$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa File: 158b805b-2506-47c4-a087-7b0accaf249e.roa (raw, json) Hash identifier: plG6oDw9GsghbBbW283YY9xMyIfUtT9lRz+Xhhi3eXU= Subject key identifier: 2E:EF:2D:5E:1E:0F:72:7B:9E:C3:7E:44:1A:2F:76:86:2F:3F:A5:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09A333568E6A1141C426178D09D11A7E3052D025 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa Signing time: Tue 19 May 2026 00:41:04 +0000 ROA not before: Tue 19 May 2026 00:41:04 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.71.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a3:33:56:8e:6a:11:41:c4:26:17:8d:09:d1:1a:7e:30:52:d0:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:41:04 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=5ba940b753c96dc1631be931bad412f9d3879e65db575333176d70e845aa4fc2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2e:b2:18:e2:dc:4f:29:eb:7b:d0:59:d2:c9: ab:a0:fd:17:48:fb:d4:e9:48:99:ef:c7:be:15:0b: ed:2f:2c:ef:85:c9:eb:61:d2:08:e8:b3:92:a9:0f: 1b:f0:1f:a0:e7:19:22:16:67:a1:90:25:14:b8:39: 3d:3e:15:6a:25:57:5d:94:03:34:19:f5:e4:21:a8: cc:54:16:6e:2e:13:4f:ef:a3:42:91:b6:23:26:fb: c8:03:59:97:78:07:8d:d1:4f:15:eb:7d:00:8e:12: 89:d4:c4:33:e7:82:ce:06:2e:54:65:c2:e7:59:ea: 46:97:be:81:33:c8:ea:d3:74:a0:8e:02:dd:2f:f9: d2:b8:57:e7:04:91:38:45:02:56:12:56:7c:65:b0: 99:95:58:d1:c6:99:bc:f6:ad:ce:ff:a4:f0:e6:06: 19:e7:0c:7b:f5:82:cd:e0:7f:e8:1c:a1:a5:bd:e2: e6:42:86:99:b0:c2:ca:55:2c:f7:14:63:03:e7:fb: d8:f7:4c:e6:bf:17:00:e2:b8:d9:ee:c9:e1:2c:37: aa:e8:6a:3e:46:df:c2:85:35:82:82:3d:26:78:ab: 26:b4:ca:5a:33:16:b0:eb:0d:9e:f4:d8:5c:1f:40: 85:8d:54:31:b4:2d:3c:63:cf:ff:69:34:b5:b9:31: e7:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:EF:2D:5E:1E:0F:72:7B:9E:C3:7E:44:1A:2F:76:86:2F:3F:A5:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.71.32.0/19 Signature Algorithm: sha256WithRSAEncryption 00:36:e5:32:34:8a:05:de:57:93:c1:a0:1d:db:d6:b4:78:58: 62:73:a5:43:6f:b5:8d:52:fa:2f:c7:c4:27:1c:9e:1b:7f:e6: 34:4e:bc:81:be:eb:c2:d8:18:d4:d0:8f:e5:37:a0:84:2b:87: 49:c0:90:31:6b:37:db:1a:da:ef:d8:59:27:10:9a:ba:9c:22: 07:ca:6b:3c:3c:ac:aa:dd:64:26:5d:2c:fc:9f:6d:1f:71:c5: e1:1a:cc:76:8d:16:d8:0f:68:db:de:32:eb:04:87:bf:14:f6: 2c:1e:25:fb:0b:b5:59:6b:0a:9f:42:82:a4:78:0f:38:91:7c: b7:b2:45:55:85:80:10:e1:70:bc:80:6f:4c:fa:f3:76:2c:86: b2:7a:e9:6e:50:81:8b:f1:80:98:e5:b5:bc:37:fa:f4:29:53: 24:5b:de:9d:47:84:af:e0:6d:6c:a3:f7:3d:34:0b:75:e7:31: 05:f0:d8:85:16:0d:c1:ab:66:aa:51:02:1c:8c:24:57:e0:54: f6:04:19:65:5d:ba:1d:37:22:6b:0d:e3:37:4a:a0:2d:f3:32: 8f:fc:77:f0:58:ab:ab:e1:3d:db:57:da:b8:20:89:a2:4d:95: ec:92:0d:04:85:27:3d:5f:cc:0a:31:2a:07:d2:a7:ee:78:df: 5a:e2:69:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCaMzVo5qEUHEJheNCdEafjBS0CUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDA0MTA0WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YmE5NDBiNzUzYzk2ZGMxNjMxYmU5MzFiYWQ0MTJmOWQz ODc5ZTY1ZGI1NzUzMzMxNzZkNzBlODQ1YWE0ZmMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuLrIY4txPKet70FnSyaug/RdI+9TpSJnvx74VC+0vLO+F yeth0gjos5KpDxvwH6DnGSIWZ6GQJRS4OT0+FWolV12UAzQZ9eQhqMxUFm4uE0/v o0KRtiMm+8gDWZd4B43RTxXrfQCOEonUxDPngs4GLlRlwudZ6kaXvoEzyOrTdKCO At0v+dK4V+cEkThFAlYSVnxlsJmVWNHGmbz2rc7/pPDmBhnnDHv1gs3gf+gcoaW9 4uZChpmwwspVLPcUYwPn+9j3TOa/FwDiuNnuyeEsN6roaj5G38KFNYKCPSZ4qya0 ylozFrDrDZ702FwfQIWNVDG0LTxjz/9pNLW5MeeFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULu8tXh4Pcnuew35EGi92hi8/pSMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1OGI4MDViLTI1MDYtNDdjNC1hMDg3LTdiMGFjY2FmMjQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQRyAwDQYJKoZIhvcNAQELBQADggEBAAA25TI0igXeV5PBoB3b1rR4WGJz pUNvtY1S+i/HxCccnht/5jROvIG+68LYGNTQj+U3oIQrh0nAkDFrN9sa2u/YWScQ mrqcIgfKazw8rKrdZCZdLPyfbR9xxeEazHaNFtgPaNveMusEh78U9iweJfsLtVlr Cp9CgqR4DziRfLeyRVWFgBDhcLyAb0z683YshrJ66W5QgYvxgJjltbw3+vQpUyRb 3p1HhK/gbWyj9z00C3XnMQXw2IUWDcGrZqpRAhyMJFfgVPYEGWVduh03ImsN4zdK oC3zMo/8d/BYq6vhPdtX2rggiaJNleySDQSFJz1fzAoxKgfSp+5431riae8= -----END CERTIFICATE-----Generated at Sat Jun 13 07:15:09 2026 by rpki-client