$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa File: a5a28861-ee8e-44d9-b363-30a1f04e1125.roa (raw, json) Hash identifier: CdGBF+lxOSw660KJ3TyexliHGRodrbv9u5b49NihRY0= Subject key identifier: 1F:F0:66:EF:07:04:FC:90:8F:6E:06:D6:20:60:D9:6D:37:EE:A8:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49B1B46FF161FC85140C4D79F950CDF15CDEB974 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa Signing time: Sun 17 May 2026 00:50:42 +0000 ROA not before: Sun 17 May 2026 00:50:42 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.163.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:b1:b4:6f:f1:61:fc:85:14:0c:4d:79:f9:50:cd:f1:5c:de:b9:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:50:42 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=f228435c0e147602545212fb136a6055503ef038a3411797c1a51001cd039178, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:5c:0b:25:ae:50:63:8d:8b:81:bc:23:9d:c4: 56:e7:3a:04:14:d8:7d:f3:69:27:8a:97:a9:02:b0: 07:1f:03:5f:0e:4c:95:6b:25:32:cf:d5:de:44:91: 05:86:0f:98:4b:88:4c:d7:35:45:34:6e:3a:f0:4d: 81:a0:c7:6e:d4:14:f3:d2:38:26:4f:c7:12:78:83: 12:c1:bd:6b:96:16:c6:5a:31:93:05:3e:f4:d5:ca: 5a:70:f4:4e:9e:a0:59:08:81:5a:d9:6a:c3:01:03: 23:05:07:9c:8f:1e:e3:0d:6a:79:6d:67:24:de:0f: a8:51:53:2e:7d:e0:96:b1:19:30:14:bf:d3:21:d1: 96:f5:68:db:49:1c:24:e2:7d:9f:52:11:39:f4:08: b1:a9:35:25:a2:79:9b:50:03:55:7f:b6:35:03:15: 49:5f:0c:9b:82:8b:1d:04:05:3f:b6:9f:2f:a8:96: bc:e0:8e:24:88:ef:2b:44:cb:f6:04:bc:50:0b:43: fa:5c:52:13:a4:46:d7:c5:83:dc:73:14:5b:78:00: 75:b7:6c:55:86:dc:79:39:ea:b7:46:f6:6c:88:4b: 3b:23:ab:61:e0:28:1d:b5:5b:df:8d:24:55:f3:56: 35:f6:a4:2c:74:8a:2e:49:1b:d3:3f:ae:ab:fd:56: 22:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1F:F0:66:EF:07:04:FC:90:8F:6E:06:D6:20:60:D9:6D:37:EE:A8:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a28861-ee8e-44d9-b363-30a1f04e1125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.163.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:02:09:a0:20:dd:0e:b0:34:d0:1a:6a:f2:3d:47:77:5f:f6: e4:5e:9f:b5:a0:fc:52:07:ca:17:43:bf:ae:96:97:be:fa:3a: f1:69:02:18:a7:00:1b:d0:f6:b5:b7:18:ee:bf:27:ce:e3:3a: c0:61:0f:02:85:b9:f9:87:52:4c:a2:1d:fd:f5:3e:ed:80:27: d2:83:d8:2f:df:10:09:fd:2f:7e:e9:05:95:36:48:72:c9:20: bd:af:5f:5a:8a:22:ff:f0:b4:04:f8:df:69:52:4e:5c:8c:4a: 73:98:83:8a:ff:6a:d4:f3:7b:4a:da:71:a5:81:d0:27:0c:ce: ab:7a:62:c2:fe:3d:96:cc:36:b1:65:b3:b6:da:68:34:e2:f6: 7f:80:bc:c6:29:7d:a4:2f:7b:c2:28:06:87:9b:8f:15:7a:1b: 14:3e:3c:ba:9a:da:69:4f:15:55:a1:fc:08:cc:18:ee:f8:e3: 0b:41:ba:3b:7e:6e:d9:03:30:e5:d9:01:36:21:ac:48:1d:d5: 3e:17:da:09:86:1b:8d:3e:97:79:fd:f2:f8:cf:c5:30:f4:70: 96:e5:30:2a:50:a8:ba:f0:4c:e1:fa:cf:31:7c:5c:15:7a:64: 3e:19:09:89:59:28:49:68:1b:b8:7f:7e:af:62:c8:70:12:d8: ed:7a:4d:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSbG0b/Fh/IUUDE15+VDN8VzeuXQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA1MDQyWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjI4NDM1YzBlMTQ3NjAyNTQ1MjEyZmIxMzZhNjA1NTUw M2VmMDM4YTM0MTE3OTdjMWE1MTAwMWNkMDM5MTc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCXAslrlBjjYuBvCOdxFbnOgQU2H3zaSeKl6kCsAcfA18O TJVrJTLP1d5EkQWGD5hLiEzXNUU0bjrwTYGgx27UFPPSOCZPxxJ4gxLBvWuWFsZa MZMFPvTVylpw9E6eoFkIgVrZasMBAyMFB5yPHuMNanltZyTeD6hRUy594JaxGTAU v9Mh0Zb1aNtJHCTifZ9SETn0CLGpNSWieZtQA1V/tjUDFUlfDJuCix0EBT+2ny+o lrzgjiSI7ytEy/YEvFALQ/pcUhOkRtfFg9xzFFt4AHW3bFWG3Hk56rdG9myISzsj q2HgKB21W9+NJFXzVjX2pCx0ii5JG9M/rqv9ViItAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUH/Bm7wcE/JCPbgbWIGDZbTfuqLcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1YTI4ODYxLWVlOGUtNDRkOS1iMzYzLTMwYTFmMDRlMTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ozANBgkqhkiG9w0BAQsFAAOCAQEAMwIJoCDdDrA00Bpq8j1Hd1/25F6f taD8UgfKF0O/rpaXvvo68WkCGKcAG9D2tbcY7r8nzuM6wGEPAoW5+YdSTKId/fU+ 7YAn0oPYL98QCf0vfukFlTZIcskgva9fWooi//C0BPjfaVJOXIxKc5iDiv9q1PN7 StpxpYHQJwzOq3piwv49lsw2sWWzttpoNOL2f4C8xil9pC97wigGh5uPFXobFD48 upraaU8VVaH8CMwY7vjjC0G6O35u2QMw5dkBNiGsSB3VPhfaCYYbjT6Xef3y+M/F MPRwluUwKlCouvBM4frPMXxcFXpkPhkJiVkoSWgbuH9+r2LIcBLY7XpN2A== -----END CERTIFICATE-----Generated at Sat Jun 13 12:57:38 2026 by rpki-client