$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa File: 9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa (raw, json) Hash identifier: oSlsDuEYnCLIq0jJ3AdGMScldtWe4DAy2wWUmyuhkHc= Subject key identifier: 68:99:B7:DF:3C:2B:A1:47:F6:81:7E:FB:6C:CF:AD:77:A7:C7:1C:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 405F2C42D5DCDE379E9B36500D63D9E7C3C13186 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa Signing time: Tue 28 Apr 2026 00:20:40 +0000 ROA not before: Tue 28 Apr 2026 00:20:40 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.135.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:5f:2c:42:d5:dc:de:37:9e:9b:36:50:0d:63:d9:e7:c3:c1:31:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:20:40 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=6910f8ef636057a86fb633e5eddb1bf04152a21c92d6d24fc0d65a9b0ec0b0fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:12:97:0e:15:59:55:47:6c:33:6b:10:4d:a7: 2f:ba:fb:c2:31:bb:e7:19:d4:62:7b:22:ba:7a:7d: 05:59:a6:27:7e:bd:63:e4:d2:d6:64:7e:63:c9:1c: a2:91:0b:fe:17:c4:b6:12:6d:9e:31:6a:7c:bd:97: 8f:a7:ba:3b:04:1e:21:d8:70:3a:d6:4c:05:71:13: 28:47:d4:59:c5:e7:34:2d:37:9d:a9:b3:44:42:07: f7:ac:c7:36:39:e0:2d:be:40:de:14:c2:00:b9:b7: 53:42:f6:c8:3a:41:c9:ad:76:89:2d:63:46:56:e8: 86:24:27:d8:a3:7c:df:9d:6d:7b:f2:7e:af:00:da: b0:bb:07:d2:76:ac:6e:59:99:49:4f:16:1f:6c:7d: 92:b1:3e:1d:ac:08:41:89:1d:df:a9:86:e9:66:5f: c5:53:cb:b6:10:9e:95:2f:72:06:f3:90:27:5c:32: f0:a1:3e:eb:b6:fe:ba:5c:df:92:d5:6a:f9:13:6d: 97:8f:91:59:b2:40:75:78:54:05:75:bd:e6:b1:27: b0:96:3f:6a:cd:f8:f8:42:9c:00:e3:79:b1:05:f4: a6:2a:bf:af:ec:fc:74:5e:f9:bd:5a:29:70:6b:35: bb:08:be:76:ee:b6:92:db:ca:ca:dc:ad:00:bb:fc: a4:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:99:B7:DF:3C:2B:A1:47:F6:81:7E:FB:6C:CF:AD:77:A7:C7:1C:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a0b22a0-ba9a-4be1-b539-8dc4983ff1e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.135.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:13:99:0c:4b:ec:a4:4e:35:90:18:82:31:7e:ff:9e:78:01: a8:cd:84:fa:f9:f3:b4:9a:2a:61:ad:f1:a0:aa:7f:43:a6:12: b3:61:c4:80:5b:8f:6a:52:1f:f5:fd:f0:aa:36:99:5d:1d:f2: 43:5d:88:43:5f:75:bf:3c:d5:24:20:f7:86:40:de:b8:14:11: 99:91:44:a7:e7:96:8a:9f:67:18:05:0f:43:1f:a9:e6:33:4d: 96:1d:8e:f3:dc:2a:81:4d:47:cd:98:10:c0:69:4e:7b:0f:7a: 93:58:25:ff:bb:ba:e4:da:17:18:1a:49:ee:c7:f0:a4:a0:9c: 67:09:51:af:42:d5:1e:b3:7f:d6:fe:1b:41:02:b8:66:d7:0c: ff:14:e5:38:26:9a:35:01:e0:53:4b:7a:75:67:14:1c:9a:42: 4b:f8:10:bf:1d:9d:11:bd:d3:11:db:b8:93:5b:1d:32:4d:30: c2:0a:74:fc:f3:02:6e:55:eb:db:0e:05:4c:ca:de:97:e5:ba: 58:72:da:27:de:f8:b4:f7:35:7d:04:50:c8:05:d6:7e:06:60: ba:56:aa:3a:e1:51:4f:b3:10:c5:b8:57:3f:aa:6b:b2:06:5e: 2d:27:cf:7e:4c:fc:3b:e7:ba:a1:af:20:36:3e:61:f2:cb:e0: 1e:2f:17:5c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQF8sQtXc3jeemzZQDWPZ58PBMYYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMDQwWhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTEwZjhlZjYzNjA1N2E4NmZiNjMzZTVlZGRiMWJmMDQx NTJhMjFjOTJkNmQyNGZjMGQ2NWE5YjBlYzBiMGZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgEpcOFVlVR2wzaxBNpy+6+8Ixu+cZ1GJ7Irp6fQVZpid+ vWPk0tZkfmPJHKKRC/4XxLYSbZ4xany9l4+nujsEHiHYcDrWTAVxEyhH1FnF5zQt N52ps0RCB/esxzY54C2+QN4UwgC5t1NC9sg6QcmtdoktY0ZW6IYkJ9ijfN+dbXvy fq8A2rC7B9J2rG5ZmUlPFh9sfZKxPh2sCEGJHd+phulmX8VTy7YQnpUvcgbzkCdc MvChPuu2/rpc35LVavkTbZePkVmyQHV4VAV1veaxJ7CWP2rN+PhCnADjebEF9KYq v6/s/HRe+b1aKXBrNbsIvnbutpLbysrcrQC7/KQPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaJm33zwroUf2gX77bM+td6fHHBkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhMGIyMmEwLWJhOWEtNGJlMS1iNTM5LThkYzQ5ODNmZjFlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQhzANBgkqhkiG9w0BAQsFAAOCAQEAyhOZDEvspE41kBiCMX7/nngBqM2E +vnztJoqYa3xoKp/Q6YSs2HEgFuPalIf9f3wqjaZXR3yQ12IQ191vzzVJCD3hkDe uBQRmZFEp+eWip9nGAUPQx+p5jNNlh2O89wqgU1HzZgQwGlOew96k1gl/7u65NoX GBpJ7sfwpKCcZwlRr0LVHrN/1v4bQQK4ZtcM/xTlOCaaNQHgU0t6dWcUHJpCS/gQ vx2dEb3TEdu4k1sdMk0wwgp0/PMCblXr2w4FTMrel+W6WHLaJ974tPc1fQRQyAXW fgZgulaqOuFRT7MQxbhXP6prsgZeLSfPfkz8O+e6oa8gNj5h8svgHi8XXA== -----END CERTIFICATE-----Generated at Sun May 3 15:32:23 2026 by rpki-client