$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497f0d59-c7e7-4604-a259-3494824b7cae.roa File: 497f0d59-c7e7-4604-a259-3494824b7cae.roa (raw, json) Hash identifier: Lnz4XwRNhJDWNlK8N7aa87AL+srcoKKIM/5Iry7cWKY= Subject key identifier: 6A:69:01:1E:75:C5:92:C5:E5:40:33:E8:6F:1B:38:5B:0D:A3:86:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 719BF5E3E02F914BBE77DE5DD1B444B410238B2E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497f0d59-c7e7-4604-a259-3494824b7cae.roa Signing time: Fri 15 May 2026 01:21:45 +0000 ROA not before: Fri 15 May 2026 01:21:45 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 161.193.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71:9b:f5:e3:e0:2f:91:4b:be:77:de:5d:d1:b4:44:b4:10:23:8b:2e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:21:45 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=807af37b9488a928b2cc8cb13a5685a31e866b2ea1296dd025680943875a54c7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:10:cc:76:80:5a:32:7a:82:e6:ab:ed:5f:5b: a1:7b:d6:5e:c0:10:96:02:a1:4c:34:37:bb:37:ed: 46:0c:30:e9:01:5b:9b:07:b4:0b:ca:b6:93:20:4c: 25:39:2a:52:8f:67:2f:c6:81:4a:b0:88:2a:05:5f: 01:be:1b:6c:c3:42:cd:d0:49:aa:f4:aa:26:6f:e3: 82:d6:6c:c2:7e:34:86:8b:06:e5:42:10:34:97:98: 02:92:02:fc:71:c9:5f:16:82:8f:da:66:a1:bc:18: b6:67:dc:b6:da:8d:0b:bd:a6:48:df:93:1a:75:f8: b6:a4:20:eb:31:18:60:21:6e:ee:80:3a:e5:9f:b5: 2e:46:25:15:0e:ec:67:bd:c0:6d:76:fa:77:ef:db: 46:eb:56:b5:79:74:49:b1:31:cc:3e:97:31:19:57: 82:18:87:1d:e6:85:8c:d5:7d:67:ee:5e:55:cc:0d: f3:6f:a4:15:94:7b:c4:b6:0a:1f:67:04:00:78:31: ea:e5:19:f8:ef:21:80:70:90:9f:c5:69:ef:8e:7d: 62:70:f7:e5:98:5f:3d:9a:4d:c0:d1:2b:28:00:f4: 8c:b2:a7:e3:af:53:81:0c:40:e6:b8:74:34:18:5e: 93:3c:cc:f7:15:08:f6:17:5c:a0:36:d4:d8:0b:fc: a8:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:69:01:1E:75:C5:92:C5:E5:40:33:E8:6F:1B:38:5B:0D:A3:86:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/497f0d59-c7e7-4604-a259-3494824b7cae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.193.0.0/16 Signature Algorithm: sha256WithRSAEncryption bc:4b:43:11:31:80:f0:a1:af:81:a4:ec:c2:38:69:66:ef:54: aa:00:2e:a5:47:5b:b9:30:2f:1e:07:e2:58:a8:1f:83:2f:ea: ad:65:72:d2:1c:c3:76:c2:f2:08:44:29:4c:26:11:66:10:dc: b4:4c:d9:ce:3e:5b:88:17:81:08:59:bd:92:c1:b4:99:b7:b4: 11:7d:49:ae:8a:0c:c4:14:46:03:26:f5:cf:82:6f:4c:bf:15: 87:24:89:e4:f9:6c:f5:42:dc:8a:72:12:81:dd:af:86:c4:8b: c2:f3:f6:ef:19:6b:2b:e9:0a:9a:43:95:46:0a:45:b6:7d:4c: e1:e6:04:4e:db:4f:94:ed:c0:75:40:b7:5f:d0:8f:a1:a1:d4: 79:83:2a:dc:3c:c3:07:86:4f:18:0a:16:8b:3d:a0:b1:47:5b: f1:52:9a:e0:dc:5e:b9:1d:bf:74:ac:f6:8b:c0:c0:bb:52:d7: 14:ee:aa:ae:95:08:a3:ae:a2:4d:26:c7:1a:73:d8:8a:fa:c1: cf:a8:f1:ef:25:54:61:b9:61:2c:8d:6e:23:14:59:82:4d:35: e4:40:90:07:3e:28:2a:bc:e3:27:23:a3:4f:96:e7:91:c5:04: af:53:cf:1b:cf:32:ab:1f:02:9d:b8:84:90:8d:b0:b0:40:ea: 8d:a8:40:da -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcZv14+AvkUu+d95d0bREtBAjiy4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDEyMTQ1WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MDdhZjM3Yjk0ODhhOTI4YjJjYzhjYjEzYTU2ODVhMzFl ODY2YjJlYTEyOTZkZDAyNTY4MDk0Mzg3NWE1NGM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvEMx2gFoyeoLmq+1fW6F71l7AEJYCoUw0N7s37UYMMOkB W5sHtAvKtpMgTCU5KlKPZy/GgUqwiCoFXwG+G2zDQs3QSar0qiZv44LWbMJ+NIaL BuVCEDSXmAKSAvxxyV8Wgo/aZqG8GLZn3LbajQu9pkjfkxp1+LakIOsxGGAhbu6A OuWftS5GJRUO7Ge9wG12+nfv20brVrV5dEmxMcw+lzEZV4IYhx3mhYzVfWfuXlXM DfNvpBWUe8S2Ch9nBAB4MerlGfjvIYBwkJ/Fae+OfWJw9+WYXz2aTcDRKygA9Iyy p+OvU4EMQOa4dDQYXpM8zPcVCPYXXKA21NgL/Kj9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUamkBHnXFksXlQDPobxs4Ww2jhl8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5N2YwZDU5LWM3ZTctNDYwNC1hMjU5LTM0OTQ4MjRiN2NhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwChwTANBgkqhkiG9w0BAQsFAAOCAQEAvEtDETGA8KGvgaTswjhpZu9UqgAu pUdbuTAvHgfiWKgfgy/qrWVy0hzDdsLyCEQpTCYRZhDctEzZzj5biBeBCFm9ksG0 mbe0EX1JrooMxBRGAyb1z4JvTL8VhySJ5Pls9ULcinISgd2vhsSLwvP27xlrK+kK mkOVRgpFtn1M4eYETttPlO3AdUC3X9CPoaHUeYMq3DzDB4ZPGAoWiz2gsUdb8VKa 4NxeuR2/dKz2i8DAu1LXFO6qrpUIo66iTSbHGnPYivrBz6jx7yVUYblhLI1uIxRZ gk015ECQBz4oKrzjJyOjT5bnkcUEr1PPG88yqx8CnbiEkI2wsEDqjahA2g== -----END CERTIFICATE-----Generated at Sat Jun 13 05:52:06 2026 by rpki-client