$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa File: 5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa (raw, json) Hash identifier: 5jwAt1ofA76XgcJSdW9rFRb5Ks+kdmRerwTL862N6do= Subject key identifier: E6:19:48:2B:08:A1:8E:44:5C:EA:4E:F7:46:19:1A:A5:81:97:0B:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E78A79C3BA6EA04F602B4945749A95A043FB279 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa Signing time: Tue 28 Apr 2026 00:00:04 +0000 ROA not before: Tue 28 Apr 2026 00:00:04 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.210.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:78:a7:9c:3b:a6:ea:04:f6:02:b4:94:57:49:a9:5a:04:3f:b2:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:00:04 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=1ca8420c62209b0bbffd92e3f10fe94ab70fb06169bb471056bca9b40fb144fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:89:60:0b:e2:8c:85:df:58:d9:80:8d:f9:3c: c3:22:89:73:af:9c:51:71:0a:4a:6c:de:c3:51:7c: 15:77:f2:bd:22:79:f8:f3:0c:a9:f1:40:ea:11:b6: be:dc:41:a6:a2:11:19:e4:3c:85:37:b2:2f:06:21: 20:ca:ee:c5:dd:91:e3:13:0e:d9:fb:bf:51:47:6f: cf:57:9b:6a:92:23:4b:04:cb:db:3d:22:8a:43:30: 90:51:89:cf:50:e0:15:c1:34:c8:35:e7:0d:df:88: e0:c5:29:b8:f1:39:64:8b:36:e8:5f:d1:8f:0a:a7: e2:70:b3:f8:49:d9:55:68:1b:85:b0:1a:13:33:f7: b5:78:66:76:68:d4:ad:3e:64:1f:a9:d1:fa:42:90: bc:2c:bc:8b:ca:1c:3e:df:24:0b:f5:90:11:01:ce: 99:ee:fa:9e:61:01:ba:7b:25:92:90:42:06:49:7e: 0d:27:7c:5f:0b:37:3c:60:ea:c4:b5:57:e6:2c:3c: c3:dc:12:43:16:ec:bc:39:07:dc:81:b2:b3:a1:4a: e1:90:3f:b2:db:38:1a:93:ae:f9:bd:30:a1:8f:bc: 52:bf:e4:23:06:9e:3e:b1:69:b7:43:52:88:74:76: 30:60:21:3f:ff:f5:5e:ef:ff:42:96:ba:6c:85:5f: cb:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:19:48:2B:08:A1:8E:44:5C:EA:4E:F7:46:19:1A:A5:81:97:0B:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d1d70d4-ba6b-40db-9fd0-c81406f9a314.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.210.0.0/16 Signature Algorithm: sha256WithRSAEncryption 48:1b:56:3d:68:5a:57:39:1d:57:50:08:b4:69:6d:d7:7b:45: 5d:06:ec:c8:68:77:13:d4:3b:de:f4:d6:71:62:d8:01:87:62: 97:d8:de:73:91:84:e3:14:0d:c9:49:3a:a5:05:6f:79:4d:75: 6c:87:8e:43:4d:ce:87:10:e1:f4:44:54:82:8c:c6:d0:6d:8f: 2b:fe:52:0b:b0:b8:97:bb:35:88:76:e0:c6:0b:5d:ff:ca:3f: 15:22:8e:7b:49:b3:f3:b9:9e:64:d2:ff:a6:23:d9:a5:c6:94: f3:59:72:a1:af:2e:bd:16:68:2b:c5:b4:aa:85:c6:a1:5d:af: f5:d9:2d:9a:95:4d:64:f6:53:24:ef:b1:08:ee:e6:c2:2a:2b: 32:ec:39:7a:67:46:93:db:ff:78:ee:9f:cc:f0:5f:be:8f:1e: 11:5f:1a:40:36:f6:e0:47:07:35:cc:57:bc:9c:f8:a8:35:04: a3:4a:49:c1:a1:9e:12:b1:db:e1:1a:d8:60:3e:bf:6f:bc:a8: 41:6d:ec:02:f1:19:25:99:ec:31:2f:68:b5:41:18:82:03:56: 5d:e9:dd:7f:de:47:01:a4:ac:ba:1a:95:48:1f:62:da:f9:6d: 56:01:c4:86:0b:45:24:a8:ee:55:54:4d:a8:16:02:b9:dc:64: b5:ee:19:b2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDninnDum6gT2ArSUV0mpWgQ/snkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAwMDA0WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2E4NDIwYzYyMjA5YjBiYmZmZDkyZTNmMTBmZTk0YWI3 MGZiMDYxNjliYjQ3MTA1NmJjYTliNDBmYjE0NGZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgiWAL4oyF31jZgI35PMMiiXOvnFFxCkps3sNRfBV38r0i efjzDKnxQOoRtr7cQaaiERnkPIU3si8GISDK7sXdkeMTDtn7v1FHb89Xm2qSI0sE y9s9IopDMJBRic9Q4BXBNMg15w3fiODFKbjxOWSLNuhf0Y8Kp+Jws/hJ2VVoG4Ww GhMz97V4ZnZo1K0+ZB+p0fpCkLwsvIvKHD7fJAv1kBEBzpnu+p5hAbp7JZKQQgZJ fg0nfF8LNzxg6sS1V+YsPMPcEkMW7Lw5B9yBsrOhSuGQP7LbOBqTrvm9MKGPvFK/ 5CMGnj6xabdDUoh0djBgIT//9V7v/0KWumyFX8tVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5hlIKwihjkRc6k73RhkapYGXCwYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkMWQ3MGQ0LWJhNmItNDBkYi05ZmQwLWM4MTQwNmY5YTMxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ0jANBgkqhkiG9w0BAQsFAAOCAQEASBtWPWhaVzkdV1AItGlt13tFXQbs yGh3E9Q73vTWcWLYAYdil9jec5GE4xQNyUk6pQVveU11bIeOQ03OhxDh9ERUgozG 0G2PK/5SC7C4l7s1iHbgxgtd/8o/FSKOe0mz87meZNL/piPZpcaU81lyoa8uvRZo K8W0qoXGoV2v9dktmpVNZPZTJO+xCO7mwiorMuw5emdGk9v/eO6fzPBfvo8eEV8a QDb24EcHNcxXvJz4qDUEo0pJwaGeErHb4RrYYD6/b7yoQW3sAvEZJZnsMS9otUEY ggNWXendf95HAaSsuhqVSB9i2vltVgHEhgtFJKjuVVRNqBYCudxkte4Zsg== -----END CERTIFICATE-----Generated at Sun May 3 15:27:48 2026 by rpki-client