$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/559c8a4f-64b4-4d37-b318-b50f637199a7.roa File: 559c8a4f-64b4-4d37-b318-b50f637199a7.roa (raw, json) Hash identifier: YUuWWgi0Co3mEdqliq8KH8al+26TcV9AE+p1HiYy304= Subject key identifier: AA:88:04:4C:DA:F4:17:B3:51:08:58:96:8A:C8:E4:EE:F4:7B:12:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 557519E9E4AE7C96823C4F1C2F38FE57299CBF86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/559c8a4f-64b4-4d37-b318-b50f637199a7.roa Signing time: Sat 16 May 2026 01:20:09 +0000 ROA not before: Sat 16 May 2026 01:20:09 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.9.136.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:75:19:e9:e4:ae:7c:96:82:3c:4f:1c:2f:38:fe:57:29:9c:bf:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:20:09 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=44e16353e96cce645cfae63c4d17093d8c72ece1efdaf649c398d002a2ca59b8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:c2:4e:29:fb:57:b6:c5:88:3c:14:78:65:d0: 4c:3f:be:5d:07:3f:4a:41:13:d0:27:de:b6:2b:6b: 0d:ed:dd:4b:37:f0:c6:76:5e:e8:0d:6a:82:8f:46: c5:2a:db:af:9f:05:8f:19:98:86:af:4b:12:b6:89: 70:52:85:89:4e:fa:50:15:2b:4d:48:03:95:13:43: c0:63:9e:3d:59:dd:9a:af:86:35:d6:8d:d7:2b:57: 86:85:a4:ea:7d:b4:21:33:da:de:16:60:a1:2e:b7: 60:97:c7:a9:f1:f0:d1:c3:35:8f:be:66:75:88:f1: 4c:07:e8:bc:36:f5:4e:a4:1d:9e:98:60:b5:44:12: 97:6b:e4:76:e7:b1:f2:a7:3b:0f:b8:ef:a6:bb:e7: 26:b6:5b:84:ca:99:c6:af:69:8d:84:a1:e2:9a:05: 09:f2:ff:97:dc:08:a9:2c:b2:6d:7e:26:36:b9:1f: a7:99:ad:42:71:57:4a:1b:ed:f7:53:b9:41:88:17: 74:a7:51:a5:ab:e2:10:07:fc:32:ff:f1:af:c1:e9: e4:05:b4:1a:c0:86:34:83:97:46:bc:33:71:55:b0: 3b:4c:b6:09:a5:2c:76:17:76:84:63:a2:0d:34:ad: 96:73:ee:e9:12:d2:6a:bc:26:7e:1e:12:c8:cf:48: 0c:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:88:04:4C:DA:F4:17:B3:51:08:58:96:8A:C8:E4:EE:F4:7B:12:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/559c8a4f-64b4-4d37-b318-b50f637199a7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.9.136.0/22 Signature Algorithm: sha256WithRSAEncryption 4b:1c:1b:97:f5:23:c3:53:09:0c:5c:17:1c:ac:51:a9:bd:aa: 06:42:41:76:ee:a5:41:fb:07:88:0a:c7:cd:b6:db:d8:08:6d: 19:f5:fe:15:80:e5:d5:b8:97:5c:ce:d5:93:df:3d:a4:6c:6c: 16:a8:18:53:ca:52:0d:6f:26:8a:ef:8c:40:45:75:11:34:a5: b1:bf:06:5a:5b:73:c6:75:3c:d3:fa:3d:2c:f4:6f:d8:d8:04: f9:ae:f4:10:38:91:5b:1f:e2:64:92:7c:75:80:76:ea:e3:a7: 22:72:16:5e:2f:b8:9a:f1:f6:be:8c:5f:8a:0b:c1:8d:54:05: 3d:8f:bf:cd:3f:33:d2:8b:f6:ce:ab:1a:5a:4e:9c:ca:a4:29: fa:81:37:c0:98:78:1e:56:9b:9f:6a:c3:3f:08:81:26:12:8b: ac:57:00:36:8e:43:dc:ad:1f:be:89:6b:8d:7c:8a:9a:64:73: 7a:7f:f5:0e:1c:b1:70:71:18:4b:65:86:90:da:c7:1b:73:b8: 96:8f:8d:b3:b3:69:a3:af:2f:e3:f7:ab:86:f4:96:07:da:05: 7b:73:27:92:66:12:7d:b3:a3:26:65:74:67:24:2d:8d:40:2a: 1c:4d:f5:b2:24:cb:00:07:fe:a6:24:ac:80:de:08:94:bb:e2: a5:af:63:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVXUZ6eSufJaCPE8cLzj+Vymcv4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMDA5WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGUxNjM1M2U5NmNjZTY0NWNmYWU2M2M0ZDE3MDkzZDhj NzJlY2UxZWZkYWY2NDljMzk4ZDAwMmEyY2E1OWI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOwk4p+1e2xYg8FHhl0Ew/vl0HP0pBE9An3rYraw3t3Us3 8MZ2XugNaoKPRsUq26+fBY8ZmIavSxK2iXBShYlO+lAVK01IA5UTQ8Bjnj1Z3Zqv hjXWjdcrV4aFpOp9tCEz2t4WYKEut2CXx6nx8NHDNY++ZnWI8UwH6Lw29U6kHZ6Y YLVEEpdr5HbnsfKnOw+476a75ya2W4TKmcavaY2EoeKaBQny/5fcCKkssm1+Jja5 H6eZrUJxV0ob7fdTuUGIF3SnUaWr4hAH/DL/8a/B6eQFtBrAhjSDl0a8M3FVsDtM tgmlLHYXdoRjog00rZZz7ukS0mq8Jn4eEsjPSAynAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqogETNr0F7NRCFiWisjk7vR7EigwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1OWM4YTRmLTY0YjQtNGQzNy1iMzE4LWI1MGY2MzcxOTlhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJBCYgwDQYJKoZIhvcNAQELBQADggEBAEscG5f1I8NTCQxcFxysUam9qgZC QXbupUH7B4gKx82229gIbRn1/hWA5dW4l1zO1ZPfPaRsbBaoGFPKUg1vJorvjEBF dRE0pbG/Blpbc8Z1PNP6PSz0b9jYBPmu9BA4kVsf4mSSfHWAdurjpyJyFl4vuJrx 9r6MX4oLwY1UBT2Pv80/M9KL9s6rGlpOnMqkKfqBN8CYeB5Wm59qwz8IgSYSi6xX ADaOQ9ytH76Ja418ippkc3p/9Q4csXBxGEtlhpDaxxtzuJaPjbOzaaOvL+P3q4b0 lgfaBXtzJ5JmEn2zoyZldGckLY1AKhxN9bIkywAH/qYkrIDeCJS74qWvY8A= -----END CERTIFICATE-----Generated at Sat Jun 13 07:08:17 2026 by rpki-client