$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa File: 6a459199-d80a-4790-b99e-d7e340b000a0.roa (raw, json) Hash identifier: Xz+tp9yTlx5eylEGMGlcplk4EBeXGDJ4P3SM28pQDVM= Subject key identifier: 27:A3:4C:76:4F:31:5B:AD:53:B7:43:27:A8:05:2E:89:EC:A8:DC:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29C43609FD0BB96630A6CBB0829B8BD863D9EA47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa Signing time: Wed 29 Apr 2026 00:41:32 +0000 ROA not before: Wed 29 Apr 2026 00:41:32 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.184.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:c4:36:09:fd:0b:b9:66:30:a6:cb:b0:82:9b:8b:d8:63:d9:ea:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:41:32 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=aeb66d83211e9614da32660205aadeaa57fb1da6c71e9b4a62674b94cdf34a66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:d0:32:10:5b:ed:59:c2:bf:e9:25:9a:d2:6e: 2f:7b:47:4c:08:bd:f6:19:a4:ae:c3:27:80:46:a5: 33:82:89:b9:0b:e7:9e:2f:67:04:c3:e7:4f:1c:b3: ba:a1:ef:de:34:af:35:2d:e5:44:23:92:82:e9:4f: 04:97:03:05:cd:73:0b:28:ec:c4:87:13:14:0b:77: f0:45:c7:54:72:1c:61:1a:b0:19:e8:8e:c4:5a:4e: fb:64:52:b6:db:cf:45:e8:a7:72:1a:fd:b5:9b:87: 54:8f:50:b2:21:6b:67:ba:04:dc:72:2a:1f:4d:a5: 23:22:4e:f8:7f:21:b4:97:7c:c8:02:f9:71:65:59: 28:70:bb:a0:37:30:8f:c7:ed:39:91:5c:c3:20:9d: ce:2a:70:0b:d4:7e:11:0a:cc:bd:ae:b7:4a:2f:ac: 89:bf:eb:28:fd:54:b7:54:5f:d8:05:9f:ee:e0:a8: c8:89:2c:1c:b9:15:7a:1a:0a:03:8e:4b:ea:bf:28: b2:ca:38:ca:af:07:ba:a1:15:b2:49:77:3a:4b:39: e0:66:7a:e9:2d:99:81:a8:84:54:1a:b8:29:9e:aa: 31:cf:f6:ee:fe:d2:cc:ae:5f:d7:50:44:4e:c1:21: 76:c0:32:29:40:d0:26:7b:88:2a:f3:8e:15:bf:77: f0:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:A3:4C:76:4F:31:5B:AD:53:B7:43:27:A8:05:2E:89:EC:A8:DC:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a459199-d80a-4790-b99e-d7e340b000a0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:7d:7b:0e:f2:55:96:e1:b2:4f:26:bd:67:9a:30:75:e5:cd: 2c:56:1a:c7:1c:d7:9b:fe:96:89:d1:a3:f2:dd:1d:fe:a4:dc: 4c:1d:81:bd:4c:cc:ef:a7:a5:fc:35:f4:33:1e:4f:8c:46:84: 49:38:83:64:bb:9c:2e:fd:75:c6:b5:d9:19:a8:9d:bd:9c:80: 89:f1:27:52:4b:c1:3d:e1:b2:3e:c3:a5:86:26:36:13:f2:4d: d2:29:c0:08:20:eb:cf:3d:72:65:a0:4c:46:5f:97:d5:60:c7: 3a:46:4e:bb:d7:68:fa:7f:21:7d:24:1b:b6:e5:73:c6:17:ec: 2b:68:0e:36:0f:c6:27:58:f9:b4:d3:81:2f:67:93:9b:8c:b6: f5:23:a4:6b:61:51:93:ef:69:2b:bf:5b:dd:2e:f1:f4:d4:02: 09:b1:83:13:f8:47:01:fc:9c:25:4b:22:c1:26:a9:33:43:f4: 71:03:23:8b:cc:65:43:92:29:0b:82:73:df:09:9e:98:dc:e9: 7f:33:c4:6f:a5:8b:f4:a5:e4:c9:f8:1e:0f:1b:a1:10:cb:07: 19:64:39:2e:d2:50:53:7b:d9:56:2b:f9:86:d7:33:67:95:93: 2c:02:a7:d3:1b:54:ad:aa:39:39:73:9c:5c:66:34:08:5d:2d: 68:46:65:1d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKcQ2Cf0LuWYwpsuwgpuL2GPZ6kcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA0MTMyWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhZWI2NmQ4MzIxMWU5NjE0ZGEzMjY2MDIwNWFhZGVhYTU3 ZmIxZGE2YzcxZTliNGE2MjY3NGI5NGNkZjM0YTY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf0DIQW+1Zwr/pJZrSbi97R0wIvfYZpK7DJ4BGpTOCibkL 554vZwTD508cs7qh7940rzUt5UQjkoLpTwSXAwXNcwso7MSHExQLd/BFx1RyHGEa sBnojsRaTvtkUrbbz0Xop3Ia/bWbh1SPULIha2e6BNxyKh9NpSMiTvh/IbSXfMgC +XFlWShwu6A3MI/H7TmRXMMgnc4qcAvUfhEKzL2ut0ovrIm/6yj9VLdUX9gFn+7g qMiJLBy5FXoaCgOOS+q/KLLKOMqvB7qhFbJJdzpLOeBmeuktmYGohFQauCmeqjHP 9u7+0syuX9dQRE7BIXbAMilA0CZ7iCrzjhW/d/CrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJ6NMdk8xW61Tt0MnqAUuieyo3FcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNDU5MTk5LWQ4MGEtNDc5MC1iOTllLWQ3ZTM0MGIwMDBhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uDANBgkqhkiG9w0BAQsFAAOCAQEA1n17DvJVluGyTya9Z5owdeXNLFYa xxzXm/6WidGj8t0d/qTcTB2BvUzM76el/DX0Mx5PjEaESTiDZLucLv11xrXZGaid vZyAifEnUkvBPeGyPsOlhiY2E/JN0inACCDrzz1yZaBMRl+X1WDHOkZOu9do+n8h fSQbtuVzxhfsK2gONg/GJ1j5tNOBL2eTm4y29SOka2FRk+9pK79b3S7x9NQCCbGD E/hHAfycJUsiwSapM0P0cQMji8xlQ5IpC4Jz3wmemNzpfzPEb6WL9KXkyfgeDxuh EMsHGWQ5LtJQU3vZViv5htczZ5WTLAKn0xtUrao5OXOcXGY0CF0taEZlHQ== -----END CERTIFICATE-----Generated at Sun May 3 14:46:45 2026 by rpki-client