$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/944259e1-46ec-4cd6-a18d-22caadd7e03a.roa File: 944259e1-46ec-4cd6-a18d-22caadd7e03a.roa (raw, json) Hash identifier: y9+iN/V1XTIab+9S3vK4gzscZ0d3bs05y8GU1ixN8tw= Subject key identifier: D7:4B:E1:17:0A:67:4F:55:42:BB:1E:5F:BB:EF:CD:DC:EB:A0:8B:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1480DD9B0EE476C725AA2A5786E522FAB48536AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/944259e1-46ec-4cd6-a18d-22caadd7e03a.roa Signing time: Sun 17 May 2026 00:20:10 +0000 ROA not before: Sun 17 May 2026 00:20:10 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.180.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:80:dd:9b:0e:e4:76:c7:25:aa:2a:57:86:e5:22:fa:b4:85:36:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:20:10 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=2b83c43eaa259633a2cebf5b61cf44ebc13988230ed6895fc6c307977bba3eb3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fa:17:73:84:fa:c3:29:4e:fd:ce:26:d0:13: a1:f6:0a:ab:40:61:1c:a3:a4:11:c8:df:7e:0a:c1: 83:65:5d:24:b2:64:df:4b:b0:37:83:b7:f8:c1:2a: e2:02:d8:31:e4:6f:0e:91:2b:b2:76:01:8a:d8:bb: 8d:78:94:33:d4:4c:bf:ce:2f:32:54:26:31:be:6a: 93:43:da:41:44:b7:23:81:a8:b0:ee:1f:58:bc:52: 0c:c2:f4:c5:a7:80:57:7a:2d:dc:8d:d1:40:2d:bd: 73:38:4f:72:ba:a9:a5:48:67:ec:3b:e1:fe:2e:ad: 41:2e:9c:be:bd:94:af:15:84:43:c2:a2:52:2d:18: 99:fb:d8:cc:06:61:88:77:2a:2c:1b:52:77:d7:06: d2:8b:24:e9:53:48:e3:4d:c5:00:06:33:87:69:33: 26:15:23:77:e5:d7:6c:8a:51:87:b2:6b:c4:e0:6b: b7:60:d5:04:8a:13:cd:95:9d:79:95:fc:f4:dc:09: 32:63:0c:f5:94:1f:2e:10:f6:32:1b:2c:cc:9f:13: 2e:3e:38:1d:2d:49:48:16:35:a9:8e:c0:a3:44:4c: 76:ac:59:cf:21:2b:06:7c:e7:a2:41:47:00:ae:bc: 49:aa:65:c7:bc:da:02:7f:7e:c4:f3:78:aa:bc:a0: 4a:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:4B:E1:17:0A:67:4F:55:42:BB:1E:5F:BB:EF:CD:DC:EB:A0:8B:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/944259e1-46ec-4cd6-a18d-22caadd7e03a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.180.0.0/16 Signature Algorithm: sha256WithRSAEncryption d4:d2:42:8c:bc:f5:0b:e4:24:68:f9:24:86:54:73:9f:8d:14: 0d:d1:70:f6:28:63:3a:17:70:48:c4:c1:31:74:ca:98:a1:a7: 95:00:e4:68:cf:7f:2a:f0:5a:3f:23:84:36:75:c8:f8:54:0d: 4d:1d:c1:26:0b:e7:2f:a6:eb:5e:70:42:88:fc:9c:dd:b3:6a: 1a:8f:c8:6a:5b:e6:66:39:41:01:11:11:b0:11:a9:c9:40:1f: 7d:c2:ed:31:7a:7b:17:77:f3:47:8f:5f:c1:0a:9d:9d:d0:45: 36:f1:c3:cf:23:83:34:43:37:af:d9:ab:71:61:aa:3b:eb:4d: 3f:e1:2a:53:1f:a6:21:46:d0:57:5c:62:73:5f:56:e7:01:de: 8b:28:dc:29:f8:58:bd:26:31:fa:4c:e9:98:2b:b1:31:7a:8e: 13:69:41:50:23:f9:54:9a:b8:4f:3c:f4:e8:3a:0d:28:d3:f2: f6:4f:5f:e2:12:ab:9c:7e:bd:47:fa:e4:a3:9d:e8:1c:96:8a: 29:ec:0b:d8:26:bd:3f:5c:cc:34:8f:85:61:f6:bd:37:a8:33: fe:74:00:9f:fb:f1:7c:d1:dd:ab:39:56:64:94:04:c6:9a:04: ef:b7:2a:b5:e9:c1:3f:07:78:0f:e1:18:94:8e:14:f6:80:36: 32:25:b0:a5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFIDdmw7kdsclqipXhuUi+rSFNq4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAyMDEwWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjgzYzQzZWFhMjU5NjMzYTJjZWJmNWI2MWNmNDRlYmMx Mzk4ODIzMGVkNjg5NWZjNmMzMDc5NzdiYmEzZWIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu+hdzhPrDKU79zibQE6H2CqtAYRyjpBHI334KwYNlXSSy ZN9LsDeDt/jBKuIC2DHkbw6RK7J2AYrYu414lDPUTL/OLzJUJjG+apND2kFEtyOB qLDuH1i8UgzC9MWngFd6LdyN0UAtvXM4T3K6qaVIZ+w74f4urUEunL69lK8VhEPC olItGJn72MwGYYh3KiwbUnfXBtKLJOlTSONNxQAGM4dpMyYVI3fl12yKUYeya8Tg a7dg1QSKE82VnXmV/PTcCTJjDPWUHy4Q9jIbLMyfEy4+OB0tSUgWNamOwKNETHas Wc8hKwZ856JBRwCuvEmqZce82gJ/fsTzeKq8oErZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU10vhFwpnT1VCux5fu+/N3OugiyUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0NDI1OWUxLTQ2ZWMtNGNkNi1hMThkLTIyY2FhZGQ3ZTAzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4tDANBgkqhkiG9w0BAQsFAAOCAQEA1NJCjLz1C+QkaPkkhlRzn40UDdFw 9ihjOhdwSMTBMXTKmKGnlQDkaM9/KvBaPyOENnXI+FQNTR3BJgvnL6brXnBCiPyc 3bNqGo/IalvmZjlBARERsBGpyUAffcLtMXp7F3fzR49fwQqdndBFNvHDzyODNEM3 r9mrcWGqO+tNP+EqUx+mIUbQV1xic19W5wHeiyjcKfhYvSYx+kzpmCuxMXqOE2lB UCP5VJq4Tzz06DoNKNPy9k9f4hKrnH69R/rko53oHJaKKewL2Ca9P1zMNI+FYfa9 N6gz/nQAn/vxfNHdqzlWZJQExpoE77cqtenBPwd4D+EYlI4U9oA2MiWwpQ== -----END CERTIFICATE-----Generated at Sat Jun 13 12:54:30 2026 by rpki-client