$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f089e6-6ff8-4535-9bb3-006927a5216c.roa File: b1f089e6-6ff8-4535-9bb3-006927a5216c.roa (raw, json) Hash identifier: 49WxLxQW67rTNmOEc5IBVdf+VN3VgzywAbWk+yXX/6Q= Subject key identifier: 0A:75:D3:02:9E:FD:3B:5F:A4:A7:68:52:AF:71:0F:60:35:71:15:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46F8F94E7B23C132A360BFB8624BBC0D9A80798F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f089e6-6ff8-4535-9bb3-006927a5216c.roa Signing time: Wed 20 May 2026 00:30:45 +0000 ROA not before: Wed 20 May 2026 00:30:45 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.57.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:f8:f9:4e:7b:23:c1:32:a3:60:bf:b8:62:4b:bc:0d:9a:80:79:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:30:45 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=ab546fce6430d461bb6a8a55930c5e73f5ed5cc1f882d38a04ba9d15d095647b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:5e:f9:c0:6f:78:8e:c8:35:58:3f:19:64:40: c5:31:5f:65:02:ea:f0:9e:a0:b6:b3:17:62:89:e1: da:c0:5a:66:fc:ab:0a:51:eb:66:57:99:b8:ae:56: 11:a9:bb:cb:fa:d8:ef:d8:73:da:7e:4b:a7:4f:e6: df:90:6a:d3:f8:12:a8:e6:b2:4d:02:26:c4:e7:b8: 06:36:c0:b9:34:e4:cf:af:91:2b:75:18:6f:f4:29: 08:1c:43:7c:03:c9:5f:02:7a:b7:c7:42:63:07:69: 72:63:a3:d1:c5:21:50:e2:34:09:33:df:d6:b7:d0: 02:8a:c0:c4:ef:04:ea:2e:14:4c:04:ac:27:ea:20: ac:a5:b5:70:c0:11:c2:7a:1c:10:7b:a0:3b:76:70: 7d:7b:82:cb:5a:c9:7f:f8:e7:33:fe:96:6e:0c:be: 3d:0a:c9:e5:69:35:c9:f5:7c:cc:ac:0e:82:a1:b3: 18:be:c5:08:2a:23:16:89:99:45:ef:e5:6b:66:f9: 6c:39:b9:3b:53:12:c3:91:e3:73:66:6c:50:8c:b2: cd:91:4e:b8:7d:f4:3f:40:30:59:4e:ab:ff:a1:23: c0:4e:6d:c3:be:7b:de:be:fd:14:6b:98:be:0f:f4: b8:bc:ea:cd:05:2f:ff:64:c1:de:24:79:e6:67:0a: 85:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:75:D3:02:9E:FD:3B:5F:A4:A7:68:52:AF:71:0F:60:35:71:15:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1f089e6-6ff8-4535-9bb3-006927a5216c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.57.0.0/19 Signature Algorithm: sha256WithRSAEncryption a4:99:57:9f:a5:38:3f:16:9a:a6:cf:03:92:c4:14:7b:05:a0: 0d:b4:d2:80:46:1d:0e:76:c5:6c:f5:5c:8e:88:68:16:c4:d0: e7:47:3c:b4:7d:d9:93:10:c1:73:c6:a8:bf:44:de:c9:bd:9a: 40:bb:ec:89:a7:9d:d4:e4:6e:95:d0:a4:b2:47:9d:bd:f7:c2: c5:a5:c6:a5:48:7d:68:81:cd:fa:32:d6:d7:33:59:cc:23:4c: 7a:c3:af:dc:64:fb:fe:8e:fb:d8:c5:0d:55:05:91:33:be:5b: 3b:e4:4f:a9:a2:a0:7b:b3:b0:83:05:1d:ed:8f:00:6d:fb:4e: 0d:49:05:d8:52:90:82:1e:08:6a:8b:16:e9:a4:74:dd:55:1b: 54:2e:5f:1e:2a:49:fa:4f:d7:fb:e0:6b:df:2c:33:1b:e9:04: 30:c6:d8:e2:68:6b:b0:22:4d:40:97:7a:0d:17:3d:d3:2a:a8: 7f:9a:ea:04:56:a9:55:d6:82:2e:65:49:9f:45:13:64:f7:80: 49:7a:b6:f8:dc:cc:5b:7a:19:bc:55:dc:ba:2d:31:0c:c1:f2: c1:ca:ff:fd:35:99:59:3f:a2:87:d1:90:45:f5:85:28:85:c0: 2d:99:78:91:94:f5:5b:b9:b7:90:d5:29:79:ed:c1:c3:a2:ad: 41:a6:e1:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURvj5TnsjwTKjYL+4Yku8DZqAeY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAzMDQ1WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYjU0NmZjZTY0MzBkNDYxYmI2YThhNTU5MzBjNWU3M2Y1 ZWQ1Y2MxZjg4MmQzOGEwNGJhOWQxNWQwOTU2NDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDlXvnAb3iOyDVYPxlkQMUxX2UC6vCeoLazF2KJ4drAWmb8 qwpR62ZXmbiuVhGpu8v62O/Yc9p+S6dP5t+QatP4Eqjmsk0CJsTnuAY2wLk05M+v kSt1GG/0KQgcQ3wDyV8CerfHQmMHaXJjo9HFIVDiNAkz39a30AKKwMTvBOouFEwE rCfqIKyltXDAEcJ6HBB7oDt2cH17gstayX/45zP+lm4Mvj0KyeVpNcn1fMysDoKh sxi+xQgqIxaJmUXv5Wtm+Ww5uTtTEsOR43NmbFCMss2RTrh99D9AMFlOq/+hI8BO bcO+e96+/RRrmL4P9Li86s0FL/9kwd4keeZnCoXHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCnXTAp79O1+kp2hSr3EPYDVxFc0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxZjA4OWU2LTZmZjgtNDUzNS05YmIzLTAwNjkyN2E1MjE2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQOQAwDQYJKoZIhvcNAQELBQADggEBAKSZV5+lOD8WmqbPA5LEFHsFoA20 0oBGHQ52xWz1XI6IaBbE0OdHPLR92ZMQwXPGqL9E3sm9mkC77ImnndTkbpXQpLJH nb33wsWlxqVIfWiBzfoy1tczWcwjTHrDr9xk+/6O+9jFDVUFkTO+WzvkT6mioHuz sIMFHe2PAG37Tg1JBdhSkIIeCGqLFumkdN1VG1QuXx4qSfpP1/vga98sMxvpBDDG 2OJoa7AiTUCXeg0XPdMqqH+a6gRWqVXWgi5lSZ9FE2T3gEl6tvjczFt6GbxV3Lot MQzB8sHK//01mVk/oofRkEX1hSiFwC2ZeJGU9Vu5t5DVKXntwcOirUGm4cI= -----END CERTIFICATE-----Generated at Sat Jun 13 13:06:17 2026 by rpki-client