$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d190c3e-4718-48cc-9771-8f4da3fea829.roa File: 4d190c3e-4718-48cc-9771-8f4da3fea829.roa (raw, json) Hash identifier: hNyv0VCxOCsKO2DVb0CA2vW3KU7bKhkXv2C/eC6oN64= Subject key identifier: FC:BE:CB:01:B3:D0:E6:FA:BE:A8:99:BA:BF:10:D5:5E:68:B5:A0:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77E3AF05D15E1329B3FBFD76AF646FA44E4D535C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d190c3e-4718-48cc-9771-8f4da3fea829.roa Signing time: Wed 20 May 2026 00:01:19 +0000 ROA not before: Wed 20 May 2026 00:01:19 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 56.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e3:af:05:d1:5e:13:29:b3:fb:fd:76:af:64:6f:a4:4e:4d:53:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:01:19 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=e0981a0f17bf9067664d6b5517e66f69c7437d87e9832eb5348c40daa5a190c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:0b:d3:e5:d2:c0:4d:c4:57:ad:56:a3:a9:92: 12:d9:fe:13:95:e1:be:93:ff:58:7c:9e:57:60:c1: 09:a2:dc:01:62:d0:16:91:be:d6:dc:c2:a7:7d:6b: 97:ae:9f:9e:15:8c:a4:f5:82:6a:71:2f:84:84:43: 23:01:8a:02:6c:86:5f:65:7e:8c:d2:a1:f1:6e:be: e5:cb:e9:bc:23:7a:5d:50:8e:b4:ea:76:b4:e5:05: ee:7b:82:3f:aa:f4:c1:cc:0f:b8:75:d2:46:44:f8: 72:62:66:21:99:cc:96:d4:f0:8a:44:38:15:ae:f0: 38:79:6c:ab:46:55:e8:4e:6b:0d:08:d1:6a:e0:85: 0d:38:5f:39:51:f0:61:20:74:8f:24:42:36:66:57: db:c2:ba:79:7e:fc:57:c4:ea:fe:c8:5d:b4:87:75: a3:89:3c:e4:ad:b6:b0:3a:2a:9b:a8:0a:aa:7a:3d: 9d:ab:67:52:7b:dd:17:99:29:21:b3:86:13:7b:04: bc:29:af:21:fe:e9:86:f4:21:00:3e:de:2a:4f:7a: 1e:e1:a8:3a:d2:f0:f4:ad:44:39:30:81:95:51:f9: 6f:cb:d2:5e:35:e0:f5:fe:b5:90:d9:c6:76:bb:70: bf:00:c9:cb:f1:dd:cb:58:a1:14:ed:fe:84:7e:79: 57:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:BE:CB:01:B3:D0:E6:FA:BE:A8:99:BA:BF:10:D5:5E:68:B5:A0:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d190c3e-4718-48cc-9771-8f4da3fea829.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 37:fc:b3:ce:b1:7f:3b:b2:74:71:8e:0b:f4:dd:3f:b9:de:91: 52:54:3f:b6:1d:39:6d:4b:05:d1:3f:ce:91:be:48:b8:19:f3: 2d:32:a3:60:21:77:d9:bb:fb:3f:13:ed:f1:30:00:e8:1f:04: 0e:cd:7a:51:d2:8c:d3:ee:f0:96:40:e0:ca:11:9a:ce:27:c5: 87:d5:a2:ed:c7:ab:7c:91:6d:7d:79:79:48:20:28:ce:24:3e: fa:66:05:77:71:7f:dd:db:3c:09:59:76:a3:c6:44:ea:42:06: e7:b4:09:c2:3d:ec:88:20:ef:7c:ba:bf:6e:d8:b6:41:09:aa: ab:5a:34:3a:f5:56:9d:27:b1:18:80:5f:12:d1:cf:c2:f9:b9: 55:69:ea:27:cd:0c:81:cb:22:ec:2e:da:0d:0a:4d:60:88:3f: 3d:ce:7c:6f:c8:24:2d:b7:50:e4:58:4e:11:c9:c8:d7:2c:ac: ef:8d:b3:ca:cc:28:db:c0:a3:56:90:ba:07:15:cc:25:ff:15: b6:86:54:fa:42:a2:e4:01:e1:5c:9a:d9:6a:83:fe:5a:7c:7a: be:1a:ea:84:90:97:80:8d:d7:8d:06:82:01:9a:46:a2:74:b4: 12:f9:ba:95:b1:8e:99:de:43:a1:27:2e:cf:e3:77:92:32:43: e0:85:a7:c1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUd+OvBdFeEymz+/12r2RvpE5NU1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAwMTE5WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDk4MWEwZjE3YmY5MDY3NjY0ZDZiNTUxN2U2NmY2OWM3 NDM3ZDg3ZTk4MzJlYjUzNDhjNDBkYWE1YTE5MGM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIC9Pl0sBNxFetVqOpkhLZ/hOV4b6T/1h8nldgwQmi3AFi 0BaRvtbcwqd9a5eun54VjKT1gmpxL4SEQyMBigJshl9lfozSofFuvuXL6bwjel1Q jrTqdrTlBe57gj+q9MHMD7h10kZE+HJiZiGZzJbU8IpEOBWu8Dh5bKtGVehOaw0I 0WrghQ04XzlR8GEgdI8kQjZmV9vCunl+/FfE6v7IXbSHdaOJPOSttrA6KpuoCqp6 PZ2rZ1J73ReZKSGzhhN7BLwpryH+6Yb0IQA+3ipPeh7hqDrS8PStRDkwgZVR+W/L 0l414PX+tZDZxna7cL8Aycvx3ctYoRTt/oR+eVcnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/L7LAbPQ5vq+qJm6vxDVXmi1oBowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkMTkwYzNlLTQ3MTgtNDhjYy05NzcxLThmNGRhM2ZlYTgyOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4pDANBgkqhkiG9w0BAQsFAAOCAQEAN/yzzrF/O7J0cY4L9N0/ud6RUlQ/ th05bUsF0T/Okb5IuBnzLTKjYCF32bv7PxPt8TAA6B8EDs16UdKM0+7wlkDgyhGa zifFh9Wi7cerfJFtfXl5SCAoziQ++mYFd3F/3ds8CVl2o8ZE6kIG57QJwj3siCDv fLq/bti2QQmqq1o0OvVWnSexGIBfEtHPwvm5VWnqJ80Mgcsi7C7aDQpNYIg/Pc58 b8gkLbdQ5FhOEcnI1yys742zyswo28CjVpC6BxXMJf8VtoZU+kKi5AHhXJrZaoP+ Wnx6vhrqhJCXgI3XjQaCAZpGonS0Evm6lbGOmd5DoScuz+N3kjJD4IWnwQ== -----END CERTIFICATE-----Generated at Sat Jun 13 08:18:00 2026 by rpki-client