$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa File: ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa (raw, json) Hash identifier: rkk30uge9K/L0AjhCHLe1hDVZsuqajHqQF99y2YIwG4= Subject key identifier: 9D:BD:FB:55:74:A0:36:AE:5E:16:47:D3:EF:00:77:19:D0:B2:5B:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2FF0CC998DF4DDD7C048D4ACB9B78217B4D255CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa Signing time: Sun 17 May 2026 00:31:07 +0000 ROA not before: Sun 17 May 2026 00:31:07 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.224.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:f0:cc:99:8d:f4:dd:d7:c0:48:d4:ac:b9:b7:82:17:b4:d2:55:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:31:07 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=0ef0b9d0ef25d2a15a2b1d6c31f144f36bdf36135d55d825c18078d50b889b9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:c8:31:37:8f:48:b5:d6:99:a2:da:c2:34:e5: 4c:74:c8:17:5f:45:64:85:7f:a7:49:f2:b7:e0:51: 0b:7b:e0:08:8c:3c:88:cd:85:de:ed:49:f7:10:c2: ba:ae:c8:46:43:5f:38:6b:fe:73:5e:a9:a6:12:43: a0:15:ec:39:30:7e:a6:d7:b0:24:43:05:d4:92:b9: 72:8a:fe:ae:c4:d5:e1:c5:9d:db:5f:02:a3:cf:e4: 24:60:9b:28:69:ff:93:fc:b2:3e:2c:28:f2:87:a2: 3d:4a:f3:7a:71:14:7f:94:4b:74:cd:50:48:b8:fd: e1:69:bf:78:ea:14:99:63:68:b9:38:e3:bc:0a:37: 09:c5:f8:d7:c2:36:35:66:9a:b2:7c:47:d2:86:a9: 3f:0a:2b:94:af:c7:8f:32:b9:b9:b2:e0:4e:1b:29: ac:28:de:6e:c2:43:e3:a6:8b:ef:8d:c3:db:38:50: fb:4f:f6:d1:70:28:3f:95:5c:b0:71:1f:e5:17:c2: f9:cd:94:ea:e0:30:7b:83:47:e1:12:ff:d4:52:47: 16:b4:ed:09:39:b6:03:26:a4:3c:84:80:6d:ba:a7: 79:f4:94:c9:7f:11:d8:46:70:7f:d8:d8:23:4d:90: 34:1f:1a:18:e6:5a:56:53:37:b6:2e:a5:23:9f:d1: 4f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BD:FB:55:74:A0:36:AE:5E:16:47:D3:EF:00:77:19:D0:B2:5B:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.224.196.0/22 Signature Algorithm: sha256WithRSAEncryption 07:7f:f9:fd:2f:a1:ae:f7:56:16:5b:a7:6e:64:a0:60:4b:20: 06:3e:16:ab:da:e6:13:ff:75:b0:5c:ec:ab:66:51:0a:d8:70: 1d:7f:72:8e:58:f8:7d:54:dc:3b:f9:a4:bd:62:4e:ba:87:b2: bc:b3:3c:52:96:f7:d9:5a:9e:dd:e6:30:cc:58:05:c8:68:66: 23:b2:a5:c3:62:d1:a2:c1:4f:54:ac:2d:84:34:12:b5:ec:ae: e2:f2:53:0e:d9:39:e8:e9:85:1b:95:f9:fa:4b:fb:6e:b3:c8: 7c:61:f1:d9:71:1b:ee:59:a1:f9:14:c7:38:ab:f9:a3:ae:4e: e8:6a:81:f9:c4:41:41:10:7d:e7:40:dd:d0:eb:3d:23:64:f4: cb:12:f9:3d:13:9f:44:5c:3d:a0:39:42:41:70:b3:5b:4c:96: 04:21:65:aa:61:7a:b2:65:93:9c:9e:03:b7:09:f7:a8:bc:4a: 20:86:19:f8:51:af:18:11:ab:a0:0f:1b:f6:41:32:df:d4:12: dc:c2:c8:c2:18:b0:bd:c6:55:f2:7c:69:b3:17:28:56:6b:75: fe:21:9b:4c:e3:98:d0:f7:82:3b:3b:9f:1d:be:2f:a6:d7:77: 97:5c:cb:b3:82:6d:1c:d0:70:78:13:54:e1:4d:42:10:03:8b: 3f:b1:cf:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL/DMmY303dfASNSsubeCF7TSVc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAzMTA3WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZWYwYjlkMGVmMjVkMmExNWEyYjFkNmMzMWYxNDRmMzZi ZGYzNjEzNWQ1NWQ4MjVjMTgwNzhkNTBiODg5YjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+yDE3j0i11pmi2sI05Ux0yBdfRWSFf6dJ8rfgUQt74AiM PIjNhd7tSfcQwrquyEZDXzhr/nNeqaYSQ6AV7DkwfqbXsCRDBdSSuXKK/q7E1eHF ndtfAqPP5CRgmyhp/5P8sj4sKPKHoj1K83pxFH+US3TNUEi4/eFpv3jqFJljaLk4 47wKNwnF+NfCNjVmmrJ8R9KGqT8KK5Svx48yubmy4E4bKawo3m7CQ+Omi++Nw9s4 UPtP9tFwKD+VXLBxH+UXwvnNlOrgMHuDR+ES/9RSRxa07Qk5tgMmpDyEgG26p3n0 lMl/EdhGcH/Y2CNNkDQfGhjmWlZTN7YupSOf0U+XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnb37VXSgNq5eFkfT7wB3GdCyW5IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhOGJkYjIxLTEzZWYtNGZjYi1iZDU0LTZlMzQ1YzhlMzIzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG4MQwDQYJKoZIhvcNAQELBQADggEBAAd/+f0voa73VhZbp25koGBLIAY+ Fqva5hP/dbBc7KtmUQrYcB1/co5Y+H1U3Dv5pL1iTrqHsryzPFKW99lant3mMMxY BchoZiOypcNi0aLBT1SsLYQ0ErXsruLyUw7ZOejphRuV+fpL+26zyHxh8dlxG+5Z ofkUxzir+aOuTuhqgfnEQUEQfedA3dDrPSNk9MsS+T0Tn0RcPaA5QkFws1tMlgQh ZapherJlk5yeA7cJ96i8SiCGGfhRrxgRq6APG/ZBMt/UEtzCyMIYsL3GVfJ8abMX KFZrdf4hm0zjmND3gjs7nx2+L6bXd5dcy7OCbRzQcHgTVOFNQhADiz+xz0o= -----END CERTIFICATE-----Generated at Sat Jun 13 05:46:52 2026 by rpki-client