$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/985b59c8-a923-4d73-afff-2650138ef0c2.roa File: 985b59c8-a923-4d73-afff-2650138ef0c2.roa (raw, json) Hash identifier: ltm34ElCzrrF8J0ubbb3/wpKOdqoqhoCDy1lkOu8ixg= Subject key identifier: 4C:3F:43:0B:24:19:03:B0:1D:B5:56:A2:45:8C:4C:4B:95:3E:D2:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DC55C1F76342DDBB64176F972618FB18845B093 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/985b59c8-a923-4d73-afff-2650138ef0c2.roa Signing time: Tue 05 May 2026 00:50:13 +0000 ROA not before: Tue 05 May 2026 00:50:13 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 104.216.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:c5:5c:1f:76:34:2d:db:b6:41:76:f9:72:61:8f:b1:88:45:b0:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:50:13 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=b9582531cf838de96c1ec5ada76f980995a0c6d88e6ed8e9e491c3aabb69d815, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:3b:ab:0d:ad:0f:ad:3b:20:dd:65:07:0e:63: eb:87:38:04:0c:c9:87:30:1f:cc:f4:b4:7a:1f:0c: fd:da:8c:13:9f:cc:5b:30:d6:45:89:56:cb:a1:d1: 76:5b:6b:06:70:dd:97:d1:4e:7f:6e:30:2f:62:6f: f1:e2:b7:79:38:f4:59:a7:c6:52:3c:14:1e:ab:c9: 0d:46:43:d3:1c:9c:42:f5:90:83:87:4a:03:a6:cd: a8:f4:a3:4e:d7:7d:03:7a:94:30:64:9f:ab:d7:16: 89:4d:57:7d:28:38:be:c9:4e:24:34:1e:94:89:1c: ad:49:0a:5c:97:dc:32:51:56:5f:97:65:b9:46:8b: f8:5d:83:1d:b0:00:03:58:c7:72:d5:94:fc:4e:8c: b2:c0:a4:84:8a:be:59:a0:93:32:92:4e:87:04:df: 95:62:92:e8:e9:4e:ac:e9:84:2a:2b:c9:9e:c5:02: ae:a8:75:fc:05:27:ba:82:99:52:3f:e3:fa:6a:4e: 5f:c6:4c:d0:5e:e3:10:db:d5:56:27:32:36:e8:0c: c5:e6:48:d8:9f:02:d1:ec:47:2a:d9:0d:7a:c9:da: 15:8d:da:00:78:a0:07:07:c7:3f:eb:83:58:a5:fd: 1c:40:b0:cd:d9:b7:bb:fa:8c:5e:97:01:38:d7:07: 43:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:3F:43:0B:24:19:03:B0:1D:B5:56:A2:45:8C:4C:4B:95:3E:D2:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/985b59c8-a923-4d73-afff-2650138ef0c2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.216.0.0/15 Signature Algorithm: sha256WithRSAEncryption 52:e0:93:02:1c:c1:38:d7:23:0f:fb:bc:22:e1:40:48:7c:28: 41:97:56:87:be:cd:63:b4:47:8b:6c:92:42:8c:06:2e:14:21: 64:ce:dc:f9:3f:c7:22:da:11:ab:53:06:4e:47:4b:2e:dd:1d: ae:3a:50:d5:9f:8e:39:e0:d0:7b:5c:66:88:32:dc:0e:67:df: cf:58:56:c4:01:9b:31:17:18:df:02:13:c6:c3:88:dd:f0:48: ab:f4:81:38:5a:f7:5d:01:04:19:5c:ba:e0:70:5a:c7:01:ea: db:ce:b1:ac:c7:25:30:8c:4d:d0:11:a3:04:7a:2f:ec:40:0c: 8a:f9:d7:ae:87:c2:16:d0:45:7a:04:4d:db:ee:b3:5c:84:58: 55:5c:5a:0e:51:d0:98:d4:09:19:04:8f:6a:94:cd:52:51:34: 0f:0a:f1:e6:18:ae:70:d6:52:35:59:dd:eb:92:38:b9:d0:e0: 6b:1d:4b:14:0f:e0:08:66:4a:9e:dc:ec:a8:55:54:84:de:ce: 3a:fb:dd:51:32:7a:f5:a5:3a:b3:24:42:fd:bf:f3:08:e2:e1: ac:a6:c5:eb:80:92:b4:4d:42:12:d8:28:6f:bf:3e:72:8e:4d: 26:fa:3a:20:19:0b:50:85:19:ab:37:28:85:55:03:7a:78:a7: e6:d6:29:26 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTcVcH3Y0Ldu2QXb5cmGPsYhFsJMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA1MDEzWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTU4MjUzMWNmODM4ZGU5NmMxZWM1YWRhNzZmOTgwOTk1 YTBjNmQ4OGU2ZWQ4ZTllNDkxYzNhYWJiNjlkODE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcO6sNrQ+tOyDdZQcOY+uHOAQMyYcwH8z0tHofDP3ajBOf zFsw1kWJVsuh0XZbawZw3ZfRTn9uMC9ib/Hit3k49FmnxlI8FB6ryQ1GQ9McnEL1 kIOHSgOmzaj0o07XfQN6lDBkn6vXFolNV30oOL7JTiQ0HpSJHK1JClyX3DJRVl+X ZblGi/hdgx2wAANYx3LVlPxOjLLApISKvlmgkzKSTocE35VikujpTqzphCoryZ7F Aq6odfwFJ7qCmVI/4/pqTl/GTNBe4xDb1VYnMjboDMXmSNifAtHsRyrZDXrJ2hWN 2gB4oAcHxz/rg1il/RxAsM3Zt7v6jF6XATjXB0NBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTD9DCyQZA7AdtVaiRYxMS5U+0k8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NWI1OWM4LWE5MjMtNGQ3My1hZmZmLTI2NTAxMzhlZjBjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFo2DANBgkqhkiG9w0BAQsFAAOCAQEAUuCTAhzBONcjD/u8IuFASHwoQZdW h77NY7RHi2ySQowGLhQhZM7c+T/HItoRq1MGTkdLLt0drjpQ1Z+OOeDQe1xmiDLc Dmffz1hWxAGbMRcY3wITxsOI3fBIq/SBOFr3XQEEGVy64HBaxwHq286xrMclMIxN 0BGjBHov7EAMivnXrofCFtBFegRN2+6zXIRYVVxaDlHQmNQJGQSPapTNUlE0Dwrx 5hiucNZSNVnd65I4udDgax1LFA/gCGZKntzsqFVUhN7OOvvdUTJ69aU6syRC/b/z COLhrKbF64CStE1CEtgob78+co5NJvo6IBkLUIUZqzcohVUDenin5tYpJg== -----END CERTIFICATE-----Generated at Tue May 12 21:50:44 2026 by rpki-client