$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa File: 9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa (raw, json) Hash identifier: 25hc2z7jSlwmdbSDcvypT43gDIp9VaCXmPraHXnllrE= Subject key identifier: 32:D6:3A:7E:14:62:7F:7F:A6:5B:A9:81:88:B0:60:86:51:EE:CE:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F7184B9478CD321CC28B54FA54DE580BA1EA8C4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa Signing time: Mon 04 May 2026 01:20:55 +0000 ROA not before: Mon 04 May 2026 01:20:55 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.247.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:71:84:b9:47:8c:d3:21:cc:28:b5:4f:a5:4d:e5:80:ba:1e:a8:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:20:55 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=5ed75e38eb4742d63fd23b002d8f865fdd60237e4fcb5eb6a1971c171235dea9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:fb:5e:a1:c2:df:59:f2:42:48:a2:68:04:76: 77:46:6b:12:60:47:27:2f:2e:ed:1a:28:71:c4:d7: 91:4a:e5:98:8e:7e:f8:6a:a8:61:28:81:7b:e3:20: 9c:4b:e5:66:c5:a3:11:72:3d:6f:f5:59:a0:b1:bf: c5:8e:20:a2:64:7a:8f:44:2c:3c:ca:0d:57:dc:4d: 03:79:78:f3:7e:d4:5c:bf:ec:b3:b8:6c:a5:3d:3a: de:f0:ab:ba:8a:7e:35:b8:dd:0a:b3:68:7e:32:02: 0c:6f:42:f9:fc:7b:1c:30:66:20:95:41:12:ef:d0: 3a:13:bc:bd:c5:79:01:41:7f:0b:b7:ab:36:85:64: 2b:55:94:f0:f1:94:36:36:88:0b:69:07:87:fb:7d: 31:2d:82:0e:4d:0e:16:d0:ac:59:8d:36:cf:a1:c6: a5:30:75:4b:91:90:ab:4c:e1:51:f5:af:65:b1:94: e5:bd:a1:94:37:d0:16:29:87:80:a1:99:4b:8f:0c: 74:cc:ec:47:98:ca:11:03:d3:b4:c9:46:0c:01:68: 32:02:5a:c1:d1:02:96:dd:f7:58:94:c2:30:1b:93: b8:a9:66:5a:3b:43:6a:d0:c2:ab:28:33:9b:ae:0b: 15:bb:14:1c:f7:cd:b9:58:50:29:7a:10:11:79:a9: ad:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D6:3A:7E:14:62:7F:7F:A6:5B:A9:81:88:B0:60:86:51:EE:CE:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9f4646cb-34cc-48f9-87f7-bbe089fa6562.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.247.0/24 Signature Algorithm: sha256WithRSAEncryption 22:02:74:58:ee:f0:14:38:77:96:41:3c:92:4a:df:0e:e2:3c: 17:b8:e5:58:97:b8:9d:0a:a3:7f:40:54:da:d9:70:46:b6:3e: 8c:26:93:cf:d1:5a:24:ac:12:e4:05:4e:e1:36:90:c1:54:90: 9c:e9:a3:b3:c5:3d:d1:3e:4f:f5:6d:64:45:61:61:29:d6:07: 16:19:84:2d:78:b8:d0:77:5b:b6:c8:1c:1e:bc:4a:86:17:1f: 67:bc:59:8a:86:22:02:bf:83:d0:1d:4a:89:70:c5:db:db:4b: fc:c1:bc:a1:19:5a:e1:08:11:b5:15:de:30:32:f1:ab:e9:d4: 75:65:da:0d:98:5c:9a:c4:e5:53:da:66:60:e4:60:e3:d0:40: e6:d3:d7:aa:d4:3b:25:87:32:78:74:1b:5b:c3:b0:8d:6c:69: eb:ab:fe:9b:15:dd:e8:e0:5e:d3:ae:c5:91:65:29:4b:ef:cd: d7:70:bb:08:f2:38:e4:83:ac:17:dc:b8:0a:b5:d9:55:f2:da: 9e:7b:48:c0:22:5d:d6:7a:96:8c:7b:aa:30:75:27:41:06:0e: b8:4c:3a:c2:b0:62:79:28:be:4e:15:ba:66:a6:40:ec:e2:a9: ae:f7:1a:39:ad:6a:d6:54:91:fb:0d:8c:d0:09:5a:a7:e4:47: 92:bc:b8:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf3GEuUeM0yHMKLVPpU3lgLoeqMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEyMDU1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZWQ3NWUzOGViNDc0MmQ2M2ZkMjNiMDAyZDhmODY1ZmRk NjAyMzdlNGZjYjVlYjZhMTk3MWMxNzEyMzVkZWE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCX+16hwt9Z8kJIomgEdndGaxJgRycvLu0aKHHE15FK5ZiO fvhqqGEogXvjIJxL5WbFoxFyPW/1WaCxv8WOIKJkeo9ELDzKDVfcTQN5ePN+1Fy/ 7LO4bKU9Ot7wq7qKfjW43QqzaH4yAgxvQvn8exwwZiCVQRLv0DoTvL3FeQFBfwu3 qzaFZCtVlPDxlDY2iAtpB4f7fTEtgg5NDhbQrFmNNs+hxqUwdUuRkKtM4VH1r2Wx lOW9oZQ30BYph4ChmUuPDHTM7EeYyhED07TJRgwBaDICWsHRApbd91iUwjAbk7ip Zlo7Q2rQwqsoM5uuCxW7FBz3zblYUCl6EBF5qa3rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMtY6fhRif3+mW6mBiLBghlHuzmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmNDY0NmNiLTM0Y2MtNDhmOS04N2Y3LWJiZTA4OWZhNjU2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAf3PcwDQYJKoZIhvcNAQELBQADggEBACICdFju8BQ4d5ZBPJJK3w7iPBe4 5ViXuJ0Ko39AVNrZcEa2Powmk8/RWiSsEuQFTuE2kMFUkJzpo7PFPdE+T/VtZEVh YSnWBxYZhC14uNB3W7bIHB68SoYXH2e8WYqGIgK/g9AdSolwxdvbS/zBvKEZWuEI EbUV3jAy8avp1HVl2g2YXJrE5VPaZmDkYOPQQObT16rUOyWHMnh0G1vDsI1saeur /psV3ejgXtOuxZFlKUvvzddwuwjyOOSDrBfcuAq12VXy2p57SMAiXdZ6lox7qjB1 J0EGDrhMOsKwYnkovk4VumamQOziqa73GjmtatZUkfsNjNAJWqfkR5K8uGc= -----END CERTIFICATE-----Generated at Tue May 12 21:58:18 2026 by rpki-client