$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa File: f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa (raw, json) Hash identifier: v//JF43AWmAZ8Ct4owU56w4A27rR5nzHIo9aVgdFUaw= Subject key identifier: 00:6D:12:73:99:0C:D2:D0:78:54:1E:66:33:D6:09:22:B5:61:F7:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01572284559EDF41B7564ACB53751F9D1B4B6EA5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa Signing time: Wed 29 Apr 2026 00:01:21 +0000 ROA not before: Wed 29 Apr 2026 00:01:21 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:57:22:84:55:9e:df:41:b7:56:4a:cb:53:75:1f:9d:1b:4b:6e:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:01:21 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=54bdf929a880f23e29094f7baf5aceda1f7c55cd0259d4ca33d5ab1a56aef0c2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:0f:34:ff:f5:cc:31:8a:c8:6d:22:12:fd:93: c6:43:0f:e4:f8:04:bf:b0:35:d3:f5:72:e3:4f:19: cc:8f:79:5d:4e:60:36:25:9a:89:1d:c7:60:b3:35: 93:f8:e7:6d:9d:c8:6a:60:4d:b4:14:19:83:e0:31: 82:81:5c:b7:fc:b1:c0:b5:84:8c:e5:42:65:20:8e: 2d:b5:66:6b:05:e2:2a:26:c5:30:a7:6e:10:c2:1d: 3e:00:db:a8:6e:30:0c:08:68:b3:02:4e:5b:20:11: e3:40:90:23:9f:bd:27:3f:11:bd:e6:97:7d:39:3d: cb:69:35:5e:89:b7:34:b7:0a:ac:9e:f2:6b:3a:02: fe:2f:1d:33:eb:d9:6b:fd:7d:88:f8:72:1a:69:ba: 29:0b:ca:cd:42:80:f6:cb:ab:be:6b:ee:4c:a0:73: 6c:ba:51:23:13:23:e6:16:89:d1:d6:5c:a4:31:6c: 10:f7:be:9f:19:29:f0:1e:11:1a:5a:5a:cb:bd:cf: 40:2d:75:e9:93:56:ce:24:af:c1:79:72:30:1c:6a: 26:05:b8:00:b7:f9:a9:c4:a4:bf:ea:4e:ac:4f:d8: d8:b8:08:09:c8:1a:11:60:7e:86:aa:f6:c3:91:85: 3b:2d:e7:7a:1c:39:19:06:35:07:64:95:bc:b6:8b: bb:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:6D:12:73:99:0C:D2:D0:78:54:1E:66:33:D6:09:22:B5:61:F7:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1c690ab-01a2-4561-af12-0e15ab9bfd60.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:7f:96:b1:1c:ed:69:c6:46:6b:c0:8c:35:51:a4:4a:81:6a: 67:75:f1:7d:15:1a:4b:d0:c3:b0:42:63:56:3e:c5:7e:b4:2a: d9:cf:fa:01:b7:e2:79:fa:54:31:45:9b:0a:7b:b7:c0:e8:1d: 1a:1d:05:40:55:44:55:10:95:ba:18:e3:c5:d7:92:e4:fc:b8: 80:57:b6:1f:b5:c5:a4:33:88:3a:b9:de:c6:a3:30:a5:8a:9d: 2a:3a:e5:31:ba:05:78:85:9f:64:60:2f:8d:94:2d:4c:4d:57: b6:b0:02:a7:18:63:5a:8b:82:69:65:3b:96:88:76:13:7e:24: 22:44:15:0f:59:03:d3:10:ce:ac:68:dc:a3:46:dc:a7:61:71: df:b1:58:4b:eb:23:5a:a9:66:b2:ed:df:51:c2:0a:c6:25:19: 15:f9:04:d1:91:f7:51:31:40:d8:c5:9f:20:53:7d:36:93:ff: dc:b4:ed:59:b3:2e:b3:4f:57:1c:a0:37:8a:e9:ab:e6:56:fc: c4:dc:c6:79:97:9a:eb:16:37:84:e7:fa:ee:73:4f:0b:95:37: a6:e7:c2:2c:39:3a:bd:e0:d1:90:b7:b4:e9:64:4e:f2:d8:cf: a1:ee:f2:f6:64:4f:ec:3b:bc:4d:71:0e:96:01:16:82:63:45: 9b:62:1c:7f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAVcihFWe30G3VkrLU3UfnRtLbqUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMTIxWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGJkZjkyOWE4ODBmMjNlMjkwOTRmN2JhZjVhY2VkYTFm N2M1NWNkMDI1OWQ0Y2EzM2Q1YWIxYTU2YWVmMGMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvDzT/9cwxishtIhL9k8ZDD+T4BL+wNdP1cuNPGcyPeV1O YDYlmokdx2CzNZP4522dyGpgTbQUGYPgMYKBXLf8scC1hIzlQmUgji21ZmsF4iom xTCnbhDCHT4A26huMAwIaLMCTlsgEeNAkCOfvSc/Eb3ml305PctpNV6JtzS3Cqye 8ms6Av4vHTPr2Wv9fYj4chppuikLys1CgPbLq75r7kygc2y6USMTI+YWidHWXKQx bBD3vp8ZKfAeERpaWsu9z0AtdemTVs4kr8F5cjAcaiYFuAC3+anEpL/qTqxP2Ni4 CAnIGhFgfoaq9sORhTst53ocORkGNQdklby2i7s3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAG0Sc5kM0tB4VB5mM9YJIrVh91UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxYzY5MGFiLTAxYTItNDU2MS1hZjEyLTBlMTVhYjliZmQ2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4JDANBgkqhkiG9w0BAQsFAAOCAQEAnX+WsRztacZGa8CMNVGkSoFqZ3Xx fRUaS9DDsEJjVj7FfrQq2c/6AbfiefpUMUWbCnu3wOgdGh0FQFVEVRCVuhjjxdeS 5Py4gFe2H7XFpDOIOrnexqMwpYqdKjrlMboFeIWfZGAvjZQtTE1XtrACpxhjWouC aWU7loh2E34kIkQVD1kD0xDOrGjco0bcp2Fx37FYS+sjWqlmsu3fUcIKxiUZFfkE 0ZH3UTFA2MWfIFN9NpP/3LTtWbMus09XHKA3iumr5lb8xNzGeZea6xY3hOf67nNP C5U3pufCLDk6veDRkLe06WRO8tjPoe7y9mRP7Du8TXEOlgEWgmNFm2Icfw== -----END CERTIFICATE-----Generated at Sun May 3 15:32:07 2026 by rpki-client