$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd4845d-030e-48cb-949a-b67e074ff051.roa File: fbd4845d-030e-48cb-949a-b67e074ff051.roa (raw, json) Hash identifier: xgsfG+aMNpBc2TUjUyRHLvAUGC7yZlWqOABwpDNqY1U= Subject key identifier: 46:52:43:92:BE:14:BE:60:89:20:A8:92:BF:B7:EE:7F:CE:49:7E:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 261EB0634022BFFA2653A2345F230B6836B44B92 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd4845d-030e-48cb-949a-b67e074ff051.roa Signing time: Fri 17 Apr 2026 00:00:16 +0000 ROA not before: Fri 17 Apr 2026 00:00:16 +0000 ROA not after: Thu 16 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.234.249.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:1e:b0:63:40:22:bf:fa:26:53:a2:34:5f:23:0b:68:36:b4:4b:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 17 00:00:16 2026 GMT Not After : Jul 16 23:59:59 2026 GMT Subject: serialNumber=77b2f1cc4268c94dd9ad313ecfd690b983fe8f5965e9093aec358ae41ac11539, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:82:bc:db:e3:54:8f:43:96:52:5e:e0:a1:1d: 06:f6:0e:5f:fb:4e:bf:c0:e3:60:4d:51:ff:a6:f3: 91:48:cd:fd:db:50:84:7a:54:39:0e:a5:4d:0c:06: 49:f1:ea:49:f2:91:c5:84:d5:73:c6:fb:76:a9:fb: fb:bf:bb:ce:16:f5:c3:03:43:46:7f:ce:0f:48:cf: a7:c0:3d:14:6c:78:63:9b:d7:ce:c3:31:4f:af:33: a9:4e:19:81:60:15:ba:36:20:76:85:d2:b8:1e:50: 54:02:59:63:e1:a3:f3:6d:d8:dc:17:67:79:06:cf: 3b:19:94:69:27:9e:5f:9f:10:e6:45:a6:73:2c:ad: 60:d9:40:89:9c:85:95:2d:22:d0:01:53:52:75:ac: 39:ef:4f:3d:d6:07:36:15:1d:a4:50:e0:58:5b:f2: c7:e1:9b:89:65:72:86:b6:57:42:6a:a0:40:f9:56: 81:32:d5:d0:bc:67:15:59:75:9c:6b:b4:ac:92:14: 3c:06:96:f5:ec:7b:43:30:26:16:eb:f3:f6:bc:0b: 65:23:05:3c:da:93:5b:fd:2f:11:b3:27:f2:16:bf: 4a:47:71:8d:55:f4:73:a8:2c:05:ee:bb:71:80:6c: 5e:86:87:a6:c4:0d:36:5d:a0:ef:79:c5:8f:50:6f: a7:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:52:43:92:BE:14:BE:60:89:20:A8:92:BF:B7:EE:7F:CE:49:7E:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fbd4845d-030e-48cb-949a-b67e074ff051.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.234.249.0/24 Signature Algorithm: sha256WithRSAEncryption 40:9e:4c:8b:4a:81:a1:6c:b2:b9:b9:4c:5b:b1:eb:3d:98:bf: b0:00:ce:30:e7:e9:16:f6:87:71:35:4a:ff:63:63:ce:cf:1c: b9:ca:b2:91:90:6b:54:55:73:3b:2d:99:ad:87:b4:87:69:1c: ea:09:fb:f1:ae:ca:34:86:2e:cc:f9:3e:65:cc:28:9e:d1:b9: 01:98:0e:34:3c:9d:ce:b9:df:8d:fc:36:ea:cd:c4:91:c1:be: 38:32:ea:2b:57:b0:9a:a9:96:0d:07:d7:e7:ee:33:0d:ea:77: 7a:b6:33:61:9e:72:ba:0d:4c:95:82:bd:16:0e:2d:77:cf:76: 94:78:09:35:af:f9:6c:76:cf:f7:6d:02:d1:55:41:6c:3f:21: 30:d0:cd:cf:bc:f7:8b:d4:98:bf:32:0b:a9:2b:09:47:09:da: 62:ae:26:e0:16:b2:ef:fd:0e:52:5f:18:06:9b:51:2d:ff:d7: d8:b4:60:5c:55:12:55:c2:b9:db:6b:ad:a9:e0:cd:f1:d2:db: f0:dd:aa:aa:5d:83:30:e0:8e:43:77:c6:38:0b:ae:00:ed:6e: 19:4f:a1:87:78:06:78:9c:cd:e4:dc:25:02:39:ec:6a:67:c3: 53:dd:45:d0:5b:88:56:03:8e:d7:4d:30:7c:5b:db:04:ea:e1: ae:66:fd:14 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJh6wY0Aiv/omU6I0XyMLaDa0S5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDE3MDAwMDE2WhcNMjYwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2IyZjFjYzQyNjhjOTRkZDlhZDMxM2VjZmQ2OTBiOTgz ZmU4ZjU5NjVlOTA5M2FlYzM1OGFlNDFhYzExNTM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJgrzb41SPQ5ZSXuChHQb2Dl/7Tr/A42BNUf+m85FIzf3b UIR6VDkOpU0MBknx6knykcWE1XPG+3ap+/u/u84W9cMDQ0Z/zg9Iz6fAPRRseGOb 187DMU+vM6lOGYFgFbo2IHaF0rgeUFQCWWPho/Nt2NwXZ3kGzzsZlGknnl+fEOZF pnMsrWDZQImchZUtItABU1J1rDnvTz3WBzYVHaRQ4Fhb8sfhm4llcoa2V0JqoED5 VoEy1dC8ZxVZdZxrtKySFDwGlvXse0MwJhbr8/a8C2UjBTzak1v9LxGzJ/IWv0pH cY1V9HOoLAXuu3GAbF6Gh6bEDTZdoO95xY9Qb6fHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURlJDkr4UvmCJIKiSv7fuf85JfmwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZiZDQ4NDVkLTAzMGUtNDhjYi05NDlhLWI2N2UwNzRmZjA1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADR6vkwDQYJKoZIhvcNAQELBQADggEBAECeTItKgaFssrm5TFux6z2Yv7AA zjDn6Rb2h3E1Sv9jY87PHLnKspGQa1RVczstma2HtIdpHOoJ+/GuyjSGLsz5PmXM KJ7RuQGYDjQ8nc653438NurNxJHBvjgy6itXsJqplg0H1+fuMw3qd3q2M2GecroN TJWCvRYOLXfPdpR4CTWv+Wx2z/dtAtFVQWw/ITDQzc+894vUmL8yC6krCUcJ2mKu JuAWsu/9DlJfGAabUS3/19i0YFxVElXCudtrrangzfHS2/DdqqpdgzDgjkN3xjgL rgDtbhlPoYd4BniczeTcJQI57Gpnw1PdRdBbiFYDjtdNMHxb2wTq4a5m/RQ= -----END CERTIFICATE-----Generated at Sun Apr 19 11:00:26 2026 by rpki-client