$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa File: 76e74dd0-5733-4c2f-b500-2d75cab973be.roa (raw, json) Hash identifier: QFBXeFeGYWgtHc7Z4X3EXQ1s20MzAY6E2rrcr9Q2Zc4= Subject key identifier: 86:61:3D:8D:97:43:B8:B6:76:17:D8:D7:11:1B:52:C6:5B:DD:45:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18E9F4410B532370DA97AE43DA4E442765258675 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa Signing time: Fri 01 May 2026 01:01:20 +0000 ROA not before: Fri 01 May 2026 01:01:20 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.44.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:e9:f4:41:0b:53:23:70:da:97:ae:43:da:4e:44:27:65:25:86:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 01:01:20 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=9bca1aa277e595ddd67110893eb99499040919343bf8bb72cf64d0e4c15236b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d9:b2:bf:59:5c:43:17:b9:c9:59:37:96:58: b8:94:f1:87:59:65:f4:38:9a:b1:79:9f:41:0d:fc: 4a:e9:4e:18:d3:7e:35:71:ee:9d:0f:91:9d:d5:a5: 78:8c:b2:05:9b:80:98:69:99:32:7a:91:f4:17:13: 35:67:0c:b0:b5:f1:81:fa:1e:9c:89:8d:dd:75:f4: 1b:7c:0c:05:4b:89:77:93:e5:25:3f:0c:e2:b1:cd: a9:96:02:d1:a3:27:de:b2:62:f0:96:3f:fb:2a:4c: 76:2a:ce:e8:93:58:b0:2e:f4:7c:cb:9a:d5:97:dc: 48:ad:ab:af:8e:f7:af:c6:17:90:c7:4a:db:15:a6: 88:da:83:7b:27:fb:fd:fb:b0:2e:c3:2a:0e:ed:11: de:b3:df:9c:b9:a9:8c:91:ba:36:3a:be:d2:05:ce: 38:ba:22:0c:6a:cb:ac:4d:57:e5:0b:d9:56:d5:08: 6a:06:d3:db:3c:95:42:3e:a2:f2:ee:33:5c:2d:3a: 9f:fc:54:3a:2e:43:a3:96:51:7a:82:a6:d8:5c:02: fe:56:43:2f:1c:4f:19:21:72:4d:a2:66:5b:c0:99: f0:dd:65:98:0e:d8:34:e7:82:99:82:2c:54:73:d6: 3d:4c:c4:9d:37:10:29:4a:97:a2:ee:80:4e:60:07: ca:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:61:3D:8D:97:43:B8:B6:76:17:D8:D7:11:1B:52:C6:5B:DD:45:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/76e74dd0-5733-4c2f-b500-2d75cab973be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.44.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:94:23:34:5c:3b:5f:ac:3a:c9:56:c9:2f:f5:45:d7:12:83: b4:e4:af:9e:8a:0f:57:11:56:10:8c:f5:ba:a0:7a:e1:7a:08: 6d:d7:9e:bf:49:7b:ba:23:2f:fc:60:fe:00:22:6a:8b:20:93: dd:22:93:9c:8a:96:51:a7:bf:1c:77:42:4a:ff:32:21:19:d7: 49:a2:bf:f1:bb:0c:66:f7:5b:d5:3b:8f:95:04:29:bf:5a:6f: 2c:31:66:54:f6:3f:de:d7:66:16:13:68:71:5b:30:2c:48:37: 3a:96:5c:5f:45:74:9b:c5:d0:5c:b5:bd:aa:a0:21:94:f2:2a: 52:59:13:9e:6e:22:dc:fc:c5:7b:a5:7c:63:83:01:b0:df:5c: c1:f8:7b:b4:4c:de:1e:db:2e:73:6d:4b:15:5c:df:83:cf:be: 2b:65:c4:8b:54:cc:05:dc:1f:5b:8d:34:43:3e:f4:09:06:26: a6:72:1f:38:8a:15:51:98:92:b9:04:20:f4:e1:e6:74:1a:7a: 73:b2:af:26:b2:9d:53:a3:fb:f4:a1:01:c0:96:2c:55:2a:26: 7c:bb:59:fc:4e:1a:3a:d2:f3:fc:3a:89:be:a8:41:bf:2d:7c: 41:35:54:c0:81:a2:38:da:65:5c:1a:5c:3f:73:fa:1a:07:27: e2:d1:85:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGOn0QQtTI3Dal65D2k5EJ2UlhnUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDEwMTIwWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YmNhMWFhMjc3ZTU5NWRkZDY3MTEwODkzZWI5OTQ5OTA0 MDkxOTM0M2JmOGJiNzJjZjY0ZDBlNGMxNTIzNmIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCI2bK/WVxDF7nJWTeWWLiU8YdZZfQ4mrF5n0EN/ErpThjT fjVx7p0PkZ3VpXiMsgWbgJhpmTJ6kfQXEzVnDLC18YH6HpyJjd119Bt8DAVLiXeT 5SU/DOKxzamWAtGjJ96yYvCWP/sqTHYqzuiTWLAu9HzLmtWX3Eitq6+O96/GF5DH StsVpojag3sn+/37sC7DKg7tEd6z35y5qYyRujY6vtIFzji6Igxqy6xNV+UL2VbV CGoG09s8lUI+ovLuM1wtOp/8VDouQ6OWUXqCpthcAv5WQy8cTxkhck2iZlvAmfDd ZZgO2DTngpmCLFRz1j1MxJ03EClKl6LugE5gB8qRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhmE9jZdDuLZ2F9jXERtSxlvdRRYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc2ZTc0ZGQwLTU3MzMtNGMyZi1iNTAwLTJkNzVjYWI5NzNiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4LDANBgkqhkiG9w0BAQsFAAOCAQEAHJQjNFw7X6w6yVbJL/VF1xKDtOSv nooPVxFWEIz1uqB64XoIbdeev0l7uiMv/GD+ACJqiyCT3SKTnIqWUae/HHdCSv8y IRnXSaK/8bsMZvdb1TuPlQQpv1pvLDFmVPY/3tdmFhNocVswLEg3OpZcX0V0m8XQ XLW9qqAhlPIqUlkTnm4i3PzFe6V8Y4MBsN9cwfh7tEzeHtsuc21LFVzfg8++K2XE i1TMBdwfW400Qz70CQYmpnIfOIoVUZiSuQQg9OHmdBp6c7KvJrKdU6P79KEBwJYs VSomfLtZ/E4aOtLz/DqJvqhBvy18QTVUwIGiONplXBpcP3P6Ggcn4tGFew== -----END CERTIFICATE-----Generated at Tue May 12 21:51:33 2026 by rpki-client