$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa File: 48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa (raw, json) Hash identifier: rM39UHulLbMAU2dvralm58SzQPQYqoPni9g5Syy8s5c= Subject key identifier: 4E:11:D1:A2:B0:1B:B7:06:05:F5:FE:32:F3:2B:A9:01:E7:9D:29:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22F8EFEC82EAB8DC8F5A033497E25536BFA99C88 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa Signing time: Sun 17 May 2026 00:00:09 +0000 ROA not before: Sun 17 May 2026 00:00:09 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:f8:ef:ec:82:ea:b8:dc:8f:5a:03:34:97:e2:55:36:bf:a9:9c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:00:09 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=a0341af68b217f76f59d3dce8e481e09adccabcfc52c06c4c04146b0772b35ea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:18:62:8c:5c:e2:ff:10:0e:5d:62:6b:2c:23: 7c:2c:d2:22:69:5c:80:68:65:2d:51:b0:e9:0a:e2: 12:73:d8:56:b4:62:d9:c1:0b:27:19:a3:3e:4b:15: dd:12:12:bc:5c:84:4f:40:ea:b4:2e:c6:49:6c:94: 42:cb:b5:4a:06:a9:85:09:29:77:fd:e3:7a:31:ff: 4f:75:41:7d:42:9a:c6:09:a2:0d:98:37:a6:ab:df: 91:61:38:20:13:a6:6e:8e:8d:96:37:e0:de:36:71: 80:b9:b9:80:97:34:84:f4:2c:e3:76:75:2d:87:6a: 51:32:bc:bc:fd:35:2e:36:29:db:f8:04:b1:1a:37: ae:84:a5:a4:09:f9:3d:9d:8b:10:c9:93:a3:bd:7c: fe:d4:a8:e5:01:ee:d8:17:03:00:1f:65:5a:6d:ce: d5:3d:de:ca:ce:00:d6:f6:ad:95:3f:a6:cf:f1:b2: 87:1b:de:bd:98:ec:f9:e2:8c:6a:71:f9:e2:85:da: af:40:0e:0e:9b:da:5c:7a:f3:37:e1:d1:f3:ee:fe: 35:f0:39:b6:ce:ef:ef:bc:91:3f:eb:c3:fc:fa:ee: 3e:e7:c6:f7:b1:65:fd:3d:67:30:0d:a8:fd:97:ef: 9b:55:92:78:b8:5a:fe:34:f9:fc:b3:8e:6c:4f:78: f5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:11:D1:A2:B0:1B:B7:06:05:F5:FE:32:F3:2B:A9:01:E7:9D:29:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/48bc02e1-4d2b-4854-9155-d218e2fe0e20.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5c:e0:ae:3e:6b:22:44:c0:9a:ac:90:fa:8b:6a:59:82:02:c8: 21:27:98:04:76:ff:f8:2c:a2:1f:34:bb:5d:84:91:07:d7:63: 0d:a6:3e:03:ec:e8:93:db:e0:9f:8f:5c:f3:05:5c:5e:91:dd: 93:32:b7:f2:f0:62:df:63:56:ea:86:a0:28:d1:f1:28:67:61: 8d:48:f9:46:c0:eb:3b:4c:1b:3d:fc:06:88:4e:3f:c7:3e:b6: 34:ed:a8:ca:f3:20:1e:d6:24:df:21:86:91:0c:4b:df:76:fa: 27:b7:2b:2e:8a:87:2e:a0:45:cd:d8:ae:d9:87:74:01:1c:d5: 20:b6:d7:c2:18:9a:a0:ab:50:a1:4d:ea:6d:dc:13:66:d8:aa: 95:10:e9:52:bc:6b:4e:65:a1:61:d0:21:d6:10:f2:47:ee:4b: 12:19:87:1b:48:5e:b3:d2:0e:85:fd:09:2c:a8:ad:9c:f2:1c: e5:34:ae:b2:cf:70:2c:e0:eb:61:41:f3:2c:0f:be:c7:e0:7a: 89:0c:07:33:9e:89:b1:96:22:c3:00:85:d5:57:c7:91:66:a8: aa:f0:ce:78:94:3e:bf:31:a8:6d:80:8f:92:32:7a:b6:3e:44: 0f:2d:4b:e0:d9:ab:b7:6e:59:63:1c:63:46:0c:57:21:0e:31: 67:af:41:d6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIvjv7ILquNyPWgM0l+JVNr+pnIgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAwMDA5WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMDM0MWFmNjhiMjE3Zjc2ZjU5ZDNkY2U4ZTQ4MWUwOWFk Y2NhYmNmYzUyYzA2YzRjMDQxNDZiMDc3MmIzNWVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPGGKMXOL/EA5dYmssI3ws0iJpXIBoZS1RsOkK4hJz2Fa0 YtnBCycZoz5LFd0SErxchE9A6rQuxklslELLtUoGqYUJKXf943ox/091QX1CmsYJ og2YN6ar35FhOCATpm6OjZY34N42cYC5uYCXNIT0LON2dS2HalEyvLz9NS42Kdv4 BLEaN66EpaQJ+T2dixDJk6O9fP7UqOUB7tgXAwAfZVptztU93srOANb2rZU/ps/x socb3r2Y7PnijGpx+eKF2q9ADg6b2lx68zfh0fPu/jXwObbO7++8kT/rw/z67j7n xvexZf09ZzANqP2X75tVkni4Wv40+fyzjmxPePW3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUThHRorAbtwYF9f4y8yupAeedKaswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ4YmMwMmUxLTRkMmItNDg1NC05MTU1LWQyMThlMmZlMGUyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4nzANBgkqhkiG9w0BAQsFAAOCAQEAXOCuPmsiRMCarJD6i2pZggLIISeY BHb/+CyiHzS7XYSRB9djDaY+A+zok9vgn49c8wVcXpHdkzK38vBi32NW6oagKNHx KGdhjUj5RsDrO0wbPfwGiE4/xz62NO2oyvMgHtYk3yGGkQxL33b6J7crLoqHLqBF zdiu2Yd0ARzVILbXwhiaoKtQoU3qbdwTZtiqlRDpUrxrTmWhYdAh1hDyR+5LEhmH G0hes9IOhf0JLKitnPIc5TSuss9wLODrYUHzLA++x+B6iQwHM56JsZYiwwCF1VfH kWaoqvDOeJQ+vzGobYCPkjJ6tj5EDy1L4Nmrt25ZYxxjRgxXIQ4xZ69B1g== -----END CERTIFICATE-----Generated at Sat Jun 13 07:04:07 2026 by rpki-client