$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa File: d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa (raw, json) Hash identifier: dToeAteOD5blsCsXkz7oizsUlS7Qd3T7mh0wMQjKaTk= Subject key identifier: D8:1D:95:BF:9A:1E:E3:4D:08:3B:27:D6:70:E1:BE:56:56:12:05:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02C893C6376F8586CCD96C9DBFEC8B2679EA043D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa Signing time: Wed 29 Apr 2026 00:50:04 +0000 ROA not before: Wed 29 Apr 2026 00:50:04 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 158.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:c8:93:c6:37:6f:85:86:cc:d9:6c:9d:bf:ec:8b:26:79:ea:04:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:50:04 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=d15dc74432c2adeed161e8ade251078313724fb1354ea1afd3c610f2f6e7c7c7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:32:64:af:de:ec:7c:88:c1:f0:7f:21:b5:9b: 03:5a:ed:26:c8:55:5f:7d:fb:55:67:bc:14:dd:13: 44:42:fb:29:6c:08:53:cc:fb:c7:3a:5d:64:91:6d: 2a:bf:cd:e8:25:ed:fa:b8:7a:88:ee:fd:b5:85:ab: 4c:f8:88:49:ea:6e:95:d4:22:1b:0b:c5:45:56:7e: 0c:99:46:11:ff:37:da:61:78:6a:fc:cf:1f:32:01: a4:6b:f9:01:e7:7e:67:9f:39:1e:3d:fc:c5:d3:92: 13:70:1b:c5:3a:03:71:d0:67:08:88:f1:bd:8d:84: 04:e8:21:a5:cd:ba:d8:b0:c4:66:16:85:c6:5e:ee: 25:e2:e9:96:a6:bd:1b:9a:b3:d6:a8:ce:99:a5:f7: 4b:7b:54:e5:87:03:58:ac:2f:2d:8c:ed:52:50:59: 0f:65:0e:ca:fd:06:0c:fc:d4:09:da:01:0a:78:0b: eb:b9:1c:cd:76:ad:77:d5:09:09:53:e0:b8:c1:f7: 53:b9:d2:30:81:0b:fb:00:07:69:f5:94:54:c9:9a: c8:43:7e:9c:47:ef:2e:5f:76:ad:e9:19:71:9c:93: 74:a8:2e:59:8c:cb:73:64:09:4f:71:da:8f:cc:98: 3d:18:d8:bf:bb:99:30:69:13:95:cb:2a:e2:40:b9: fb:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:1D:95:BF:9A:1E:E3:4D:08:3B:27:D6:70:E1:BE:56:56:12:05:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2587f55-6fda-4e04-9968-9e4e95d6fce3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1d:ae:3f:71:de:35:4c:5d:1f:57:e4:75:92:64:72:a1:2b:5f: 0f:b1:0a:cf:73:9f:9f:10:dc:d2:c0:12:c7:33:d8:c4:8a:6e: 65:67:92:4e:ae:03:d4:6f:23:d6:f1:51:31:64:21:19:07:dd: 84:aa:72:b1:97:55:a9:50:9c:07:27:84:c5:d8:fb:15:1e:e7: c3:fb:dc:a6:19:63:28:c8:6a:20:af:52:17:e6:59:26:21:99: 1d:e0:3f:8c:17:63:f3:de:e9:e6:29:e1:49:0b:57:d2:6a:f9: 45:ea:5e:88:2f:75:48:d0:0d:02:3e:0e:d3:6f:fe:92:75:7e: 13:2b:20:2f:80:62:cb:b9:bc:d5:ee:53:a8:58:bc:ad:d1:8a: ac:28:0c:46:b0:c5:4b:a6:57:a9:8b:cd:a5:92:35:2b:1c:48: ae:4b:cf:87:57:92:ee:73:5f:ae:7d:88:51:e8:0c:70:f7:25: ae:8b:71:e6:fa:ff:2e:da:6a:84:03:95:75:99:4f:db:6f:81: e3:fc:19:61:e2:d0:34:2e:31:f1:8d:a9:02:1e:fc:17:76:2c: 20:24:66:ca:dc:67:a1:b9:a6:be:e8:49:b1:d0:d9:c5:a7:6e: 78:97:bc:95:e1:98:2a:bf:5f:33:5f:db:1b:67:77:3a:5c:cd: cb:19:70:a8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAsiTxjdvhYbM2Wydv+yLJnnqBD0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA1MDA0WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTVkYzc0NDMyYzJhZGVlZDE2MWU4YWRlMjUxMDc4MzEz NzI0ZmIxMzU0ZWExYWZkM2M2MTBmMmY2ZTdjN2M3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIMmSv3ux8iMHwfyG1mwNa7SbIVV99+1VnvBTdE0RC+yls CFPM+8c6XWSRbSq/zegl7fq4eoju/bWFq0z4iEnqbpXUIhsLxUVWfgyZRhH/N9ph eGr8zx8yAaRr+QHnfmefOR49/MXTkhNwG8U6A3HQZwiI8b2NhAToIaXNutiwxGYW hcZe7iXi6ZamvRuas9aozpml90t7VOWHA1isLy2M7VJQWQ9lDsr9Bgz81AnaAQp4 C+u5HM12rXfVCQlT4LjB91O50jCBC/sAB2n1lFTJmshDfpxH7y5fdq3pGXGck3So LlmMy3NkCU9x2o/MmD0Y2L+7mTBpE5XLKuJAufuDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2B2Vv5oe400IOyfWcOG+VlYSBfMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTg3ZjU1LTZmZGEtNGUwNC05OTY4LTllNGU5NWQ2ZmNlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCeODANBgkqhkiG9w0BAQsFAAOCAQEAHa4/cd41TF0fV+R1kmRyoStfD7EK z3OfnxDc0sASxzPYxIpuZWeSTq4D1G8j1vFRMWQhGQfdhKpysZdVqVCcByeExdj7 FR7nw/vcphljKMhqIK9SF+ZZJiGZHeA/jBdj897p5inhSQtX0mr5RepeiC91SNAN Aj4O02/+knV+EysgL4Biy7m81e5TqFi8rdGKrCgMRrDFS6ZXqYvNpZI1KxxIrkvP h1eS7nNfrn2IUegMcPclrotx5vr/LtpqhAOVdZlP22+B4/wZYeLQNC4x8Y2pAh78 F3YsICRmytxnobmmvuhJsdDZxadueJe8leGYKr9fM1/bG2d3OlzNyxlwqA== -----END CERTIFICATE-----Generated at Sun May 3 15:24:19 2026 by rpki-client