$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa File: a3189a3e-1053-49b0-891d-b315bf3a899d.roa (raw, json) Hash identifier: rFdDBvP3qEGt4Y4B52SVNp2fwuRLKxyJly8rXQWI37c= Subject key identifier: 84:90:05:FB:35:15:BE:77:25:36:AB:8E:3B:4D:83:71:B4:EF:AE:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 046D8BFED7AB63216A0BE42835CCFE68EABE09F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa Signing time: Wed 29 Apr 2026 00:20:28 +0000 ROA not before: Wed 29 Apr 2026 00:20:28 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.109.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:6d:8b:fe:d7:ab:63:21:6a:0b:e4:28:35:cc:fe:68:ea:be:09:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:28 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=1218d449264a22107625595faf81befcbb7301489fe7e6900c109b5462f189e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ed:48:0d:1f:8d:4b:97:eb:34:d1:5f:91:d1: db:fa:67:ca:dd:3a:a9:73:a6:03:f3:03:9f:81:e2: 23:40:53:a5:50:7e:64:23:66:21:ce:f8:fe:42:1c: 84:bd:ff:37:00:31:33:c6:d9:55:45:cb:90:e7:9b: f7:4b:c8:4e:4b:16:ad:f0:45:d7:1a:a3:7d:0c:d1: 9f:40:7c:0a:5e:64:75:e3:5f:34:10:e4:bc:c1:8e: 22:cb:86:fc:63:f8:05:6e:24:f3:a3:bf:41:21:8e: 85:1d:c1:29:46:2f:60:eb:c7:dd:ed:53:93:c6:d8: dd:d2:89:52:36:57:05:ca:80:67:a8:46:c0:13:8a: e3:c6:7c:8d:85:4f:a3:77:e8:5f:f6:e8:72:33:84: 46:50:93:fe:66:00:55:29:37:97:d7:f3:17:ea:bd: 14:87:9b:8e:fa:5d:7f:48:e4:a7:dc:dd:08:80:54: 07:bb:be:d7:48:e0:c6:4b:8e:30:2f:ee:56:70:e5: 2a:71:5d:85:f5:22:94:29:86:3f:1b:a1:c0:31:5c: 00:96:30:49:e0:e7:e2:fb:ae:a6:d9:b7:07:2c:b2: bc:7e:ec:64:21:a5:e1:32:06:4a:7c:76:f9:9d:8c: 33:e9:bd:17:10:73:7c:a8:77:b2:34:93:b4:18:5a: d9:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:90:05:FB:35:15:BE:77:25:36:AB:8E:3B:4D:83:71:B4:EF:AE:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:7f:4d:a8:e9:d3:75:c1:e2:d1:ac:94:c5:2b:c4:ff:c4:33: 62:ea:47:0c:b2:78:2a:4b:d3:37:69:0c:df:16:b3:ff:46:02: 53:9e:58:0a:8a:19:a2:31:e0:b3:2b:bd:4c:c9:73:cd:f6:ef: 2f:f6:7e:87:b8:de:ff:c6:6c:e8:97:3a:22:85:bc:fb:ab:40: fc:df:81:fe:7c:b2:1a:da:e8:47:d6:9a:bc:97:e1:2e:4a:58: 6f:41:c5:ee:81:2a:10:3b:8b:ff:bd:82:07:e3:f7:e5:25:fd: dc:49:54:75:04:3e:0e:bb:38:08:49:55:04:b6:4a:32:39:61: 94:da:36:b0:2a:cc:d7:cb:36:81:bc:ea:93:0e:ac:54:c1:d7: f1:96:0e:5c:93:54:1c:49:14:fc:09:2b:8e:cd:60:8e:c7:1b: 72:03:ba:55:78:7b:0a:c8:82:37:8c:47:e3:4c:bb:a7:13:76: 03:50:d5:24:cb:2d:64:64:a4:19:a7:f4:07:57:b3:80:25:9b: 5f:b1:7c:a0:2b:59:e8:43:a0:f0:c8:99:a8:81:d1:c3:65:e4: 8e:9a:28:07:e9:0f:13:82:c9:00:74:8c:d0:b3:57:e3:eb:14: d0:d6:09:c1:05:fe:56:70:28:2f:fa:15:29:8b:e6:ab:93:40: a8:86:31:3c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBG2L/terYyFqC+QoNcz+aOq+CfAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMDI4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjE4ZDQ0OTI2NGEyMjEwNzYyNTU5NWZhZjgxYmVmY2Ji NzMwMTQ4OWZlN2U2OTAwYzEwOWI1NDYyZjE4OWU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDD7UgNH41Ll+s00V+R0dv6Z8rdOqlzpgPzA5+B4iNAU6VQ fmQjZiHO+P5CHIS9/zcAMTPG2VVFy5Dnm/dLyE5LFq3wRdcao30M0Z9AfApeZHXj XzQQ5LzBjiLLhvxj+AVuJPOjv0EhjoUdwSlGL2Drx93tU5PG2N3SiVI2VwXKgGeo RsATiuPGfI2FT6N36F/26HIzhEZQk/5mAFUpN5fX8xfqvRSHm476XX9I5Kfc3QiA VAe7vtdI4MZLjjAv7lZw5SpxXYX1IpQphj8bocAxXACWMEng5+L7rqbZtwcssrx+ 7GQhpeEyBkp8dvmdjDPpvRcQc3yod7I0k7QYWtkLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhJAF+zUVvnclNquOO02DcbTvrswwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzMTg5YTNlLTEwNTMtNDliMC04OTFkLWIzMTViZjNhODk5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2bTANBgkqhkiG9w0BAQsFAAOCAQEAXH9NqOnTdcHi0ayUxSvE/8QzYupH DLJ4KkvTN2kM3xaz/0YCU55YCooZojHgsyu9TMlzzfbvL/Z+h7je/8Zs6Jc6IoW8 +6tA/N+B/nyyGtroR9aavJfhLkpYb0HF7oEqEDuL/72CB+P35SX93ElUdQQ+Drs4 CElVBLZKMjlhlNo2sCrM18s2gbzqkw6sVMHX8ZYOXJNUHEkU/Akrjs1gjscbcgO6 VXh7CsiCN4xH40y7pxN2A1DVJMstZGSkGaf0B1ezgCWbX7F8oCtZ6EOg8MiZqIHR w2XkjpooB+kPE4LJAHSM0LNX4+sU0NYJwQX+VnAoL/oVKYvmq5NAqIYxPA== -----END CERTIFICATE-----Generated at Wed May 13 01:19:33 2026 by rpki-client