$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940bd107-87a1-467d-a6ff-57aca7389c67.roa File: 940bd107-87a1-467d-a6ff-57aca7389c67.roa (raw, json) Hash identifier: /rl/pKvhvXnci1zFU7bHaJu7UYbLImYT3IWrxHObqLc= Subject key identifier: F8:A1:BA:9F:58:D6:E1:80:A3:01:B0:7F:46:DB:E9:82:A8:89:06:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0214AF29A9D5E16325DBD26211E73A7330EF8D0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940bd107-87a1-467d-a6ff-57aca7389c67.roa Signing time: Tue 05 May 2026 00:50:50 +0000 ROA not before: Tue 05 May 2026 00:50:50 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.225.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:14:af:29:a9:d5:e1:63:25:db:d2:62:11:e7:3a:73:30:ef:8d:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:50:50 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=8e744aa0039f8eb0dd1b2dcbaeed43cceb8a593429854df1e1cd96ae7adbe224, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:03:f0:e8:28:96:18:da:93:88:83:86:de:9c: e2:b4:81:c1:99:0b:3d:14:d2:2c:e0:8f:86:92:b4: b2:e1:ef:dd:36:c7:5e:7b:41:95:88:e0:96:f8:5a: 98:46:27:e2:41:af:68:87:82:e5:d0:58:f1:49:e0: ee:9c:80:46:a9:a8:ec:aa:3d:4d:ea:bc:01:00:bb: 7e:db:2a:26:b7:b1:5a:17:50:23:9c:6f:12:df:96: 3b:38:28:2a:48:ea:56:2f:5e:3e:db:6e:0f:1d:4c: 28:87:3d:c3:71:e9:ee:53:21:af:8e:45:cf:bd:05: 3f:fe:73:d4:fa:38:64:0b:80:bb:29:30:de:be:04: 15:60:c9:4f:0e:92:68:7c:7d:7c:6c:b4:9a:ff:65: 92:c7:e2:92:c6:3d:69:54:dc:1b:52:b3:4c:68:e4: 66:ee:29:15:ed:c0:02:7c:38:32:c9:a7:13:b7:bf: 75:a6:22:16:23:81:c9:65:33:3f:b8:ce:f7:ac:8b: dc:4f:5b:be:5d:93:57:89:58:30:4a:e1:b3:f0:d2: ca:30:4e:ca:d1:5e:77:3b:1f:fe:3d:81:e9:96:d4: d0:f0:d8:6b:1b:ee:f9:04:65:22:81:26:ed:70:e3: 3a:03:40:50:ed:75:3e:c8:2e:fd:09:89:4c:16:d9: fd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A1:BA:9F:58:D6:E1:80:A3:01:B0:7F:46:DB:E9:82:A8:89:06:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940bd107-87a1-467d-a6ff-57aca7389c67.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption 42:fa:72:7f:77:b9:34:1c:59:9c:8b:4a:6a:b2:98:a4:99:79: 6e:35:c3:fd:24:69:1d:8e:43:8c:96:9e:a2:83:14:bc:f3:04: 2a:4a:0f:19:f8:42:84:16:58:bb:8b:b2:73:fc:93:df:51:c0: 43:a6:30:e3:6e:c6:fb:fa:6a:90:65:ed:cc:3b:d1:bc:38:da: 33:7e:7a:80:31:fd:bf:52:ca:6f:4d:be:de:03:f0:bc:83:12: 34:96:64:d9:81:a7:77:21:82:61:d2:0f:88:a1:05:f3:04:97: c6:79:7b:e6:4e:21:a1:da:d0:9a:00:7c:ca:a2:bf:ca:2b:fe: 7e:3f:15:f1:52:75:9b:ef:6f:75:5f:29:77:6f:b4:bd:d3:85: 4d:6c:e6:a8:92:48:8a:72:02:3a:fb:f2:a6:1f:08:eb:9f:0c: 8d:26:6c:87:65:ea:ce:ec:3f:4f:be:d2:06:7e:cd:d4:17:40: 59:c3:03:11:f6:0e:22:82:e4:66:ee:a2:bb:08:92:f3:64:07: 71:6d:d0:24:14:89:87:a3:b0:d6:6c:b1:97:b6:4c:7a:07:53: 36:3a:6d:60:84:47:c2:8c:13:81:09:3c:d0:43:f1:79:49:6d: 99:d6:92:8f:f2:dc:18:78:f6:df:f0:32:8d:83:a2:fa:1e:74: e5:1e:89:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAhSvKanV4WMl29JiEec6czDvjQ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA1MDUwWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTc0NGFhMDAzOWY4ZWIwZGQxYjJkY2JhZWVkNDNjY2Vi OGE1OTM0Mjk4NTRkZjFlMWNkOTZhZTdhZGJlMjI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXA/DoKJYY2pOIg4benOK0gcGZCz0U0izgj4aStLLh7902 x157QZWI4Jb4WphGJ+JBr2iHguXQWPFJ4O6cgEapqOyqPU3qvAEAu37bKia3sVoX UCOcbxLfljs4KCpI6lYvXj7bbg8dTCiHPcNx6e5TIa+ORc+9BT/+c9T6OGQLgLsp MN6+BBVgyU8Okmh8fXxstJr/ZZLH4pLGPWlU3BtSs0xo5GbuKRXtwAJ8ODLJpxO3 v3WmIhYjgcllMz+4zvesi9xPW75dk1eJWDBK4bPw0sowTsrRXnc7H/49gemW1NDw 2Gsb7vkEZSKBJu1w4zoDQFDtdT7ILv0JiUwW2f0TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU+KG6n1jW4YCjAbB/RtvpgqiJBvIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MGJkMTA3LTg3YTEtNDY3ZC1hNmZmLTU3YWNhNzM4OWM2Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA44TANBgkqhkiG9w0BAQsFAAOCAQEAQvpyf3e5NBxZnItKarKYpJl5bjXD /SRpHY5DjJaeooMUvPMEKkoPGfhChBZYu4uyc/yT31HAQ6Yw427G+/pqkGXtzDvR vDjaM356gDH9v1LKb02+3gPwvIMSNJZk2YGndyGCYdIPiKEF8wSXxnl75k4hodrQ mgB8yqK/yiv+fj8V8VJ1m+9vdV8pd2+0vdOFTWzmqJJIinICOvvyph8I658MjSZs h2Xqzuw/T77SBn7N1BdAWcMDEfYOIoLkZu6iuwiS82QHcW3QJBSJh6Ow1myxl7ZM egdTNjptYIRHwowTgQk80EPxeUltmdaSj/LcGHj23/AyjYOi+h505R6JkA== -----END CERTIFICATE-----Generated at Wed May 13 03:39:12 2026 by rpki-client