$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f41f6ff2-fff2-4265-939f-9949f3ae3e3d.roa File: f41f6ff2-fff2-4265-939f-9949f3ae3e3d.roa (raw, json) Hash identifier: L5Shrs1HyMsER/FQEemiAIHdrEO29vDtDh/WdDCkJmk= Subject key identifier: 0F:CE:CF:73:CA:CE:77:66:DD:BD:C9:95:2B:E8:FF:80:BB:47:C8:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4099335C6586050FE1B40C9387F20F26434970F8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f41f6ff2-fff2-4265-939f-9949f3ae3e3d.roa Signing time: Tue 31 Mar 2026 00:00:16 +0000 ROA not before: Tue 31 Mar 2026 00:00:16 +0000 ROA not after: Mon 29 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.164.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:99:33:5c:65:86:05:0f:e1:b4:0c:93:87:f2:0f:26:43:49:70:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 31 00:00:16 2026 GMT Not After : Jun 29 23:59:59 2026 GMT Subject: serialNumber=85108c6dbb1f7a5b7ee1266ba0c560258003b17fd23f6d8d92bed06bd56ba168, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:84:e2:c7:11:7b:d5:9f:19:4e:55:a1:c2:59: 2a:e3:c5:9b:38:01:b8:49:45:54:aa:12:10:b2:86: 60:c7:19:de:64:8c:c6:aa:78:27:78:ad:37:47:d5: f3:69:d8:32:7c:a5:5f:0e:ed:c8:47:01:fa:b2:b1: d6:6d:15:58:dc:a1:6d:a3:ba:94:68:5c:a3:47:51: 5c:c7:90:db:ef:4a:3d:89:11:32:c2:66:cd:03:69: e2:73:b9:54:e5:e5:6a:eb:e4:eb:2a:bb:13:aa:54: 55:ec:00:38:46:ba:e1:5a:31:a0:a3:a3:e8:09:49: 05:47:61:e4:f8:c6:1f:49:1c:83:09:e0:b3:a9:31: 43:10:88:9e:14:82:98:ac:a4:54:76:e7:e3:10:07: 27:84:85:eb:f4:65:1e:2e:1c:16:0f:d0:00:b4:9c: 51:ee:58:a1:16:2e:e5:c7:b3:95:1b:21:5e:9a:b4: b4:b0:8d:ad:f4:14:a6:79:a0:2c:c9:b7:59:d8:17: 31:30:88:f9:eb:70:a0:ef:3c:58:0c:53:93:8d:1b: d9:d7:09:a7:eb:3c:63:9c:26:84:3c:c5:7d:1c:6c: 87:94:38:4a:e1:77:1b:84:37:83:8b:9a:58:51:84: 54:f4:7c:ec:ce:88:8b:7f:63:d7:60:16:d7:ac:0c: e9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:CE:CF:73:CA:CE:77:66:DD:BD:C9:95:2B:E8:FF:80:BB:47:C8:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f41f6ff2-fff2-4265-939f-9949f3ae3e3d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.164.0.0/17 Signature Algorithm: sha256WithRSAEncryption c6:69:0d:34:45:90:fa:bf:7d:04:a2:32:20:2d:cc:c9:68:48: 9b:77:58:ff:a0:09:4f:48:cf:c1:56:13:06:91:49:9a:38:1a: ac:f1:39:3c:1c:a5:99:3a:43:05:51:c6:36:fb:2a:58:12:d2: 7e:e3:42:1f:ac:8c:fe:37:5d:76:03:a6:a0:1a:41:a8:24:83: 3a:86:2a:74:1a:d4:34:a2:d8:16:88:80:4a:c3:d7:ff:d5:bc: dc:bc:33:cf:f2:a5:4e:12:c5:50:d8:ea:6a:41:1e:b5:49:75: e2:a8:4e:00:81:f5:dd:48:7e:9d:41:e5:e0:9b:d4:21:d0:58: 74:6f:9c:6c:8c:23:2c:f8:5d:a0:bf:b9:f5:a9:02:80:2a:e3: 91:f9:1c:b2:71:03:db:c9:60:2c:91:83:c6:3d:02:24:c0:82: 73:15:cb:b5:3f:9d:82:56:3c:59:53:12:bf:01:eb:12:e3:f4: f8:83:37:f9:3d:36:4c:79:2d:af:08:c7:74:ee:f3:c5:fe:0c: db:a0:f2:86:87:0f:29:b0:7f:2e:82:00:d1:05:5a:57:ab:c0: ec:20:62:c3:64:42:25:b1:51:3a:b2:4c:d9:37:0b:58:7b:ac: b7:89:a4:27:60:dc:ec:2d:ae:01:12:3c:13:2b:2d:58:fa:23: c9:1d:a7:a3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQJkzXGWGBQ/htAyTh/IPJkNJcPgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzMxMDAwMDE2WhcNMjYwNjI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTEwOGM2ZGJiMWY3YTViN2VlMTI2NmJhMGM1NjAyNTgw MDNiMTdmZDIzZjZkOGQ5MmJlZDA2YmQ1NmJhMTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvhOLHEXvVnxlOVaHCWSrjxZs4AbhJRVSqEhCyhmDHGd5k jMaqeCd4rTdH1fNp2DJ8pV8O7chHAfqysdZtFVjcoW2jupRoXKNHUVzHkNvvSj2J ETLCZs0DaeJzuVTl5Wrr5OsquxOqVFXsADhGuuFaMaCjo+gJSQVHYeT4xh9JHIMJ 4LOpMUMQiJ4UgpispFR25+MQByeEhev0ZR4uHBYP0AC0nFHuWKEWLuXHs5UbIV6a tLSwja30FKZ5oCzJt1nYFzEwiPnrcKDvPFgMU5ONG9nXCafrPGOcJoQ8xX0cbIeU OErhdxuEN4OLmlhRhFT0fOzOiIt/Y9dgFtesDOmlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD87Pc8rOd2bdvcmVK+j/gLtHyK8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y0MWY2ZmYyLWZmZjItNDI2NS05MzlmLTk5NDlmM2FlM2UzZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQpAAwDQYJKoZIhvcNAQELBQADggEBAMZpDTRFkPq/fQSiMiAtzMloSJt3 WP+gCU9Iz8FWEwaRSZo4GqzxOTwcpZk6QwVRxjb7KlgS0n7jQh+sjP43XXYDpqAa QagkgzqGKnQa1DSi2BaIgErD1//VvNy8M8/ypU4SxVDY6mpBHrVJdeKoTgCB9d1I fp1B5eCb1CHQWHRvnGyMIyz4XaC/ufWpAoAq45H5HLJxA9vJYCyRg8Y9AiTAgnMV y7U/nYJWPFlTEr8B6xLj9PiDN/k9Nkx5La8Ix3Tu88X+DNug8oaHDymwfy6CANEF WlerwOwgYsNkQiWxUTqyTNk3C1h7rLeJpCdg3OwtrgESPBMrLVj6I8kdp6M= -----END CERTIFICATE-----Generated at Sun Apr 19 12:51:26 2026 by rpki-client