$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09595d-2c4a-4f31-90cf-6b40884bf660.roa File: 8c09595d-2c4a-4f31-90cf-6b40884bf660.roa (raw, json) Hash identifier: yUnSU5dX+57b7JYlqzx8HRY26lZSToW33eF6I4zjI5I= Subject key identifier: FF:B0:47:C3:A4:5A:D4:3E:3B:D1:B1:2A:49:9E:18:8F:D6:0F:8C:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6CDE2100A407905F425297210A454E17E93DA3ED Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09595d-2c4a-4f31-90cf-6b40884bf660.roa Signing time: Mon 04 May 2026 00:00:13 +0000 ROA not before: Mon 04 May 2026 00:00:13 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:de:21:00:a4:07:90:5f:42:52:97:21:0a:45:4e:17:e9:3d:a3:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:00:13 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=1ce5db4d907152d3989055008d2a59b01fd52a4abcbcfffc4d7646bc8af95b9b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:b6:5f:25:df:c3:8f:aa:6d:3c:5e:82:f8:f8: 87:ea:44:04:ab:5e:2c:29:ef:1a:f6:71:9b:7c:47: c1:6f:6f:fd:85:2e:a4:9c:96:88:cc:80:21:b7:8c: 29:de:b2:b6:92:de:04:e3:f3:b6:46:a9:79:6a:cd: 3c:d2:c0:65:2d:78:71:64:21:e3:b3:db:57:6b:48: 71:e6:af:c3:fb:a0:ff:b1:78:f6:77:c8:0e:95:eb: 71:00:94:de:80:59:e0:7c:6d:6d:1e:66:c0:88:74: 13:7f:fc:fd:2c:45:e2:e4:a2:e3:70:f9:fc:24:28: ec:18:f7:da:84:2e:9f:b3:eb:18:b2:79:d0:75:09: 42:17:0c:77:8f:d2:c5:c8:c1:97:46:bb:7d:5f:91: 83:25:5f:f8:b2:e3:be:c1:cf:ba:69:7e:00:0d:44: f2:a1:77:46:07:7a:29:cf:4b:dc:4b:43:fe:fd:e2: 8b:e0:9a:15:a1:1c:51:93:2c:d3:a0:bb:e8:bf:89: 9a:f3:66:ea:dc:dc:26:bc:3b:e0:f4:ef:05:76:76: 9d:eb:3e:9d:51:db:2d:f8:02:aa:ee:c6:3c:8a:84: e4:c7:cd:bd:86:d4:f8:e6:14:5b:88:18:b8:16:08: bd:09:2c:bc:e6:5f:5a:75:07:45:f5:77:8b:e7:b7: 51:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:B0:47:C3:A4:5A:D4:3E:3B:D1:B1:2A:49:9E:18:8F:D6:0F:8C:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8c09595d-2c4a-4f31-90cf-6b40884bf660.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.32.0/20 Signature Algorithm: sha256WithRSAEncryption 84:20:d2:ae:55:0d:06:50:6b:ba:71:80:eb:7f:84:6f:a6:84: 20:7c:fe:97:71:fa:0e:e6:3a:7c:32:70:16:69:01:f2:7f:2b: c1:dd:82:f3:c8:e0:9a:75:36:07:f9:6d:79:84:37:bd:91:97: dc:8e:41:7c:9f:24:06:75:11:b5:e3:d2:f5:db:55:8e:dc:1a: 9d:13:bb:40:53:7b:38:e9:1d:46:09:1d:7c:5c:0d:e8:72:60: 43:94:a5:0b:07:84:8f:5d:bf:2e:c3:09:d3:90:4d:e5:2f:4f: 6a:e7:6c:5d:74:09:6b:90:5a:33:f2:8e:89:f1:eb:00:ff:79: 3d:87:bc:93:c0:55:1e:9a:cf:97:6b:03:9e:c5:79:76:6c:3b: 68:28:ea:2e:f0:16:8a:f4:b3:a9:9b:2f:a9:50:54:fd:24:b5: 83:ac:69:47:bd:76:9e:80:d5:90:0a:35:b1:5c:a5:dd:c8:ef: a2:70:79:27:87:98:ca:94:82:7a:00:67:e1:4b:44:e8:be:fc: 0b:e3:e6:d3:dc:53:d6:1f:b3:e7:0d:1a:29:1f:61:c6:ad:c0: bb:75:26:e9:f6:4c:b7:c1:e9:1b:87:e5:62:cb:2a:08:b7:7f: 82:ef:a8:3e:81:1a:a2:eb:02:90:c1:b2:1e:43:ba:9e:b3:3f: 93:03:3c:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbN4hAKQHkF9CUpchCkVOF+k9o+0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAwMDEzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxY2U1ZGI0ZDkwNzE1MmQzOTg5MDU1MDA4ZDJhNTliMDFm ZDUyYTRhYmNiY2ZmZmM0ZDc2NDZiYzhhZjk1YjliMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOtl8l38OPqm08XoL4+IfqRASrXiwp7xr2cZt8R8Fvb/2F LqSclojMgCG3jCnesraS3gTj87ZGqXlqzTzSwGUteHFkIeOz21drSHHmr8P7oP+x ePZ3yA6V63EAlN6AWeB8bW0eZsCIdBN//P0sReLkouNw+fwkKOwY99qELp+z6xiy edB1CUIXDHeP0sXIwZdGu31fkYMlX/iy477Bz7ppfgANRPKhd0YHeinPS9xLQ/79 4ovgmhWhHFGTLNOgu+i/iZrzZurc3Ca8O+D07wV2dp3rPp1R2y34AqruxjyKhOTH zb2G1PjmFFuIGLgWCL0JLLzmX1p1B0X1d4vnt1FXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/7BHw6Ra1D470bEqSZ4Yj9YPjCUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhjMDk1OTVkLTJjNGEtNGYzMS05MGNmLTZiNDA4ODRiZjY2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgCAwDQYJKoZIhvcNAQELBQADggEBAIQg0q5VDQZQa7pxgOt/hG+mhCB8 /pdx+g7mOnwycBZpAfJ/K8HdgvPI4Jp1Ngf5bXmEN72Rl9yOQXyfJAZ1EbXj0vXb VY7cGp0Tu0BTezjpHUYJHXxcDehyYEOUpQsHhI9dvy7DCdOQTeUvT2rnbF10CWuQ WjPyjonx6wD/eT2HvJPAVR6az5drA57FeXZsO2go6i7wFor0s6mbL6lQVP0ktYOs aUe9dp6A1ZAKNbFcpd3I76JweSeHmMqUgnoAZ+FLROi+/Avj5tPcU9Yfs+cNGikf YcatwLt1Jun2TLfB6RuH5WLLKgi3f4LvqD6BGqLrApDBsh5Dup6zP5MDPKU= -----END CERTIFICATE-----Generated at Tue May 12 21:54:24 2026 by rpki-client