$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa File: 04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa (raw, json) Hash identifier: KVyCwx57/X6wH7v01ycJOWLZTuYTmLxd19+ISaxQAGY= Subject key identifier: 59:8A:87:52:22:C4:BD:45:44:71:40:A8:BC:51:D4:02:46:7A:C7:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1E7455BC382CE90D9D86653E27E5701FE42DD25B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa Signing time: Wed 29 Apr 2026 00:30:49 +0000 ROA not before: Wed 29 Apr 2026 00:30:49 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:74:55:bc:38:2c:e9:0d:9d:86:65:3e:27:e5:70:1f:e4:2d:d2:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:30:49 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=5d8b75ce4c7de31e9174c2125e02baf1ef5b97ab26ea780c1f578df74c9f2369, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:7b:d8:49:b9:5f:60:5f:81:b8:ea:1c:dc:ea: 47:13:72:b7:f3:9d:2e:e1:b3:4a:d0:73:73:b0:1e: 1b:23:f4:67:bd:99:a1:28:87:c3:6a:20:50:a5:62: e1:88:34:bf:be:a9:46:ac:de:91:60:84:ac:9e:67: e1:be:38:d2:e5:dc:b0:11:3c:7a:05:3c:71:16:ff: bb:5c:fc:8d:88:9f:e3:89:2d:f9:b0:70:90:b3:49: 9c:3b:6d:84:90:bc:25:5f:6e:62:af:3b:e0:a3:d5: 6b:54:f8:2f:10:8a:1c:1f:44:d2:0d:ff:f3:fb:47: c0:09:20:45:96:ec:cb:ce:36:42:e3:23:f4:de:6a: 22:33:59:46:af:ed:27:db:90:c4:c0:94:b8:4a:d1: 96:6d:7e:dd:1e:75:4d:07:d3:6a:e4:36:59:c5:e8: f5:dd:8b:93:2c:e2:4f:fe:7d:1b:dd:fb:73:38:28: c7:ef:a4:8b:be:61:e8:69:55:55:28:e6:5e:72:5b: 3d:a6:31:a3:da:f8:da:6c:e3:6d:ad:8b:74:e7:90: c4:b1:26:26:23:29:af:27:ef:8a:6d:21:19:e2:9e: 79:f6:74:36:57:2e:aa:c9:8e:18:f3:39:f0:94:18: 4d:86:73:49:44:af:dd:c1:23:c0:66:4e:9d:da:6e: 6e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:8A:87:52:22:C4:BD:45:44:71:40:A8:BC:51:D4:02:46:7A:C7:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/04e57552-1dfb-41ee-9dd2-f14d4faacbb3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption c2:ff:47:32:65:e4:c8:b8:3a:94:d9:98:ce:c9:d4:2b:76:5b: 74:38:e3:0b:38:31:56:a9:07:6b:01:df:31:a1:42:17:ec:76: 3b:08:84:a1:37:19:42:b3:cf:a2:ea:d9:45:79:e8:ec:50:09: 1b:9e:28:12:8c:fc:5b:c2:b5:e5:94:6f:80:e4:1b:4c:4d:25: e5:04:62:98:b8:14:94:8e:a1:b8:89:b1:b6:76:db:ba:e3:a0: c0:c0:6c:d6:b7:6f:0a:1e:9c:70:b8:b6:2c:9a:ac:57:05:2b: db:81:d0:85:62:37:fa:c3:23:ea:b9:b8:87:19:8f:8a:1d:80: fc:df:8d:07:85:9d:b7:cc:b7:6a:8a:26:9f:5e:5d:85:5e:67: 78:2e:5f:19:5d:41:0d:a9:99:d2:24:8f:22:05:5b:73:ac:de: 23:35:0c:01:61:90:a3:6f:75:b3:3d:29:a9:63:e8:18:77:09: a0:ab:70:2b:d3:01:05:c6:17:ac:f3:dc:19:78:4a:c2:95:b1: 91:45:6b:5e:47:53:ec:bc:25:7a:d6:08:92:67:05:90:d2:9d: 90:48:c3:2e:f1:66:7f:41:5c:51:38:db:f1:f0:51:32:6e:2d: de:66:ee:58:7b:48:e6:db:8b:03:44:ea:fc:a2:8a:25:e5:9d: a2:4b:e9:00 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHnRVvDgs6Q2dhmU+J+VwH+Qt0lswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMDQ5WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZDhiNzVjZTRjN2RlMzFlOTE3NGMyMTI1ZTAyYmFmMWVm NWI5N2FiMjZlYTc4MGMxZjU3OGRmNzRjOWYyMzY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOe9hJuV9gX4G46hzc6kcTcrfznS7hs0rQc3OwHhsj9Ge9 maEoh8NqIFClYuGINL++qUas3pFghKyeZ+G+ONLl3LARPHoFPHEW/7tc/I2In+OJ LfmwcJCzSZw7bYSQvCVfbmKvO+Cj1WtU+C8QihwfRNIN//P7R8AJIEWW7MvONkLj I/TeaiIzWUav7SfbkMTAlLhK0ZZtft0edU0H02rkNlnF6PXdi5Ms4k/+fRvd+3M4 KMfvpIu+YehpVVUo5l5yWz2mMaPa+Nps422ti3TnkMSxJiYjKa8n74ptIRninnn2 dDZXLqrJjhjzOfCUGE2Gc0lEr93BI8BmTp3abm7/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWYqHUiLEvUVEcUCovFHUAkZ6x0cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA0ZTU3NTUyLTFkZmItNDFlZS05ZGQyLWYxNGQ0ZmFhY2JiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2ijANBgkqhkiG9w0BAQsFAAOCAQEAwv9HMmXkyLg6lNmYzsnUK3ZbdDjj CzgxVqkHawHfMaFCF+x2OwiEoTcZQrPPourZRXno7FAJG54oEoz8W8K15ZRvgOQb TE0l5QRimLgUlI6huImxtnbbuuOgwMBs1rdvCh6ccLi2LJqsVwUr24HQhWI3+sMj 6rm4hxmPih2A/N+NB4Wdt8y3aoomn15dhV5neC5fGV1BDamZ0iSPIgVbc6zeIzUM AWGQo291sz0pqWPoGHcJoKtwK9MBBcYXrPPcGXhKwpWxkUVrXkdT7LwletYIkmcF kNKdkEjDLvFmf0FcUTjb8fBRMm4t3mbuWHtI5tuLA0Tq/KKKJeWdokvpAA== -----END CERTIFICATE-----Generated at Sun May 3 14:45:56 2026 by rpki-client