh9rlPA Db4/3UJYbeJvecZXWY3jYPl35lwfPTb7uP7kVuBvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk+ce+9ZzsklDjpgH4l7ioooAAF8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMzhhNmM1LWExMDYtNGI5NC05ZjQ2LTJjNjE5ZGI4NjNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrlsAwDQYJKoZIhvcNAQELBQADggEBALI3NO4q0HwMvWtwzXlHNxfEYFY4 nwWEsAKJ37F0vh7u/9DO2a8fqEpJodh9/odPv3Poc5zSvpH3tTph5lPc44q4uUUB btwzyGtLrMyYEDx88cLsVSxfNUiIXENok4tkDVCT/Zn91RB6aB9PZHCYkOaGq3wJ a4p0ytdvYqcagV1PZ+D4muG2kkitHjslpW3dwjho78bEhWqwle2osE22ry0X7k1y BiuXTIaK4C9e1I55YVXfphjRaucrSAfVKpb/Pcjm7p2DY7GysPmk03NJKl62FRMY UP85NoOvw58uxxJNIBWdjIAxcRWq0g5frun0I+tKUSeGKobPU47nmY5sBJ4= -----END CERTIFICATE-----Generated at Sat Jun 13 08:30:08 2026 by rpki-client