$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4044c39d-6f70-4fdc-886b-53f64e942f50.roa File: 4044c39d-6f70-4fdc-886b-53f64e942f50.roa (raw, json) Hash identifier: ECnuaj0v9V/r0UyvHLpXEkFGnsegJHQQp2HvV4CUD5o= Subject key identifier: 67:E8:6F:1F:E6:18:1D:8D:91:C9:42:63:E0:D4:F3:11:33:63:63:76 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 21AD6465A85C9374842044FC63599A9AF976E868 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4044c39d-6f70-4fdc-886b-53f64e942f50.roa Signing time: Fri 08 May 2026 00:30:08 +0000 ROA not before: Fri 08 May 2026 00:30:08 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 206.253.216.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:ad:64:65:a8:5c:93:74:84:20:44:fc:63:59:9a:9a:f9:76:e8:68 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:30:08 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=7ea8928ca224ebaf127266752784ec9793002b7996bebca792030caf1dd64fcb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4d:7b:d6:1b:5c:3c:ab:2d:af:5d:62:ea:1a: 0a:f3:1b:3d:35:55:cb:65:62:e7:0c:9f:56:c5:28: e3:18:35:a4:0e:ae:4f:91:e2:4a:37:be:74:97:5c: 16:e9:ce:7d:be:43:a0:b9:f9:9e:50:bd:33:89:3a: 92:d1:f9:b8:73:d6:fe:c0:05:60:a3:2c:a9:ca:b5: 5f:cd:ef:8b:1b:7b:db:77:dc:b7:b6:8b:d0:8c:e4: 7b:b4:ab:d8:fb:29:f4:04:60:59:c2:bf:14:50:3f: 23:0b:a3:24:dd:44:a3:9c:57:87:d5:e7:17:db:f7: e6:b9:3d:af:83:7a:7d:45:29:f2:ce:48:6a:41:95: ee:23:b4:44:41:1b:37:54:78:5b:85:88:f5:e8:5e: 3b:1a:83:37:55:ce:b4:c2:32:40:ae:3c:fb:46:57: 1c:a8:40:03:3b:54:23:0e:1a:81:52:72:08:a7:4b: 97:00:c7:1f:29:1c:31:cc:e6:30:84:a3:72:ff:09: 5d:e5:41:ba:ab:c6:c8:28:95:af:32:4e:c8:68:45: 35:b6:c0:96:93:d1:8a:1e:2f:e9:8b:fb:e6:54:92: 69:24:90:21:af:34:b8:e1:f0:8c:43:b6:c3:7d:7d: 73:f4:cc:c9:1d:52:44:44:0d:44:ac:57:d6:dc:ee: b0:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:E8:6F:1F:E6:18:1D:8D:91:C9:42:63:E0:D4:F3:11:33:63:63:76 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4044c39d-6f70-4fdc-886b-53f64e942f50.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 206.253.216.0/22 Signature Algorithm: sha256WithRSAEncryption 85:c8:f9:72:08:ac:69:fe:08:0c:93:d2:64:da:85:78:46:d4: 94:9b:e6:be:b0:5d:32:46:e3:17:f8:cf:55:5b:71:b2:b5:24: 1c:ba:ea:b2:bc:7f:c7:ef:97:96:fa:65:54:e3:fd:44:e0:ef: c9:d3:8a:2c:0e:84:88:e3:6e:ab:91:56:5b:1e:ed:75:97:36: 69:e0:02:67:1d:72:c2:f3:05:17:3a:49:68:f8:38:18:b5:97: 42:20:b1:3c:20:12:f3:9e:b6:05:14:18:d4:49:91:ae:ee:6a: 6a:90:4c:92:bd:76:24:92:10:d6:0e:99:3a:68:72:cf:36:4e: 30:4d:24:dd:f7:38:70:b5:ab:8b:40:7f:d3:0a:30:2d:c6:d7: dc:fb:e7:26:e1:0e:77:8c:35:2b:ac:c1:3f:0e:e7:44:d1:38: 28:0c:15:10:9b:4e:04:f3:43:38:1e:04:2e:23:a0:5c:9c:00: ed:4a:00:f7:74:58:ec:50:75:af:04:48:a8:1e:5f:e5:0e:dd: 48:61:48:a0:9a:d4:6f:6c:5e:94:f0:f5:5f:f5:c0:51:d1:d2: 68:c3:ac:f9:67:59:85:f4:c0:68:33:cb:96:ca:5b:d2:cf:62: 9e:da:be:26:43:f9:30:9f:dc:a3:34:5a:a9:eb:67:9b:52:4b: 38:59:e5:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIa1kZahck3SEIET8Y1mamvl26GgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA4MDAzMDA4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZWE4OTI4Y2EyMjRlYmFmMTI3MjY2NzUyNzg0ZWM5Nzkz MDAyYjc5OTZiZWJjYTc5MjAzMGNhZjFkZDY0ZmNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuTXvWG1w8qy2vXWLqGgrzGz01VctlYucMn1bFKOMYNaQO rk+R4ko3vnSXXBbpzn2+Q6C5+Z5QvTOJOpLR+bhz1v7ABWCjLKnKtV/N74sbe9t3 3Le2i9CM5Hu0q9j7KfQEYFnCvxRQPyMLoyTdRKOcV4fV5xfb9+a5Pa+Den1FKfLO SGpBle4jtERBGzdUeFuFiPXoXjsagzdVzrTCMkCuPPtGVxyoQAM7VCMOGoFScgin S5cAxx8pHDHM5jCEo3L/CV3lQbqrxsgola8yTshoRTW2wJaT0YoeL+mL++ZUkmkk kCGvNLjh8IxDtsN9fXP0zMkdUkREDUSsV9bc7rDpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZ+hvH+YYHY2RyUJj4NTzETNjY3YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwNDRjMzlkLTZmNzAtNGZkYy04ODZiLTUzZjY0ZTk0MmY1MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALO/dgwDQYJKoZIhvcNAQELBQADggEBAIXI+XIIrGn+CAyT0mTahXhG1JSb 5r6wXTJG4xf4z1VbcbK1JBy66rK8f8fvl5b6ZVTj/UTg78nTiiwOhIjjbquRVlse 7XWXNmngAmcdcsLzBRc6SWj4OBi1l0IgsTwgEvOetgUUGNRJka7uamqQTJK9diSS ENYOmTpocs82TjBNJN33OHC1q4tAf9MKMC3G19z75ybhDneMNSuswT8O50TROCgM FRCbTgTzQzgeBC4joFycAO1KAPd0WOxQda8ESKgeX+UO3UhhSKCa1G9sXpTw9V/1 wFHR0mjDrPlnWYX0wGgzy5bKW9LPYp7aviZD+TCf3KM0WqnrZ5tSSzhZ5YQ= -----END CERTIFICATE-----Generated at Wed May 13 06:52:34 2026 by rpki-client