$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a367e845-6fff-49ee-9e02-cf3af1ac2bd6.roa File: a367e845-6fff-49ee-9e02-cf3af1ac2bd6.roa (raw, json) Hash identifier: 417klv4TKdjkc9/tCJXsZbFlxnAYMBIUzELAYUO8QWA= Subject key identifier: E7:FA:7B:CA:38:A1:20:9D:E6:D9:CB:08:AA:D8:9C:09:DA:BD:61:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36CE62C8F4A2304537EC510DB17D32B620AD3994 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a367e845-6fff-49ee-9e02-cf3af1ac2bd6.roa Signing time: Mon 04 May 2026 00:40:57 +0000 ROA not before: Mon 04 May 2026 00:40:57 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.112.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:ce:62:c8:f4:a2:30:45:37:ec:51:0d:b1:7d:32:b6:20:ad:39:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:40:57 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=ce83715ebaf33000e889e90093f21c1da11a96f7beb999e75f386d03ca1211b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:ce:53:57:ce:01:ae:89:2c:a2:6d:c7:b4:02: 29:ca:00:51:47:a6:45:8b:bb:24:c2:8f:0a:bd:d1: 25:d4:5b:56:5f:47:9d:3b:9a:ea:1e:6f:11:71:83: aa:e1:cc:04:6c:ca:a3:b9:69:a6:d9:51:24:f5:4f: 17:53:0e:0f:1d:4a:d3:9e:56:fc:70:3b:26:3e:de: a8:34:1b:8d:17:a7:3e:c5:38:70:58:4e:8c:d5:f6: ff:64:53:33:a2:8d:90:c2:36:3a:61:74:69:80:c6: 19:f9:b2:38:1f:c8:35:1f:c2:cc:6d:c1:c3:42:f8: 00:6e:d9:23:7c:72:fc:03:89:86:b5:09:7c:46:89: d7:d4:46:c0:ec:1a:88:0e:14:6b:c1:f0:35:1e:da: e3:14:b7:4e:92:8f:3f:36:70:c9:af:c4:53:a2:63: 18:19:dd:5d:c2:d2:69:a2:fb:59:5f:a3:48:a9:47: b8:db:3d:ee:89:c0:82:70:7b:74:5a:40:24:0b:69: bb:d0:ef:0f:18:45:a6:a5:60:6b:b8:16:f2:6a:d4: b3:3e:1c:54:a8:70:cc:88:c2:40:14:c5:06:07:ae: 60:24:1e:ba:66:70:9b:8b:95:6d:b0:ee:d8:36:8f: 39:39:67:bf:d0:7a:46:d8:12:63:70:99:4b:bb:6e: 77:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:FA:7B:CA:38:A1:20:9D:E6:D9:CB:08:AA:D8:9C:09:DA:BD:61:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a367e845-6fff-49ee-9e02-cf3af1ac2bd6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.112.0/20 Signature Algorithm: sha256WithRSAEncryption 63:39:a0:4a:12:b4:ea:52:8d:32:ab:ad:08:74:0e:22:f1:ff: 7a:a0:b0:6d:0e:f1:ea:24:9e:cd:ee:7e:4a:ac:ff:7e:e5:8a: e9:df:fb:c1:05:c4:d4:ac:a0:53:ed:52:19:9b:f1:ea:97:c5: 6f:3a:0d:e0:79:9e:cb:79:4c:22:7f:1c:74:ec:b8:cf:0c:93: ff:8c:8e:f4:93:49:8e:73:46:be:90:7a:6e:c6:a9:83:86:a6: a6:da:ba:58:c2:e2:bb:13:be:3e:75:02:9a:16:6f:c9:1f:74: fc:5f:ae:fa:3c:50:f3:17:25:33:7b:88:50:d0:65:57:5b:43: c0:34:ef:79:c3:b2:3b:c1:8b:a5:47:6c:66:4d:e5:47:78:06: 62:31:84:22:7c:94:49:75:49:f3:41:04:a1:81:79:f2:c1:97: 77:f6:1b:02:89:4b:90:08:0b:0d:3b:55:36:75:3d:07:a6:8b: b1:5a:58:48:7c:a3:cf:43:b8:9d:05:85:71:fb:43:d0:11:24: 43:93:ff:38:ee:2d:02:e0:c4:f5:3a:8f:c5:f5:86:47:52:3a: 69:ae:9e:ac:f2:dc:7d:75:25:82:b3:c4:bd:ca:77:f8:a1:ca: c5:d6:31:a2:30:fc:6c:6d:c1:e3:43:62:d6:84:f2:60:d1:e9: cf:78:8c:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNs5iyPSiMEU37FENsX0ytiCtOZQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA0MDU3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTgzNzE1ZWJhZjMzMDAwZTg4OWU5MDA5M2YyMWMxZGEx MWE5NmY3YmViOTk5ZTc1ZjM4NmQwM2NhMTIxMWI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5zlNXzgGuiSyibce0AinKAFFHpkWLuyTCjwq90SXUW1Zf R507muoebxFxg6rhzARsyqO5aabZUST1TxdTDg8dStOeVvxwOyY+3qg0G40Xpz7F OHBYTozV9v9kUzOijZDCNjphdGmAxhn5sjgfyDUfwsxtwcNC+ABu2SN8cvwDiYa1 CXxGidfURsDsGogOFGvB8DUe2uMUt06Sjz82cMmvxFOiYxgZ3V3C0mmi+1lfo0ip R7jbPe6JwIJwe3RaQCQLabvQ7w8YRaalYGu4FvJq1LM+HFSocMyIwkAUxQYHrmAk HrpmcJuLlW2w7tg2jzk5Z7/QekbYEmNwmUu7bncHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5/p7yjihIJ3m2csIqticCdq9YV0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzNjdlODQ1LTZmZmYtNDllZS05ZTAyLWNmM2FmMWFjMmJkNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgHAwDQYJKoZIhvcNAQELBQADggEBAGM5oEoStOpSjTKrrQh0DiLx/3qg sG0O8eokns3ufkqs/37liunf+8EFxNSsoFPtUhmb8eqXxW86DeB5nst5TCJ/HHTs uM8Mk/+MjvSTSY5zRr6Qem7GqYOGpqbauljC4rsTvj51ApoWb8kfdPxfrvo8UPMX JTN7iFDQZVdbQ8A073nDsjvBi6VHbGZN5Ud4BmIxhCJ8lEl1SfNBBKGBefLBl3f2 GwKJS5AICw07VTZ1PQemi7FaWEh8o89DuJ0FhXH7Q9ARJEOT/zjuLQLgxPU6j8X1 hkdSOmmunqzy3H11JYKzxL3Kd/ihysXWMaIw/GxtweNDYtaE8mDR6c94jDw= -----END CERTIFICATE-----Generated at Tue May 12 21:39:46 2026 by rpki-client