$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1932d35e-8470-472b-beeb-7ce1306eddae.roa File: 1932d35e-8470-472b-beeb-7ce1306eddae.roa (raw, json) Hash identifier: 5XMltG0THJXP+x/3xbdYYGN514jJW9b14QHujqOgx8U= Subject key identifier: 59:F1:C8:C9:41:46:CF:17:71:5F:56:5E:D3:12:82:A0:54:1E:2E:20 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5ADD6748E7A3672ED2074286E8F3E65D396F2541 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1932d35e-8470-472b-beeb-7ce1306eddae.roa Signing time: Tue 19 May 2026 00:11:03 +0000 ROA not before: Tue 19 May 2026 00:11:03 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 160.209.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:dd:67:48:e7:a3:67:2e:d2:07:42:86:e8:f3:e6:5d:39:6f:25:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:11:03 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=9d19640d03094ac5013064fe7b92d0140496e26cbfcc28b82784827b4222ba74, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:4e:53:9b:4d:86:c1:13:2d:15:2c:f9:ce:bb: 62:cd:a6:44:66:13:84:00:51:10:69:e5:a3:ea:fa: 41:40:48:74:6b:70:a7:3b:a7:78:82:05:ae:d2:ef: 14:6f:bd:e8:51:be:8e:4b:38:6f:2b:50:02:2d:2b: a6:1e:be:df:54:77:d3:22:d6:e0:6b:55:c3:00:79: a4:ec:cf:3a:f7:a1:75:09:5f:20:b3:ee:a2:3b:9e: f4:94:62:c3:5b:47:e7:7d:3f:f9:1c:12:4b:6d:16: 60:ce:db:2b:8f:c3:6d:84:5d:c0:cb:d1:2d:ed:f7: 2c:ee:56:55:0a:a6:36:ad:4a:12:c7:ca:a1:2d:45: d6:92:48:f4:00:3f:d5:11:af:cd:a1:62:8d:3e:0c: ae:e3:09:f5:e4:14:a1:af:79:fb:ae:94:8b:dc:93: 31:4c:03:11:36:83:cc:b1:f1:4d:50:49:c5:43:4a: dd:cc:bf:69:e2:e5:b9:e5:bf:4d:4c:55:3b:73:8a: aa:68:64:cf:89:5d:59:46:c0:d7:09:28:44:17:c0: 4a:26:ef:c2:a9:5c:37:e0:44:03:6d:86:59:e6:57: 75:a2:87:87:f7:54:9d:de:e3:86:c0:db:83:db:e2: a0:22:3e:a5:f9:09:4c:f5:15:30:be:ac:c7:60:b3: c6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F1:C8:C9:41:46:CF:17:71:5F:56:5E:D3:12:82:A0:54:1E:2E:20 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1932d35e-8470-472b-beeb-7ce1306eddae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 160.209.0.0/16 Signature Algorithm: sha256WithRSAEncryption 81:9e:ca:99:22:7e:17:2f:7a:a4:eb:c7:50:b2:5e:ec:5a:8d: 22:49:81:ff:d5:c4:f5:b5:f5:58:a6:fd:c2:ff:a0:1b:73:e7: bd:ce:69:1d:8e:ec:75:3a:71:34:61:a3:5f:df:83:0f:52:63: a8:8c:2f:eb:a3:05:7a:fb:49:d4:56:c4:4b:e7:6b:76:f3:5a: 81:ef:2e:66:21:43:95:d6:8a:75:28:84:45:52:92:8a:bb:fd: 7c:ed:b7:ed:a8:c9:46:7b:ab:f9:6f:a9:e3:d6:20:51:57:33: cc:bc:1c:a4:b8:e5:1c:04:14:1f:9b:80:e3:6c:74:77:e4:6f: 9a:68:6a:7e:8c:be:9d:34:fc:05:7f:2a:c5:5d:4a:27:8d:b0: e7:40:cc:ef:8b:6a:ca:c6:c8:30:af:32:70:5f:32:bc:0d:1d: 3f:76:ea:f5:36:bd:ee:c0:61:6e:ca:e1:af:69:14:34:06:1a: 36:94:94:db:d8:55:86:ed:17:0a:b5:89:3c:8e:e2:07:4a:9a: b8:de:70:8d:91:b6:6a:d9:ef:4c:f5:43:2b:2b:3f:f4:0e:c8: f2:f6:46:7b:d4:bf:72:3e:c1:9d:6c:6d:94:6a:ba:c1:42:83: b0:bb:1c:22:c6:71:b9:dd:43:53:1d:4a:09:25:dd:67:1d:34: 04:a0:53:d1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWt1nSOejZy7SB0KG6PPmXTlvJUEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAxMTAzWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDE5NjQwZDAzMDk0YWM1MDEzMDY0ZmU3YjkyZDAxNDA0 OTZlMjZjYmZjYzI4YjgyNzg0ODI3YjQyMjJiYTc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyTlObTYbBEy0VLPnOu2LNpkRmE4QAURBp5aPq+kFASHRr cKc7p3iCBa7S7xRvvehRvo5LOG8rUAItK6Yevt9Ud9Mi1uBrVcMAeaTszzr3oXUJ XyCz7qI7nvSUYsNbR+d9P/kcEkttFmDO2yuPw22EXcDL0S3t9yzuVlUKpjatShLH yqEtRdaSSPQAP9URr82hYo0+DK7jCfXkFKGvefuulIvckzFMAxE2g8yx8U1QScVD St3Mv2ni5bnlv01MVTtziqpoZM+JXVlGwNcJKEQXwEom78KpXDfgRANthlnmV3Wi h4f3VJ3e44bA24Pb4qAiPqX5CUz1FTC+rMdgs8Y9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWfHIyUFGzxdxX1Ze0xKCoFQeLiAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5MzJkMzVlLTg0NzAtNDcyYi1iZWViLTdjZTEzMDZlZGRhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCg0TANBgkqhkiG9w0BAQsFAAOCAQEAgZ7KmSJ+Fy96pOvHULJe7FqNIkmB /9XE9bX1WKb9wv+gG3Pnvc5pHY7sdTpxNGGjX9+DD1JjqIwv66MFevtJ1FbES+dr dvNage8uZiFDldaKdSiERVKSirv9fO237ajJRnur+W+p49YgUVczzLwcpLjlHAQU H5uA42x0d+Rvmmhqfoy+nTT8BX8qxV1KJ42w50DM74tqysbIMK8ycF8yvA0dP3bq 9Ta97sBhbsrhr2kUNAYaNpSU29hVhu0XCrWJPI7iB0qauN5wjZG2atnvTPVDKys/ 9A7I8vZGe9S/cj7BnWxtlGq6wUKDsLscIsZxud1DUx1KCSXdZx00BKBT0Q== -----END CERTIFICATE-----Generated at Sat Jun 13 05:47:03 2026 by rpki-client