$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa File: c519af15-33bf-4884-a6c5-459c9023ad53.roa (raw, json) Hash identifier: dCxiAYp6gAEZLrt2uK+ghdK2DWFzcqRjho0etqAKlzA= Subject key identifier: 68:BB:56:85:4B:3B:BB:56:60:D8:E0:60:2A:CA:B8:D3:04:52:5F:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13E21CECD1BFB4B3864AC0AB7ED297A626FB1624 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa Signing time: Tue 28 Apr 2026 00:21:39 +0000 ROA not before: Tue 28 Apr 2026 00:21:39 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 199.61.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:e2:1c:ec:d1:bf:b4:b3:86:4a:c0:ab:7e:d2:97:a6:26:fb:16:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:21:39 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=1cca1bc9ce9d9ac20f13bb75b1b497380efeb68801edd333ddc40023a5a6a1a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:ab:9d:b9:79:3e:ba:41:5e:ad:7b:ef:45:8c: 30:92:8e:0f:da:7a:53:26:97:e4:29:f3:6b:98:f9: 72:3f:f3:d0:e4:96:6f:82:a7:de:df:ac:b8:20:d3: 20:17:41:1a:3a:8a:b1:fc:d2:ff:e6:a0:67:e0:7b: c5:cd:28:48:2a:c2:49:74:c3:16:57:8c:a2:7a:66: fa:3a:60:e3:15:4d:53:3c:6c:d2:9a:ce:4c:ad:ed: ce:b0:4c:80:26:4a:8d:ac:53:1b:75:e5:13:eb:44: d4:fa:46:48:00:c2:40:d6:d2:05:e7:c9:b2:af:ef: 3b:7d:27:8f:01:03:ff:74:a7:fe:ba:60:4d:79:80: 2f:a5:42:96:1e:79:93:2a:56:5d:3c:22:d5:d7:a1: 3d:62:c2:0c:bc:23:ee:77:5b:92:79:bc:eb:65:8b: eb:92:12:01:da:cf:19:e8:ee:00:e5:3c:e7:91:62: 2d:24:10:0c:21:c4:37:80:4e:ff:a5:fc:fa:93:b4: 4e:6b:32:19:13:90:9c:9a:38:2e:b8:b0:b2:17:f5: e6:c1:f3:79:17:9c:e7:e1:3e:33:c4:9a:3b:e7:d4: 61:8c:84:bf:e1:d4:e9:60:d9:d7:aa:f4:e0:63:6b: c8:a1:aa:f2:e2:53:b8:b1:67:36:88:78:2d:49:50: d7:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:BB:56:85:4B:3B:BB:56:60:D8:E0:60:2A:CA:B8:D3:04:52:5F:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c519af15-33bf-4884-a6c5-459c9023ad53.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 199.61.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7e:01:19:e8:ad:9d:37:99:e7:ce:12:ae:5c:ff:e2:a2:ff:4f: 0c:39:1f:b7:ba:4d:fe:17:f2:fa:de:5c:cf:c6:1c:5c:c6:ef: 91:68:a4:b1:02:46:00:b8:dc:3f:43:67:07:4e:80:91:b0:fd: ff:eb:12:2d:d7:ba:59:0b:89:6f:db:b1:3f:4e:91:3f:9d:2f: 38:cf:fa:e5:f1:e0:5e:70:15:8f:d9:74:08:1a:0c:a0:4b:e4: e2:09:c5:fd:ce:5e:f8:14:38:a1:c4:ef:76:6b:88:9a:38:5b: d1:87:76:b5:f0:a4:b3:de:21:fb:11:49:77:62:8f:00:26:3b: 75:68:f1:63:ed:9a:10:2c:11:71:de:70:c3:a5:74:b5:0d:93: 0e:5e:44:fd:dd:c7:fa:9f:6f:5e:23:6f:ab:19:ab:90:8c:45: 0a:10:f9:b9:66:a3:ab:48:75:d0:96:6b:63:0b:cb:ce:8a:bc: cd:1a:00:4d:d7:71:7d:cb:ae:80:c0:89:69:49:7c:ff:e0:7b: 23:a1:7e:f8:2a:e4:68:9b:76:09:98:fc:ab:bd:d8:8c:23:8b: ca:7a:3f:14:3c:df:11:d2:e4:dd:5d:b3:ae:6a:d5:d7:d2:06: a4:f7:b1:1d:51:b0:ed:a1:5c:5a:80:a1:82:0b:d0:3f:b4:e9: 59:a4:5b:45 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUE+Ic7NG/tLOGSsCrftKXpib7FiQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMTM5WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2NhMWJjOWNlOWQ5YWMyMGYxM2JiNzViMWI0OTczODBl ZmViNjg4MDFlZGQzMzNkZGM0MDAyM2E1YTZhMWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJq525eT66QV6te+9FjDCSjg/aelMml+Qp82uY+XI/89Dk lm+Cp97frLgg0yAXQRo6irH80v/moGfge8XNKEgqwkl0wxZXjKJ6Zvo6YOMVTVM8 bNKazkyt7c6wTIAmSo2sUxt15RPrRNT6RkgAwkDW0gXnybKv7zt9J48BA/90p/66 YE15gC+lQpYeeZMqVl08ItXXoT1iwgy8I+53W5J5vOtli+uSEgHazxno7gDlPOeR Yi0kEAwhxDeATv+l/PqTtE5rMhkTkJyaOC64sLIX9ebB83kXnOfhPjPEmjvn1GGM hL/h1Olg2deq9OBja8ihqvLiU7ixZzaIeC1JUNevAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaLtWhUs7u1Zg2OBgKsq40wRSX8gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1MTlhZjE1LTMzYmYtNDg4NC1hNmM1LTQ1OWM5MDIzYWQ1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDHPTANBgkqhkiG9w0BAQsFAAOCAQEAfgEZ6K2dN5nnzhKuXP/iov9PDDkf t7pN/hfy+t5cz8YcXMbvkWiksQJGALjcP0NnB06AkbD9/+sSLde6WQuJb9uxP06R P50vOM/65fHgXnAVj9l0CBoMoEvk4gnF/c5e+BQ4ocTvdmuImjhb0Yd2tfCks94h +xFJd2KPACY7dWjxY+2aECwRcd5ww6V0tQ2TDl5E/d3H+p9vXiNvqxmrkIxFChD5 uWajq0h10JZrYwvLzoq8zRoATddxfcuugMCJaUl8/+B7I6F++CrkaJt2CZj8q73Y jCOLyno/FDzfEdLk3V2zrmrV19IGpPexHVGw7aFcWoChggvQP7TpWaRbRQ== -----END CERTIFICATE-----Generated at Sun May 3 15:33:35 2026 by rpki-client