$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42f513de-6ca0-4617-80f9-fc93a1810309.roa File: 42f513de-6ca0-4617-80f9-fc93a1810309.roa (raw, json) Hash identifier: ItJVWHM/Z+Cv0GieCAsRDNgKvg/rMObNxdN2poUGmwI= Subject key identifier: D1:8D:02:5C:60:7A:1E:6C:08:CB:53:2A:F2:46:7D:44:AC:22:8F:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6830046C4DF5CCE1F69176F07518CD21C352FB42 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42f513de-6ca0-4617-80f9-fc93a1810309.roa Signing time: Mon 04 May 2026 00:20:10 +0000 ROA not before: Mon 04 May 2026 00:20:10 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.16.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:30:04:6c:4d:f5:cc:e1:f6:91:76:f0:75:18:cd:21:c3:52:fb:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:20:10 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=489ce216b333089e2fa8962e8f6b21ccc999dcfb2489fac66b03ed0471e12ac1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:23:9d:4b:3a:e3:c6:56:42:f6:39:20:93:4e: 98:c3:ca:a9:a5:d4:f9:4b:63:d0:00:0c:3e:8c:79: ae:af:04:41:ee:cd:c1:c1:80:b8:07:b1:25:fc:f2: fd:5e:3f:9d:0e:07:2f:51:23:58:f3:48:57:cd:1b: 3d:fa:f6:49:ba:21:03:7c:d0:1f:f3:4b:e3:0c:7c: 71:bc:78:40:78:e7:64:8e:f3:a4:4e:2c:db:84:a2: 0b:fe:43:25:df:c9:73:26:dc:00:8c:61:b7:26:16: 4b:6e:0f:ca:bc:03:39:44:7d:81:e1:8c:39:84:28: ec:48:9b:4f:39:4a:d9:c7:b5:c1:73:f6:7b:d0:70: 99:9e:b5:9c:5d:4d:3c:e0:28:95:23:33:5a:fa:31: cf:f8:78:4e:14:af:fb:d7:50:68:5d:88:be:54:34: fb:62:ee:8f:1d:58:3a:ab:fe:ed:52:91:cd:07:e4: f7:23:10:7f:29:84:3d:b6:ab:24:a0:3a:b9:95:4f: ae:60:eb:02:97:5d:58:3f:65:80:50:d0:35:2a:cb: 7a:c6:be:48:18:76:4d:18:57:e4:a9:dd:9a:26:86: b8:46:aa:a1:bf:e1:38:b0:9f:d0:6a:05:de:62:19: 06:ff:6e:a9:df:d7:5a:98:bb:07:57:21:bb:9e:b3: b2:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:8D:02:5C:60:7A:1E:6C:08:CB:53:2A:F2:46:7D:44:AC:22:8F:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42f513de-6ca0-4617-80f9-fc93a1810309.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.16.0/20 Signature Algorithm: sha256WithRSAEncryption 7d:7e:0e:03:ca:4c:be:48:f6:64:91:dc:61:51:0f:f1:78:ad: ab:66:c2:84:a9:a1:f0:26:26:c1:54:55:c9:df:88:d8:0e:23: 71:ef:1c:1c:55:da:3f:48:4d:5a:d0:e2:fe:fd:12:b8:e1:d7: fe:30:d9:76:2d:c9:93:d1:ad:09:67:dc:bd:ba:7f:58:0a:88: a8:42:b5:27:5d:27:83:a5:87:20:f0:98:1c:be:a8:03:b6:b7: 22:8d:c8:f9:97:16:62:a0:fc:d0:44:f1:b5:a0:3c:d0:1d:9e: 51:ef:c6:27:f8:24:48:17:04:de:ef:03:c6:cd:79:8d:79:33: 2c:e4:3b:ce:f7:2a:a0:01:ae:98:2d:32:7d:46:b3:df:37:e4: b8:67:36:41:e5:ac:02:dc:5f:88:09:a1:e1:0f:52:e2:19:94: 79:1b:b4:ae:ff:95:ee:ac:1d:20:c7:07:b3:08:69:f5:8c:d2: 89:62:63:38:a3:df:ce:cc:c7:2a:d8:1d:fe:52:d1:c9:c8:8a: 8a:89:64:0b:f8:f0:3c:80:d9:a5:ef:53:b2:a1:2d:56:67:28: 5e:80:9c:fb:fc:5c:7f:4f:38:b2:13:80:f3:a9:74:e4:46:8c: b9:ce:c7:e3:de:94:43:bf:92:d9:2e:b1:85:6b:a3:63:6b:a1: 70:ab:a9:58 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaDAEbE31zOH2kXbwdRjNIcNS+0IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAyMDEwWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODljZTIxNmIzMzMwODllMmZhODk2MmU4ZjZiMjFjY2M5 OTlkY2ZiMjQ4OWZhYzY2YjAzZWQwNDcxZTEyYWMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqI51LOuPGVkL2OSCTTpjDyqml1PlLY9AADD6Mea6vBEHu zcHBgLgHsSX88v1eP50OBy9RI1jzSFfNGz369km6IQN80B/zS+MMfHG8eEB452SO 86ROLNuEogv+QyXfyXMm3ACMYbcmFktuD8q8AzlEfYHhjDmEKOxIm085StnHtcFz 9nvQcJmetZxdTTzgKJUjM1r6Mc/4eE4Ur/vXUGhdiL5UNPti7o8dWDqr/u1Skc0H 5PcjEH8phD22qySgOrmVT65g6wKXXVg/ZYBQ0DUqy3rGvkgYdk0YV+Sp3ZomhrhG qqG/4Tiwn9BqBd5iGQb/bqnf11qYuwdXIbues7JlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0Y0CXGB6HmwIy1Mq8kZ9RKwij7QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyZjUxM2RlLTZjYTAtNDYxNy04MGY5LWZjOTNhMTgxMDMwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgBAwDQYJKoZIhvcNAQELBQADggEBAH1+DgPKTL5I9mSR3GFRD/F4ratm woSpofAmJsFUVcnfiNgOI3HvHBxV2j9ITVrQ4v79Erjh1/4w2XYtyZPRrQln3L26 f1gKiKhCtSddJ4OlhyDwmBy+qAO2tyKNyPmXFmKg/NBE8bWgPNAdnlHvxif4JEgX BN7vA8bNeY15MyzkO873KqABrpgtMn1Gs9835LhnNkHlrALcX4gJoeEPUuIZlHkb tK7/le6sHSDHB7MIafWM0oliYzij387MxyrYHf5S0cnIioqJZAv48DyA2aXvU7Kh LVZnKF6AnPv8XH9POLITgPOpdORGjLnOx+PelEO/ktkusYVro2NroXCrqVg= -----END CERTIFICATE-----Generated at Wed May 13 08:22:18 2026 by rpki-client