$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa File: 1c928d8f-5fa6-47d3-8912-a67751764ad7.roa (raw, json) Hash identifier: YKvnZV1O9+vk52LfXxf1TCON1LJpaqbOP3yXEC76/2Q= Subject key identifier: 22:84:3A:95:D6:88:9E:17:AC:1A:A8:D6:2D:43:E1:A8:BF:F7:9D:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 596C57E492D1854103EFB02DCB8050C9E828ABFF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa Signing time: Sat 02 May 2026 00:50:51 +0000 ROA not before: Sat 02 May 2026 00:50:51 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.188.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:6c:57:e4:92:d1:85:41:03:ef:b0:2d:cb:80:50:c9:e8:28:ab:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:50:51 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=f58a3872d30a683e86ad9cf54ba095d72a773425ff0409384d355d12e872a18e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:dc:ad:ea:4b:99:f4:8b:a7:d8:9d:d6:00:ec: aa:72:fa:06:1e:e0:5e:56:6f:c1:ac:a8:9d:d7:dd: 23:a8:c2:6c:70:30:03:a0:2a:08:c8:bd:9c:78:c3: 23:55:db:62:3a:df:ed:65:e5:d5:60:9c:73:7f:c6: 54:28:cc:ca:6b:c1:0f:d9:d5:f4:a8:2e:62:77:b1: 33:25:bd:43:51:08:c1:c4:78:68:11:f0:b9:f8:bf: 11:5e:bc:ce:8d:57:11:0d:74:59:4e:47:ce:b3:70: 74:4a:84:4a:d6:d0:81:c1:96:01:88:2e:d7:13:ab: 59:d8:dd:36:a4:53:03:66:2e:d9:38:dd:93:99:08: 00:99:41:fd:df:6c:23:cd:9c:4d:ef:b8:43:57:22: 2f:8f:fe:26:15:17:7a:9d:21:af:ae:ce:4e:4d:d8: 11:cd:a0:03:4d:a4:f6:3a:5c:76:7c:3d:7b:da:d2: 12:0c:f8:6b:46:ca:bb:12:dd:86:92:be:90:b5:fc: da:90:03:2a:82:17:ea:a3:6b:64:6c:58:30:1f:5d: 9b:8c:be:eb:91:79:f4:0e:5e:04:62:1a:2b:ed:8e: 6a:ff:ac:11:12:21:c4:3f:51:70:17:43:39:3f:c5: 1f:ab:53:89:16:08:66:6b:3d:aa:a4:e6:e4:fa:69: ef:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:84:3A:95:D6:88:9E:17:AC:1A:A8:D6:2D:43:E1:A8:BF:F7:9D:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c928d8f-5fa6-47d3-8912-a67751764ad7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.188.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1f:47:b9:d7:15:a9:e8:4b:c7:37:60:ff:c2:70:dd:53:d9:35: 00:c3:9b:7d:1f:0d:41:3f:b2:b9:7f:ab:fe:ba:de:e6:ff:af: 4a:6c:8b:69:ba:c4:3c:15:6f:61:1f:6d:53:6b:06:fe:06:db: 55:64:5b:f9:44:5b:a4:3f:33:65:6d:17:40:39:1a:70:94:a1: f2:b2:77:09:ac:0c:03:09:c5:90:54:0b:e4:d3:a5:19:2c:18: 1f:17:8c:35:3b:61:89:95:ec:83:b3:09:dc:41:b3:c2:74:58: 36:d5:ec:c7:34:5f:5d:b9:15:c6:65:b6:d1:aa:2e:d9:17:c3: f5:0c:00:b1:4c:b9:79:ba:e2:bf:9c:07:58:19:12:03:89:a5: 1f:a9:fa:6f:e5:bd:d4:ff:a2:50:a5:66:74:06:ff:ab:07:5d: 33:a9:a1:56:31:4c:16:7f:0d:5a:43:ce:42:c1:2f:2b:2e:08: 3b:e8:a4:01:1c:02:e4:45:93:b0:30:40:98:31:fd:65:50:5e: ca:5c:d1:29:73:05:da:a1:74:db:1b:8b:5b:6c:4c:35:af:05: da:f2:fd:6b:27:7d:f8:b7:a6:92:f5:55:a3:e8:e4:c9:63:1c: c7:b2:a8:fd:f4:c7:bc:97:8e:da:15:f6:5d:63:cd:57:5a:6f: 58:44:48:81 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWWxX5JLRhUED77Aty4BQyegoq/8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDA1MDUxWhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNThhMzg3MmQzMGE2ODNlODZhZDljZjU0YmEwOTVkNzJh NzczNDI1ZmYwNDA5Mzg0ZDM1NWQxMmU4NzJhMThlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCg3K3qS5n0i6fYndYA7Kpy+gYe4F5Wb8GsqJ3X3SOowmxw MAOgKgjIvZx4wyNV22I63+1l5dVgnHN/xlQozMprwQ/Z1fSoLmJ3sTMlvUNRCMHE eGgR8Ln4vxFevM6NVxENdFlOR86zcHRKhErW0IHBlgGILtcTq1nY3TakUwNmLtk4 3ZOZCACZQf3fbCPNnE3vuENXIi+P/iYVF3qdIa+uzk5N2BHNoANNpPY6XHZ8PXva 0hIM+GtGyrsS3YaSvpC1/NqQAyqCF+qja2RsWDAfXZuMvuuRefQOXgRiGivtjmr/ rBESIcQ/UXAXQzk/xR+rU4kWCGZrPaqk5uT6ae//AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIoQ6ldaInhesGqjWLUPhqL/3nSUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOTI4ZDhmLTVmYTYtNDdkMy04OTEyLWE2Nzc1MTc2NGFkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAovDANBgkqhkiG9w0BAQsFAAOCAQEAH0e51xWp6EvHN2D/wnDdU9k1AMOb fR8NQT+yuX+r/rre5v+vSmyLabrEPBVvYR9tU2sG/gbbVWRb+URbpD8zZW0XQDka cJSh8rJ3CawMAwnFkFQL5NOlGSwYHxeMNTthiZXsg7MJ3EGzwnRYNtXsxzRfXbkV xmW20aou2RfD9QwAsUy5ebriv5wHWBkSA4mlH6n6b+W91P+iUKVmdAb/qwddM6mh VjFMFn8NWkPOQsEvKy4IO+ikARwC5EWTsDBAmDH9ZVBeylzRKXMF2qF02xuLW2xM Na8F2vL9ayd9+LemkvVVo+jkyWMcx7Ko/fTHvJeO2hX2XWPNV1pvWERIgQ== -----END CERTIFICATE-----Generated at Sun May 3 14:46:41 2026 by rpki-client