$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa File: b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa (raw, json) Hash identifier: CktrcHKAJ2rwooEwW6i6SpPGkJYYSCUgUBC/pgz+tls= Subject key identifier: 0E:CD:49:F4:EF:F9:96:60:0B:D4:6E:83:D7:88:E2:E5:C8:19:8D:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 404AF48EFC26786CF35FFA6DBEDC2EF1311D9FA2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa Signing time: Wed 29 Apr 2026 00:21:08 +0000 ROA not before: Wed 29 Apr 2026 00:21:08 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 206.134.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:4a:f4:8e:fc:26:78:6c:f3:5f:fa:6d:be:dc:2e:f1:31:1d:9f:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:08 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=e070954b40f189fa78cfcf259a15a8193566f40ee240d3cf7bf3f404080c3159, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:e3:86:91:57:7d:50:14:d7:38:99:8d:c2:cf: 3e:55:8c:ce:0d:81:6e:eb:15:df:72:c4:1f:b6:50: 89:e1:81:c7:62:97:da:b2:1a:e4:42:66:77:cb:ec: d3:12:79:73:45:7f:84:02:2f:84:38:34:a8:11:4c: 2a:db:b6:e9:30:92:95:3e:3b:f8:87:bc:ba:66:74: 35:24:d5:7a:af:8c:06:a9:db:40:04:ef:54:d8:f8: 47:32:a2:ac:4e:45:5e:6a:07:0d:6b:cd:50:54:ec: c8:9e:61:c9:c7:8b:57:38:1e:e9:a0:16:e4:cc:f1: de:af:ff:1d:18:42:d4:57:95:fd:46:96:97:14:6b: bb:a1:44:de:1c:3a:68:55:e3:8b:89:5e:12:d6:bb: 3d:69:92:2d:d6:25:f2:f3:db:e7:aa:31:ee:ff:c1: e6:07:3f:3c:21:05:b0:8c:df:23:81:ab:72:7a:d2: 4b:a9:56:02:c9:6b:06:43:aa:74:b8:7a:46:07:31: 8a:60:98:af:6b:7e:99:c8:65:21:d8:25:18:e6:83: b7:19:63:fb:60:33:bb:6f:14:e6:2d:6c:08:01:12: f3:a3:90:df:83:d3:5f:95:5b:30:97:a0:32:d4:30: fa:e5:34:29:e2:da:eb:e6:b0:17:7a:2b:cc:67:b2: c6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:CD:49:F4:EF:F9:96:60:0B:D4:6E:83:D7:88:E2:E5:C8:19:8D:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8ae0d6d-16cf-40c3-9a3e-054480e1b35b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.134.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:ba:05:3d:cd:27:c5:2e:86:14:f8:83:89:72:d0:b7:de:b8: eb:bd:d0:7d:49:84:93:30:2e:80:65:41:fd:d4:8c:05:42:33: 3d:6a:9e:1e:bd:f4:8a:92:79:89:2e:e3:bc:9c:5f:fe:52:ef: cf:17:bc:27:fb:58:43:2d:28:fb:af:8c:b3:4f:8b:b1:1c:e7: 24:8a:50:0a:9a:32:81:a3:ee:2c:5a:b6:eb:49:49:a7:65:89: 93:71:d5:52:36:7c:32:9d:55:81:b7:08:d1:59:04:7d:20:9c: ff:c6:28:13:5e:af:5a:cb:df:75:76:57:db:a6:1d:2b:e4:2c: bc:b2:3d:4e:1d:14:36:2c:f7:05:e3:b2:79:cd:6c:cf:0a:0a: 6f:33:df:59:a0:98:c1:7a:65:63:38:c3:56:06:49:02:a0:b5: 3f:a9:66:05:63:96:42:6b:dd:44:b4:8e:1b:a2:41:0e:e5:de: 25:78:11:6d:f9:e9:8b:2f:c9:e8:37:d0:1a:76:70:ba:3a:45: 0c:27:05:79:e8:38:4d:9d:57:01:ce:32:de:fe:70:95:2a:07: e6:64:bc:49:48:b4:cf:60:47:bb:bc:b4:41:48:5a:13:fe:86: f1:88:51:a5:fa:85:ff:a2:9f:97:6b:d3:12:0d:49:68:d5:57: e4:4d:5d:b1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQEr0jvwmeGzzX/ptvtwu8TEdn6IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMTA4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDcwOTU0YjQwZjE4OWZhNzhjZmNmMjU5YTE1YTgxOTM1 NjZmNDBlZTI0MGQzY2Y3YmYzZjQwNDA4MGMzMTU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi44aRV31QFNc4mY3Czz5VjM4NgW7rFd9yxB+2UInhgcdi l9qyGuRCZnfL7NMSeXNFf4QCL4Q4NKgRTCrbtukwkpU+O/iHvLpmdDUk1XqvjAap 20AE71TY+EcyoqxORV5qBw1rzVBU7MieYcnHi1c4HumgFuTM8d6v/x0YQtRXlf1G lpcUa7uhRN4cOmhV44uJXhLWuz1pki3WJfLz2+eqMe7/weYHPzwhBbCM3yOBq3J6 0kupVgLJawZDqnS4ekYHMYpgmK9rfpnIZSHYJRjmg7cZY/tgM7tvFOYtbAgBEvOj kN+D01+VWzCXoDLUMPrlNCni2uvmsBd6K8xnssZpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDs1J9O/5lmAL1G6D14ji5cgZjQkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4YWUwZDZkLTE2Y2YtNDBjMy05YTNlLTA1NDQ4MGUxYjM1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDOhjANBgkqhkiG9w0BAQsFAAOCAQEATroFPc0nxS6GFPiDiXLQt964673Q fUmEkzAugGVB/dSMBUIzPWqeHr30ipJ5iS7jvJxf/lLvzxe8J/tYQy0o+6+Ms0+L sRznJIpQCpoygaPuLFq260lJp2WJk3HVUjZ8Mp1VgbcI0VkEfSCc/8YoE16vWsvf dXZX26YdK+QsvLI9Th0UNiz3BeOyec1szwoKbzPfWaCYwXplYzjDVgZJAqC1P6lm BWOWQmvdRLSOG6JBDuXeJXgRbfnpiy/J6DfQGnZwujpFDCcFeeg4TZ1XAc4y3v5w lSoH5mS8SUi0z2BHu7y0QUhaE/6G8YhRpfqF/6Kfl2vTEg1JaNVX5E1dsQ== -----END CERTIFICATE-----Generated at Sun May 3 17:03:45 2026 by rpki-client