$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96dd814b-5709-4973-99da-da70d8c981bb.roa File: 96dd814b-5709-4973-99da-da70d8c981bb.roa (raw, json) Hash identifier: F4Iw0X2wQ2NC6uoyVswnUfW1TSFxRlC83uUq+IYxQTM= Subject key identifier: 45:F5:4A:22:6B:BB:16:3F:C2:DF:F0:35:EB:33:EF:D5:3A:7B:EB:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2480139E56CADCAFAE4029D34A2A7F9C353944A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96dd814b-5709-4973-99da-da70d8c981bb.roa Signing time: Sun 19 Apr 2026 00:00:07 +0000 ROA not before: Sun 19 Apr 2026 00:00:07 +0000 ROA not after: Sat 18 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 46.168.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:80:13:9e:56:ca:dc:af:ae:40:29:d3:4a:2a:7f:9c:35:39:44:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 19 00:00:07 2026 GMT Not After : Jul 18 23:59:59 2026 GMT Subject: serialNumber=b33c5c8be378c67a8acac19515e92b167f6f05aea85734f8eb7e265795486d2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:62:20:f5:8f:10:16:1e:71:e0:b5:56:08:60: f2:26:37:9b:a7:31:21:f9:ae:9d:a3:d3:48:61:66: ed:41:f2:b9:cf:a9:10:72:ef:04:13:ee:cf:db:ca: 6a:15:1c:97:8d:f8:7b:d0:62:1a:82:ff:a3:fa:c7: 97:9d:f0:58:a0:87:19:b4:e1:b4:dd:92:8e:52:7d: a0:5c:c6:e1:24:37:55:7e:5f:f0:11:96:ff:70:20: 95:2b:28:ef:30:1e:57:e2:d8:f4:d8:73:72:47:65: 97:89:16:4e:ae:27:80:e2:f5:7f:c6:66:8f:45:ce: b7:b6:27:8a:ba:cf:53:43:67:ca:52:8d:3d:bd:0d: 1e:eb:ab:ea:1f:c3:56:98:68:bb:fb:3a:de:61:f1: da:22:b5:3d:ba:d9:70:f9:ad:5e:0d:1a:a7:c9:de: 2d:a1:41:b0:d3:91:c8:d0:db:18:0c:8b:85:e8:98: 3f:98:ad:73:63:5e:a9:7a:20:c5:4b:f4:25:b6:15: c6:27:ef:31:9e:a2:27:75:79:71:14:7b:be:2a:24: 93:86:51:9b:bb:9f:ba:78:9f:a3:da:b2:b1:c2:55: e4:08:31:81:18:82:c1:b3:92:e2:ba:7b:18:22:06: 2e:00:b3:ea:b7:4f:6d:67:5b:d3:07:a1:97:f9:e6: 6b:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:F5:4A:22:6B:BB:16:3F:C2:DF:F0:35:EB:33:EF:D5:3A:7B:EB:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96dd814b-5709-4973-99da-da70d8c981bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.168.0.0/15 Signature Algorithm: sha256WithRSAEncryption 45:65:37:a0:29:8a:98:d4:3c:06:01:52:c2:99:0a:ae:6e:7f: ba:92:2f:eb:5c:c5:13:2a:60:9a:11:8e:5c:f7:83:61:0c:dc: 58:3e:23:25:31:10:9c:49:e2:a9:72:df:28:76:60:8e:07:a9: a3:bc:bc:34:32:d4:ac:6c:5c:33:e2:41:b0:f3:e6:36:98:73: dc:91:e2:af:c3:1d:ed:82:7a:3d:68:27:c4:c4:48:84:aa:1f: e1:aa:84:11:9e:1a:cb:0b:13:8f:c4:22:61:1c:ab:06:1e:48: 1b:45:0a:04:f2:a8:be:d5:87:2c:aa:50:28:19:dc:ab:af:f4: 7e:a3:e0:e3:3c:96:51:d8:85:f1:94:b3:5a:18:e6:6d:6e:66: 08:bb:18:75:24:3a:ff:7d:e0:b8:40:f6:91:45:eb:46:0d:f8: b6:58:5c:2e:a0:39:e5:ce:88:ae:4f:b0:12:25:eb:8a:3f:9a: de:eb:73:2e:c4:7d:dc:4d:20:d7:1e:6c:01:c9:56:db:56:f2: df:82:49:54:9b:b2:00:ad:38:40:9b:72:ea:5c:d7:c8:d7:83: fb:f1:e7:22:41:53:06:bc:1a:99:fb:fb:52:bf:31:a3:44:d9: a4:b7:7a:90:ee:7a:12:6e:47:3b:02:1f:76:cd:e1:41:ce:d7: f9:17:b8:5b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJIATnlbK3K+uQCnTSip/nDU5RKAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDE5MDAwMDA3WhcNMjYwNzE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzNjNWM4YmUzNzhjNjdhOGFjYWMxOTUxNWU5MmIxNjdm NmYwNWFlYTg1NzM0ZjhlYjdlMjY1Nzk1NDg2ZDJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCFYiD1jxAWHnHgtVYIYPImN5unMSH5rp2j00hhZu1B8rnP qRBy7wQT7s/bymoVHJeN+HvQYhqC/6P6x5ed8Fighxm04bTdko5SfaBcxuEkN1V+ X/ARlv9wIJUrKO8wHlfi2PTYc3JHZZeJFk6uJ4Di9X/GZo9Fzre2J4q6z1NDZ8pS jT29DR7rq+ofw1aYaLv7Ot5h8doitT262XD5rV4NGqfJ3i2hQbDTkcjQ2xgMi4Xo mD+YrXNjXql6IMVL9CW2FcYn7zGeoid1eXEUe74qJJOGUZu7n7p4n6PasrHCVeQI MYEYgsGzkuK6exgiBi4As+q3T21nW9MHoZf55muzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURfVKImu7Fj/C3/A16zPv1Tp767AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk2ZGQ4MTRiLTU3MDktNDk3My05OWRhLWRhNzBkOGM5ODFiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEuqDANBgkqhkiG9w0BAQsFAAOCAQEARWU3oCmKmNQ8BgFSwpkKrm5/upIv 61zFEypgmhGOXPeDYQzcWD4jJTEQnEniqXLfKHZgjgepo7y8NDLUrGxcM+JBsPPm Nphz3JHir8Md7YJ6PWgnxMRIhKof4aqEEZ4aywsTj8QiYRyrBh5IG0UKBPKovtWH LKpQKBncq6/0fqPg4zyWUdiF8ZSzWhjmbW5mCLsYdSQ6/33guED2kUXrRg34tlhc LqA55c6Irk+wEiXrij+a3utzLsR93E0g1x5sAclW21by34JJVJuyAK04QJty6lzX yNeD+/HnIkFTBrwamfv7Ur8xo0TZpLd6kO56Em5HOwIfds3hQc7X+Re4Ww== -----END CERTIFICATE-----Generated at Mon May 4 21:39:29 2026 by rpki-client