$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa File: e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa (raw, json) Hash identifier: Y4Orn6EXeHV4Q8JkMc49WMM7JCS61oaen0LPeAT57Fw= Subject key identifier: 21:7B:C6:A8:F7:54:E5:11:00:44:BE:62:EF:4E:87:F6:5B:A4:32:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 562CC6532BCF40963856ECCE54BEE4E8C56647EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa Signing time: Fri 15 May 2026 02:21:24 +0000 ROA not before: Fri 15 May 2026 02:21:24 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.168.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:2c:c6:53:2b:cf:40:96:38:56:ec:ce:54:be:e4:e8:c5:66:47:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:21:24 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=9415a7125090b73e147e68b989ed974752574c55fb036e8b6b4259a53c74990b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:f4:aa:42:ed:3d:ad:4e:d3:b4:a4:99:ef:39: 03:a2:e7:6f:5f:bb:94:9b:c6:36:e3:c1:bf:0f:42: 27:46:b6:ea:fc:7a:6a:86:f5:98:0e:16:4f:11:4f: 58:eb:87:d7:a9:3a:11:10:51:0b:40:7c:14:16:93: 72:db:54:d9:1d:67:53:ac:a0:55:52:e3:20:c7:9b: 7e:01:be:91:53:89:1d:13:84:ea:02:00:6c:24:44: de:50:02:be:b2:f4:4f:e7:a2:f4:5d:53:7a:b3:8b: 49:f8:af:5a:80:b4:0b:0d:7f:d2:a9:eb:f0:d3:72: a9:61:de:80:c8:6a:1f:47:ce:b3:38:5c:08:38:7c: 96:9b:14:c2:52:ec:68:d3:e4:2a:01:ca:aa:93:4e: 75:a2:83:c1:43:2e:13:be:95:9b:97:95:4f:91:97: 77:2f:de:92:3a:62:a7:4c:df:d5:58:9f:24:d5:54: 08:f3:17:98:78:22:9c:1d:76:98:57:fb:bf:f4:9f: 20:e8:14:ad:83:ff:a8:0c:40:c6:3d:60:1c:df:a8: 5e:b9:ce:b7:df:85:f4:80:c5:d5:4d:08:57:94:65: e1:17:68:08:99:25:cc:b2:32:f5:e6:fe:69:bb:3e: d0:43:d4:f0:5e:bc:f1:3b:b5:f5:10:63:e5:b0:d2: 1c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7B:C6:A8:F7:54:E5:11:00:44:BE:62:EF:4E:87:F6:5B:A4:32:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e8f17b04-1645-48c1-bdde-f6c8474cad6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.168.0/22 Signature Algorithm: sha256WithRSAEncryption 91:8e:dd:ba:e0:74:50:f7:2f:ec:d1:68:19:8e:cc:14:56:3f: 5b:0f:75:68:4c:4e:ab:e3:f1:e6:dd:b5:44:2e:4a:d0:a8:14: 1e:d3:6f:d8:69:08:3b:7e:5e:fe:49:e2:8f:d5:3e:5f:33:d2: 88:5c:1e:ec:98:3e:d8:a4:1b:c1:5f:98:f0:f9:53:8c:e4:88: 73:24:d4:9d:09:14:0c:2b:c1:e3:6b:fd:bb:8f:2f:36:fd:c5: cb:da:3b:58:87:e9:e1:99:41:be:29:27:d7:1b:a0:31:14:d0: fa:de:bd:3c:58:4f:96:77:b7:9a:b5:1b:8c:d2:24:33:43:cf: 87:21:c7:0b:7b:1d:75:e0:55:7c:c9:ff:6c:7d:f8:54:fd:3b: 39:10:f7:ed:28:94:37:a5:29:a1:1b:83:49:e2:7a:9e:f4:6f: 75:b2:e6:d2:de:fa:ad:a4:5b:35:85:0b:82:e0:37:50:03:12: e9:5d:9c:81:34:d9:17:05:0b:bf:77:40:d9:9e:bf:96:04:a2: ce:7e:ad:f9:41:0e:f3:19:d9:77:d4:b1:ab:a9:8f:01:3c:c4: 4e:70:22:1d:43:ae:6d:c5:7e:c6:34:f3:b0:a3:5c:21:88:b9: c9:a2:d9:83:40:95:9e:ea:0d:b3:7f:39:dd:bc:c4:fc:41:80: 53:f8:bd:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVizGUyvPQJY4VuzOVL7k6MVmR+owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIyMTI0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDE1YTcxMjUwOTBiNzNlMTQ3ZTY4Yjk4OWVkOTc0NzUy NTc0YzU1ZmIwMzZlOGI2YjQyNTlhNTNjNzQ5OTBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZ9KpC7T2tTtO0pJnvOQOi529fu5Sbxjbjwb8PQidGtur8 emqG9ZgOFk8RT1jrh9epOhEQUQtAfBQWk3LbVNkdZ1OsoFVS4yDHm34BvpFTiR0T hOoCAGwkRN5QAr6y9E/novRdU3qzi0n4r1qAtAsNf9Kp6/DTcqlh3oDIah9HzrM4 XAg4fJabFMJS7GjT5CoByqqTTnWig8FDLhO+lZuXlU+Rl3cv3pI6YqdM39VYnyTV VAjzF5h4IpwddphX+7/0nyDoFK2D/6gMQMY9YBzfqF65zrffhfSAxdVNCFeUZeEX aAiZJcyyMvXm/mm7PtBD1PBevPE7tfUQY+Ww0hx5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIXvGqPdU5REARL5i706H9lukMsMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U4ZjE3YjA0LTE2NDUtNDhjMS1iZGRlLWY2Yzg0NzRjYWQ2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsqgwDQYJKoZIhvcNAQELBQADggEBAJGO3brgdFD3L+zRaBmOzBRWP1sP dWhMTqvj8ebdtUQuStCoFB7Tb9hpCDt+Xv5J4o/VPl8z0ohcHuyYPtikG8FfmPD5 U4zkiHMk1J0JFAwrweNr/buPLzb9xcvaO1iH6eGZQb4pJ9cboDEU0PrevTxYT5Z3 t5q1G4zSJDNDz4chxwt7HXXgVXzJ/2x9+FT9OzkQ9+0olDelKaEbg0niep70b3Wy 5tLe+q2kWzWFC4LgN1ADEuldnIE02RcFC793QNmev5YEos5+rflBDvMZ2XfUsaup jwE8xE5wIh1Drm3FfsY087CjXCGIucmi2YNAlZ7qDbN/Od28xPxBgFP4vW4= -----END CERTIFICATE-----Generated at Sat Jun 13 08:32:07 2026 by rpki-client