$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa File: 4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa (raw, json) Hash identifier: xoWjiX6WsPlq7TtwGVpK6Rxh4yckaISuy+LFe5ARCKU= Subject key identifier: CB:D5:E7:31:94:70:61:7A:70:5D:2D:53:F3:1C:9D:87:AB:83:5C:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1945B56B96A7765804B514BF4E5B86EE60EA1CA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa Signing time: Sun 26 Apr 2026 00:00:06 +0000 ROA not before: Sun 26 Apr 2026 00:00:06 +0000 ROA not after: Sat 25 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.174.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:45:b5:6b:96:a7:76:58:04:b5:14:bf:4e:5b:86:ee:60:ea:1c:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 26 00:00:06 2026 GMT Not After : Jul 25 23:59:59 2026 GMT Subject: serialNumber=65b6e1ffe3aa16307d85fde9fdcec47db59187c179a3ce8fc952d54f777d6841, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:ad:ad:56:45:2b:59:f1:89:57:ae:2e:d3:94: d8:79:0d:16:4b:e8:22:61:59:40:e5:9e:e0:a2:44: f1:25:65:55:e6:e5:17:9c:f4:06:80:4a:65:cb:56: 1b:a5:e2:8b:fd:80:a5:12:cf:42:09:fc:b4:f0:9f: b8:55:13:a8:c5:76:de:c7:f3:49:f4:48:24:01:c8: f0:f8:93:81:64:63:bd:13:45:dc:3b:cc:7b:40:a5: 65:06:5c:28:0a:08:08:75:69:38:c6:4a:8f:23:6b: 56:da:95:e4:9b:61:a6:a9:ea:fb:eb:24:e1:e1:d5: b2:ee:2c:9d:1b:cb:fe:8e:e6:41:e5:50:f3:c3:ce: 65:58:a3:87:e7:86:b0:95:be:5c:e1:fd:66:82:29: b1:83:21:42:13:7c:93:a3:5a:26:4c:95:13:e3:27: e6:55:7e:2f:bc:11:d2:b1:8b:62:a0:eb:fe:d2:8d: 60:78:2e:3e:2d:13:8a:36:6b:f3:71:fe:e9:3c:21: 69:68:4e:54:ef:93:09:4f:79:51:38:2e:a7:72:3b: d1:cf:61:2e:2c:31:0e:31:c6:2c:3b:77:33:43:8c: 95:b9:be:13:31:59:8c:67:01:a4:2e:52:2e:d4:31: a9:ff:81:9f:1b:6f:89:cf:fb:5c:68:55:62:b4:9d: 74:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CB:D5:E7:31:94:70:61:7A:70:5D:2D:53:F3:1C:9D:87:AB:83:5C:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4222f39a-e13b-4f90-8fac-d7f3ddd78042.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.174.0.0/16 Signature Algorithm: sha256WithRSAEncryption 40:20:45:4a:1b:ad:47:ff:df:83:10:6c:68:e2:76:5d:09:e9: 57:fe:1d:b7:56:97:96:10:eb:cb:c5:d1:ed:b6:29:74:21:2e: 0b:5d:fe:7c:37:a9:45:49:3a:0e:4c:b2:a2:ba:2b:da:29:c7: 8c:1c:76:5c:fd:6d:42:7d:35:75:c1:fb:94:29:52:d9:c3:fd: d3:2a:ce:f2:b1:87:34:fb:74:7d:2a:73:45:07:e7:19:a3:0a: 1e:7e:28:ff:99:70:2f:0a:d2:9c:0f:73:fd:80:f3:81:e7:cf: 91:7c:47:51:8e:d0:fd:45:4e:11:63:b5:27:b0:b4:17:ea:0a: 4b:b3:8a:3d:43:ba:61:9a:cd:6f:84:b7:6d:4f:c0:37:83:5a: e1:a1:27:0c:0b:32:f9:77:bd:b5:de:9e:e8:a2:c8:60:d2:af: bc:03:e3:a3:91:eb:d1:f4:da:67:89:e5:87:33:5b:7a:05:06: 4c:ba:3c:e2:e6:2f:44:42:cd:cd:fe:34:47:9d:62:04:29:8b: 2f:d9:06:20:bc:ad:d6:5d:ea:14:b8:f6:2b:13:df:73:1f:99: af:14:bf:91:6c:13:fc:50:96:ec:7e:35:f2:48:29:d3:15:4d: ff:ed:b2:90:82:68:56:e1:dd:53:18:8c:67:1d:ac:8a:41:0c: 96:92:e9:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGUW1a5andlgEtRS/TluG7mDqHKUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI2MDAwMDA2WhcNMjYwNzI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWI2ZTFmZmUzYWExNjMwN2Q4NWZkZTlmZGNlYzQ3ZGI1 OTE4N2MxNzlhM2NlOGZjOTUyZDU0Zjc3N2Q2ODQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6ra1WRStZ8YlXri7TlNh5DRZL6CJhWUDlnuCiRPElZVXm 5Rec9AaASmXLVhul4ov9gKUSz0IJ/LTwn7hVE6jFdt7H80n0SCQByPD4k4FkY70T Rdw7zHtApWUGXCgKCAh1aTjGSo8ja1baleSbYaap6vvrJOHh1bLuLJ0by/6O5kHl UPPDzmVYo4fnhrCVvlzh/WaCKbGDIUITfJOjWiZMlRPjJ+ZVfi+8EdKxi2Kg6/7S jWB4Lj4tE4o2a/Nx/uk8IWloTlTvkwlPeVE4LqdyO9HPYS4sMQ4xxiw7dzNDjJW5 vhMxWYxnAaQuUi7UMan/gZ8bb4nP+1xoVWK0nXRjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUy9XnMZRwYXpwXS1T8xydh6uDXAowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyMjJmMzlhLWUxM2ItNGY5MC04ZmFjLWQ3ZjNkZGQ3ODA0Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQrjANBgkqhkiG9w0BAQsFAAOCAQEAQCBFShutR//fgxBsaOJ2XQnpV/4d t1aXlhDry8XR7bYpdCEuC13+fDepRUk6Dkyyoror2inHjBx2XP1tQn01dcH7lClS 2cP90yrO8rGHNPt0fSpzRQfnGaMKHn4o/5lwLwrSnA9z/YDzgefPkXxHUY7Q/UVO EWO1J7C0F+oKS7OKPUO6YZrNb4S3bU/AN4Na4aEnDAsy+Xe9td6e6KLIYNKvvAPj o5Hr0fTaZ4nlhzNbegUGTLo84uYvRELNzf40R51iBCmLL9kGILyt1l3qFLj2KxPf cx+ZrxS/kWwT/FCW7H418kgp0xVN/+2ykIJoVuHdUxiMZx2sikEMlpLpsQ== -----END CERTIFICATE-----Generated at Mon May 4 21:38:00 2026 by rpki-client