$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa File: 8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa (raw, json) Hash identifier: TDL4Lu1YJLoSTkcFK1rPFfrraqUbXhDnxFAe/TuLEeE= Subject key identifier: 61:71:D4:8C:62:64:29:14:52:C7:13:C4:6C:A7:77:5B:30:B2:48:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B68E0A843418B1D66BC5D54B8DB1F88BAD41699 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa Signing time: Wed 29 Apr 2026 01:00:10 +0000 ROA not before: Wed 29 Apr 2026 01:00:10 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.21.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:68:e0:a8:43:41:8b:1d:66:bc:5d:54:b8:db:1f:88:ba:d4:16:99 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 01:00:10 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=0d1c27907e409b8ca50372b7daaa9c30b3b4dffe2d15335464836e0cf476abf8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:53:e8:17:79:c5:fc:04:03:01:80:23:82:7f: 0f:db:cd:97:7b:71:35:61:3b:7d:7a:0f:94:7d:fc: e7:cd:c8:66:45:46:04:13:84:c1:20:f2:6b:13:68: 09:1b:7c:ae:85:e2:6c:0e:cf:60:64:92:a2:8b:6d: 27:ae:73:38:aa:73:23:f2:f7:b4:e5:cd:8a:fa:88: 13:39:d1:c7:4f:dd:5e:a7:16:79:7c:03:8a:69:2e: f6:98:c5:4e:0e:a9:7f:61:59:71:dd:01:c5:e0:70: f0:ed:b2:e3:89:75:99:34:18:98:cc:8c:72:b8:4e: 80:f9:04:c6:07:ea:84:78:ba:13:d0:99:ec:6e:fe: a3:c5:8e:e1:5a:2a:0a:33:ce:1f:1c:cc:53:dd:4d: 04:40:ba:f4:7e:61:88:69:79:8b:20:aa:97:1c:81: 66:e2:96:48:a4:d3:1a:01:2c:b3:db:38:1b:46:0c: d7:ae:67:07:df:7c:b6:60:7d:3f:e6:e3:46:a4:cb: 9a:33:96:30:95:07:4f:a8:9c:5a:b5:e9:36:b3:e1: b1:34:b9:b2:2f:39:30:91:6b:1f:16:10:56:cf:ff: 3a:5a:0e:7c:fe:c6:62:90:44:30:45:95:24:a4:aa: fd:e5:01:94:0e:14:49:1f:fe:6b:c1:34:1b:e1:bd: f8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:71:D4:8C:62:64:29:14:52:C7:13:C4:6C:A7:77:5B:30:B2:48:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8991f83e-ff4c-4d8b-9498-4f1f3ce1b454.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.21.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0a:9d:09:a3:94:4d:1d:68:d1:cb:87:de:9d:11:8e:81:16:a8: dd:8e:6c:ed:b8:63:43:f6:5f:e3:d4:2b:78:93:5d:f1:c6:a9: 3d:b8:95:03:2f:cb:3e:be:46:85:ff:3b:0a:6d:cb:88:96:00: b5:07:f7:73:1c:cb:f6:93:16:85:0a:93:56:1c:6b:3e:84:3a: b3:65:cd:cb:5d:67:ef:8c:d9:16:03:ed:54:7b:a4:8a:ce:57: e7:bf:d9:9f:0a:b3:94:d9:d8:d5:ff:c8:de:6f:f9:0a:9e:e9: 96:6c:f1:14:f7:e1:99:98:6e:dd:ab:44:ec:54:49:c0:9b:36: 8f:e9:54:57:cc:43:3c:ab:7d:9b:1c:65:d4:37:a3:71:e2:5a: 74:34:1c:9b:15:83:82:03:f8:b6:ec:71:78:b1:17:75:26:49: 58:1d:95:64:a2:ad:68:ba:d2:de:e3:41:83:16:eb:26:40:e1: 38:36:74:77:fd:74:b2:07:80:9b:83:aa:11:07:49:54:ae:80: d3:82:0a:40:c6:37:15:3e:5a:6b:d6:b3:fa:0f:ad:47:8f:72: f3:dd:7c:e1:7b:ad:45:ac:2e:6d:cd:ad:10:5c:01:5c:fb:dd: 6a:27:90:b0:c3:ee:90:08:26:2d:f6:53:f4:e6:7a:4f:1c:95: 9c:c8:db:f4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa2jgqENBix1mvF1UuNsfiLrUFpkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDEwMDEwWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZDFjMjc5MDdlNDA5YjhjYTUwMzcyYjdkYWFhOWMzMGIz YjRkZmZlMmQxNTMzNTQ2NDgzNmUwY2Y0NzZhYmY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtU+gXecX8BAMBgCOCfw/bzZd7cTVhO316D5R9/OfNyGZF RgQThMEg8msTaAkbfK6F4mwOz2BkkqKLbSeucziqcyPy97TlzYr6iBM50cdP3V6n Fnl8A4ppLvaYxU4OqX9hWXHdAcXgcPDtsuOJdZk0GJjMjHK4ToD5BMYH6oR4uhPQ mexu/qPFjuFaKgozzh8czFPdTQRAuvR+YYhpeYsgqpccgWbilkik0xoBLLPbOBtG DNeuZwfffLZgfT/m40aky5ozljCVB0+onFq16Taz4bE0ubIvOTCRax8WEFbP/zpa Dnz+xmKQRDBFlSSkqv3lAZQOFEkf/mvBNBvhvfixAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYXHUjGJkKRRSxxPEbKd3WzCySK0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg5OTFmODNlLWZmNGMtNGQ4Yi05NDk4LTRmMWYzY2UxYjQ1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQFTANBgkqhkiG9w0BAQsFAAOCAQEACp0Jo5RNHWjRy4fenRGOgRao3Y5s 7bhjQ/Zf49QreJNd8capPbiVAy/LPr5Ghf87Cm3LiJYAtQf3cxzL9pMWhQqTVhxr PoQ6s2XNy11n74zZFgPtVHukis5X57/ZnwqzlNnY1f/I3m/5Cp7plmzxFPfhmZhu 3atE7FRJwJs2j+lUV8xDPKt9mxxl1DejceJadDQcmxWDggP4tuxxeLEXdSZJWB2V ZKKtaLrS3uNBgxbrJkDhODZ0d/10sgeAm4OqEQdJVK6A04IKQMY3FT5aa9az+g+t R49y89184XutRawubc2tEFwBXPvdaieQsMPukAgmLfZT9OZ6TxyVnMjb9A== -----END CERTIFICATE-----Generated at Wed May 13 01:02:36 2026 by rpki-client