$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/845ded7d-c662-40e3-8568-64e43ad8874b.roa File: 845ded7d-c662-40e3-8568-64e43ad8874b.roa (raw, json) Hash identifier: XtVPf4eb8Cc/yJmj7GkdgHkDWX3JRztBXS+R6nX/O4c= Subject key identifier: 48:7C:CC:9C:6E:2F:83:96:38:6A:65:F6:E1:2F:C5:C9:11:D9:ED:07 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 290B4FBEF5EFE106BB5C3ABD0B1C0DEC4637BB23 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/845ded7d-c662-40e3-8568-64e43ad8874b.roa Signing time: Sat 16 May 2026 01:00:11 +0000 ROA not before: Sat 16 May 2026 01:00:11 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.198.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:0b:4f:be:f5:ef:e1:06:bb:5c:3a:bd:0b:1c:0d:ec:46:37:bb:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:00:11 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=1a491549838cab43b1a77ba005892318153a1646a49e3648f28e849eb0f43bf7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:b0:87:f9:ba:9f:7c:06:35:e1:51:da:90:c9: 09:11:fb:90:13:14:7a:56:ea:19:02:84:0b:81:af: 41:4c:e6:a4:3c:74:60:b3:1b:42:9a:48:91:bf:8c: 0b:20:6c:69:a1:07:cd:b5:fa:45:48:1c:fc:e6:2b: 4e:cb:e6:2a:b3:c2:84:a7:ed:56:ba:bc:37:51:e3: 08:95:88:21:1f:79:9d:ac:ce:9c:95:a2:53:3f:49: d4:fb:47:00:09:da:8f:dc:00:c2:2b:a7:db:15:0e: 5f:dd:e3:e2:7a:fe:1c:f0:69:17:fa:e7:53:5d:35: 37:11:7b:74:b0:55:f7:c8:c1:fd:7e:28:1e:96:60: da:e9:d5:f8:83:1d:90:aa:88:77:16:65:ca:44:05: fb:1c:3b:ba:6f:c4:b0:f0:c9:09:7d:8c:90:ba:db: 46:15:7e:a3:e3:93:b2:e8:95:41:30:bb:6d:e2:fb: fe:76:2d:71:86:07:49:6c:15:ae:58:29:4a:79:04: b6:f5:5b:09:ef:da:78:d7:a7:20:6b:77:e6:98:eb: 21:3f:5b:34:42:a4:78:d1:c7:ec:11:b8:83:f0:e1: be:fb:b8:c1:2c:fe:b2:2b:f0:50:32:e4:a2:fc:75: 7f:a1:ce:28:86:c7:cc:9d:ae:f1:1b:05:52:df:9d: bc:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:7C:CC:9C:6E:2F:83:96:38:6A:65:F6:E1:2F:C5:C9:11:D9:ED:07 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/845ded7d-c662-40e3-8568-64e43ad8874b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.198.0.0/16 Signature Algorithm: sha256WithRSAEncryption c6:21:b7:eb:22:ab:e7:ef:0f:53:9a:c8:2f:a0:8e:da:64:3c: 86:cc:3c:a6:80:71:93:51:a7:28:a4:af:3d:d6:8c:33:ec:0a: b6:39:7e:33:24:e5:96:14:02:e2:84:6a:62:a0:21:12:a8:76: e4:38:55:83:fe:27:dc:a3:37:85:d2:9a:6a:3d:fa:c7:1f:3e: 45:fb:1f:34:20:05:13:ba:2b:c7:4a:58:0f:64:41:e6:1d:2d: 3c:fd:f5:f9:3c:f1:01:4c:c4:be:4a:a9:b6:4d:d8:c9:86:01: f6:70:1f:78:fe:c6:26:3e:9d:fd:e6:d4:84:7c:af:bb:2b:bd: 3f:44:d1:9f:bf:68:5a:60:e3:ee:1c:ef:9e:f6:b3:92:dd:00: ad:93:aa:c9:51:42:93:16:04:52:ee:56:b7:7d:0f:f2:b9:c6: eb:90:70:cf:cc:da:72:0c:5d:c6:3d:48:5d:70:86:0d:cc:aa: e7:08:25:71:53:f0:c1:d0:af:7a:93:00:6a:15:79:0f:80:0c: eb:50:1c:a9:d4:88:de:a3:12:43:d4:67:e7:6c:2e:2a:fc:e8: b8:ad:3e:3d:68:14:58:74:f9:b1:86:bf:6c:9f:41:52:5d:fd: 54:58:cd:b4:34:09:6b:6b:4e:5d:b3:f2:d0:27:22:ac:5d:38: af:a7:1e:b6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKQtPvvXv4Qa7XDq9CxwN7EY3uyMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEwMDExWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTQ5MTU0OTgzOGNhYjQzYjFhNzdiYTAwNTg5MjMxODE1 M2ExNjQ2YTQ5ZTM2NDhmMjhlODQ5ZWIwZjQzYmY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3sIf5up98BjXhUdqQyQkR+5ATFHpW6hkChAuBr0FM5qQ8 dGCzG0KaSJG/jAsgbGmhB821+kVIHPzmK07L5iqzwoSn7Va6vDdR4wiViCEfeZ2s zpyVolM/SdT7RwAJ2o/cAMIrp9sVDl/d4+J6/hzwaRf651NdNTcRe3SwVffIwf1+ KB6WYNrp1fiDHZCqiHcWZcpEBfscO7pvxLDwyQl9jJC620YVfqPjk7LolUEwu23i +/52LXGGB0lsFa5YKUp5BLb1Wwnv2njXpyBrd+aY6yE/WzRCpHjRx+wRuIPw4b77 uMEs/rIr8FAy5KL8dX+hziiGx8ydrvEbBVLfnbzBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUSHzMnG4vg5Y4amX24S/FyRHZ7QcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0NWRlZDdkLWM2NjItNDBlMy04NTY4LTY0ZTQzYWQ4ODc0Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQxjANBgkqhkiG9w0BAQsFAAOCAQEAxiG36yKr5+8PU5rIL6CO2mQ8hsw8 poBxk1GnKKSvPdaMM+wKtjl+MyTllhQC4oRqYqAhEqh25DhVg/4n3KM3hdKaaj36 xx8+RfsfNCAFE7orx0pYD2RB5h0tPP31+TzxAUzEvkqptk3YyYYB9nAfeP7GJj6d /ebUhHyvuyu9P0TRn79oWmDj7hzvnvazkt0ArZOqyVFCkxYEUu5Wt30P8rnG65Bw z8zacgxdxj1IXXCGDcyq5wglcVPwwdCvepMAahV5D4AM61AcqdSI3qMSQ9Rn52wu KvzouK0+PWgUWHT5sYa/bJ9BUl39VFjNtDQJa2tOXbPy0CcirF04r6cetg== -----END CERTIFICATE-----Generated at Sat Jun 13 05:52:07 2026 by rpki-client