$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa File: 25f1c8f6-2174-4be4-a315-584040d5ba64.roa (raw, json) Hash identifier: B4GvTq1GeSMQsbzz2RkTvYcfbd9GrU5xPfGA3WXiiDc= Subject key identifier: F3:B2:F5:0C:64:D1:FF:F2:F1:C9:7C:AF:1D:0B:58:4F:09:7E:28:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48A6AC81F139F80419DEF8ABEFC29CFD49F066C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa Signing time: Tue 28 Apr 2026 00:21:45 +0000 ROA not before: Tue 28 Apr 2026 00:21:45 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.100.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:a6:ac:81:f1:39:f8:04:19:de:f8:ab:ef:c2:9c:fd:49:f0:66:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:21:45 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=87b028f6321f27168bdfd96c222c7402f03f21944b6c99fc719eb9df58d63e8f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7d:7e:5f:ce:ad:ba:77:58:13:9a:7f:ac:28: f6:ed:ca:fd:91:dc:22:52:40:d9:24:11:1e:51:19: fe:15:fd:c2:d1:99:b4:8d:9f:da:1d:87:04:8d:4a: 8b:e8:29:33:08:4b:9e:9b:2b:ba:1a:5e:19:52:67: a1:a4:1d:4c:64:4d:62:f7:6b:3b:ff:52:ce:90:ed: 32:ff:77:cd:5b:1b:ba:ec:48:25:52:e9:05:4d:af: 76:9a:dd:0c:bc:78:cb:ff:ac:e4:36:46:57:5c:b3: 51:1a:44:59:6e:09:cf:c3:0e:5b:9c:f7:e7:56:af: 23:07:98:8d:df:32:34:d2:e0:ec:d0:f1:ce:0d:53: 8f:ee:44:3a:ae:78:cf:e5:1b:d3:2d:75:76:e9:d3: a4:50:ab:92:42:dc:6e:08:67:8f:6a:15:bc:67:e6: a1:a8:ba:5d:83:f2:52:05:ff:cc:46:78:51:4c:f1: f5:73:39:9f:a7:ce:31:ba:fc:42:e9:f4:a8:bf:c2: 4b:97:5e:60:90:25:17:4a:38:61:df:84:a8:5d:4a: b2:52:dc:77:27:ed:90:d4:b5:0e:3d:e7:69:d0:b1: 5e:be:b6:5a:b4:e2:49:73:89:85:05:3f:81:22:1e: 70:a7:1f:fe:9d:62:53:a4:17:2e:b5:cf:2c:0e:71: 9f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:B2:F5:0C:64:D1:FF:F2:F1:C9:7C:AF:1D:0B:58:4F:09:7E:28:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f1c8f6-2174-4be4-a315-584040d5ba64.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.100.0.0/16 Signature Algorithm: sha256WithRSAEncryption b5:57:ce:0b:29:96:74:a2:56:37:a3:da:11:88:cc:0f:cb:91: f1:cb:16:30:0f:a4:25:e9:35:4d:69:c4:9b:95:27:95:4b:21: 23:0b:3b:97:9f:db:18:a4:5c:1d:5e:6b:12:f5:66:8a:e9:4d: 9c:92:ce:a2:0a:1d:69:b5:55:8d:8b:b9:66:7e:98:24:e8:90: 60:3a:70:e1:ac:d6:21:05:59:ab:77:41:7a:fc:43:7a:4d:e8: 1e:5a:df:81:88:3c:16:52:bf:5d:1b:54:63:76:74:0d:b4:3e: a0:9e:38:7e:ea:90:f9:c0:83:c9:6f:85:df:8c:d2:bf:9b:36: fc:14:a3:19:bc:90:09:4e:15:36:c9:08:d1:5d:4f:ef:00:15: 87:55:16:88:c5:78:69:63:44:32:f1:d8:43:98:65:c4:dc:b3: e3:37:be:21:b8:1d:2a:1f:53:5e:45:a7:05:6d:0c:81:07:a4: 88:cd:4d:00:58:d2:91:a1:2d:3d:5d:fd:ac:15:da:21:3d:b1: b8:16:82:5d:b0:78:0e:10:70:a4:45:20:fd:7a:78:9e:76:b0: 67:77:b8:a7:05:c4:1a:b4:58:0b:0b:f6:4d:fb:4a:06:d2:44: 54:8c:88:ea:57:b3:05:e6:6d:eb:23:b6:5d:41:7d:f1:45:13: 29:82:6e:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSKasgfE5+AQZ3vir78Kc/UnwZsUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMTQ1WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4N2IwMjhmNjMyMWYyNzE2OGJkZmQ5NmMyMjJjNzQwMmYw M2YyMTk0NGI2Yzk5ZmM3MTllYjlkZjU4ZDYzZThmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmfX5fzq26d1gTmn+sKPbtyv2R3CJSQNkkER5RGf4V/cLR mbSNn9odhwSNSovoKTMIS56bK7oaXhlSZ6GkHUxkTWL3azv/Us6Q7TL/d81bG7rs SCVS6QVNr3aa3Qy8eMv/rOQ2Rldcs1EaRFluCc/DDluc9+dWryMHmI3fMjTS4OzQ 8c4NU4/uRDqueM/lG9MtdXbp06RQq5JC3G4IZ49qFbxn5qGoul2D8lIF/8xGeFFM 8fVzOZ+nzjG6/ELp9Ki/wkuXXmCQJRdKOGHfhKhdSrJS3Hcn7ZDUtQ4952nQsV6+ tlq04klziYUFP4EiHnCnH/6dYlOkFy61zywOcZ8rAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU87L1DGTR//LxyXyvHQtYTwl+KDQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjFjOGY2LTIxNzQtNGJlNC1hMzE1LTU4NDA0MGQ1YmE2NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQZDANBgkqhkiG9w0BAQsFAAOCAQEAtVfOCymWdKJWN6PaEYjMD8uR8csW MA+kJek1TWnEm5UnlUshIws7l5/bGKRcHV5rEvVmiulNnJLOogodabVVjYu5Zn6Y JOiQYDpw4azWIQVZq3dBevxDek3oHlrfgYg8FlK/XRtUY3Z0DbQ+oJ44fuqQ+cCD yW+F34zSv5s2/BSjGbyQCU4VNskI0V1P7wAVh1UWiMV4aWNEMvHYQ5hlxNyz4ze+ IbgdKh9TXkWnBW0MgQekiM1NAFjSkaEtPV39rBXaIT2xuBaCXbB4DhBwpEUg/Xp4 nnawZ3e4pwXEGrRYCwv2TftKBtJEVIyI6lezBeZt6yO2XUF98UUTKYJuWw== -----END CERTIFICATE-----Generated at Sun May 3 14:46:49 2026 by rpki-client