$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/525f3bc4-4f60-44b0-a295-9aaf4b6284e6.roa File: 525f3bc4-4f60-44b0-a295-9aaf4b6284e6.roa (raw, json) Hash identifier: iWO1kVaZdUbEEzqpChfEzSB/dizyw+6Hcd9SZCiB5nI= Subject key identifier: FB:4E:A1:A9:AB:E2:97:D3:49:72:AA:63:F2:EC:5A:59:B3:8C:2C:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40D9A87DAE5892BB003CD75071C82D9F1541ABC9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/525f3bc4-4f60-44b0-a295-9aaf4b6284e6.roa Signing time: Fri 17 Apr 2026 00:00:50 +0000 ROA not before: Fri 17 Apr 2026 00:00:50 +0000 ROA not after: Thu 16 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.107.218.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:d9:a8:7d:ae:58:92:bb:00:3c:d7:50:71:c8:2d:9f:15:41:ab:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 17 00:00:50 2026 GMT Not After : Jul 16 23:59:59 2026 GMT Subject: serialNumber=cabdad02d8e15e0b234cb307bd425fe97cdc82954052eea7a3ad989f1a7468bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:a3:6a:34:c2:cb:8b:04:68:75:61:da:bf:60: 70:18:77:83:87:02:ea:bb:41:f8:47:42:81:8c:d7: 07:90:88:c1:80:d4:ff:0c:eb:9f:61:76:55:a3:62: 75:2b:a0:62:66:61:9d:19:25:b2:48:3f:fd:25:e8: 76:ee:8d:82:31:cc:f1:e8:cd:6b:35:e4:0f:34:db: c1:77:e0:57:37:f0:4c:1e:47:c3:61:e4:6a:27:bd: 34:16:f4:69:31:ae:d4:c2:1b:62:bd:ab:7a:79:b1: 9c:7a:03:75:16:f2:78:77:50:36:f2:e2:de:84:71: 5f:86:29:75:23:44:72:3a:43:e2:a8:19:b3:d0:ac: f0:ae:a1:0c:a4:14:89:0f:e9:8f:2d:d7:b2:e7:6b: 2a:b0:72:b9:59:e2:93:ba:57:7c:26:fd:35:a5:82: 61:43:ec:04:0b:fb:78:8a:60:13:bb:23:62:29:4b: 49:a1:6e:7d:bd:97:20:29:b6:79:64:7a:42:f3:87: 1f:cc:df:11:db:bf:0f:57:0c:80:5a:5c:e3:ed:fe: 16:42:d3:5f:ba:14:f8:85:b9:1f:b5:60:07:f1:65: 0d:2a:fd:39:a2:09:e1:41:33:53:73:8c:a3:f9:84: 4a:3e:0d:30:50:1e:2e:d3:67:e5:fb:20:bf:2c:2c: dd:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:4E:A1:A9:AB:E2:97:D3:49:72:AA:63:F2:EC:5A:59:B3:8C:2C:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/525f3bc4-4f60-44b0-a295-9aaf4b6284e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.107.218.0/24 Signature Algorithm: sha256WithRSAEncryption d5:20:53:f4:a7:10:2b:79:a2:47:61:57:da:86:ad:4a:f0:61: 10:a0:27:19:8f:d2:62:f8:e1:3e:09:c0:bd:09:f6:c2:eb:99: 69:a5:f4:09:a5:93:02:90:88:b0:c3:13:2b:8a:c2:b8:d6:a9: 0c:c5:2e:b8:2c:2c:8b:7d:cc:58:fe:77:34:06:e9:81:72:2f: 79:b5:89:c4:01:3c:91:58:b1:32:a6:6a:b1:c7:a8:da:d5:08: db:4b:8c:d6:25:5f:be:f5:2a:52:5c:43:59:48:f3:78:2e:a1: 2b:88:5e:5e:50:ce:81:68:89:e1:ee:1d:cb:45:52:c2:44:89: 3f:b6:66:0f:41:c8:75:19:b0:11:db:39:9d:03:99:9f:14:b2: 1c:5a:87:70:78:3f:8e:88:a0:5d:48:13:31:ef:27:2b:15:bd: 3f:c3:88:d6:e5:72:14:0c:ab:c3:3a:dc:b4:a2:53:53:7d:f1: d0:18:66:41:84:2c:6f:46:ad:ce:a2:6d:80:43:3d:ce:32:83: ee:7a:0c:b4:91:54:8f:08:75:0c:7d:2e:6e:07:da:5b:7c:45: 4a:4c:93:e1:7e:f8:50:82:13:ae:e7:05:1c:94:d5:8d:a2:58: c7:82:3c:05:fc:e0:97:58:ee:56:d2:ac:ce:0a:2d:0f:8d:89: f8:da:6e:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQNmofa5YkrsAPNdQccgtnxVBq8kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDE3MDAwMDUwWhcNMjYwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWJkYWQwMmQ4ZTE1ZTBiMjM0Y2IzMDdiZDQyNWZlOTdj ZGM4Mjk1NDA1MmVlYTdhM2FkOTg5ZjFhNzQ2OGJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzo2o0wsuLBGh1Ydq/YHAYd4OHAuq7QfhHQoGM1weQiMGA 1P8M659hdlWjYnUroGJmYZ0ZJbJIP/0l6HbujYIxzPHozWs15A8028F34Fc38Ewe R8Nh5GonvTQW9GkxrtTCG2K9q3p5sZx6A3UW8nh3UDby4t6EcV+GKXUjRHI6Q+Ko GbPQrPCuoQykFIkP6Y8t17LnayqwcrlZ4pO6V3wm/TWlgmFD7AQL+3iKYBO7I2Ip S0mhbn29lyAptnlkekLzhx/M3xHbvw9XDIBaXOPt/hZC01+6FPiFuR+1YAfxZQ0q /TmiCeFBM1NzjKP5hEo+DTBQHi7TZ+X7IL8sLN3/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+06hqavil9NJcqpj8uxaWbOMLMgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyNWYzYmM0LTRmNjAtNDRiMC1hMjk1LTlhYWY0YjYyODRlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADRa9owDQYJKoZIhvcNAQELBQADggEBANUgU/SnECt5okdhV9qGrUrwYRCg JxmP0mL44T4JwL0J9sLrmWml9AmlkwKQiLDDEyuKwrjWqQzFLrgsLIt9zFj+dzQG 6YFyL3m1icQBPJFYsTKmarHHqNrVCNtLjNYlX771KlJcQ1lI83guoSuIXl5QzoFo ieHuHctFUsJEiT+2Zg9ByHUZsBHbOZ0DmZ8Ushxah3B4P46IoF1IEzHvJysVvT/D iNblchQMq8M63LSiU1N98dAYZkGELG9Grc6ibYBDPc4yg+56DLSRVI8IdQx9Lm4H 2lt8RUpMk+F++FCCE67nBRyU1Y2iWMeCPAX84JdY7lbSrM4KLQ+NifjabtE= -----END CERTIFICATE-----Generated at Sun Apr 19 08:47:13 2026 by rpki-client