$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a57541-e2a8-4a38-99c1-1184be92d553.roa File: a7a57541-e2a8-4a38-99c1-1184be92d553.roa (raw, json) Hash identifier: abtPpJxExnN8ZnXAz+VbL2D3zR3h+A5zgeRvZoLyEcc= Subject key identifier: 89:B9:2E:B8:9D:13:38:87:E9:82:24:61:7A:1F:56:8F:E9:18:B6:24 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 546F7C8DCCF85255E4ED8142E7E35142E5949C8D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a57541-e2a8-4a38-99c1-1184be92d553.roa Signing time: Sun 17 May 2026 00:40:05 +0000 ROA not before: Sun 17 May 2026 00:40:05 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 75.101.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:6f:7c:8d:cc:f8:52:55:e4:ed:81:42:e7:e3:51:42:e5:94:9c:8d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:40:05 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=7c68e4df3ce044b556824258c0958b36674090b5cf6f61dd05097929828be9ea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:40:63:49:c1:88:72:06:fc:ba:94:5a:00:41: 93:82:c2:d3:d0:ee:38:a5:74:29:88:d0:57:79:6a: 2d:20:a8:65:c8:ec:a3:91:06:3e:1b:e5:5d:33:a3: bb:69:d4:fb:8b:8e:4f:af:8e:fe:e6:fa:ea:7e:0c: b6:45:7d:b5:de:e1:f6:23:3e:3d:d9:4a:8f:6c:77: 7f:20:e7:33:d7:7d:f4:d5:1b:ba:60:7d:87:a4:cc: 00:d0:c0:3f:20:56:84:a0:5b:96:83:88:32:7a:58: 6d:72:2b:36:80:21:2a:b0:df:7c:24:0c:19:df:bf: 56:cf:12:57:1e:12:7f:c1:09:0c:54:19:35:fb:0e: 2a:ba:5e:42:66:44:db:c5:11:86:fb:b4:a1:af:a8: 3d:c2:ab:21:f1:39:10:1c:f2:2f:55:c5:ba:de:cb: bc:38:1d:38:ba:0f:e3:54:a5:eb:3e:c4:f5:5c:9e: e8:5f:64:60:22:09:57:52:7e:04:8a:f6:a8:aa:80: 2a:1f:c9:d8:fb:0f:09:e1:64:25:16:de:ce:1c:c2: c3:08:f2:e6:1b:a8:fa:4a:6e:0a:2a:b1:ec:84:ce: 21:28:35:c6:58:bd:9a:73:cb:56:06:01:5d:dd:b7: 07:cc:bf:60:47:13:7c:cb:18:9e:d7:9d:22:77:23: e4:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:B9:2E:B8:9D:13:38:87:E9:82:24:61:7A:1F:56:8F:E9:18:B6:24 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7a57541-e2a8-4a38-99c1-1184be92d553.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.101.161.0/24 Signature Algorithm: sha256WithRSAEncryption b1:84:5d:88:84:ef:b8:83:f7:32:0b:77:b8:da:2d:b4:ad:2d: b9:2c:13:2e:b0:80:b2:f4:b9:c4:ff:5b:b8:fe:1d:70:4f:d5: 04:27:85:69:16:9f:5a:43:69:31:7c:1c:6f:9b:0a:88:b4:d0: 37:15:bb:0e:a7:46:42:a4:8d:a8:86:b6:4c:7c:14:27:21:84: e2:88:ee:c6:43:f8:c5:41:b5:12:71:51:55:dd:d8:c9:f0:f9: 43:d3:6c:08:88:eb:52:90:7e:34:0a:e8:a8:1c:5b:b8:a2:ee: fa:4d:a5:58:c8:38:e2:39:12:85:f4:03:e5:0c:1e:f2:54:03: ce:18:d9:a0:ff:89:5b:59:e8:4f:0c:09:2b:ab:78:8f:49:39: 09:1d:e3:88:7f:9d:4d:a1:0b:0e:fc:d7:94:cc:0d:9d:1d:84: af:c2:8c:0e:64:61:50:e7:de:c1:89:d9:d9:5d:d1:a3:5f:b5: 41:48:22:b3:6e:fa:db:03:74:24:13:4f:6f:37:28:37:b0:46: b4:48:25:30:ba:84:dc:e3:54:6e:16:cd:02:aa:36:76:fe:47: 55:3d:cf:8c:04:ce:9d:62:28:b7:6e:3f:5c:6c:4d:ad:20:62: 68:ee:e0:2d:4c:9c:0b:50:28:b7:da:99:88:f2:a5:81:0c:e1: b0:07:2a:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVG98jcz4UlXk7YFC5+NRQuWUnI0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA0MDA1WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzY4ZTRkZjNjZTA0NGI1NTY4MjQyNThjMDk1OGIzNjY3 NDA5MGI1Y2Y2ZjYxZGQwNTA5NzkyOTgyOGJlOWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJQGNJwYhyBvy6lFoAQZOCwtPQ7jildCmI0Fd5ai0gqGXI 7KORBj4b5V0zo7tp1PuLjk+vjv7m+up+DLZFfbXe4fYjPj3ZSo9sd38g5zPXffTV G7pgfYekzADQwD8gVoSgW5aDiDJ6WG1yKzaAISqw33wkDBnfv1bPElceEn/BCQxU GTX7Diq6XkJmRNvFEYb7tKGvqD3CqyHxORAc8i9Vxbrey7w4HTi6D+NUpes+xPVc nuhfZGAiCVdSfgSK9qiqgCofydj7DwnhZCUW3s4cwsMI8uYbqPpKbgoqseyEziEo NcZYvZpzy1YGAV3dtwfMv2BHE3zLGJ7XnSJ3I+QvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUibkuuJ0TOIfpgiRheh9Wj+kYtiQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3YTU3NTQxLWUyYTgtNGEzOC05OWMxLTExODRiZTkyZDU1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABLZaEwDQYJKoZIhvcNAQELBQADggEBALGEXYiE77iD9zILd7jaLbStLbks Ey6wgLL0ucT/W7j+HXBP1QQnhWkWn1pDaTF8HG+bCoi00DcVuw6nRkKkjaiGtkx8 FCchhOKI7sZD+MVBtRJxUVXd2Mnw+UPTbAiI61KQfjQK6KgcW7ii7vpNpVjIOOI5 EoX0A+UMHvJUA84Y2aD/iVtZ6E8MCSureI9JOQkd44h/nU2hCw7815TMDZ0dhK/C jA5kYVDn3sGJ2dld0aNftUFIIrNu+tsDdCQTT283KDewRrRIJTC6hNzjVG4WzQKq Nnb+R1U9z4wEzp1iKLduP1xsTa0gYmju4C1MnAtQKLfamYjypYEM4bAHKmw= -----END CERTIFICATE-----Generated at Sat Jun 13 08:18:17 2026 by rpki-client