$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa File: cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa (raw, json) Hash identifier: 2bOaNzR+wWhb+1R139P2TC9TBCRqHEXnW9+/q3E+Vgg= Subject key identifier: 2A:3B:F0:A0:64:10:3F:CC:81:29:10:B0:6B:87:08:D4:7D:DE:9D:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17FB08FF0BF8A7A85F47022C4D71E71FAE6A4CFB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa Signing time: Sun 17 May 2026 00:00:09 +0000 ROA not before: Sun 17 May 2026 00:00:09 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.246.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:fb:08:ff:0b:f8:a7:a8:5f:47:02:2c:4d:71:e7:1f:ae:6a:4c:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:00:09 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=c9dd74f108e071f55aa370ecb7d73a7908ea86503d7f0d12ba2d09ae7a9842bd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:bc:cb:f4:bf:d1:64:70:0f:11:aa:cf:02:d3: 3c:09:a7:28:a7:e8:b3:18:83:b2:d3:69:a3:92:0d: 3f:4f:ed:58:7f:b1:a7:02:a4:13:0f:96:ed:aa:24: c2:7b:42:b9:25:66:8f:3e:25:5f:77:05:11:5d:ec: 64:96:1b:14:c1:7a:b0:b2:53:f9:61:54:48:38:23: 69:e2:3a:5f:5f:7f:40:b8:e4:44:54:0b:89:f9:5a: 19:17:9f:9e:76:2f:90:f0:da:fe:2f:e5:1e:dc:95: ea:72:58:b3:c6:5c:c4:26:de:4a:3f:ae:43:b2:ad: 84:c9:52:7d:9b:4b:e6:4c:a6:37:e7:1b:fc:ed:07: 8a:f1:23:13:f7:0b:c8:a7:66:6c:ce:e3:d9:37:28: 33:03:59:38:ae:dd:bf:a8:82:90:6c:ab:ff:32:9f: a0:65:5c:73:b1:be:bd:c0:4f:2f:8d:4f:1d:62:d8: 2c:ed:75:b2:32:00:8a:45:67:9a:81:07:c4:1f:57: f6:0e:32:a1:85:90:cd:94:26:75:9d:2d:31:8a:bf: 3c:69:2f:9c:0f:28:90:45:50:a4:3a:f1:08:cd:63: f4:43:16:16:78:2f:be:84:af:c8:f1:2e:a8:db:10: 6e:87:f7:5e:10:d3:4d:d7:e2:44:ca:75:58:ad:2a: 6c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:3B:F0:A0:64:10:3F:CC:81:29:10:B0:6B:87:08:D4:7D:DE:9D:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cdbca8c9-c527-4875-b58e-fc50d0104ec6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.246.0.0/16 Signature Algorithm: sha256WithRSAEncryption a0:a5:08:57:75:35:99:71:2a:01:0a:97:0a:fe:6a:54:cd:5e: bf:0b:2e:47:cd:e3:fe:a6:9d:48:c4:58:7f:fe:fb:bb:67:d0: 81:9a:20:a1:39:b4:7a:bd:dd:d9:bb:56:78:1d:84:1f:67:0f: 35:0b:28:d7:9b:09:58:73:98:9f:4e:2c:e3:8d:18:9c:4c:04: 37:eb:be:e4:df:86:36:5b:7b:81:96:e0:6e:55:df:a7:80:57: c0:f0:a9:e1:0a:e3:64:22:d9:01:ee:18:01:0d:a4:d0:92:19: f4:b6:8e:8e:de:72:44:67:f7:1f:c6:6f:2d:fd:9e:df:b3:76: ad:4c:5d:11:d8:87:a4:90:43:de:02:70:1a:66:28:f5:00:4e: ff:8a:8b:22:c3:93:a0:13:1f:f6:1f:34:7a:86:86:3b:92:d8: d8:31:f6:42:68:04:90:22:e5:7f:0c:6e:05:65:63:c5:2b:c6: f3:8c:3f:ba:84:68:68:84:12:9c:3b:80:bf:52:e1:a2:5c:5b: 5e:30:ce:4f:4f:db:67:4c:54:e0:9f:6c:c1:6d:8a:0a:4d:db: 5b:96:7b:da:a6:1b:e2:0d:d1:fc:e5:b9:66:2c:e0:94:3b:06: 91:6f:04:37:f0:05:91:76:ca:60:4e:d2:ed:ee:51:b5:07:a9: 48:9b:4c:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUF/sI/wv4p6hfRwIsTXHnH65qTPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAwMDA5WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOWRkNzRmMTA4ZTA3MWY1NWFhMzcwZWNiN2Q3M2E3OTA4 ZWE4NjUwM2Q3ZjBkMTJiYTJkMDlhZTdhOTg0MmJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXvMv0v9FkcA8Rqs8C0zwJpyin6LMYg7LTaaOSDT9P7Vh/ sacCpBMPlu2qJMJ7QrklZo8+JV93BRFd7GSWGxTBerCyU/lhVEg4I2niOl9ff0C4 5ERUC4n5WhkXn552L5Dw2v4v5R7clepyWLPGXMQm3ko/rkOyrYTJUn2bS+ZMpjfn G/ztB4rxIxP3C8inZmzO49k3KDMDWTiu3b+ogpBsq/8yn6BlXHOxvr3ATy+NTx1i 2CztdbIyAIpFZ5qBB8QfV/YOMqGFkM2UJnWdLTGKvzxpL5wPKJBFUKQ68QjNY/RD FhZ4L76Er8jxLqjbEG6H914Q003X4kTKdVitKmxHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKjvwoGQQP8yBKRCwa4cI1H3enXEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkYmNhOGM5LWM1MjctNDg3NS1iNThlLWZjNTBkMDEwNGVjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49jANBgkqhkiG9w0BAQsFAAOCAQEAoKUIV3U1mXEqAQqXCv5qVM1evwsu R83j/qadSMRYf/77u2fQgZogoTm0er3d2btWeB2EH2cPNQso15sJWHOYn04s440Y nEwEN+u+5N+GNlt7gZbgblXfp4BXwPCp4QrjZCLZAe4YAQ2k0JIZ9LaOjt5yRGf3 H8ZvLf2e37N2rUxdEdiHpJBD3gJwGmYo9QBO/4qLIsOToBMf9h80eoaGO5LY2DH2 QmgEkCLlfwxuBWVjxSvG84w/uoRoaIQSnDuAv1LholxbXjDOT0/bZ0xU4J9swW2K Ck3bW5Z72qYb4g3R/OW5ZizglDsGkW8EN/AFkXbKYE7S7e5RtQepSJtMBA== -----END CERTIFICATE-----Generated at Sat Jun 13 14:23:03 2026 by rpki-client