$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb585bc4-a775-43d7-a10b-741706f5e07f.roa File: bb585bc4-a775-43d7-a10b-741706f5e07f.roa (raw, json) Hash identifier: 66jSv/VWhioLAv+msdDSrBXyMdDNJbcnircnczdvuc0= Subject key identifier: A5:3E:E9:19:41:1D:C0:02:F8:10:17:70:00:A3:F2:E5:54:1A:F6:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 356DB8A0036E129991FAFD6EA4CCA70E23FC3FDD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb585bc4-a775-43d7-a10b-741706f5e07f.roa Signing time: Mon 11 May 2026 00:30:17 +0000 ROA not before: Mon 11 May 2026 00:30:17 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 24.110.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:6d:b8:a0:03:6e:12:99:91:fa:fd:6e:a4:cc:a7:0e:23:fc:3f:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 11 00:30:17 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=1f2a0cf9730d5cd809e7aab53d602bbc7c5de154c836a7d05ffd094c576cacb1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:5f:1e:5d:92:00:b5:42:ea:1c:28:9d:4a:da: 42:a6:9a:8c:1f:1e:81:83:fc:0d:64:f4:13:79:f9: 42:98:89:73:ac:0e:f3:85:a6:06:0d:a6:c4:46:58: 7b:db:e5:af:49:f4:b6:d2:cf:3a:c2:6c:cc:1a:8d: 71:17:aa:8f:18:7e:61:95:28:bd:36:e5:80:44:af: 48:b3:2f:e2:07:5f:b9:7d:1d:ae:79:21:33:c0:97: 27:51:c6:05:10:a4:f8:3c:e9:99:fd:25:f7:57:db: 35:e2:99:da:44:9e:69:9c:cd:45:01:d0:aa:50:b1: 3e:86:54:12:08:4e:a7:c4:d0:1a:72:b2:2f:ee:84: 76:4e:27:c5:0b:50:bf:2c:e2:dc:7f:32:24:da:b2: 80:5d:cf:43:23:f8:db:d8:fc:ca:b4:b7:a2:47:22: 58:f4:36:b5:c6:fe:eb:02:dd:f3:09:25:8d:f8:5a: 30:d8:2f:8f:cb:7d:23:e1:a3:1f:e8:b1:78:25:65: 05:fd:33:ac:90:0b:0e:14:c3:03:bd:15:0d:34:3f: 2a:6c:ea:ce:8e:5c:9f:f4:ed:58:02:ae:b8:9c:32: d4:b7:f5:3f:1a:b0:66:7e:55:0c:67:8a:5e:67:77: 1c:c6:3e:c0:58:e7:40:60:28:bd:94:3d:8c:c3:fe: bb:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3E:E9:19:41:1D:C0:02:F8:10:17:70:00:A3:F2:E5:54:1A:F6:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb585bc4-a775-43d7-a10b-741706f5e07f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 24.110.33.0/24 Signature Algorithm: sha256WithRSAEncryption d4:57:68:f6:1a:41:69:2f:09:cb:21:d1:97:39:1a:02:55:48: 57:da:e8:08:d3:96:09:e0:73:e7:8f:65:65:b8:c7:aa:bd:8c: a6:6c:58:60:1c:c4:93:53:f0:c3:8b:db:1a:01:7a:04:b7:e1: de:dc:ea:c5:3b:9b:79:ad:fd:b4:9e:db:4d:8e:07:3c:cb:b8: d1:c3:24:23:07:32:fc:4b:a1:57:4e:3f:73:65:8e:01:0b:36: b4:02:a8:26:ba:10:a8:67:69:5e:a4:01:9c:6d:54:85:f4:0a: 33:63:92:dd:1d:bd:da:df:fa:64:08:d7:5d:9e:78:ce:b0:63: 4e:f5:81:9f:3c:6d:47:ce:cc:f2:fd:6a:27:cb:29:ac:9e:74: f4:ef:1e:19:37:d1:a9:0b:3d:e1:8f:63:7d:15:11:c8:0a:b3: e8:76:4e:9c:a8:3e:ae:8a:38:7e:34:6e:ed:3f:7c:b5:8f:43: 65:1a:9a:d5:c1:92:91:79:35:52:50:09:52:e3:c9:77:00:80: d2:be:2b:14:e4:b2:05:b6:23:02:d3:0a:7d:91:d2:0c:31:4d: 45:47:6d:b7:92:ac:25:8a:63:76:23:5d:96:cd:d8:72:b0:70: 5a:01:77:05:7b:7f:43:38:dc:ce:84:99:95:ba:ef:1a:f5:29: 99:a0:21:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNW24oANuEpmR+v1upMynDiP8P90wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTExMDAzMDE3WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZjJhMGNmOTczMGQ1Y2Q4MDllN2FhYjUzZDYwMmJiYzdj NWRlMTU0YzgzNmE3ZDA1ZmZkMDk0YzU3NmNhY2IxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjXx5dkgC1QuocKJ1K2kKmmowfHoGD/A1k9BN5+UKYiXOs DvOFpgYNpsRGWHvb5a9J9LbSzzrCbMwajXEXqo8YfmGVKL025YBEr0izL+IHX7l9 Ha55ITPAlydRxgUQpPg86Zn9JfdX2zXimdpEnmmczUUB0KpQsT6GVBIITqfE0Bpy si/uhHZOJ8ULUL8s4tx/MiTasoBdz0Mj+NvY/Mq0t6JHIlj0NrXG/usC3fMJJY34 WjDYL4/LfSPhox/osXglZQX9M6yQCw4UwwO9FQ00Pyps6s6OXJ/07VgCrricMtS3 9T8asGZ+VQxnil5ndxzGPsBY50BgKL2UPYzD/ruHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpT7pGUEdwAL4EBdwAKPy5VQa9tMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiNTg1YmM0LWE3NzUtNDNkNy1hMTBiLTc0MTcwNmY1ZTA3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAYbiEwDQYJKoZIhvcNAQELBQADggEBANRXaPYaQWkvCcsh0Zc5GgJVSFfa 6AjTlgngc+ePZWW4x6q9jKZsWGAcxJNT8MOL2xoBegS34d7c6sU7m3mt/bSe202O BzzLuNHDJCMHMvxLoVdOP3NljgELNrQCqCa6EKhnaV6kAZxtVIX0CjNjkt0dvdrf +mQI112eeM6wY071gZ88bUfOzPL9aifLKayedPTvHhk30akLPeGPY30VEcgKs+h2 TpyoPq6KOH40bu0/fLWPQ2UamtXBkpF5NVJQCVLjyXcAgNK+KxTksgW2IwLTCn2R 0gwxTUVHbbeSrCWKY3YjXZbN2HKwcFoBdwV7f0M43M6EmZW67xr1KZmgIYM= -----END CERTIFICATE-----Generated at Tue May 12 21:51:00 2026 by rpki-client