$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa File: 8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa (raw, json) Hash identifier: QsJCCGjcfHGkM3YBsVlOvQq0vgyhv5F66TV7BJ1GPvY= Subject key identifier: A2:94:1E:C5:E9:C2:8D:AC:50:44:85:5B:31:AD:C7:54:76:87:8F:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0119D909FB340294E0D0F5BABDCD773CA08B579A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa Signing time: Wed 29 Apr 2026 00:51:39 +0000 ROA not before: Wed 29 Apr 2026 00:51:39 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:19:d9:09:fb:34:02:94:e0:d0:f5:ba:bd:cd:77:3c:a0:8b:57:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:51:39 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=f051c6187a7e3ec0d5a9c032c2a7f00901d6d897361255ed02d9125b969b1b69, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:53:6f:9f:be:29:02:87:1c:f8:2c:50:f6:4f: 45:2c:95:11:ac:30:6d:da:bd:13:8c:64:cd:13:06: a1:dd:74:be:b9:0f:1a:60:68:e4:ba:b4:b8:75:0f: aa:6d:7f:22:3f:5b:fc:95:ba:e9:d1:16:1d:c4:8d: ce:ba:03:92:50:ed:7e:6f:57:98:9c:5a:c1:8e:1b: fa:5e:55:63:b6:85:8e:3d:cd:75:7f:74:6a:9b:7c: 56:45:13:01:cc:bc:db:25:e8:7d:8d:49:75:45:c4: 28:43:ff:4c:05:9b:ae:86:89:07:af:e8:93:0e:c5: 94:bb:c7:7f:f9:24:a1:5b:2b:60:36:2c:01:54:7c: b6:db:84:91:b3:89:b2:01:7b:17:ea:15:37:7b:de: 09:43:cb:2f:7f:5d:ad:25:a2:da:94:31:6b:6e:b8: 6e:f4:f7:5f:d7:b9:ec:02:e5:32:04:d8:4f:94:22: 77:16:fc:8d:86:3e:88:29:b7:34:6f:21:c9:43:51: 67:e4:f9:7c:09:2a:a0:92:d3:42:c6:92:2b:17:29: 00:d8:73:ce:8c:26:8b:b7:3b:a0:68:f2:dc:69:c0: 4c:1b:85:e8:2b:75:d6:7b:65:0b:4c:14:6b:b9:ea: 17:a0:36:03:4c:f4:5a:87:96:85:9e:1d:a2:2b:06: 8b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:94:1E:C5:E9:C2:8D:AC:50:44:85:5B:31:AD:C7:54:76:87:8F:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b42cb5f-7b5f-4b99-a5c4-d40f3ee3356a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption af:0e:a4:bb:9a:96:98:e5:77:d4:c1:6d:8b:7c:a0:50:ad:c2: 3d:a6:53:53:4f:f0:a9:22:00:fe:e3:1e:3c:c3:40:93:22:8b: 9d:b1:43:f9:51:b0:98:7d:49:ce:ce:74:f9:17:87:09:ca:79: 09:e1:fd:27:d2:6a:03:1c:4f:a0:79:a4:ac:10:ba:d5:e2:c2: 93:3d:b4:5e:37:b2:af:ce:d7:e7:43:ef:0e:33:ee:50:2e:10: cc:81:f4:4b:7e:39:15:af:8d:60:ed:59:34:7e:33:2f:67:9a: c6:72:2e:4e:75:df:95:d7:6c:b5:da:bc:a4:57:2f:04:34:04: 59:85:78:b5:65:e9:9c:a9:19:44:63:f8:47:c9:05:87:2a:84: 36:55:a9:71:d3:18:09:df:33:65:07:ea:1e:96:ad:7d:3d:aa: 62:06:77:15:e7:4c:a0:59:a2:12:26:ad:69:5c:53:7c:8e:8f: 0d:c9:af:40:52:80:c9:cc:c5:68:14:d6:11:fd:be:9c:72:e4: 0a:4d:30:af:cc:3b:80:00:31:6a:7f:bc:f1:9b:2b:66:c8:81: 44:2a:5a:90:74:e2:ad:a5:2f:f0:ae:9b:af:da:4c:9d:76:03: f2:4e:01:8e:43:03:95:a7:1a:c1:16:2d:14:8a:7b:ba:7d:42: 84:1e:56:07 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUARnZCfs0ApTg0PW6vc13PKCLV5owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA1MTM5WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDUxYzYxODdhN2UzZWMwZDVhOWMwMzJjMmE3ZjAwOTAx ZDZkODk3MzYxMjU1ZWQwMmQ5MTI1Yjk2OWIxYjY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPU2+fvikChxz4LFD2T0UslRGsMG3avROMZM0TBqHddL65 DxpgaOS6tLh1D6ptfyI/W/yVuunRFh3Ejc66A5JQ7X5vV5icWsGOG/peVWO2hY49 zXV/dGqbfFZFEwHMvNsl6H2NSXVFxChD/0wFm66GiQev6JMOxZS7x3/5JKFbK2A2 LAFUfLbbhJGzibIBexfqFTd73glDyy9/Xa0lotqUMWtuuG7091/XuewC5TIE2E+U IncW/I2GPogptzRvIclDUWfk+XwJKqCS00LGkisXKQDYc86MJou3O6Bo8txpwEwb hegrddZ7ZQtMFGu56hegNgNM9FqHloWeHaIrBosZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUopQexenCjaxQRIVbMa3HVHaHj04wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDJjYjVmLTdiNWYtNGI5OS1hNWM0LWQ0MGYzZWUzMzU2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2FjANBgkqhkiG9w0BAQsFAAOCAQEArw6ku5qWmOV31MFti3ygUK3CPaZT U0/wqSIA/uMePMNAkyKLnbFD+VGwmH1Jzs50+ReHCcp5CeH9J9JqAxxPoHmkrBC6 1eLCkz20Xjeyr87X50PvDjPuUC4QzIH0S345Fa+NYO1ZNH4zL2eaxnIuTnXfldds tdq8pFcvBDQEWYV4tWXpnKkZRGP4R8kFhyqENlWpcdMYCd8zZQfqHpatfT2qYgZ3 FedMoFmiEiataVxTfI6PDcmvQFKAyczFaBTWEf2+nHLkCk0wr8w7gAAxan+88Zsr ZsiBRCpakHTiraUv8K6br9pMnXYD8k4BjkMDlacawRYtFIp7un1ChB5WBw== -----END CERTIFICATE-----Generated at Sun May 3 17:03:40 2026 by rpki-client