$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa File: c1007d85-fbf5-45da-82c5-653042baeda9.roa (raw, json) Hash identifier: FkenKxH74u2mSWy4vz9SipZyDllo4GZyZTv1v22kuZs= Subject key identifier: AB:4A:DD:3B:92:93:98:0E:0B:1D:3A:D3:2F:35:CA:B9:1E:6C:CD:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 073FCCAA8DE07BDE143E5D03DB5ED07C0AFAD931 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa Signing time: Wed 29 Apr 2026 00:51:18 +0000 ROA not before: Wed 29 Apr 2026 00:51:18 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.20.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:3f:cc:aa:8d:e0:7b:de:14:3e:5d:03:db:5e:d0:7c:0a:fa:d9:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:51:18 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=244caf77127757c2983e318a1ae7d79677a891d0dde62cfd3f1fe4e3919aeae5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:5a:cc:4a:89:af:ed:28:70:b9:cb:88:45:62: be:ca:90:a5:8e:15:75:11:c6:00:a7:ca:70:de:f0: 88:94:4e:46:dc:a9:ad:7e:4f:6d:49:2c:c2:a2:51: 92:0e:43:a1:6e:c5:98:cb:0f:72:b2:41:a2:d8:68: 95:ad:ed:67:f7:b4:c6:52:ef:72:0f:1c:7a:a1:7c: 61:43:6b:4c:90:a6:81:ac:94:96:30:2d:2e:11:e1: 0e:d4:a1:fb:bf:aa:3e:46:38:be:b4:e2:f4:d0:c7: bb:bb:0a:f3:7c:be:7a:91:48:3f:2d:81:cb:87:07: e5:04:0f:9a:cf:4f:89:c7:d1:56:9a:c1:80:3d:db: 34:c2:51:ce:a8:ca:34:2e:b0:2e:eb:26:cf:17:9f: 45:dc:63:c6:ed:db:02:cf:cb:af:f3:13:3e:c0:7d: f8:d1:09:6a:c0:0e:62:00:8b:b8:94:92:b5:bc:91: 66:28:ee:a3:af:89:d5:66:55:6e:db:0e:c3:a2:a4: 76:e3:5f:9e:eb:bc:59:f7:16:8a:a4:13:a7:96:d8: d7:da:26:88:75:ea:46:89:07:6e:09:5e:72:3e:6a: e9:ea:7a:e4:c8:0f:26:34:26:ab:66:c9:6e:cf:36: a6:b4:8b:f5:f5:d4:8f:72:bc:40:f8:f6:88:24:0c: 65:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4A:DD:3B:92:93:98:0E:0B:1D:3A:D3:2F:35:CA:B9:1E:6C:CD:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1007d85-fbf5-45da-82c5-653042baeda9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.20.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:b4:b7:f5:80:ea:81:30:e2:ec:5f:7f:b1:d9:1c:4a:bc:6b: 1d:0d:8d:0f:19:47:56:8e:4a:5d:0f:74:02:05:ac:29:4b:c0: 97:36:02:b5:7e:22:d5:3a:f6:b9:47:5e:22:93:27:2a:51:bf: b7:13:9e:62:14:b2:5f:5b:7f:f9:62:2c:7d:52:ac:e0:04:c9: 2e:b1:26:77:df:1e:29:f0:04:c8:d5:ce:80:b8:14:02:6e:00: 0c:9b:bd:d1:57:9c:8d:1b:cd:a9:31:60:94:b8:85:b0:c8:8e: da:37:bf:9a:a5:01:29:c5:59:76:4d:f7:f3:e0:86:fd:75:4b: 40:13:8c:bf:99:43:9d:f2:d4:e3:69:06:16:a3:e5:aa:17:23: fd:29:30:a3:78:d4:dd:1b:0c:c2:62:71:ea:cc:16:74:33:4a: 14:f5:27:9a:45:a1:b7:5a:ca:cc:09:91:ef:6b:bc:de:9f:fc: e5:05:2d:28:05:e7:a0:05:d5:f9:8a:4b:b5:95:9b:4a:80:86: ee:f0:0e:38:32:5d:ce:00:a8:37:ec:de:e9:63:7d:5a:d0:f0: f4:4f:de:9b:87:de:91:62:b9:db:bd:0f:18:5c:e6:0e:72:c9: 1e:bd:7e:2f:5c:39:a6:51:d0:56:80:52:1e:58:ca:d1:5a:82: ea:bd:93:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBz/Mqo3ge94UPl0D217QfAr62TEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA1MTE4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDRjYWY3NzEyNzc1N2MyOTgzZTMxOGExYWU3ZDc5Njc3 YTg5MWQwZGRlNjJjZmQzZjFmZTRlMzkxOWFlYWU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFWsxKia/tKHC5y4hFYr7KkKWOFXURxgCnynDe8IiUTkbc qa1+T21JLMKiUZIOQ6FuxZjLD3KyQaLYaJWt7Wf3tMZS73IPHHqhfGFDa0yQpoGs lJYwLS4R4Q7Uofu/qj5GOL604vTQx7u7CvN8vnqRSD8tgcuHB+UED5rPT4nH0Vaa wYA92zTCUc6oyjQusC7rJs8Xn0XcY8bt2wLPy6/zEz7AffjRCWrADmIAi7iUkrW8 kWYo7qOvidVmVW7bDsOipHbjX57rvFn3FoqkE6eW2NfaJoh16kaJB24JXnI+aunq euTIDyY0JqtmyW7PNqa0i/X11I9yvED49ogkDGWrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUq0rdO5KTmA4LHTrTLzXKuR5szX8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxMDA3ZDg1LWZiZjUtNDVkYS04MmM1LTY1MzA0MmJhZWRhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFDANBgkqhkiG9w0BAQsFAAOCAQEALrS39YDqgTDi7F9/sdkcSrxrHQ2N DxlHVo5KXQ90AgWsKUvAlzYCtX4i1Tr2uUdeIpMnKlG/txOeYhSyX1t/+WIsfVKs 4ATJLrEmd98eKfAEyNXOgLgUAm4ADJu90VecjRvNqTFglLiFsMiO2je/mqUBKcVZ dk338+CG/XVLQBOMv5lDnfLU42kGFqPlqhcj/Skwo3jU3RsMwmJx6swWdDNKFPUn mkWht1rKzAmR72u83p/85QUtKAXnoAXV+YpLtZWbSoCG7vAOODJdzgCoN+ze6WN9 WtDw9E/em4fekWK5270PGFzmDnLJHr1+L1w5plHQVoBSHljK0VqC6r2TqA== -----END CERTIFICATE-----Generated at Sun May 3 15:33:06 2026 by rpki-client