$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1aee116-020f-479a-8386-23330a294f65.roa File: d1aee116-020f-479a-8386-23330a294f65.roa (raw, json) Hash identifier: CZPjMFpgVZ4/icud9gSmy7c3g6pD5uG1zEwmjarvi7o= Subject key identifier: B9:A7:4C:3F:DE:F3:5C:A7:78:CC:C1:D1:22:7B:39:1A:A8:C6:34:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77B9B7ABB0BA5C7BAC3310CF3E96A3E642D588C2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1aee116-020f-479a-8386-23330a294f65.roa Signing time: Tue 28 Apr 2026 00:30:16 +0000 ROA not before: Tue 28 Apr 2026 00:30:16 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.138.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:b9:b7:ab:b0:ba:5c:7b:ac:33:10:cf:3e:96:a3:e6:42:d5:88:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:30:16 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=026e30a955dfd9369c22afecb9b4b8a7a22773f2ba65f96c9071b7e80a8c20ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:fa:0d:5f:ca:e2:a6:77:c7:37:8b:1b:24:7e: ec:c2:ed:46:68:37:8c:bb:7d:f7:d0:a4:68:cc:29: f6:ce:fe:16:4b:4b:d6:f2:46:1c:a0:01:42:02:a5: 2b:6d:74:4e:3f:44:cc:44:56:b6:11:5f:96:25:b0: e0:af:e6:99:7f:a3:6a:d9:d9:70:24:f4:52:2f:31: f3:f7:65:ee:01:ed:b4:ec:45:17:9e:66:28:3f:aa: fc:27:b6:08:ac:32:9c:8c:48:73:fe:74:aa:a9:aa: ff:80:03:bd:d7:77:87:8a:c2:b6:46:f1:f0:61:e5: 71:3d:a4:d8:2c:af:a3:3d:9f:25:91:c4:09:5f:62: e8:35:ee:c3:7c:55:bb:b8:da:a3:fc:e4:51:d2:96: 96:21:01:a9:8c:d7:7b:d1:53:fe:b2:f9:63:b2:69: 19:e5:63:9a:83:b6:f7:f3:e2:e5:74:eb:fa:e0:12: 1b:c6:f9:73:45:9b:14:ee:fd:3f:a7:62:ae:79:dd: 7e:d1:f5:1a:3b:91:b2:b4:f2:85:33:bf:4e:77:76: b9:85:44:cb:e7:5a:74:c7:70:41:6a:b0:56:9a:62: 2a:11:1b:13:9a:36:67:37:d0:c9:08:02:3b:27:33: 16:dc:ff:f9:fb:b3:fe:6d:8f:08:da:e3:7e:69:37: c0:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:A7:4C:3F:DE:F3:5C:A7:78:CC:C1:D1:22:7B:39:1A:A8:C6:34:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d1aee116-020f-479a-8386-23330a294f65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.138.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:e8:90:f0:35:bf:75:5c:d9:cc:d6:fd:c3:59:4d:43:5d:32: b9:27:82:5e:c8:7b:27:2f:9e:a6:39:59:84:a8:6f:75:40:69: a8:63:9e:20:dd:58:e0:0d:70:45:d5:ce:4d:3a:12:b0:28:6f: 26:29:ed:9b:85:92:d6:db:33:1c:25:7f:83:85:f2:2f:80:be: 64:ed:f9:ca:da:c7:4d:3e:db:58:53:d4:fb:48:9c:24:11:24: 7a:99:c5:1e:50:0f:b1:9d:71:f6:13:33:df:19:87:43:a7:8e: 59:c0:7e:83:b4:73:cb:94:3a:37:1e:04:eb:03:5a:55:83:95: 1a:57:e4:0e:33:55:72:15:5a:97:82:20:7c:7d:22:73:b4:e1: 6f:83:c7:e2:22:89:e6:84:31:81:d2:0f:d6:11:5f:59:88:01: 5f:fb:72:a4:92:1d:21:90:a1:b2:68:f3:1b:b3:3f:27:03:dc: 31:d5:9a:80:52:5c:0f:2c:38:71:1c:76:9d:76:f7:a2:96:90: bf:1e:2f:67:eb:3f:eb:4a:e8:17:bc:1c:66:20:b3:2b:ea:00: 93:4f:0c:fc:94:b1:28:a0:3c:7e:23:52:03:57:7e:39:04:fe: aa:73:bf:a3:a3:41:90:68:1d:39:86:ab:af:dd:68:9f:f8:e6: 9d:1f:a6:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd7m3q7C6XHusMxDPPpaj5kLViMIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAzMDE2WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMjZlMzBhOTU1ZGZkOTM2OWMyMmFmZWNiOWI0YjhhN2Ey Mjc3M2YyYmE2NWY5NmM5MDcxYjdlODBhOGMyMGFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf+g1fyuKmd8c3ixskfuzC7UZoN4y7fffQpGjMKfbO/hZL S9byRhygAUICpSttdE4/RMxEVrYRX5YlsOCv5pl/o2rZ2XAk9FIvMfP3Ze4B7bTs RReeZig/qvwntgisMpyMSHP+dKqpqv+AA73Xd4eKwrZG8fBh5XE9pNgsr6M9nyWR xAlfYug17sN8Vbu42qP85FHSlpYhAamM13vRU/6y+WOyaRnlY5qDtvfz4uV06/rg EhvG+XNFmxTu/T+nYq553X7R9Ro7kbK08oUzv053drmFRMvnWnTHcEFqsFaaYioR GxOaNmc30MkIAjsnMxbc//n7s/5tjwja435pN8DVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUuadMP97zXKd4zMHRIns5GqjGNEwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxYWVlMTE2LTAyMGYtNDc5YS04Mzg2LTIzMzMwYTI5NGY2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQijANBgkqhkiG9w0BAQsFAAOCAQEA0OiQ8DW/dVzZzNb9w1lNQ10yuSeC Xsh7Jy+epjlZhKhvdUBpqGOeIN1Y4A1wRdXOTToSsChvJintm4WS1tszHCV/g4Xy L4C+ZO35ytrHTT7bWFPU+0icJBEkepnFHlAPsZ1x9hMz3xmHQ6eOWcB+g7Rzy5Q6 Nx4E6wNaVYOVGlfkDjNVchVal4IgfH0ic7Thb4PH4iKJ5oQxgdIP1hFfWYgBX/ty pJIdIZChsmjzG7M/JwPcMdWagFJcDyw4cRx2nXb3opaQvx4vZ+s/60roF7wcZiCz K+oAk08M/JSxKKA8fiNSA1d+OQT+qnO/o6NBkGgdOYarr91on/jmnR+mfw== -----END CERTIFICATE-----Generated at Sun May 3 15:34:04 2026 by rpki-client