$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cb0ac6a-ca60-4958-a561-37454c1f561b.roa File: 0cb0ac6a-ca60-4958-a561-37454c1f561b.roa (raw, json) Hash identifier: S5j9ar67nxc8+mx8X9nG9fcv1DbZmJsL8b0VkvBE2kQ= Subject key identifier: 35:41:28:7E:70:FD:20:00:18:4B:88:DD:EE:A4:8F:9C:7C:02:20:49 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 489CDBD4690ABCD1EBAE55FD67E50C0C99437FBE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cb0ac6a-ca60-4958-a561-37454c1f561b.roa Signing time: Sun 17 May 2026 00:41:14 +0000 ROA not before: Sun 17 May 2026 00:41:14 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.193.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:9c:db:d4:69:0a:bc:d1:eb:ae:55:fd:67:e5:0c:0c:99:43:7f:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:41:14 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=91038ff448c99a170fa045ac4ce3470fa825a8896cd40bcd357f557bf2d7d3bf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ec:7a:25:83:dd:11:33:72:7e:a4:76:c5:cb: f3:9d:20:62:bf:61:32:f8:5b:f4:6e:52:35:7e:cc: cf:17:13:f3:9a:f8:db:4f:c6:2f:f8:94:79:0a:51: b4:dd:8e:2a:a1:9d:af:4a:5e:0e:3e:6f:c2:df:ef: d7:ad:88:cf:f0:8b:82:0e:84:cc:fa:4b:1a:e2:c4: 8c:1a:df:13:62:bc:ab:cd:3a:0e:72:a2:31:e0:e9: 20:b4:22:12:bb:91:45:fc:ca:a6:5c:b9:92:aa:44: 95:d0:01:c6:64:ff:40:22:53:a4:53:3c:3c:f3:16: 71:30:f5:2b:d2:f8:42:37:fc:35:ef:17:25:2c:a4: 79:c7:21:ef:e3:ff:8f:56:ec:fe:ec:02:86:3a:5b: 2d:27:0a:4c:d4:80:eb:f6:43:51:04:87:cb:85:3a: 31:59:f9:21:8c:ef:2b:33:da:04:65:16:ce:83:9d: 97:a5:cc:5d:ca:87:01:74:19:c0:c2:18:2e:8c:06: cc:bd:06:9e:45:ac:d6:05:a5:94:90:a2:53:b2:68: 18:62:3a:8c:92:71:7e:45:d2:3e:de:77:33:91:1c: 87:3b:14:b1:6c:fe:ef:12:d9:3e:a4:05:67:46:07: 8c:75:60:e6:6a:db:09:a4:fa:d0:ef:d4:78:ef:88: 4f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:41:28:7E:70:FD:20:00:18:4B:88:DD:EE:A4:8F:9C:7C:02:20:49 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cb0ac6a-ca60-4958-a561-37454c1f561b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption c1:0a:ec:37:54:f2:0d:31:06:96:48:5f:01:45:44:06:50:96: ac:a7:b2:a7:f9:84:63:36:0a:85:fd:5a:18:9f:88:41:ce:69: 1d:3f:a8:9f:ba:d0:a9:47:55:64:27:6c:b0:01:52:b8:6b:42: 47:24:54:66:33:82:0c:09:c5:17:00:36:d1:af:2a:1f:86:c6: b9:08:bc:04:6d:a4:d6:9e:11:84:53:01:2f:58:e0:2f:39:64: 49:2c:4e:e4:e2:3a:78:ec:a8:5c:c7:72:41:13:cc:7c:21:fa: 0d:6f:e5:c8:c1:b4:72:11:1a:ea:f9:52:72:e9:f6:55:3e:7f: 13:68:2e:e9:5f:bb:9d:03:15:2c:42:1c:5f:8b:bc:82:c0:27: 67:eb:8a:f5:52:07:0b:76:92:bd:46:8a:3d:6c:5f:03:05:5c: c4:67:10:b0:7c:85:53:23:08:de:b4:3c:cb:57:8c:68:0b:79: 06:87:a6:d4:e0:14:c6:b4:31:72:e1:ee:91:10:a0:ab:16:12: d3:67:8f:8f:12:af:0c:5a:94:69:5a:c6:c8:43:f5:6b:ec:19: f1:e8:ff:b3:d1:35:f7:d8:ca:a3:7e:8f:14:22:01:93:12:cb: e4:fc:0a:62:75:e3:4f:28:78:18:f9:06:7c:f6:ba:fc:11:94: 51:23:53:a9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSJzb1GkKvNHrrlX9Z+UMDJlDf74wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA0MTE0WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MTAzOGZmNDQ4Yzk5YTE3MGZhMDQ1YWM0Y2UzNDcwZmE4 MjVhODg5NmNkNDBiY2QzNTdmNTU3YmYyZDdkM2JmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC47Holg90RM3J+pHbFy/OdIGK/YTL4W/RuUjV+zM8XE/Oa +NtPxi/4lHkKUbTdjiqhna9KXg4+b8Lf79etiM/wi4IOhMz6SxrixIwa3xNivKvN Og5yojHg6SC0IhK7kUX8yqZcuZKqRJXQAcZk/0AiU6RTPDzzFnEw9SvS+EI3/DXv FyUspHnHIe/j/49W7P7sAoY6Wy0nCkzUgOv2Q1EEh8uFOjFZ+SGM7ysz2gRlFs6D nZelzF3KhwF0GcDCGC6MBsy9Bp5FrNYFpZSQolOyaBhiOoyScX5F0j7edzORHIc7 FLFs/u8S2T6kBWdGB4x1YOZq2wmk+tDv1HjviE+JAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNUEofnD9IAAYS4jd7qSPnHwCIEkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjYjBhYzZhLWNhNjAtNDk1OC1hNTYxLTM3NDU0YzFmNTYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4wTANBgkqhkiG9w0BAQsFAAOCAQEAwQrsN1TyDTEGlkhfAUVEBlCWrKey p/mEYzYKhf1aGJ+IQc5pHT+on7rQqUdVZCdssAFSuGtCRyRUZjOCDAnFFwA20a8q H4bGuQi8BG2k1p4RhFMBL1jgLzlkSSxO5OI6eOyoXMdyQRPMfCH6DW/lyMG0chEa 6vlScun2VT5/E2gu6V+7nQMVLEIcX4u8gsAnZ+uK9VIHC3aSvUaKPWxfAwVcxGcQ sHyFUyMI3rQ8y1eMaAt5Boem1OAUxrQxcuHukRCgqxYS02ePjxKvDFqUaVrGyEP1 a+wZ8ej/s9E199jKo36PFCIBkxLL5PwKYnXjTyh4GPkGfPa6/BGUUSNTqQ== -----END CERTIFICATE-----Generated at Sat Jun 13 07:15:18 2026 by rpki-client