$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17721a9e-0a8f-4b71-a56e-234b61d375d3.roa File: 17721a9e-0a8f-4b71-a56e-234b61d375d3.roa (raw, json) Hash identifier: KR4EokyoUrgczbWyhERmkcjsHbXcrXKD5JPmUC56UPA= Subject key identifier: D4:A9:7C:48:AF:59:AD:7E:72:C1:50:13:C9:F9:60:98:C4:F7:3F:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25DF404984A3EB59B97930AACF0FCE67ADB3EA47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17721a9e-0a8f-4b71-a56e-234b61d375d3.roa Signing time: Tue 28 Apr 2026 00:01:06 +0000 ROA not before: Tue 28 Apr 2026 00:01:06 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:df:40:49:84:a3:eb:59:b9:79:30:aa:cf:0f:ce:67:ad:b3:ea:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:01:06 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=1b35ef55dc00fece3e20181bd6cd03c813eed94d0e78ea147c65d592b32e7c84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4b:0b:94:74:fb:de:5e:90:24:ec:50:47:0e: 78:f5:df:a7:5d:ef:00:b4:fd:b4:d1:bb:10:12:3f: 4a:7e:03:be:54:50:22:36:b5:1c:17:f9:10:91:05: 66:81:2c:01:d2:c1:aa:c0:c7:c3:0a:17:ff:66:1c: 92:f8:e4:8b:93:72:a3:aa:51:ba:43:62:87:4b:bc: 1c:94:87:be:4c:0f:8c:5d:3d:8f:a3:d3:03:bf:06: ab:da:28:62:2b:71:5c:e2:33:ce:bb:83:59:08:4e: 12:91:ec:20:c2:23:f7:0e:70:3d:ba:ea:eb:3a:1d: 6d:42:06:ae:2f:04:71:ff:a0:92:df:c7:2a:1d:9d: d8:b2:27:4e:7e:77:52:94:01:d5:44:ce:7a:4c:03: e9:9a:0f:4c:be:a4:d6:4b:2c:a1:0e:79:a8:46:88: b6:9d:0f:05:fe:db:a2:ff:a8:a5:48:0a:71:40:22: 82:c6:2d:76:b2:b3:5e:b0:de:c8:3c:be:3c:34:98: e2:47:07:e9:2b:f4:a1:03:92:05:b3:ef:98:5e:4f: 9a:dd:c3:b5:b9:31:77:63:eb:50:3a:bb:c1:08:7b: 8e:66:db:96:77:9e:67:5e:ae:d0:a2:a0:ef:fe:c9: 0d:84:c0:37:0b:e8:ac:b2:cd:a6:e5:5c:f8:9d:7f: 71:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:A9:7C:48:AF:59:AD:7E:72:C1:50:13:C9:F9:60:98:C4:F7:3F:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17721a9e-0a8f-4b71-a56e-234b61d375d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:b9:c0:e8:5b:1f:9c:fc:99:3a:38:24:75:10:c6:78:b7:fe: bf:83:b6:76:a1:38:7e:77:96:07:1e:5a:4d:e3:10:0d:f8:a8: 39:c8:3a:a6:0e:6e:f6:ea:4d:74:53:3c:dc:47:ec:ff:90:c4: 19:3d:c0:5f:bb:a2:a6:ad:cf:08:b3:a4:d6:79:a3:7e:98:dc: d0:ab:80:5f:46:bb:78:17:cb:7e:7f:17:ba:58:2e:50:cb:6f: d8:40:c8:e7:fb:a5:07:e2:24:c1:39:68:10:0d:92:69:ca:13: e2:53:d2:8e:5c:7d:55:f4:6f:67:d4:0f:6d:42:f3:61:07:ab: 5f:c8:f1:ce:1e:f0:91:66:96:23:bd:eb:1d:ba:d4:db:08:c2: 39:24:5d:e6:29:24:41:ef:1f:a1:88:f5:12:f4:cc:6f:88:71: ce:12:11:c8:22:f2:5d:c2:02:00:34:cc:47:7e:1d:11:24:68: 43:04:a3:ca:60:9e:23:a2:4a:c8:22:ab:3f:de:78:1a:8b:b1: 0e:0c:44:f2:3b:13:02:e4:8f:16:7d:f6:9a:6f:ac:ec:38:19: af:48:ac:43:37:70:17:fd:35:67:b6:a4:d2:c6:7a:6f:2a:6f: 6c:c1:66:8b:02:8f:3a:64:67:b7:a9:06:94:c8:1e:d3:3e:4f: 3f:c8:ee:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJd9ASYSj61m5eTCqzw/OZ62z6kcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAwMTA2WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYjM1ZWY1NWRjMDBmZWNlM2UyMDE4MWJkNmNkMDNjODEz ZWVkOTRkMGU3OGVhMTQ3YzY1ZDU5MmIzMmU3Yzg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOSwuUdPveXpAk7FBHDnj136dd7wC0/bTRuxASP0p+A75U UCI2tRwX+RCRBWaBLAHSwarAx8MKF/9mHJL45IuTcqOqUbpDYodLvByUh75MD4xd PY+j0wO/BqvaKGIrcVziM867g1kIThKR7CDCI/cOcD266us6HW1CBq4vBHH/oJLf xyodndiyJ05+d1KUAdVEznpMA+maD0y+pNZLLKEOeahGiLadDwX+26L/qKVICnFA IoLGLXays16w3sg8vjw0mOJHB+kr9KEDkgWz75heT5rdw7W5MXdj61A6u8EIe45m 25Z3nmdertCioO/+yQ2EwDcL6KyyzablXPidf3H5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU1Kl8SK9ZrX5ywVATyflgmMT3P94wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3NzIxYTllLTBhOGYtNGI3MS1hNTZlLTIzNGI2MWQzNzVkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQjjANBgkqhkiG9w0BAQsFAAOCAQEAxLnA6FsfnPyZOjgkdRDGeLf+v4O2 dqE4fneWBx5aTeMQDfioOcg6pg5u9upNdFM83Efs/5DEGT3AX7uipq3PCLOk1nmj fpjc0KuAX0a7eBfLfn8XulguUMtv2EDI5/ulB+IkwTloEA2SacoT4lPSjlx9VfRv Z9QPbULzYQerX8jxzh7wkWaWI73rHbrU2wjCOSRd5ikkQe8foYj1EvTMb4hxzhIR yCLyXcICADTMR34dESRoQwSjymCeI6JKyCKrP954GouxDgxE8jsTAuSPFn32mm+s 7DgZr0isQzdwF/01Z7ak0sZ6bypvbMFmiwKPOmRnt6kGlMge0z5PP8juaQ== -----END CERTIFICATE-----Generated at Tue May 12 21:43:21 2026 by rpki-client