$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa File: 16ffac70-214d-4030-80b9-261fde777a67.roa (raw, json) Hash identifier: f15Lr2f0dyzXaGOLvmuhKQYUO5kJvaos8seReebBi6g= Subject key identifier: 20:90:92:96:26:03:61:77:67:35:63:7E:47:AB:9A:58:80:4A:31:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BAD8E81D3BE30994B04D93ABAF51B33FE370D2F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa Signing time: Wed 29 Apr 2026 00:30:18 +0000 ROA not before: Wed 29 Apr 2026 00:30:18 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.168.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:ad:8e:81:d3:be:30:99:4b:04:d9:3a:ba:f5:1b:33:fe:37:0d:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:30:18 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=9a3d76fe44834b2eabf691554fe75e79915731dade6264dada0c18d71b262a8a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:54:47:dd:27:94:56:44:67:10:a5:09:dd:3f: 27:7d:0b:a7:71:15:60:a6:b6:18:5c:79:7e:e9:78: cf:19:49:79:d4:09:d4:a7:8d:c0:8c:41:94:e9:6b: d2:b8:3f:62:46:c3:28:6f:57:94:19:a0:47:0f:0a: 39:16:77:de:8d:0e:bb:53:e9:e4:41:1a:58:b6:59: 26:23:1a:2e:e5:cc:1b:1a:b7:d2:ff:73:be:50:f5: f2:49:6e:69:1b:5d:81:35:6c:fb:6e:48:f3:b0:8d: 81:36:7c:d9:0f:a6:bb:be:fb:a7:6c:4f:c0:12:c9: 52:17:78:0e:97:8a:4a:99:8d:53:a1:50:0b:95:08: 18:36:36:06:7f:6f:b1:55:54:b3:1d:58:2e:8c:ce: f4:c2:db:24:1b:b8:4d:61:f6:ed:39:db:e4:fd:1c: 18:8e:73:b6:04:05:88:aa:5a:a7:4a:db:e8:0e:9c: a6:55:84:a5:22:c2:7c:a4:29:d9:9a:51:f6:eb:06: 3f:90:7f:b1:da:77:f1:9b:6c:e3:a2:f5:6e:7f:be: 9a:84:1a:d0:68:df:e9:80:6d:44:75:f8:35:dc:7a: 31:3c:fc:72:15:62:99:e8:6a:3a:fa:99:e5:a0:0f: fc:b5:3b:5c:c9:3d:dd:01:1b:d6:02:d3:9e:3d:40: c0:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:90:92:96:26:03:61:77:67:35:63:7E:47:AB:9A:58:80:4A:31:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/16ffac70-214d-4030-80b9-261fde777a67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.168.0.0/14 Signature Algorithm: sha256WithRSAEncryption 4e:4e:e8:7c:7f:d2:1c:c9:11:1e:d1:43:ae:e4:8a:17:85:95: 11:82:70:34:35:85:8e:e8:ed:ad:ea:13:f1:cc:b3:a0:97:7d: 89:cd:d9:03:6e:ca:d3:1d:33:89:99:c4:8b:7d:09:87:8c:0d: 77:2e:0e:67:11:f2:b8:ba:af:fc:a9:d8:bd:85:43:9b:b6:77: a3:6b:5c:02:98:35:d1:f6:14:81:33:96:72:63:71:6c:66:33: 6e:bb:41:8d:21:7d:aa:cb:95:e9:6f:88:29:02:9a:14:75:93: d7:c1:ba:ba:df:5f:35:ef:7d:be:b2:64:07:0f:d5:84:18:fc: d0:ba:7f:de:24:70:3b:2e:7f:cb:7e:1a:39:84:38:d9:e3:c3: 9a:40:3d:9d:89:eb:c4:c1:bf:4e:20:ee:ee:d3:71:f9:9c:56: 40:05:2b:fc:79:11:e8:96:71:45:9d:e8:de:dd:a6:0c:ff:e5: 38:24:bb:39:6d:21:78:43:66:99:43:5e:8c:1a:31:19:08:ff: d6:37:23:ce:b2:bb:89:d9:26:05:dc:52:4e:2a:c7:8b:dd:58: 7b:28:65:8f:82:8b:d0:93:e4:6c:ef:41:02:6d:dd:fd:14:61: 53:9d:d7:4e:4a:75:e2:26:fb:ae:4d:d3:d2:9a:09:eb:09:d8: a6:69:99:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUO62OgdO+MJlLBNk6uvUbM/43DS8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMDE4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTNkNzZmZTQ0ODM0YjJlYWJmNjkxNTU0ZmU3NWU3OTkx NTczMWRhZGU2MjY0ZGFkYTBjMThkNzFiMjYyYThhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/VEfdJ5RWRGcQpQndPyd9C6dxFWCmthhceX7peM8ZSXnU CdSnjcCMQZTpa9K4P2JGwyhvV5QZoEcPCjkWd96NDrtT6eRBGli2WSYjGi7lzBsa t9L/c75Q9fJJbmkbXYE1bPtuSPOwjYE2fNkPpru++6dsT8ASyVIXeA6XikqZjVOh UAuVCBg2NgZ/b7FVVLMdWC6MzvTC2yQbuE1h9u052+T9HBiOc7YEBYiqWqdK2+gO nKZVhKUiwnykKdmaUfbrBj+Qf7Had/GbbOOi9W5/vpqEGtBo3+mAbUR1+DXcejE8 /HIVYpnoajr6meWgD/y1O1zJPd0BG9YC0549QMB9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIJCSliYDYXdnNWN+R6uaWIBKMQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE2ZmZhYzcwLTIxNGQtNDAzMC04MGI5LTI2MWZkZTc3N2E2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgqDANBgkqhkiG9w0BAQsFAAOCAQEATk7ofH/SHMkRHtFDruSKF4WVEYJw NDWFjujtreoT8cyzoJd9ic3ZA27K0x0ziZnEi30Jh4wNdy4OZxHyuLqv/KnYvYVD m7Z3o2tcApg10fYUgTOWcmNxbGYzbrtBjSF9qsuV6W+IKQKaFHWT18G6ut9fNe99 vrJkBw/VhBj80Lp/3iRwOy5/y34aOYQ42ePDmkA9nYnrxMG/TiDu7tNx+ZxWQAUr /HkR6JZxRZ3o3t2mDP/lOCS7OW0heENmmUNejBoxGQj/1jcjzrK7idkmBdxSTirH i91Yeyhlj4KL0JPkbO9BAm3d/RRhU53XTkp14ib7rk3T0poJ6wnYpmmZLg== -----END CERTIFICATE-----Generated at Sun May 3 14:46:59 2026 by rpki-client