$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa File: ca78e594-acaa-4280-9b9e-9f698472d6cb.roa (raw, json) Hash identifier: Vvzd2ku1lFQFs0U/rfpmzl8BWmAqKLHg6RprmBIZxO0= Subject key identifier: 78:5B:87:F4:DF:0E:F9:52:F6:12:81:E2:B8:D5:00:9C:6F:E2:33:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76006B05A629451FB280EA80C0E5D8EDAD01AB3D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa Signing time: Wed 29 Apr 2026 00:51:13 +0000 ROA not before: Wed 29 Apr 2026 00:51:13 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.45.160.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:00:6b:05:a6:29:45:1f:b2:80:ea:80:c0:e5:d8:ed:ad:01:ab:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:51:13 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=006150e09e52c3e15e3bc029f11d5e185a4c4c00c6c87c91506551515312acb4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:2a:08:32:1e:af:53:eb:ae:1b:e5:dc:97:b4: 94:a5:5a:0c:e1:3b:fb:54:95:c5:0d:dd:d3:41:e0: 80:b1:01:52:71:3d:de:1f:8c:81:79:5a:5c:8b:db: 95:44:63:37:27:f8:4f:02:f5:10:6b:8a:05:f7:13: e3:00:7d:22:7d:d0:c2:ad:88:fa:0c:67:f5:b8:db: 2b:66:d0:bc:3a:5f:01:c1:66:e3:bd:ac:9a:69:dc: b9:c3:98:70:ff:75:d9:ac:12:30:9a:fe:8b:1c:e5: d6:00:78:64:16:b1:15:92:91:3c:c9:ed:20:da:14: 4e:eb:44:67:f3:a5:8a:02:db:71:a9:d7:66:ae:19: c0:28:b5:33:cb:2a:6e:9d:d7:48:fc:85:6e:fd:4c: 0d:5e:e6:7c:3f:0e:a4:f5:2e:81:32:63:28:7d:6a: 23:6a:9c:81:62:1b:27:51:3c:b5:13:b8:b0:5a:e9: c8:c2:f0:b1:f5:c8:ca:b6:ed:f3:55:26:b4:02:83: 72:1d:5b:77:ac:5f:1f:de:b6:f7:6a:5c:7d:f0:b8: 3b:48:d3:88:cf:27:e4:c2:ab:b6:63:fa:13:e6:34: 3b:33:53:a1:c3:42:fc:55:c2:fc:df:08:23:94:f3: fd:a5:1f:26:eb:0f:87:9f:38:cb:83:e9:b6:4e:55: 87:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:5B:87:F4:DF:0E:F9:52:F6:12:81:E2:B8:D5:00:9C:6F:E2:33:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ca78e594-acaa-4280-9b9e-9f698472d6cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.45.160.0/20 Signature Algorithm: sha256WithRSAEncryption 01:93:a1:d5:d8:b3:f4:a1:7f:12:51:f9:40:d9:97:3b:89:61: c9:c1:24:6e:c6:26:25:ac:92:d5:a0:47:80:4b:b2:cc:26:22: eb:8b:0b:0a:d7:6d:86:d2:9e:b1:82:9d:89:dd:bc:89:d2:e6: 6a:c1:d7:7b:bb:06:45:00:2c:1c:a4:e2:1e:f1:a4:39:fe:b8: fe:0f:b8:96:89:9f:00:11:d4:e9:ce:aa:3c:6e:dc:a3:a8:a2: 5d:d0:59:f2:55:75:05:d1:05:9d:15:97:72:80:b8:20:8e:12: d1:3a:f4:52:74:81:42:f6:c2:7f:16:9a:16:ab:2a:0f:e7:8f: f8:6b:cc:46:ff:1a:bc:c9:97:a1:13:83:d6:11:fa:b5:eb:a0: 04:40:97:be:c4:43:45:a8:ea:7e:af:14:28:d2:ab:8d:92:b9: 95:c4:54:24:5c:13:ce:43:fc:ef:89:8c:04:8b:53:01:70:f8: ac:ca:05:06:22:06:0c:49:63:a8:2e:9f:d4:a9:cc:1f:8e:a2: 4f:76:e5:5c:ee:35:f6:3c:1f:e9:9f:6b:ca:a3:40:15:20:92: 21:2c:bd:d2:da:9f:42:a4:f3:5b:fe:5b:31:f8:a2:e7:80:ba: b5:19:39:80:a7:39:f0:f7:9e:b5:61:0b:a8:6c:34:4c:ec:d1: 58:36:c3:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdgBrBaYpRR+ygOqAwOXY7a0Bqz0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA1MTEzWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMDYxNTBlMDllNTJjM2UxNWUzYmMwMjlmMTFkNWUxODVh NGM0YzAwYzZjODdjOTE1MDY1NTE1MTUzMTJhY2I0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrKggyHq9T664b5dyXtJSlWgzhO/tUlcUN3dNB4ICxAVJx Pd4fjIF5WlyL25VEYzcn+E8C9RBrigX3E+MAfSJ90MKtiPoMZ/W42ytm0Lw6XwHB ZuO9rJpp3LnDmHD/ddmsEjCa/osc5dYAeGQWsRWSkTzJ7SDaFE7rRGfzpYoC23Gp 12auGcAotTPLKm6d10j8hW79TA1e5nw/DqT1LoEyYyh9aiNqnIFiGydRPLUTuLBa 6cjC8LH1yMq27fNVJrQCg3IdW3esXx/etvdqXH3wuDtI04jPJ+TCq7Zj+hPmNDsz U6HDQvxVwvzfCCOU8/2lHybrD4efOMuD6bZOVYcLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeFuH9N8O+VL2EoHiuNUAnG/iMzEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhNzhlNTk0LWFjYWEtNDI4MC05YjllLTlmNjk4NDcyZDZjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARgLaAwDQYJKoZIhvcNAQELBQADggEBAAGTodXYs/ShfxJR+UDZlzuJYcnB JG7GJiWsktWgR4BLsswmIuuLCwrXbYbSnrGCnYndvInS5mrB13u7BkUALByk4h7x pDn+uP4PuJaJnwAR1OnOqjxu3KOool3QWfJVdQXRBZ0Vl3KAuCCOEtE69FJ0gUL2 wn8WmharKg/nj/hrzEb/GrzJl6ETg9YR+rXroARAl77EQ0Wo6n6vFCjSq42SuZXE VCRcE85D/O+JjASLUwFw+KzKBQYiBgxJY6gun9SpzB+Ook925VzuNfY8H+mfa8qj QBUgkiEsvdLan0Kk81v+WzH4oueAurUZOYCnOfD3nrVhC6hsNEzs0Vg2w+Y= -----END CERTIFICATE-----Generated at Sun May 3 16:13:27 2026 by rpki-client