$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d0356d-ebd3-4994-9756-b2199398d95a.roa File: a9d0356d-ebd3-4994-9756-b2199398d95a.roa (raw, json) Hash identifier: ZO58NHdCyX5d2i3iHEwu4R8URNAYv74qq4kJ5HBGP9g= Subject key identifier: 8E:C5:F7:38:B4:1E:43:F0:48:87:6C:9A:5D:18:0C:73:3F:C9:2F:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34FD428BD4D9354A13A413FE2A5DFDB98490B7ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d0356d-ebd3-4994-9756-b2199398d95a.roa Signing time: Sat 09 May 2026 00:31:41 +0000 ROA not before: Sat 09 May 2026 00:31:41 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.198.66.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:fd:42:8b:d4:d9:35:4a:13:a4:13:fe:2a:5d:fd:b9:84:90:b7:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:31:41 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=36b0d6f1c01c6dbe74edb77dd800bf2c92fbc28c57b5746b73df3deccdaa354b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:34:98:ff:eb:aa:80:61:e5:cb:fc:0a:be:4d: d1:06:53:18:d9:6e:f6:69:2c:5c:be:09:f1:84:2b: 12:99:12:4c:15:99:94:bd:77:cc:a7:d9:13:78:34: 8d:13:00:63:31:92:8b:6c:c6:78:b0:07:37:53:35: e3:c3:c4:7f:4d:d6:a8:fe:a2:24:38:9d:34:79:54: bd:b6:f6:f6:70:07:b9:89:e9:47:d8:9b:07:70:0f: 4d:cc:9e:a3:09:58:9a:98:cb:da:03:ae:6e:87:aa: c0:2f:86:f9:a2:29:5d:dd:ba:b9:a4:2a:66:9a:da: 4d:22:3b:48:b7:2d:0f:6d:45:ba:33:d6:9c:18:ea: 45:4b:38:2b:ed:19:4f:6c:4b:85:69:da:a9:91:2c: ea:a1:34:cc:96:0a:0e:a8:86:34:8d:c5:0e:97:86: c1:5a:47:7f:57:9e:fa:c2:c9:5e:58:87:27:03:d4: 2d:65:4b:dc:96:84:96:ce:97:cc:3a:57:87:aa:f7: bc:22:0d:f7:81:8b:21:d9:3f:a5:ca:18:6c:1f:03: 30:9f:61:b8:c3:a0:b6:0f:d1:d7:4e:7f:30:88:04: 62:79:07:32:46:2d:f5:72:e7:15:96:a7:98:6e:5a: f0:d7:f6:0f:e9:02:2e:02:e5:bc:ba:58:04:2b:66: 38:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C5:F7:38:B4:1E:43:F0:48:87:6C:9A:5D:18:0C:73:3F:C9:2F:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a9d0356d-ebd3-4994-9756-b2199398d95a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.198.66.0/24 Signature Algorithm: sha256WithRSAEncryption 98:4b:19:ee:1a:f4:00:0e:be:a3:e4:b9:28:a2:05:fe:02:ad: bc:65:30:e3:d1:f7:0a:0b:b2:e9:57:e4:c4:1c:c5:95:b6:42: 03:b0:5e:35:12:a5:50:3c:52:fd:5e:06:a1:09:fc:65:ad:65: b8:bd:e3:61:3f:92:2b:bc:9f:71:4f:7a:89:11:e4:d9:08:43: 95:89:85:07:61:2f:42:28:d0:73:f1:a0:f4:f7:68:73:14:ba: 2b:16:38:3b:f4:41:fd:4e:c7:ee:b1:26:6f:d5:dd:e0:1a:63: 7b:6e:47:f0:20:a1:c8:c4:df:04:d3:42:a8:7e:dd:ec:4d:54: 02:dc:43:64:c2:cf:a9:0c:87:31:dc:1b:39:8e:03:e0:b7:fc: b1:76:83:7f:0a:88:25:2b:bb:70:9b:11:7c:e9:65:e0:ef:ca: 02:10:07:26:62:ea:11:73:a0:70:70:b7:7e:c6:26:c4:1e:75: 47:36:e4:ef:50:ad:b2:18:a1:b3:43:96:6e:52:c3:fe:78:3b: cf:80:d0:dd:38:e9:a9:c5:4a:52:b5:7d:cf:e4:ff:c3:e4:b4: f6:c9:78:cb:68:15:b2:29:92:06:7f:05:2e:b8:4f:82:22:32: 2f:da:e7:7e:21:8f:3e:83:70:35:57:55:de:14:7f:48:44:ad: d3:89:7e:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNP1Ci9TZNUoTpBP+Kl39uYSQt+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA5MDAzMTQxWhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmIwZDZmMWMwMWM2ZGJlNzRlZGI3N2RkODAwYmYyYzky ZmJjMjhjNTdiNTc0NmI3M2RmM2RlY2NkYWEzNTRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYNJj/66qAYeXL/Aq+TdEGUxjZbvZpLFy+CfGEKxKZEkwV mZS9d8yn2RN4NI0TAGMxkotsxniwBzdTNePDxH9N1qj+oiQ4nTR5VL229vZwB7mJ 6UfYmwdwD03MnqMJWJqYy9oDrm6HqsAvhvmiKV3durmkKmaa2k0iO0i3LQ9tRboz 1pwY6kVLOCvtGU9sS4Vp2qmRLOqhNMyWCg6ohjSNxQ6XhsFaR39XnvrCyV5YhycD 1C1lS9yWhJbOl8w6V4eq97wiDfeBiyHZP6XKGGwfAzCfYbjDoLYP0ddOfzCIBGJ5 BzJGLfVy5xWWp5huWvDX9g/pAi4C5by6WAQrZjjVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjsX3OLQeQ/BIh2yaXRgMcz/JL54wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E5ZDAzNTZkLWViZDMtNDk5NC05NzU2LWIyMTk5Mzk4ZDk1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADYxkIwDQYJKoZIhvcNAQELBQADggEBAJhLGe4a9AAOvqPkuSiiBf4Crbxl MOPR9woLsulX5MQcxZW2QgOwXjUSpVA8Uv1eBqEJ/GWtZbi942E/kiu8n3FPeokR 5NkIQ5WJhQdhL0Io0HPxoPT3aHMUuisWODv0Qf1Ox+6xJm/V3eAaY3tuR/AgocjE 3wTTQqh+3exNVALcQ2TCz6kMhzHcGzmOA+C3/LF2g38KiCUru3CbEXzpZeDvygIQ ByZi6hFzoHBwt37GJsQedUc25O9QrbIYobNDlm5Sw/54O8+A0N046anFSlK1fc/k /8PktPbJeMtoFbIpkgZ/BS64T4IiMi/a534hjz6DcDVXVd4Uf0hErdOJfrk= -----END CERTIFICATE-----Generated at Wed May 13 01:19:32 2026 by rpki-client