$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9aa3453-9174-4296-bb91-a7a12b37376d.roa File: b9aa3453-9174-4296-bb91-a7a12b37376d.roa (raw, json) Hash identifier: W3L+LGdo+Ap8ZLV8lqfaLL2v8zRvhKGHOjHB75CBaQg= Subject key identifier: 7C:94:AC:82:51:0D:BA:A5:76:5A:AE:00:41:CD:3A:7F:3B:1B:DB:6B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4C39BC10D3193B682AD2691EB5D4FED46958F739 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9aa3453-9174-4296-bb91-a7a12b37376d.roa Signing time: Sat 09 May 2026 00:30:11 +0000 ROA not before: Sat 09 May 2026 00:30:11 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.87.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:39:bc:10:d3:19:3b:68:2a:d2:69:1e:b5:d4:fe:d4:69:58:f7:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:30:11 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=191942989eff13f8be96b4d340fd39bda1e31160554cccbb6f904cd36019466b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f5:dc:44:68:b4:29:7c:0d:ba:83:a3:ca:d6:80: aa:54:4d:8b:ef:90:96:b2:c1:ca:2b:18:f1:cf:11: 8d:2a:b2:15:7a:86:0e:28:4a:5d:e4:c5:fa:a0:fe: 64:10:5f:9b:61:dc:45:6b:70:03:bf:0b:d1:06:e4: aa:05:24:3f:05:69:b3:80:69:17:92:ef:b9:e5:63: 5c:51:e4:d3:8f:b0:2c:4c:d2:e9:62:67:9b:96:c8: 06:ab:ed:69:43:11:cc:89:81:c9:d0:52:e3:af:93: 59:96:a9:c3:7e:6a:74:8c:55:f0:c4:82:9c:d4:8e: 42:07:d7:81:d5:e0:06:f1:82:69:69:40:09:ca:7f: 8b:ab:5a:b8:6b:df:36:cd:82:b1:11:4e:cc:39:4a: b0:71:ea:86:70:3b:70:a5:6f:83:a9:d6:8c:2b:09: c2:8e:c2:61:c6:e3:f3:01:99:77:55:69:5a:2d:f2: 81:93:b3:6a:9e:38:1a:d2:ef:b9:08:aa:b4:10:0a: 16:75:4e:6c:27:f7:a4:81:90:83:de:ea:f1:5a:e2: 93:f7:40:eb:0c:b2:c0:87:7d:41:0d:64:54:33:f0: 61:15:47:2c:26:fa:3e:fc:03:0c:25:ee:b7:fd:f8: cb:a2:5e:57:05:79:6a:ae:d6:0d:ad:a1:d7:71:e2: 80:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7C:94:AC:82:51:0D:BA:A5:76:5A:AE:00:41:CD:3A:7F:3B:1B:DB:6B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9aa3453-9174-4296-bb91-a7a12b37376d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.87.4.0/22 Signature Algorithm: sha256WithRSAEncryption 9f:de:eb:ac:15:8d:69:14:e8:34:ce:1f:de:12:50:d4:aa:04: e1:40:a3:c0:2b:7a:e5:7b:56:a0:7a:94:f4:c9:5a:a5:73:06: 58:9a:f8:5c:5b:09:82:22:9d:05:ea:fc:d2:37:43:a0:89:78: cc:32:e7:cb:5a:07:3e:b3:b7:94:f2:f7:92:59:71:ef:4e:4a: ad:13:02:61:f3:49:1b:b3:a4:2a:41:fb:a3:51:97:58:77:7f: 4e:c8:74:c7:f3:93:bf:d2:11:b9:ff:04:97:ac:c4:4d:54:95: 45:02:94:3b:d7:53:1d:41:77:70:3e:65:f1:88:b3:75:af:b3: e8:79:9c:26:ee:66:06:8e:65:36:6b:03:e7:68:29:82:dc:c4: 86:ca:4d:9c:0a:d7:b3:f6:68:b6:29:b2:f7:33:2f:e5:b6:4c: 50:8e:cb:1f:cb:e3:5b:0e:f7:d6:fa:62:b9:94:32:7e:d3:06: 14:60:80:d3:74:75:a5:f9:de:bd:f7:e3:50:2d:75:2b:ad:97: e4:74:47:50:f7:dc:6c:1b:02:d3:5d:58:47:7b:0f:aa:01:f4: 66:cd:25:db:ec:1e:6b:0a:30:e4:af:94:e5:e4:86:72:61:99: f2:97:38:0f:14:37:e8:5c:10:d8:cb:ab:50:de:4d:49:86:60: c5:c3:ed:a1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTDm8ENMZO2gq0mketdT+1GlY9zkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA5MDAzMDExWhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOTE5NDI5ODllZmYxM2Y4YmU5NmI0ZDM0MGZkMzliZGEx ZTMxMTYwNTU0Y2NjYmI2ZjkwNGNkMzYwMTk0NjZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD13ERotCl8DbqDo8rWgKpUTYvvkJaywcorGPHPEY0qshV6 hg4oSl3kxfqg/mQQX5th3EVrcAO/C9EG5KoFJD8FabOAaReS77nlY1xR5NOPsCxM 0uliZ5uWyAar7WlDEcyJgcnQUuOvk1mWqcN+anSMVfDEgpzUjkIH14HV4Abxgmlp QAnKf4urWrhr3zbNgrERTsw5SrBx6oZwO3Clb4Op1owrCcKOwmHG4/MBmXdVaVot 8oGTs2qeOBrS77kIqrQQChZ1Tmwn96SBkIPe6vFa4pP3QOsMssCHfUENZFQz8GEV Rywm+j78Awwl7rf9+MuiXlcFeWqu1g2toddx4oA7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfJSsglENuqV2Wq4AQc06fzsb22swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5YWEzNDUzLTkxNzQtNDI5Ni1iYjkxLWE3YTEyYjM3Mzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYVwQwDQYJKoZIhvcNAQELBQADggEBAJ/e66wVjWkU6DTOH94SUNSqBOFA o8AreuV7VqB6lPTJWqVzBlia+FxbCYIinQXq/NI3Q6CJeMwy58taBz6zt5Ty95JZ ce9OSq0TAmHzSRuzpCpB+6NRl1h3f07IdMfzk7/SEbn/BJesxE1UlUUClDvXUx1B d3A+ZfGIs3Wvs+h5nCbuZgaOZTZrA+doKYLcxIbKTZwK17P2aLYpsvczL+W2TFCO yx/L41sO99b6YrmUMn7TBhRggNN0daX53r3341AtdSutl+R0R1D33GwbAtNdWEd7 D6oB9GbNJdvsHmsKMOSvlOXkhnJhmfKXOA8UN+hcENjLq1DeTUmGYMXD7aE= -----END CERTIFICATE-----Generated at Tue May 12 21:43:40 2026 by rpki-client