$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c60dda9-8882-487b-951b-14baa9359e8e.roa File: 3c60dda9-8882-487b-951b-14baa9359e8e.roa (raw, json) Hash identifier: 2ggzMrwO3DxIBjog8KBg9QMqtjp2KcdQic6wL6rs+bU= Subject key identifier: 4A:FC:C2:54:F6:0C:97:D4:56:2F:B3:D9:46:49:F3:96:ED:22:8D:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6727A684A73B94B9757CAE730608144B4FDFCF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c60dda9-8882-487b-951b-14baa9359e8e.roa Signing time: Sat 09 May 2026 00:10:04 +0000 ROA not before: Sat 09 May 2026 00:10:04 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 125.253.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:27:a6:84:a7:3b:94:b9:75:7c:ae:73:06:08:14:4b:4f:df:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:10:04 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=7270d208edde8f8d7ad51c79e2839be5ac4aefa8447bfe5e38d2b0bde261db34, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:79:11:40:6c:4a:90:36:ba:99:4e:13:c2:e2: 38:0c:84:6a:bd:37:a3:ae:a2:fd:57:ee:53:e0:4c: 8f:3e:ad:2c:0a:b7:3f:0d:d8:b5:62:61:60:6e:5e: a4:8f:e9:3e:a2:8e:b5:3f:c5:e6:e0:c2:70:a8:6c: db:51:eb:f7:f8:7a:62:ec:b2:e6:0d:35:d6:6d:b3: a0:06:66:22:d5:4c:2f:2a:0c:48:85:b2:c8:e6:c5: 59:62:80:9f:cd:82:96:41:e9:a6:24:61:ce:da:fb: 7c:49:98:65:02:cb:33:65:60:d6:84:3e:a3:03:94: f1:00:8c:db:de:75:ad:74:ef:3c:56:90:99:73:57: 7d:9d:e0:af:07:7f:16:20:b8:69:c6:bb:35:87:b1: 2a:44:90:07:83:aa:01:d2:e2:e4:21:1c:77:87:57: 47:82:f1:f9:95:2c:48:9e:84:e0:e1:91:bf:7d:e7: b0:76:a3:f9:2a:0c:05:32:2e:87:01:45:27:5b:dd: 49:1e:cc:73:cb:3a:2d:ec:a7:11:39:7a:3e:ec:5c: 20:39:37:07:68:32:91:0e:01:86:fa:04:59:41:ba: bb:c3:ee:5d:76:1e:89:54:a3:6e:63:d8:4f:72:2c: 39:21:6f:86:eb:a6:89:cc:da:1d:2e:6c:7f:67:7d: be:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:FC:C2:54:F6:0C:97:D4:56:2F:B3:D9:46:49:F3:96:ED:22:8D:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c60dda9-8882-487b-951b-14baa9359e8e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 125.253.160.0/19 Signature Algorithm: sha256WithRSAEncryption 3a:fa:09:84:2e:79:e5:3c:ac:79:0d:73:6b:74:eb:73:e9:e8: 74:b7:26:21:3f:f3:29:42:d4:4e:24:90:06:85:b6:6f:f7:1e: 74:ef:1e:00:7d:7c:0b:57:66:a1:bb:80:c5:1a:43:ea:cf:b8: 70:09:c3:2b:f9:43:ab:6b:09:fa:3c:25:02:96:d8:c6:6d:b3: 2c:cb:21:54:a1:4e:60:fb:c4:a5:6c:d2:f7:77:53:b9:fc:65: 0e:f1:81:e9:fc:ef:78:41:32:53:9d:da:91:ac:40:64:04:62: 1c:af:bc:08:6d:7a:9a:50:c6:1e:f1:3e:0f:29:1b:80:30:a2: 6e:d7:27:6c:0c:32:45:52:a5:c3:5b:37:91:a8:1d:c9:82:2e: ac:30:52:c1:f5:f3:bc:8b:2d:dc:1a:64:e5:74:08:16:ec:3c: 39:a0:f5:c2:de:80:ff:04:95:73:9d:41:0c:1e:45:c7:43:92: f6:2e:b5:64:54:f9:e4:a9:a6:1d:8d:e1:55:e9:0b:a5:65:a7: 2a:f9:4b:4e:aa:a8:19:8c:b5:80:c8:b0:3b:7a:49:76:fc:a3: ca:ca:af:e4:e3:bb:6f:f7:7f:29:89:b0:86:a7:68:bd:4b:04: 16:db:ae:82:5a:49:ad:07:b7:bb:41:c8:1c:ea:7b:86:74:a9: 46:1c:30:08 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITZyemhKc7lLl1fK5zBggUS0/fzzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjA1MDkwMDEwMDRaFw0yNjA4MDcyMzU5NTla MHoxSTBHBgNVBAUTQDcyNzBkMjA4ZWRkZThmOGQ3YWQ1MWM3OWUyODM5YmU1YWM0 YWVmYTg0NDdiZmU1ZTM4ZDJiMGJkZTI2MWRiMzQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAKt5EUBsSpA2uplOE8LiOAyEar03o66i/VfuU+BMjz6tLAq3 Pw3YtWJhYG5epI/pPqKOtT/F5uDCcKhs21Hr9/h6Yuyy5g011m2zoAZmItVMLyoM SIWyyObFWWKAn82ClkHppiRhztr7fEmYZQLLM2Vg1oQ+owOU8QCM2951rXTvPFaQ mXNXfZ3grwd/FiC4aca7NYexKkSQB4OqAdLi5CEcd4dXR4Lx+ZUsSJ6E4OGRv33n sHaj+SoMBTIuhwFFJ1vdSR7Mc8s6LeynETl6PuxcIDk3B2gykQ4BhvoEWUG6u8Pu XXYeiVSjbmPYT3IsOSFvhuumiczaHS5sf2d9vtsCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBRK/MJU9gyX1FYvs9lGSfOW7SKNDjAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvM2M2MGRkYTktODg4Mi00ODdiLTk1MWItMTRiYWE5MzU5ZThlLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBX39oDANBgkqhkiG9w0BAQsFAAOCAQEAOvoJhC555TyseQ1za3Trc+nodLcm IT/zKULUTiSQBoW2b/cedO8eAH18C1dmobuAxRpD6s+4cAnDK/lDq2sJ+jwlApbY xm2zLMshVKFOYPvEpWzS93dTufxlDvGB6fzveEEyU53akaxAZARiHK+8CG16mlDG HvE+DykbgDCibtcnbAwyRVKlw1s3kagdyYIurDBSwfXzvIst3Bpk5XQIFuw8OaD1 wt6A/wSVc51BDB5Fx0OS9i61ZFT55KmmHY3hVekLpWWnKvlLTqqoGYy1gMiwO3pJ dvyjysqv5OO7b/d/KYmwhqdovUsEFtuuglpJrQe3u0HIHOp7hnSpRhwwCA== -----END CERTIFICATE-----Generated at Tue May 12 21:43:34 2026 by rpki-client