$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa File: 3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa (raw, json) Hash identifier: zviVXXObe0J0w2BwagB+3+WPG0bJHYIVQY51ikw1ITk= Subject key identifier: 63:2F:DB:53:D8:51:6D:AB:5E:8A:BE:05:EB:F3:07:0B:89:8F:E7:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39D0F4AFEB00FCF39ECB57DDD9FD66EAE670C1C9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa Signing time: Tue 05 May 2026 00:20:09 +0000 ROA not before: Tue 05 May 2026 00:20:09 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.140.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d0:f4:af:eb:00:fc:f3:9e:cb:57:dd:d9:fd:66:ea:e6:70:c1:c9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:20:09 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=dd63c9d8f180a6462adf276e31833de73ccbead36b39bf102dda050f69799d68, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d1:11:48:ae:99:90:41:99:59:f2:fb:1a:75: bf:2d:ce:74:1d:e6:74:ff:55:91:73:9b:68:ac:2a: d9:e0:51:cf:03:c6:f1:dc:99:82:25:eb:7f:55:13: e8:5d:69:53:56:f9:84:d1:73:24:8a:c3:e3:d0:6e: ad:bd:7f:7e:9c:2e:4a:b8:21:d8:34:e7:62:ff:9e: 11:f7:2e:5a:fb:9a:85:5d:1f:84:6d:aa:74:33:e7: 43:8a:a5:fe:9b:a9:c7:01:6c:bd:80:f6:a1:f3:7e: 5d:40:df:16:1a:f3:ae:f5:c7:f1:a4:92:d6:db:8b: 7e:b1:82:11:86:3d:1d:02:bf:6a:19:bb:72:ca:0f: 69:60:e1:b6:c9:89:45:80:e5:a3:6f:c9:ab:fa:46: 7e:f2:00:58:6d:b1:eb:8e:15:d3:86:41:9e:8b:fd: bf:8c:6f:a4:76:7b:6a:26:7a:43:bb:bc:6f:9e:bb: e0:a9:b7:f3:c7:76:cb:cf:5b:6f:59:d2:1b:a7:7d: c3:dd:a7:1e:a5:c6:df:e9:01:82:b4:2f:ab:a6:69: 74:6d:82:f1:98:58:a2:28:16:a1:68:58:6f:de:91: 4d:9b:d3:9c:13:90:89:ed:77:a1:b0:17:05:85:95: ca:7e:20:7f:ea:a5:e9:95:99:1b:c3:44:2f:d0:4e: e8:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:2F:DB:53:D8:51:6D:AB:5E:8A:BE:05:EB:F3:07:0B:89:8F:E7:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d6c20c8-51a8-4a01-982f-1879ea5a55cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.140.0/24 Signature Algorithm: sha256WithRSAEncryption 7f:95:81:bb:bb:f6:0b:91:0d:d7:90:7a:80:32:5e:e4:6b:d7: f4:64:d5:40:66:60:e2:20:ae:79:cf:dd:ae:e4:03:fb:24:f6: 4a:64:aa:ac:56:5a:ee:7a:68:d9:4e:48:7b:36:09:7c:f9:a7: 2d:4f:6b:f1:9f:e0:3b:37:ae:0a:b1:15:71:88:50:ac:cd:5e: 6a:6f:e9:3f:68:58:0c:37:03:9c:fe:fd:e1:8b:93:68:11:7d: b0:9d:77:13:e4:02:a6:0b:ce:84:70:28:29:42:9d:08:a5:38: 96:79:8a:2e:64:09:13:89:53:a1:fa:2c:42:94:68:45:77:9e: f3:e2:12:7c:a0:7f:2a:84:3f:a8:75:11:6e:82:9d:63:d3:42: 7f:fb:85:52:1b:d2:6a:c0:b1:75:49:6c:01:89:57:d7:06:b7: e7:70:89:cf:f7:7b:1b:8e:fd:f5:70:a6:3f:ba:48:7d:b3:db: 1a:5b:96:ce:f2:2b:b1:00:44:f2:bb:86:0a:28:40:2e:5c:8f: 8d:45:ab:1c:48:8c:c4:b7:b5:08:da:8e:4a:af:eb:18:c1:c5: de:14:e9:f0:6d:39:fa:80:8d:28:42:9c:b2:75:e4:62:8f:b7: d3:b2:8a:a3:a2:93:34:7b:c9:d7:ae:62:f5:a3:93:bc:3b:10: fe:0d:65:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOdD0r+sA/POey1fd2f1m6uZwwckwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAyMDA5WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDYzYzlkOGYxODBhNjQ2MmFkZjI3NmUzMTgzM2RlNzNj Y2JlYWQzNmIzOWJmMTAyZGRhMDUwZjY5Nzk5ZDY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS0RFIrpmQQZlZ8vsadb8tznQd5nT/VZFzm2isKtngUc8D xvHcmYIl639VE+hdaVNW+YTRcySKw+PQbq29f36cLkq4Idg052L/nhH3Llr7moVd H4RtqnQz50OKpf6bqccBbL2A9qHzfl1A3xYa8671x/Gkktbbi36xghGGPR0Cv2oZ u3LKD2lg4bbJiUWA5aNvyav6Rn7yAFhtseuOFdOGQZ6L/b+Mb6R2e2omekO7vG+e u+Cpt/PHdsvPW29Z0hunfcPdpx6lxt/pAYK0L6umaXRtgvGYWKIoFqFoWG/ekU2b 05wTkIntd6GwFwWFlcp+IH/qpemVmRvDRC/QTujzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYy/bU9hRbateir4F6/MHC4mP5x0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkNmMyMGM4LTUxYTgtNGEwMS05ODJmLTE4NzllYTVhNTVjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEowwDQYJKoZIhvcNAQELBQADggEBAH+Vgbu79guRDdeQeoAyXuRr1/Rk 1UBmYOIgrnnP3a7kA/sk9kpkqqxWWu56aNlOSHs2CXz5py1Pa/Gf4Ds3rgqxFXGI UKzNXmpv6T9oWAw3A5z+/eGLk2gRfbCddxPkAqYLzoRwKClCnQilOJZ5ii5kCROJ U6H6LEKUaEV3nvPiEnygfyqEP6h1EW6CnWPTQn/7hVIb0mrAsXVJbAGJV9cGt+dw ic/3exuO/fVwpj+6SH2z2xpbls7yK7EARPK7hgooQC5cj41FqxxIjMS3tQjajkqv 6xjBxd4U6fBtOfqAjShCnLJ15GKPt9OyiqOikzR7ydeuYvWjk7w7EP4NZUk= -----END CERTIFICATE-----Generated at Wed May 13 00:15:39 2026 by rpki-client