$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa File: b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa (raw, json) Hash identifier: G/5xM+gnHHVh/azHs0104uziVgTnf/PKKatAsuiJfjE= Subject key identifier: 38:85:78:CD:87:42:D1:A1:72:E4:B6:49:C2:B0:76:80:BD:60:00:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AA863ECF5EDC250FF8EBC23C4A10B12BAA0B933 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa Signing time: Wed 29 Apr 2026 00:51:41 +0000 ROA not before: Wed 29 Apr 2026 00:51:41 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.91.192.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:a8:63:ec:f5:ed:c2:50:ff:8e:bc:23:c4:a1:0b:12:ba:a0:b9:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:51:41 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=2c676578b088b4937b7f77babd8bb761bf0cec3f09cf7e89985439aa39b73c30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:59:9d:00:58:18:f6:f8:8f:71:e3:6d:61:2e: 49:84:20:04:dc:13:d8:9f:0c:74:d3:dd:bf:09:d6: f4:44:9b:53:80:51:dc:e0:f6:6b:f7:c9:56:36:f2: 48:85:9c:ff:35:23:0c:4d:ae:9a:92:48:da:a1:2a: 15:8f:22:d9:d3:64:5d:96:16:44:e6:21:e2:69:01: 1c:ec:d6:4c:1b:f6:25:fe:c5:09:9a:27:2a:5e:3e: cb:8a:93:b6:3a:5b:1f:cf:5b:ae:a0:26:1e:f7:a8: 7c:e2:d2:91:bd:e1:ba:50:ae:81:29:10:5c:09:18: 05:0a:3f:dc:59:49:2e:71:a2:50:7f:ee:7f:cc:fc: 0d:16:06:43:e5:14:62:7a:70:69:5c:60:a9:3c:3f: 07:a0:dc:6a:5a:08:45:1a:52:ed:49:f1:87:4a:e6: 2a:bf:85:02:ff:0a:52:31:7c:bd:4e:4d:b7:ad:72: d4:33:7c:70:62:12:3f:cb:fc:df:74:f3:97:83:84: d9:48:06:75:b3:f9:fb:c7:b3:a1:26:dc:ff:30:9d: 00:51:da:72:d6:94:c8:e4:ed:fb:00:59:6b:d0:e4: be:0f:54:b2:5d:9e:62:20:d5:20:69:68:0f:eb:a5: 3f:bc:b1:19:86:d4:98:3c:f1:b2:40:1f:dc:a4:39: 62:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:85:78:CD:87:42:D1:A1:72:E4:B6:49:C2:B0:76:80:BD:60:00:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c2b85a-6726-4ea2-96e4-d34c1231c263.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.91.192.0/19 Signature Algorithm: sha256WithRSAEncryption 9b:de:45:e5:eb:8e:01:b4:21:80:df:e8:50:15:8d:d1:71:c1: 59:f2:01:c0:7d:bb:c0:36:f8:97:5a:11:b0:df:aa:c8:f7:11: e5:9a:dc:c3:3c:00:f2:d3:20:56:e8:a9:cb:37:66:e2:c5:32: 30:26:d0:04:da:07:e8:18:c4:0d:8d:da:0d:b9:a2:9a:85:a7: 6d:b1:7b:fa:50:99:a0:e5:b2:a4:21:0f:1b:e2:1c:0d:b4:25: 0a:c2:96:57:87:1c:dd:83:d1:18:31:e7:28:ac:fb:f9:b8:f5: 6b:48:89:84:c9:e3:74:bc:ce:a8:a6:a2:1b:c2:fc:95:f8:f4: ee:ff:cb:12:96:73:39:9d:b9:b5:bb:54:34:70:7d:90:20:42: cb:9d:ed:06:8a:65:4f:02:65:73:cb:aa:7f:4c:7d:18:be:48: 5b:c8:5e:b6:c4:fc:a7:5a:cd:fa:71:33:1f:12:e5:6b:14:1f: 6d:c7:e8:6c:a4:66:b9:dc:94:f8:8a:b3:e4:6b:b3:b1:b4:d9: 70:19:9b:e9:52:f5:91:fa:98:c9:30:99:69:e4:35:6b:71:f6: 1d:70:02:57:c4:b4:46:ed:88:f9:a9:ab:dc:c3:59:94:56:72: e5:76:6c:70:3a:fe:71:9c:22:cf:c3:ef:e7:b6:c9:34:b8:7d: ee:ff:39:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOqhj7PXtwlD/jrwjxKELErqguTMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA1MTQxWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzY3NjU3OGIwODhiNDkzN2I3Zjc3YmFiZDhiYjc2MWJm MGNlYzNmMDljZjdlODk5ODU0MzlhYTM5YjczYzMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4WZ0AWBj2+I9x421hLkmEIATcE9ifDHTT3b8J1vREm1OA Udzg9mv3yVY28kiFnP81IwxNrpqSSNqhKhWPItnTZF2WFkTmIeJpARzs1kwb9iX+ xQmaJypePsuKk7Y6Wx/PW66gJh73qHzi0pG94bpQroEpEFwJGAUKP9xZSS5xolB/ 7n/M/A0WBkPlFGJ6cGlcYKk8Pweg3GpaCEUaUu1J8YdK5iq/hQL/ClIxfL1OTbet ctQzfHBiEj/L/N9085eDhNlIBnWz+fvHs6Em3P8wnQBR2nLWlMjk7fsAWWvQ5L4P VLJdnmIg1SBpaA/rpT+8sRmG1Jg88bJAH9ykOWLVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOIV4zYdC0aFy5LZJwrB2gL1gAGIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyYzJiODVhLTY3MjYtNGVhMi05NmU0LWQzNGMxMjMxYzI2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVAW8AwDQYJKoZIhvcNAQELBQADggEBAJveReXrjgG0IYDf6FAVjdFxwVny AcB9u8A2+JdaEbDfqsj3EeWa3MM8APLTIFboqcs3ZuLFMjAm0ATaB+gYxA2N2g25 opqFp22xe/pQmaDlsqQhDxviHA20JQrClleHHN2D0Rgx5yis+/m49WtIiYTJ43S8 zqimohvC/JX49O7/yxKWczmdubW7VDRwfZAgQsud7QaKZU8CZXPLqn9MfRi+SFvI XrbE/KdazfpxMx8S5WsUH23H6GykZrnclPiKs+Rrs7G02XAZm+lS9ZH6mMkwmWnk NWtx9h1wAlfEtEbtiPmpq9zDWZRWcuV2bHA6/nGcIs/D7+e2yTS4fe7/ObY= -----END CERTIFICATE-----Generated at Sun May 3 14:49:46 2026 by rpki-client