$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa File: 9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa (raw, json) Hash identifier: buNc3gEXtdGIiTIwBzQoECimvjNfOQJoPaL1TdrGKCQ= Subject key identifier: 26:BC:AD:2B:F1:11:E2:A5:C8:4C:38:BA:8C:93:DE:37:DE:42:01:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FCBA6F975623C5DEB657966F087C2DC6653DFB5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa Signing time: Tue 28 Apr 2026 00:30:11 +0000 ROA not before: Tue 28 Apr 2026 00:30:11 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 168.241.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:cb:a6:f9:75:62:3c:5d:eb:65:79:66:f0:87:c2:dc:66:53:df:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:30:11 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=d77b90003c7d4247bd0641c627f1597b32673bd0c2bc5c574aacea9bbaf7e671, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:36:17:46:e3:75:f2:bb:58:99:64:b6:0d:b6: 0a:e8:8c:f4:96:c8:0b:bc:7c:65:eb:12:8f:38:1b: fe:1d:2c:0d:b7:48:ee:1a:50:b0:5c:23:51:fc:a6: 1d:28:6a:7f:4e:ee:38:1a:34:4a:63:06:e3:60:25: 22:27:54:65:33:97:7a:a8:be:3b:23:d8:7c:fb:2f: 27:ba:57:e2:dc:a2:15:08:42:11:54:96:3a:bc:ff: fa:5b:5a:6f:bd:df:fa:1f:9a:32:d1:64:6f:9e:90: 0f:01:00:59:fd:cb:67:42:0c:c1:e0:f6:82:1e:59: 0d:99:2a:d9:46:fa:9f:16:c7:e7:59:aa:05:22:ed: a8:a3:ca:70:ad:5c:57:20:20:75:05:0b:0c:fb:96: d5:87:d9:96:cc:fd:2e:87:85:11:00:1f:53:cc:31: b0:9e:92:8a:ae:bc:49:7f:58:21:a0:c1:7f:ef:f7: e6:05:07:b0:5f:70:f2:25:63:b4:c7:c8:a0:af:15: 54:4f:a2:2a:c6:85:9f:03:e6:ea:61:65:ee:46:96: 5c:42:4b:46:80:89:31:90:2d:60:46:7d:35:fd:66: a1:ff:12:67:d5:8d:07:09:b9:a2:6a:99:08:79:ca: 3e:88:3d:ad:97:3b:ee:c1:39:00:d4:7a:18:2a:3a: d7:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:BC:AD:2B:F1:11:E2:A5:C8:4C:38:BA:8C:93:DE:37:DE:42:01:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e78c606-f2f1-41f5-b3eb-b5b1035697f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.241.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1b:08:40:12:34:4a:83:fd:4d:27:e4:0a:e0:3e:83:7a:d6:fd: 11:95:e4:10:79:e3:27:6b:d7:52:cf:ce:01:25:ce:bf:96:43: 9b:17:28:fc:c4:d0:30:75:23:aa:c1:a4:01:b9:42:7c:ae:e5: 29:16:d0:77:36:67:3a:dc:cb:15:a3:55:4f:21:6c:55:bb:1b: 4a:81:3a:26:fe:dc:9b:eb:f1:9b:1d:0d:14:04:72:a9:a4:6d: 51:2c:fd:d4:1f:8b:f3:6b:fa:f0:61:a3:3b:67:fb:4c:cd:31: 9a:2f:a2:f8:62:3d:ab:26:14:f5:3a:91:f2:31:59:4e:b1:2a: 44:16:d0:95:ad:80:fc:89:c2:04:fd:21:7a:ba:45:fc:f8:10: f2:6d:c1:86:3f:b9:85:d2:96:3f:cd:5a:c5:51:f3:fa:e6:10: 8b:0b:9e:ca:3b:26:af:20:35:cd:83:2f:c6:24:9e:39:b7:80: 3f:3f:39:9f:40:86:65:52:a7:03:83:dd:3c:89:04:af:61:5b: 0a:ab:52:15:d4:46:97:6a:16:d8:35:a9:13:2f:47:28:a1:58: af:1a:a4:55:fc:e0:aa:d2:19:81:0f:06:64:85:1c:43:3a:88: f3:06:eb:a0:e1:32:d5:07:70:93:7e:89:3d:d6:fd:1a:98:45: 06:e6:0d:10 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD8um+XViPF3rZXlm8IfC3GZT37UwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAzMDExWhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzdiOTAwMDNjN2Q0MjQ3YmQwNjQxYzYyN2YxNTk3YjMy NjczYmQwYzJiYzVjNTc0YWFjZWE5YmJhZjdlNjcxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4NhdG43Xyu1iZZLYNtgrojPSWyAu8fGXrEo84G/4dLA23 SO4aULBcI1H8ph0oan9O7jgaNEpjBuNgJSInVGUzl3qovjsj2Hz7Lye6V+LcohUI QhFUljq8//pbWm+93/ofmjLRZG+ekA8BAFn9y2dCDMHg9oIeWQ2ZKtlG+p8Wx+dZ qgUi7aijynCtXFcgIHUFCwz7ltWH2ZbM/S6HhREAH1PMMbCekoquvEl/WCGgwX/v 9+YFB7BfcPIlY7THyKCvFVRPoirGhZ8D5uphZe5GllxCS0aAiTGQLWBGfTX9ZqH/ EmfVjQcJuaJqmQh5yj6IPa2XO+7BOQDUehgqOtdrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJrytK/ER4qXITDi6jJPeN95CAZUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllNzhjNjA2LWYyZjEtNDFmNS1iM2ViLWI1YjEwMzU2OTdmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCo8TANBgkqhkiG9w0BAQsFAAOCAQEAGwhAEjRKg/1NJ+QK4D6Detb9EZXk EHnjJ2vXUs/OASXOv5ZDmxco/MTQMHUjqsGkAblCfK7lKRbQdzZnOtzLFaNVTyFs VbsbSoE6Jv7cm+vxmx0NFARyqaRtUSz91B+L82v68GGjO2f7TM0xmi+i+GI9qyYU 9TqR8jFZTrEqRBbQla2A/InCBP0herpF/PgQ8m3Bhj+5hdKWP81axVHz+uYQiwue yjsmryA1zYMvxiSeObeAPz85n0CGZVKnA4PdPIkEr2FbCqtSFdRGl2oW2DWpEy9H KKFYrxqkVfzgqtIZgQ8GZIUcQzqI8wbroOEy1Qdwk36JPdb9GphFBuYNEA== -----END CERTIFICATE-----Generated at Sun May 3 15:33:40 2026 by rpki-client