$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0da4d8c-6c04-42f9-92a1-7070cff8fa31.roa File: e0da4d8c-6c04-42f9-92a1-7070cff8fa31.roa (raw, json) Hash identifier: DCPJQQuOtCDckYZGzYzGJ/Q2/zXnQi/laMJ83COrOi8= Subject key identifier: 88:E2:2C:8B:29:1B:44:ED:4F:80:5A:C3:63:1A:A9:9A:14:33:86:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 399FF343CBCA771305DE7223A1C25E1BA4DD8E50 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0da4d8c-6c04-42f9-92a1-7070cff8fa31.roa Signing time: Tue 12 May 2026 00:50:43 +0000 ROA not before: Tue 12 May 2026 00:50:43 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.49.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:9f:f3:43:cb:ca:77:13:05:de:72:23:a1:c2:5e:1b:a4:dd:8e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 00:50:43 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=dc3f160072ee8ac7801f24280fe91b1a3f1e2eafea9bf78c316e349f3c92db3d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:20:c5:87:f0:90:70:90:05:14:83:91:29:87: ab:12:ac:de:df:5d:ee:af:09:41:ce:72:de:33:c0: 17:c7:f8:ab:11:49:bf:50:42:2a:37:b3:b6:7a:e3: c1:94:49:f8:91:0d:2b:df:b6:0c:01:cb:4d:81:9e: ce:22:08:a2:fd:fd:e9:11:e3:49:ee:32:c6:4f:b6: 6d:19:ee:85:76:8b:1f:7a:55:4b:cf:23:c6:ef:9e: 6b:70:78:fe:d2:5b:cd:86:4c:77:c5:9e:4e:bf:3f: 9d:24:db:b1:c7:0e:4c:08:ef:17:a4:45:52:34:3a: 6b:12:26:d8:02:ff:e4:73:1e:31:6a:ae:a0:eb:cf: 5a:16:83:24:08:97:72:f8:2e:10:96:48:a1:64:d9: 15:43:e2:b0:21:6e:08:ce:46:b6:e2:26:19:3f:3d: 94:0d:1f:1f:08:6d:c8:69:13:d5:75:b7:8e:a5:26: 66:34:9a:59:66:5a:10:38:b7:d7:16:92:8e:6b:c7: 62:c2:33:4d:0e:5f:89:00:d5:b8:af:fd:7c:cc:e7: 9a:4e:48:40:91:ed:7b:1b:f8:d7:0e:d6:2e:68:bf: 83:93:1d:ee:3b:a7:f0:a7:83:9d:db:c4:46:ba:4c: 18:fd:e3:83:47:01:86:fd:fd:1b:5b:65:33:71:a1: a5:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:E2:2C:8B:29:1B:44:ED:4F:80:5A:C3:63:1A:A9:9A:14:33:86:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e0da4d8c-6c04-42f9-92a1-7070cff8fa31.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.49.0/24 Signature Algorithm: sha256WithRSAEncryption 7c:33:38:2f:87:cd:60:95:7d:f1:d8:e8:50:61:a8:7e:91:4d: 24:77:73:0a:49:24:ab:18:85:c0:d8:49:2a:ba:6e:2b:1a:ee: 08:79:45:c0:0f:dd:81:5e:ed:ee:ee:f3:96:62:93:e4:27:db: 59:9d:8e:f1:f2:fb:ed:78:80:08:8c:e2:89:f4:9f:8c:8a:c6: 4d:8d:6f:cd:cd:a5:7d:65:5c:d1:1d:68:f3:ec:9b:98:41:52: 5a:dd:ab:21:a8:04:c6:01:e7:06:38:09:b8:0e:80:0d:95:ba: 2b:80:73:70:41:28:11:aa:df:76:67:9c:d9:c5:af:bc:f4:4f: ea:77:17:bc:28:bd:7d:72:c0:ae:cf:78:51:ba:f7:3f:ae:0b: 9d:ff:1c:2b:7f:9b:17:e5:5e:e5:70:a1:f8:79:36:7f:09:71: 33:17:59:05:0b:33:ab:18:ed:aa:03:12:fc:23:9d:02:b6:a9: f1:54:82:55:ac:d2:cf:58:f3:00:45:c4:9e:e1:12:a0:ea:74: 4f:80:98:e2:4b:21:db:98:d1:23:77:ce:22:26:1a:22:95:a9: ec:5f:03:7c:ab:a8:ce:eb:b0:9f:5e:f2:fd:e7:1e:b2:93:e5: 5c:e6:c9:ad:a4:c7:44:5b:84:08:43:22:1f:bb:4f:de:3f:af: 4a:31:21:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOZ/zQ8vKdxMF3nIjocJeG6TdjlAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDA1MDQzWhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzNmMTYwMDcyZWU4YWM3ODAxZjI0MjgwZmU5MWIxYTNm MWUyZWFmZWE5YmY3OGMzMTZlMzQ5ZjNjOTJkYjNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRIMWH8JBwkAUUg5Eph6sSrN7fXe6vCUHOct4zwBfH+KsR Sb9QQio3s7Z648GUSfiRDSvftgwBy02Bns4iCKL9/ekR40nuMsZPtm0Z7oV2ix96 VUvPI8bvnmtweP7SW82GTHfFnk6/P50k27HHDkwI7xekRVI0OmsSJtgC/+RzHjFq rqDrz1oWgyQIl3L4LhCWSKFk2RVD4rAhbgjORrbiJhk/PZQNHx8IbchpE9V1t46l JmY0mllmWhA4t9cWko5rx2LCM00OX4kA1biv/XzM55pOSECR7Xsb+NcO1i5ov4OT He47p/Cng53bxEa6TBj944NHAYb9/RtbZTNxoaXRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiOIsiykbRO1PgFrDYxqpmhQzhgcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UwZGE0ZDhjLTZjMDQtNDJmOS05MmExLTcwNzBjZmY4ZmEzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmDEwDQYJKoZIhvcNAQELBQADggEBAHwzOC+HzWCVffHY6FBhqH6RTSR3 cwpJJKsYhcDYSSq6bisa7gh5RcAP3YFe7e7u85Zik+Qn21mdjvHy++14gAiM4on0 n4yKxk2Nb83NpX1lXNEdaPPsm5hBUlrdqyGoBMYB5wY4CbgOgA2VuiuAc3BBKBGq 33ZnnNnFr7z0T+p3F7wovX1ywK7PeFG69z+uC53/HCt/mxflXuVwofh5Nn8JcTMX WQULM6sY7aoDEvwjnQK2qfFUglWs0s9Y8wBFxJ7hEqDqdE+AmOJLIduY0SN3ziIm GiKVqexfA3yrqM7rsJ9e8v3nHrKT5Vzmya2kx0RbhAhDIh+7T94/r0oxIek= -----END CERTIFICATE-----Generated at Sat Jun 13 05:49:34 2026 by rpki-client