$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa File: a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa (raw, json) Hash identifier: DIRXWZnwhfNEmramWyUBto79oBidlSJCsSqb62Zlx18= Subject key identifier: 60:26:26:44:37:8E:1D:9D:BA:FB:F2:62:82:80:36:BA:C3:FA:F8:1C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D5500CC6CB9F6647655B34BD631EAB026D6AD46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa Signing time: Wed 20 May 2026 00:31:04 +0000 ROA not before: Wed 20 May 2026 00:31:04 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 210.89.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:55:00:cc:6c:b9:f6:64:76:55:b3:4b:d6:31:ea:b0:26:d6:ad:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:31:04 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=e1f080e42755c54173b3e6d44ea288a554fae7d26ef1a46dbfa93e0d0ad32966, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:50:2a:1c:00:c9:44:18:96:88:b8:d7:38:85: 05:d9:6d:61:69:c9:c3:4b:93:5f:83:8e:4c:12:7d: 42:95:af:8d:52:8c:5d:44:b4:31:60:a4:f2:2e:52: a7:58:09:00:ca:a5:5e:eb:6b:c5:ee:0a:88:50:85: 6b:f3:55:ef:e6:36:fa:d1:3c:cd:90:ae:d7:9f:71: 12:c5:20:c7:9d:79:db:56:c2:0c:48:e5:9c:9f:2d: e3:e8:ec:27:2c:6d:cc:25:17:c9:64:a1:17:7b:64: 49:4c:92:32:7d:b1:ee:f6:cd:13:3f:75:aa:47:40: 73:46:0b:e0:8e:7f:cf:ec:96:e7:48:08:3d:7a:20: 50:b1:86:9e:67:13:10:5b:a3:c6:01:a6:e6:ee:bf: b5:8f:bd:f4:e0:50:e1:93:16:31:8b:c2:91:e1:bd: 8d:09:73:eb:4b:c7:20:0b:88:32:b7:85:81:ca:9e: cd:29:97:19:e8:40:60:54:bf:51:c6:8d:8d:cf:16: d6:b8:98:21:22:8e:2a:c8:8e:9d:12:be:c7:71:73: d8:d3:59:ab:0e:9d:d8:50:01:82:7c:ac:9c:1e:b9: ab:c5:9e:e3:5a:d4:56:d9:77:08:d5:1a:1c:a4:b1: 04:ea:3c:74:59:f0:b4:90:d9:6c:51:55:d7:7b:5f: 2e:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:26:26:44:37:8E:1D:9D:BA:FB:F2:62:82:80:36:BA:C3:FA:F8:1C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7e4e4c8-325e-4c4d-8dfa-29db72c04b6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 210.89.64.0/19 Signature Algorithm: sha256WithRSAEncryption 66:41:c9:c1:8f:8d:70:aa:cd:b1:f9:d1:16:47:c3:ec:fc:be: 78:b2:fb:35:56:83:fe:07:a8:c4:56:ad:7a:3b:92:f8:3a:3f: 92:62:cc:1a:7f:bf:58:2c:c5:fa:ec:0b:49:f5:38:52:04:35: e9:12:a3:58:6a:90:12:db:08:3a:0f:bd:7b:68:05:39:8f:25: e0:df:3d:17:54:ff:c3:fb:6d:17:7d:9a:6b:70:ad:54:c1:fa: 67:92:8b:e1:77:e6:69:c7:14:37:cc:c0:af:a2:3a:b2:d5:65: 3a:92:e0:d9:19:3a:60:69:9f:41:59:16:77:77:da:3c:ad:a1: 1a:24:17:0e:1f:0a:f5:27:ae:32:00:6d:29:48:0b:20:89:44: cb:5c:2d:2d:12:6d:03:d2:05:a3:da:c8:d5:74:73:6f:f0:89: 3a:cf:ad:31:06:93:94:c2:cd:90:e1:2a:85:e4:ad:46:ec:80: db:91:ad:f0:30:96:b8:cf:16:97:e0:b9:20:8d:c6:fb:db:26: ed:c4:25:bb:f8:50:d4:4e:e9:ed:20:87:38:8d:bb:c1:51:56: bf:f7:9e:12:f1:2a:10:bb:b7:ac:4c:d6:b4:26:b8:d5:22:48: d7:7b:d4:05:45:0b:e1:e9:1f:7c:ee:2d:75:ec:cb:7a:b1:32: 1b:1e:dc:df -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbVUAzGy59mR2VbNL1jHqsCbWrUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAzMTA0WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWYwODBlNDI3NTVjNTQxNzNiM2U2ZDQ0ZWEyODhhNTU0 ZmFlN2QyNmVmMWE0NmRiZmE5M2UwZDBhZDMyOTY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyUCocAMlEGJaIuNc4hQXZbWFpycNLk1+DjkwSfUKVr41S jF1EtDFgpPIuUqdYCQDKpV7ra8XuCohQhWvzVe/mNvrRPM2QrtefcRLFIMededtW wgxI5ZyfLePo7CcsbcwlF8lkoRd7ZElMkjJ9se72zRM/dapHQHNGC+COf8/sludI CD16IFCxhp5nExBbo8YBpubuv7WPvfTgUOGTFjGLwpHhvY0Jc+tLxyALiDK3hYHK ns0plxnoQGBUv1HGjY3PFta4mCEijirIjp0Svsdxc9jTWasOndhQAYJ8rJweuavF nuNa1FbZdwjVGhyksQTqPHRZ8LSQ2WxRVdd7Xy4jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYCYmRDeOHZ26+/JigoA2usP6+BwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3ZTRlNGM4LTMyNWUtNGM0ZC04ZGZhLTI5ZGI3MmMwNGI2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXSWUAwDQYJKoZIhvcNAQELBQADggEBAGZBycGPjXCqzbH50RZHw+z8vniy +zVWg/4HqMRWrXo7kvg6P5JizBp/v1gsxfrsC0n1OFIENekSo1hqkBLbCDoPvXto BTmPJeDfPRdU/8P7bRd9mmtwrVTB+meSi+F35mnHFDfMwK+iOrLVZTqS4NkZOmBp n0FZFnd32jytoRokFw4fCvUnrjIAbSlICyCJRMtcLS0SbQPSBaPayNV0c2/wiTrP rTEGk5TCzZDhKoXkrUbsgNuRrfAwlrjPFpfguSCNxvvbJu3EJbv4UNRO6e0ghziN u8FRVr/3nhLxKhC7t6xM1rQmuNUiSNd71AVFC+HpH3zuLXXsy3qxMhse3N8= -----END CERTIFICATE-----Generated at Sat Jun 13 05:43:20 2026 by rpki-client