$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba92cb6e-5781-42c7-a19e-845733c47085.roa File: ba92cb6e-5781-42c7-a19e-845733c47085.roa (raw, json) Hash identifier: 3xQnxRVYqdNWE8U/d5is00A1i0ZBP0UtzjYbP0idEb8= Subject key identifier: BB:A9:C0:25:3B:EE:38:41:76:75:1C:EB:CE:60:75:BD:95:9E:F1:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 201E84372BCCCDC87D227C41A9D8ED457B2E2994 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba92cb6e-5781-42c7-a19e-845733c47085.roa Signing time: Sun 17 May 2026 00:20:54 +0000 ROA not before: Sun 17 May 2026 00:20:54 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.152.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:1e:84:37:2b:cc:cd:c8:7d:22:7c:41:a9:d8:ed:45:7b:2e:29:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:20:54 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=7e53228ea3d835b28a6bdedc7d0692b9ca416839bf069dd9a773fa241b9f1a11, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:af:dc:53:2d:59:a4:1f:2a:68:ab:8a:a4:60: de:c0:8a:8b:c2:1b:a9:6b:45:5d:71:49:71:b5:1e: ed:66:96:f3:71:c0:cb:cd:a4:29:52:a9:fd:06:7a: 56:41:6e:27:f1:39:7b:9c:59:34:b0:d8:ff:f0:89: 4f:e3:0d:4d:1e:3a:f8:3d:84:a1:78:d5:81:76:a1: 3c:31:01:45:6c:f1:b1:e4:b8:5b:e5:02:6f:af:be: 84:e8:39:0b:4e:70:18:5d:4c:e2:a1:e8:64:56:31: cb:01:06:47:22:c1:28:34:ae:7c:22:3d:8d:4b:68: 4c:05:fc:f1:2f:52:42:7b:fb:e3:e9:b6:69:39:1d: c8:0f:a9:f1:de:bb:8d:c4:bb:e0:7f:d3:24:3a:aa: f2:6c:59:b5:8d:95:e6:e9:21:55:c0:8a:17:b7:bd: 99:45:1f:b4:a5:39:ce:32:57:55:a7:5e:b9:16:14: ce:cc:71:45:08:6c:25:fe:cd:9b:b1:21:38:ae:d6: f7:3e:a7:28:37:d1:43:48:e2:3a:4e:1e:52:d0:33: 57:48:b1:22:74:ad:f4:45:7a:eb:6c:a7:63:54:49: d2:a5:23:92:83:eb:e7:23:26:dd:de:0a:24:ee:8c: 8e:e7:07:f1:e5:b3:e9:44:3a:22:b4:f4:cb:18:37: db:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:A9:C0:25:3B:EE:38:41:76:75:1C:EB:CE:60:75:BD:95:9E:F1:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba92cb6e-5781-42c7-a19e-845733c47085.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.152.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:6e:b0:b5:98:cf:88:7a:f2:d1:fa:8f:80:b4:28:cb:58:5e: 23:eb:d4:f3:6a:bd:3f:a6:50:a8:12:ec:27:13:1c:0a:23:b1: 5e:7b:f7:92:57:29:18:42:ef:e8:7a:b4:c5:b9:1a:00:7d:e6: 6c:59:28:4f:4a:5b:64:77:41:19:f3:f4:e5:37:25:89:88:54: b8:45:f5:91:5b:02:27:c5:70:4e:aa:91:d8:0f:4e:05:30:fd: 26:c9:ef:77:9a:7b:4a:46:b3:e7:10:97:eb:74:e8:fa:b3:bd: 5a:fa:34:4c:a1:32:25:b7:b4:a1:21:05:a6:ba:62:00:73:bd: a8:78:8b:02:f1:f6:9d:1b:e9:85:9e:4e:c1:dd:8d:db:4d:05: 44:b3:83:85:dd:7a:ba:a8:16:a5:05:71:e4:60:21:ea:7b:d6: e5:97:a0:8c:60:1f:6e:22:2a:20:8b:d3:b7:f2:ba:3c:69:e1: 9c:f2:88:9c:30:a8:46:97:64:d2:24:28:e1:3c:be:27:99:f4: c7:8f:ea:0c:7e:8a:a6:8d:7d:6c:af:7b:36:09:6b:8e:f7:7c: 2a:c5:d4:2e:0e:58:b3:19:ef:47:9e:a2:19:e2:bb:b6:93:f4: de:46:77:f2:ed:5f:0b:c5:0f:a5:a0:6b:b1:bf:e7:54:00:f2: 87:27:08:57 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIB6ENyvMzch9InxBqdjtRXsuKZQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAyMDU0WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZTUzMjI4ZWEzZDgzNWIyOGE2YmRlZGM3ZDA2OTJiOWNh NDE2ODM5YmYwNjlkZDlhNzczZmEyNDFiOWYxYTExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPr9xTLVmkHypoq4qkYN7AiovCG6lrRV1xSXG1Hu1mlvNx wMvNpClSqf0GelZBbifxOXucWTSw2P/wiU/jDU0eOvg9hKF41YF2oTwxAUVs8bHk uFvlAm+vvoToOQtOcBhdTOKh6GRWMcsBBkciwSg0rnwiPY1LaEwF/PEvUkJ7++Pp tmk5HcgPqfHeu43Eu+B/0yQ6qvJsWbWNlebpIVXAihe3vZlFH7SlOc4yV1WnXrkW FM7McUUIbCX+zZuxITiu1vc+pyg30UNI4jpOHlLQM1dIsSJ0rfRFeutsp2NUSdKl I5KD6+cjJt3eCiTujI7nB/Hls+lEOiK09MsYN9uRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUu6nAJTvuOEF2dRzrzmB1vZWe8dYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTJjYjZlLTU3ODEtNDJjNy1hMTllLTg0NTczM2M0NzA4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4mDANBgkqhkiG9w0BAQsFAAOCAQEAYW6wtZjPiHry0fqPgLQoy1heI+vU 82q9P6ZQqBLsJxMcCiOxXnv3klcpGELv6Hq0xbkaAH3mbFkoT0pbZHdBGfP05Tcl iYhUuEX1kVsCJ8VwTqqR2A9OBTD9Jsnvd5p7Skaz5xCX63To+rO9Wvo0TKEyJbe0 oSEFprpiAHO9qHiLAvH2nRvphZ5Owd2N200FRLODhd16uqgWpQVx5GAh6nvW5Zeg jGAfbiIqIIvTt/K6PGnhnPKInDCoRpdk0iQo4Ty+J5n0x4/qDH6Kpo19bK97Nglr jvd8KsXULg5YsxnvR56iGeK7tpP03kZ38u1fC8UPpaBrsb/nVADyhycIVw== -----END CERTIFICATE-----Generated at Sat Jun 13 13:07:13 2026 by rpki-client