$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa File: c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa (raw, json) Hash identifier: PY2B5p4SjubjEjStp6i1qzD7brJOKgYuj1X7G7Qc6MI= Subject key identifier: E0:B8:F7:79:D6:F6:1B:C1:F1:79:68:6E:E6:06:A1:4E:15:77:73:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E1EC46B91889878A443ABBA76E3F8DD7D16B398 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa Signing time: Fri 01 May 2026 00:21:28 +0000 ROA not before: Fri 01 May 2026 00:21:28 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.64.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:1e:c4:6b:91:88:98:78:a4:43:ab:ba:76:e3:f8:dd:7d:16:b3:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:21:28 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=d4e3418a626266ea9a608243ba1e84ac145cbc1b4320a18527e6a66638040321, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8d:16:31:73:d5:c2:ce:ce:75:0c:dd:bf:6a:f1: 45:45:27:60:9f:2b:78:e6:88:58:fa:10:1c:48:4a: 35:49:69:42:10:1b:76:02:96:c6:14:31:c1:ae:e0: 86:88:00:85:93:3e:4b:15:dc:70:1c:21:3c:13:46: f5:c6:85:bb:bf:17:90:bf:e5:5a:26:6f:84:e0:6e: 85:27:f0:ac:41:08:9f:a0:2d:09:ae:df:8e:5e:57: 1b:37:ad:25:7d:ea:b8:59:a1:ca:52:ed:ea:58:77: 79:90:e9:39:3b:4e:9f:60:80:21:9f:80:11:69:49: 2f:e9:76:73:af:af:2b:20:ce:17:f5:11:9a:da:18: de:52:03:1b:f9:e2:5b:14:70:13:e7:ca:cb:a1:9a: a1:8c:12:e1:64:a7:11:26:10:f4:35:76:e1:0d:76: c7:40:31:fb:a1:08:27:0f:2f:71:a3:c7:d8:9b:d9: a3:9b:a3:58:92:b6:74:48:1e:2e:ab:b1:89:49:a5: ac:91:26:08:da:31:95:71:c0:58:02:49:39:a9:6d: f9:13:cb:cb:a1:65:cd:ae:02:ac:4d:0b:18:e6:d0: 14:8f:39:80:93:62:d7:5c:29:0b:83:e3:4b:f1:1d: ac:79:8e:56:a8:0e:89:26:be:1f:33:30:8c:12:a0: e1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:B8:F7:79:D6:F6:1B:C1:F1:79:68:6E:E6:06:A1:4E:15:77:73:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c9025971-4f0f-4ad4-9ab8-6448dc5b46bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 54:40:e1:e5:62:13:bb:5e:cd:16:61:b6:eb:37:e1:ff:23:86: 00:09:38:3c:82:c8:27:ea:54:0d:3d:db:ed:73:0d:11:e2:f0: 2e:c3:6f:39:d5:7d:88:cd:b2:8c:54:49:47:d3:e3:c7:0c:71: 9b:0b:0c:1f:78:a9:27:28:5c:eb:16:b1:47:a4:5e:ef:1d:8f: a9:b1:9f:1c:98:67:2f:ef:00:b1:91:b4:4a:35:f3:c0:ae:5d: 55:f4:c3:63:0f:ae:15:33:55:ec:63:1c:44:fc:68:2b:19:1f: 2f:c3:f1:3b:f9:3a:e3:4c:a9:e2:b0:69:8b:f9:39:4d:da:c9: 89:f6:1b:44:90:75:40:9a:33:71:aa:f4:be:ee:92:91:40:f6: 6a:fb:21:73:b7:3a:d1:49:bd:1b:e5:7c:84:bf:c6:af:92:67: bd:cf:43:b6:94:4a:6d:58:02:b9:65:90:1f:9e:70:af:47:ce: 70:8c:4f:1b:3d:60:77:a7:7c:bc:5d:a7:7a:8e:88:b4:4c:35: 05:01:67:cd:3c:b5:9f:d6:7b:f3:41:69:9a:20:ed:00:2e:e3: 2b:fa:e4:93:3d:cd:8d:28:62:e6:32:f0:69:77:78:4c:ff:1c: 12:8b:87:c7:32:77:d6:c6:b7:b3:6b:b6:4e:4b:b0:b1:b3:03: 02:46:0b:72 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPh7Ea5GImHikQ6u6duP43X0Ws5gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMTI4WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGUzNDE4YTYyNjI2NmVhOWE2MDgyNDNiYTFlODRhYzE0 NWNiYzFiNDMyMGExODUyN2U2YTY2NjM4MDQwMzIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCNFjFz1cLOznUM3b9q8UVFJ2CfK3jmiFj6EBxISjVJaUIQ G3YClsYUMcGu4IaIAIWTPksV3HAcITwTRvXGhbu/F5C/5Vomb4TgboUn8KxBCJ+g LQmu345eVxs3rSV96rhZocpS7epYd3mQ6Tk7Tp9ggCGfgBFpSS/pdnOvrysgzhf1 EZraGN5SAxv54lsUcBPnysuhmqGMEuFkpxEmEPQ1duENdsdAMfuhCCcPL3Gjx9ib 2aObo1iStnRIHi6rsYlJpayRJgjaMZVxwFgCSTmpbfkTy8uhZc2uAqxNCxjm0BSP OYCTYtdcKQuD40vxHax5jlaoDokmvh8zMIwSoOFpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4Lj3edb2G8HxeWhu5gahThV3c7owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M5MDI1OTcxLTRmMGYtNGFkNC05YWI4LTY0NDhkYzViNDZiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAfYQAAwDQYJKoZIhvcNAQELBQADggEBAFRA4eViE7tezRZhtus34f8jhgAJ ODyCyCfqVA092+1zDRHi8C7DbznVfYjNsoxUSUfT48cMcZsLDB94qScoXOsWsUek Xu8dj6mxnxyYZy/vALGRtEo188CuXVX0w2MPrhUzVexjHET8aCsZHy/D8Tv5OuNM qeKwaYv5OU3ayYn2G0SQdUCaM3Gq9L7ukpFA9mr7IXO3OtFJvRvlfIS/xq+SZ73P Q7aUSm1YArllkB+ecK9HznCMTxs9YHenfLxdp3qOiLRMNQUBZ808tZ/We/NBaZog 7QAu4yv65JM9zY0oYuYy8Gl3eEz/HBKLh8cyd9bGt7Nrtk5LsLGzAwJGC3I= -----END CERTIFICATE-----Generated at Sun May 3 16:14:17 2026 by rpki-client