$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b958acb-1d54-472e-b493-5b27ed769a39.roa File: 4b958acb-1d54-472e-b493-5b27ed769a39.roa (raw, json) Hash identifier: +X4zlwRoCDpfQvz5/GoaAYn92/XgGI3YAcV/lwqlQuw= Subject key identifier: D3:FB:7A:70:E7:AF:87:02:C3:3F:7B:B9:2F:9F:8D:20:C5:C6:5B:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3268DE93AA781B0E9C9D5B50F66E56E1C8A61AB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b958acb-1d54-472e-b493-5b27ed769a39.roa Signing time: Tue 28 Apr 2026 00:00:40 +0000 ROA not before: Tue 28 Apr 2026 00:00:40 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.206.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:68:de:93:aa:78:1b:0e:9c:9d:5b:50:f6:6e:56:e1:c8:a6:1a:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:00:40 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=dc252a8bc4a2eb4025adbdb569c39991cf145900260c8d492722e8b3f89014f8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:6b:c0:6d:9f:f0:81:ec:aa:b1:18:17:40:bf: 65:e9:af:d4:f8:79:97:6f:8c:5b:9b:41:cc:70:fb: 9d:70:a9:52:d1:3d:16:d1:9d:f3:2c:86:3b:f4:06: d8:9d:73:bd:cf:a2:f1:db:f9:1c:55:93:b2:cf:39: 24:16:34:d2:4e:b2:76:e1:53:ab:53:93:fb:03:9f: 0f:6a:e1:21:44:93:c2:27:b5:2f:f3:24:bf:79:5e: 48:6b:0a:26:57:3e:3e:2e:59:9a:9a:b9:a8:5f:e8: c8:1f:e9:af:90:6b:d3:31:17:e7:1c:9d:29:f8:5b: ab:ab:b2:be:5f:3d:79:29:e8:b7:36:18:a0:93:07: 73:cd:90:af:29:99:ea:1b:4f:6d:b9:ea:9c:4f:62: c7:dd:f9:d4:eb:45:41:de:3b:1c:03:af:f9:7c:41: 26:ae:ec:08:ba:f4:19:d6:c5:3e:5f:5d:34:14:dd: 79:e7:77:69:6b:49:48:1e:37:13:e0:8e:b3:62:d1: f5:8e:65:e2:47:1a:32:92:8a:4c:ae:2d:38:e7:c1: 6a:42:d3:52:62:a9:e3:a0:a9:59:7d:b5:81:87:89: 37:8a:92:79:54:ca:f9:6c:b3:be:59:54:ec:e0:aa: a1:e5:68:91:7c:63:e3:95:81:61:7c:cf:36:5f:56: 78:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:FB:7A:70:E7:AF:87:02:C3:3F:7B:B9:2F:9F:8D:20:C5:C6:5B:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b958acb-1d54-472e-b493-5b27ed769a39.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.206.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:a9:e5:65:75:56:03:c7:2a:03:44:ac:39:af:47:c3:0d:16: 93:70:68:7a:54:25:bc:78:bb:f6:15:67:b3:13:97:8d:b4:d0: ba:63:ff:e4:a6:f9:3c:4c:38:46:1e:1e:c5:57:16:ff:69:82: 92:b4:9e:21:cb:4d:c6:75:82:5b:fc:78:ab:42:61:a8:3e:b2: 34:40:cd:97:0b:db:cb:61:59:de:17:23:6e:ca:e2:fe:c7:5f: de:71:09:31:93:70:8e:5e:f2:2a:a1:07:25:a5:3a:02:c4:89: 55:30:9a:bb:d0:7c:b2:14:3a:29:e7:37:81:75:4d:d4:87:52: 8e:f9:62:cd:9f:d9:c3:21:0b:6d:a8:a0:3c:44:25:0c:6d:de: e3:00:0f:fb:1a:80:c3:02:ca:98:34:07:dc:32:13:88:0f:d0: 5a:2c:56:67:06:ef:0f:9d:b7:0e:26:39:78:5a:ff:62:7f:70: 6c:4d:81:44:b8:eb:05:b4:5a:87:d0:53:61:9e:bd:4d:e2:41: 63:31:31:2d:b4:d9:b1:b9:04:b6:ff:05:7e:33:c9:d8:24:fe: 64:1b:e4:33:58:4d:5b:ac:3f:6c:94:49:7f:2c:02:e7:20:19: 6b:95:a3:94:4d:5b:8f:2e:c0:93:93:09:c8:c3:67:fa:11:bc: 22:43:11:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMmjek6p4Gw6cnVtQ9m5W4cimGrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAwMDQwWhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzI1MmE4YmM0YTJlYjQwMjVhZGJkYjU2OWMzOTk5MWNm MTQ1OTAwMjYwYzhkNDkyNzIyZThiM2Y4OTAxNGY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZa8Btn/CB7KqxGBdAv2Xpr9T4eZdvjFubQcxw+51wqVLR PRbRnfMshjv0Btidc73PovHb+RxVk7LPOSQWNNJOsnbhU6tTk/sDnw9q4SFEk8In tS/zJL95XkhrCiZXPj4uWZqauahf6Mgf6a+Qa9MxF+ccnSn4W6ursr5fPXkp6Lc2 GKCTB3PNkK8pmeobT2256pxPYsfd+dTrRUHeOxwDr/l8QSau7Ai69BnWxT5fXTQU 3Xnnd2lrSUgeNxPgjrNi0fWOZeJHGjKSikyuLTjnwWpC01JiqeOgqVl9tYGHiTeK knlUyvlss75ZVOzgqqHlaJF8Y+OVgWF8zzZfVnhnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0/t6cOevhwLDP3u5L5+NIMXGWxMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiOTU4YWNiLTFkNTQtNDcyZS1iNDkzLTViMjdlZDc2OWEzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQzjANBgkqhkiG9w0BAQsFAAOCAQEAfqnlZXVWA8cqA0SsOa9Hww0Wk3Bo elQlvHi79hVnsxOXjbTQumP/5Kb5PEw4Rh4exVcW/2mCkrSeIctNxnWCW/x4q0Jh qD6yNEDNlwvby2FZ3hcjbsri/sdf3nEJMZNwjl7yKqEHJaU6AsSJVTCau9B8shQ6 Kec3gXVN1IdSjvlizZ/ZwyELbaigPEQlDG3e4wAP+xqAwwLKmDQH3DITiA/QWixW ZwbvD523DiY5eFr/Yn9wbE2BRLjrBbRah9BTYZ69TeJBYzExLbTZsbkEtv8FfjPJ 2CT+ZBvkM1hNW6w/bJRJfywC5yAZa5WjlE1bjy7Ak5MJyMNn+hG8IkMRCw== -----END CERTIFICATE-----Generated at Mon May 4 21:39:59 2026 by rpki-client