$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa File: c416f57a-9b38-4d7e-8240-20535a4882a8.roa (raw, json) Hash identifier: l4DQx0g0SRB4rU2lvWK+LKDLP0Ryx28Mjg9cNCdBjyg= Subject key identifier: B5:00:BC:2A:DA:F3:8A:8F:EB:F7:DB:DC:CB:CC:5E:F8:64:B1:58:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 38609C9280C592CD7DC2F7453400E976CDB9FBD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa Signing time: Wed 06 May 2026 00:30:45 +0000 ROA not before: Wed 06 May 2026 00:30:45 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 104.223.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:60:9c:92:80:c5:92:cd:7d:c2:f7:45:34:00:e9:76:cd:b9:fb:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:30:45 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=7ba48d212777677193b158a9ba92ffc6be94d54aabde1449231703eda9b5e1d7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:a9:29:85:89:e2:f6:6e:12:dd:0a:ed:8e:7d: 2a:06:ae:8b:03:ef:bd:6e:9f:fd:ef:1e:f3:d1:eb: 92:22:7c:d5:91:1c:5f:8a:10:9c:6e:3e:db:20:bc: 7e:cb:3c:52:96:d4:d7:30:ef:61:cb:dd:f3:4a:f5: ed:5e:9c:ae:58:32:79:c2:a6:bb:7a:ad:9b:5d:80: 82:2d:0a:bc:8f:38:df:d6:79:09:03:6b:ab:04:8c: af:26:31:ea:1a:dc:71:e3:01:a2:8d:d9:cc:5e:32: 81:fa:fb:77:89:0c:41:63:0e:aa:8b:3e:97:11:ab: 2a:57:e4:e3:d1:48:1c:c1:7a:42:8b:85:12:5e:1b: 52:c9:84:86:0f:8a:a9:c7:ed:0e:84:81:33:36:82: bc:94:c5:82:ad:da:98:d5:01:12:c3:ee:c1:ed:8a: 2c:35:7a:7f:bb:f2:79:53:60:09:13:02:a6:00:95: 4f:31:44:40:4e:d4:73:2b:d9:98:fa:c6:41:35:82: 97:3f:39:84:58:30:e1:fe:db:89:b4:3e:97:e0:8a: a9:64:83:61:09:6a:df:15:47:d2:cd:86:f8:e5:85: 30:e9:41:07:9a:94:9f:ce:15:98:56:14:18:19:99: 1e:a4:a1:a3:96:1c:a4:fe:05:4a:ea:a7:8d:0c:ba: d1:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:00:BC:2A:DA:F3:8A:8F:EB:F7:DB:DC:CB:CC:5E:F8:64:B1:58:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c416f57a-9b38-4d7e-8240-20535a4882a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.223.128.0/17 Signature Algorithm: sha256WithRSAEncryption c6:a9:12:5c:cf:2f:64:72:ae:2d:f6:1f:dd:b4:18:b8:e6:25: f0:b0:9c:59:87:3e:7b:7f:2d:b8:a9:97:c5:e1:2f:b2:bf:ec: 67:45:b7:cc:e1:bf:63:17:91:c6:e8:56:b0:47:78:ef:c7:f7: 53:3e:8f:7c:b6:5d:c0:55:4d:f2:8e:aa:0f:1a:8e:8e:6c:98: 49:4a:f0:88:44:9f:e7:43:7e:3e:0f:e4:78:70:b7:24:9f:37: f0:59:b8:8f:45:3e:82:9a:cf:14:76:77:36:6f:68:36:b6:31: bb:3b:c2:7b:f0:63:1c:3c:1a:bd:5e:1d:e6:41:10:49:2a:41: c7:de:3c:93:65:a3:30:82:cf:00:fc:da:bd:de:a0:ed:89:5a: 59:dd:9c:3a:2e:25:9a:0a:dc:86:27:aa:ef:cc:b6:95:82:b4: c3:56:83:03:40:30:7a:4a:f1:9b:de:c2:10:9d:c8:ad:26:f5: e9:38:d8:0e:bd:d7:fd:8b:de:43:5a:ad:ca:2a:31:f2:b8:2b: 18:17:17:7b:e4:24:79:52:e0:e6:9b:af:d3:c0:93:00:1f:52: dd:c2:cd:a8:2a:8b:dc:49:a5:31:51:5f:d6:8e:1c:66:9c:be: 71:d7:50:fa:9a:7f:9d:cc:b5:ca:0f:95:58:41:2b:00:3b:4d: 96:36:7e:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOGCckoDFks19wvdFNADpds25+9QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAzMDQ1WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YmE0OGQyMTI3Nzc2NzcxOTNiMTU4YTliYTkyZmZjNmJl OTRkNTRhYWJkZTE0NDkyMzE3MDNlZGE5YjVlMWQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPqSmFieL2bhLdCu2OfSoGrosD771un/3vHvPR65IifNWR HF+KEJxuPtsgvH7LPFKW1Ncw72HL3fNK9e1enK5YMnnCprt6rZtdgIItCryPON/W eQkDa6sEjK8mMeoa3HHjAaKN2cxeMoH6+3eJDEFjDqqLPpcRqypX5OPRSBzBekKL hRJeG1LJhIYPiqnH7Q6EgTM2gryUxYKt2pjVARLD7sHtiiw1en+78nlTYAkTAqYA lU8xREBO1HMr2Zj6xkE1gpc/OYRYMOH+24m0Ppfgiqlkg2EJat8VR9LNhvjlhTDp QQealJ/OFZhWFBgZmR6koaOWHKT+BUrqp40MutGpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtQC8Ktrzio/r99vcy8xe+GSxWO8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0MTZmNTdhLTliMzgtNGQ3ZS04MjQwLTIwNTM1YTQ4ODJhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdo34AwDQYJKoZIhvcNAQELBQADggEBAMapElzPL2Ryri32H920GLjmJfCw nFmHPnt/Lbipl8XhL7K/7GdFt8zhv2MXkcboVrBHeO/H91M+j3y2XcBVTfKOqg8a jo5smElK8IhEn+dDfj4P5HhwtySfN/BZuI9FPoKazxR2dzZvaDa2Mbs7wnvwYxw8 Gr1eHeZBEEkqQcfePJNlozCCzwD82r3eoO2JWlndnDouJZoK3IYnqu/MtpWCtMNW gwNAMHpK8ZvewhCdyK0m9ek42A691/2L3kNarcoqMfK4KxgXF3vkJHlS4Oabr9PA kwAfUt3Czagqi9xJpTFRX9aOHGacvnHXUPqaf53MtcoPlVhBKwA7TZY2fkI= -----END CERTIFICATE-----Generated at Wed May 13 06:53:09 2026 by rpki-client