$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03003920-cbea-43f1-870c-84e084be150a.roa File: 03003920-cbea-43f1-870c-84e084be150a.roa (raw, json) Hash identifier: 5r6npAhAzc2FTfLw1MNiqTlwKKvBEOMpm7lkkwZe8iU= Subject key identifier: 45:3C:34:32:77:4B:2A:25:53:55:20:CB:82:AA:40:F3:68:10:D3:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1289BA1E7AB2502A6FB1DF7A0EFD3F7266C6EBD4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03003920-cbea-43f1-870c-84e084be150a.roa Signing time: Wed 20 May 2026 00:00:13 +0000 ROA not before: Wed 20 May 2026 00:00:13 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.101.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:89:ba:1e:7a:b2:50:2a:6f:b1:df:7a:0e:fd:3f:72:66:c6:eb:d4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:00:13 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=6bdcca567909f326c924b2b9d1d0ac972bfcad66135828482cab40d46c0fab8f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:2b:5c:9a:97:ec:5b:36:14:c1:23:7b:a8:93: f2:7c:41:c0:e0:e9:08:3a:cf:6c:52:dc:2d:96:88: af:d9:63:e3:7e:24:49:3f:34:d6:a3:6e:d4:2c:2b: d0:ae:7e:d6:81:c4:ca:2d:96:5f:81:e7:1d:55:92: 1d:9c:81:e6:07:88:8e:dd:c7:69:4f:0c:a7:99:3c: 03:7f:9b:0e:e7:08:da:b8:d4:b0:d9:47:c5:e1:86: 9f:72:c3:d6:09:a2:7e:06:d7:af:a5:4e:9b:ed:3c: 52:c5:82:a9:ba:d8:85:5a:b6:05:06:49:35:84:02: e4:30:97:19:1e:83:b6:fa:4b:e1:cf:d4:ca:0b:5b: b3:51:95:41:d4:09:0b:55:ad:e3:96:bc:c3:4e:6c: 39:2d:a0:42:c2:52:c8:b6:54:27:ce:2f:7e:8f:7d: 6c:ef:7d:80:27:09:d9:99:8b:a5:b3:15:9c:cc:2b: 9a:dc:ba:17:21:d6:87:c7:ee:e1:e3:73:df:68:2a: 0c:ea:6d:6b:3d:ae:bc:64:5b:87:0d:58:df:5c:b2: 2d:28:37:d1:9c:44:e0:ab:f7:c4:ae:06:8f:d3:5a: 58:9f:53:91:75:32:5e:8e:db:c1:c3:b3:b0:2f:dc: 81:8b:85:fd:d7:7d:6a:8c:8b:a5:7e:eb:9c:e9:3c: 43:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:3C:34:32:77:4B:2A:25:53:55:20:CB:82:AA:40:F3:68:10:D3:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/03003920-cbea-43f1-870c-84e084be150a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.101.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:9d:e5:f8:c9:e5:16:66:c0:86:bf:d4:1d:68:c2:21:b8:2f: f2:89:31:50:3b:8d:a6:b4:07:c6:99:2f:df:8a:a4:5e:ad:c5: 7c:bf:aa:44:7c:1b:ef:e8:12:90:12:36:67:a3:4e:af:d1:9c: 8e:f2:47:a9:51:20:0e:14:22:ac:a0:48:5a:c6:b6:45:06:46: 20:e4:a9:39:d0:5c:98:f3:35:09:db:42:d7:12:8f:0b:35:1f: b5:b4:09:30:43:8b:3b:bf:49:e1:9b:aa:1a:57:83:3c:97:d1: 8d:d1:7d:ca:38:a6:a7:a0:dd:37:ad:0b:e3:39:a9:37:f8:e0: 99:b4:a6:6d:c7:49:f2:c9:30:cd:5b:8f:4c:2b:92:d1:38:c4: 7a:c2:d6:26:07:a2:ba:67:24:6f:13:41:21:93:36:cc:c5:92: 89:69:e1:36:21:91:2e:f7:74:67:22:9c:b5:64:c1:63:38:1c: 6f:80:3b:97:de:be:96:5e:55:ff:6c:ae:87:58:96:b1:e3:b2: 24:50:a4:3c:64:78:6c:f3:11:ca:2a:5e:a7:a4:94:b1:32:ea: d7:e3:2a:11:43:5b:68:c1:57:25:39:6f:1d:9c:cf:db:b2:ea: 3e:dc:89:1c:fe:14:e3:15:62:a0:72:f7:e9:99:ea:dc:2c:c3: c8:91:05:c7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEom6HnqyUCpvsd96Dv0/cmbG69QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAwMDEzWhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YmRjY2E1Njc5MDlmMzI2YzkyNGIyYjlkMWQwYWM5NzJi ZmNhZDY2MTM1ODI4NDgyY2FiNDBkNDZjMGZhYjhmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIK1yal+xbNhTBI3uok/J8QcDg6Qg6z2xS3C2WiK/ZY+N+ JEk/NNajbtQsK9CuftaBxMotll+B5x1Vkh2cgeYHiI7dx2lPDKeZPAN/mw7nCNq4 1LDZR8Xhhp9yw9YJon4G16+lTpvtPFLFgqm62IVatgUGSTWEAuQwlxkeg7b6S+HP 1MoLW7NRlUHUCQtVreOWvMNObDktoELCUsi2VCfOL36PfWzvfYAnCdmZi6WzFZzM K5rcuhch1ofH7uHjc99oKgzqbWs9rrxkW4cNWN9csi0oN9GcROCr98SuBo/TWlif U5F1Ml6O28HDs7Av3IGLhf3XfWqMi6V+65zpPEPtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURTw0MndLKiVTVSDLgqpA82gQ028wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzMDAzOTIwLWNiZWEtNDNmMS04NzBjLTg0ZTA4NGJlMTUwYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GUwDQYJKoZIhvcNAQELBQADggEBAEyd5fjJ5RZmwIa/1B1owiG4L/KJ MVA7jaa0B8aZL9+KpF6txXy/qkR8G+/oEpASNmejTq/RnI7yR6lRIA4UIqygSFrG tkUGRiDkqTnQXJjzNQnbQtcSjws1H7W0CTBDizu/SeGbqhpXgzyX0Y3Rfco4pqeg 3TetC+M5qTf44Jm0pm3HSfLJMM1bj0wrktE4xHrC1iYHorpnJG8TQSGTNszFkolp 4TYhkS73dGcinLVkwWM4HG+AO5fevpZeVf9srodYlrHjsiRQpDxkeGzzEcoqXqek lLEy6tfjKhFDW2jBVyU5bx2cz9uy6j7ciRz+FOMVYqBy9+mZ6twsw8iRBcc= -----END CERTIFICATE-----Generated at Sat Jun 13 09:36:59 2026 by rpki-client