$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa File: 14093ced-0677-41a7-9db0-a2497340d51e.roa (raw, json) Hash identifier: MfgIpXZoYRiL2sAZJtqK7aLTIv57cjvURRM2GUf+zMo= Subject key identifier: 2B:C4:1B:67:CA:8D:2B:9C:0D:31:8A:A2:3B:D6:B4:19:85:D2:5F:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 797300548A891C46B30A5AD7512DC67F6AF9064F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa Signing time: Mon 11 May 2026 00:40:35 +0000 ROA not before: Mon 11 May 2026 00:40:35 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:73:00:54:8a:89:1c:46:b3:0a:5a:d7:51:2d:c6:7f:6a:f9:06:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 11 00:40:35 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=d4ae1c0327d566217db467749b6e14ae10be8c57a86f124898d668e4b87d5deb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:15:86:38:55:53:4e:36:74:fb:93:4d:90:2e: 2d:2c:fe:19:2a:47:0a:8a:97:1c:f9:35:41:83:a4: 8c:b4:31:7a:03:a9:b3:5a:78:6e:9e:fd:78:29:eb: a5:2b:bc:69:b0:85:bb:62:f3:e8:4b:2d:22:af:86: ff:ea:1e:95:e5:26:e2:e0:e5:53:f8:17:02:10:00: cb:09:04:ba:83:0c:01:10:35:30:e9:1c:01:01:37: ca:22:05:3d:66:09:b8:90:06:f0:87:98:fd:f3:11: d3:e2:c2:47:67:d6:38:ef:67:2d:f3:8f:96:19:81: a4:a4:5e:ea:10:d5:6b:41:4a:1f:7c:b2:2e:b8:c5: b8:00:a0:b0:e0:ff:63:2b:36:ed:f3:8f:f1:21:37: 74:3c:80:6c:86:e3:59:dc:79:2c:5a:53:d8:28:ce: c3:d1:57:f1:49:69:49:f5:03:6a:b6:71:8d:51:6d: 75:c0:55:d7:bc:53:24:86:55:8e:f8:d9:bf:bb:72: 7a:14:17:54:7f:3b:b3:3c:24:3b:d4:77:9e:46:35: 60:76:7a:d3:54:ab:7d:a2:3d:ac:61:64:09:44:da: 51:1c:a1:af:3b:eb:93:56:c2:ec:2c:2e:c0:bc:e2: 4c:b3:07:60:bb:0e:bb:cd:6b:7d:0b:a5:a4:20:f4: a8:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:C4:1B:67:CA:8D:2B:9C:0D:31:8A:A2:3B:D6:B4:19:85:D2:5F:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/14093ced-0677-41a7-9db0-a2497340d51e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.18.0/24 Signature Algorithm: sha256WithRSAEncryption 96:5e:40:e0:d6:f1:1c:2a:a7:36:23:6e:40:fe:d7:b5:85:5f: b6:b8:d2:ce:d2:61:e7:59:ed:29:ff:bd:42:da:c0:72:3c:9a: 60:f8:2b:f4:69:b3:39:25:ff:1e:03:b0:fc:bd:7c:c5:d4:0b: d6:b1:65:0b:72:c8:6d:42:e1:1f:51:18:44:04:5b:eb:be:28: 6a:59:aa:d3:f6:a3:d5:7b:7b:0a:a5:f5:d8:48:94:da:9f:51: 32:6c:63:e0:aa:8b:88:5f:e7:2c:c6:8b:70:4e:30:07:e4:72: 7d:77:43:3a:0d:00:65:fe:81:64:37:ec:85:a1:64:64:dc:a8: 1c:27:32:06:31:62:21:4f:65:30:a8:88:16:65:ea:51:14:90: e6:b4:8d:fa:a3:b1:d2:25:96:c0:dd:ea:60:cb:db:8d:da:ce: d0:79:b0:a6:6b:2e:94:db:75:e4:27:e5:2e:38:0d:3c:d8:42: 36:6a:a0:ad:20:3b:c7:9a:93:db:ec:78:8a:89:65:dc:9a:d5: 55:25:99:27:40:6a:b2:25:93:83:6d:3f:31:f9:4d:bb:8c:35: b0:cb:f8:84:cc:9d:26:bf:d4:8f:38:62:8b:c0:1b:cb:97:b5: 4f:f9:4e:42:f5:77:da:06:27:3e:d7:13:a4:0b:d6:fe:9e:8e: 02:67:ed:06 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeXMAVIqJHEazClrXUS3Gf2r5Bk8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTExMDA0MDM1WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGFlMWMwMzI3ZDU2NjIxN2RiNDY3NzQ5YjZlMTRhZTEw YmU4YzU3YTg2ZjEyNDg5OGQ2NjhlNGI4N2Q1ZGViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTFYY4VVNONnT7k02QLi0s/hkqRwqKlxz5NUGDpIy0MXoD qbNaeG6e/Xgp66UrvGmwhbti8+hLLSKvhv/qHpXlJuLg5VP4FwIQAMsJBLqDDAEQ NTDpHAEBN8oiBT1mCbiQBvCHmP3zEdPiwkdn1jjvZy3zj5YZgaSkXuoQ1WtBSh98 si64xbgAoLDg/2MrNu3zj/EhN3Q8gGyG41nceSxaU9gozsPRV/FJaUn1A2q2cY1R bXXAVde8UySGVY742b+7cnoUF1R/O7M8JDvUd55GNWB2etNUq32iPaxhZAlE2lEc oa8765NWwuwsLsC84kyzB2C7DrvNa30LpaQg9Kg3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK8QbZ8qNK5wNMYqiO9a0GYXSX6cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0MDkzY2VkLTA2NzctNDFhNy05ZGIwLWEyNDk3MzQwZDUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWxIwDQYJKoZIhvcNAQELBQADggEBAJZeQODW8RwqpzYjbkD+17WFX7a4 0s7SYedZ7Sn/vULawHI8mmD4K/Rpszkl/x4DsPy9fMXUC9axZQtyyG1C4R9RGEQE W+u+KGpZqtP2o9V7ewql9dhIlNqfUTJsY+Cqi4hf5yzGi3BOMAfkcn13QzoNAGX+ gWQ37IWhZGTcqBwnMgYxYiFPZTCoiBZl6lEUkOa0jfqjsdIllsDd6mDL243aztB5 sKZrLpTbdeQn5S44DTzYQjZqoK0gO8eak9vseIqJZdya1VUlmSdAarIlk4NtPzH5 TbuMNbDL+ITMnSa/1I84YovAG8uXtU/5TkL1d9oGJz7XE6QL1v6ejgJn7QY= -----END CERTIFICATE-----Generated at Wed May 13 02:29:51 2026 by rpki-client