$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06059ff6-507b-48bc-b001-58f4b8757574.roa File: 06059ff6-507b-48bc-b001-58f4b8757574.roa (raw, json) Hash identifier: On+WMqgLcbraOKOIyG5IHR/QmtVABRH+le4T8sfathQ= Subject key identifier: 61:0E:5A:B5:79:35:5B:65:6D:CC:BB:7C:CA:0F:54:E4:6B:39:33:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35DB460CCFD405C6E32FAF0B6C9BC75A21AF597D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06059ff6-507b-48bc-b001-58f4b8757574.roa Signing time: Sat 16 May 2026 01:21:00 +0000 ROA not before: Sat 16 May 2026 01:21:00 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.22.64.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:db:46:0c:cf:d4:05:c6:e3:2f:af:0b:6c:9b:c7:5a:21:af:59:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:21:00 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=9a88538146a0ac588ffce2e5323c7c0bfc723ffaf2f1fee81dd1a6f03fe0c38e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:73:91:ca:4d:bd:dc:c8:d6:5f:ae:9d:33:be: 7a:ab:5a:df:88:3d:f9:c5:42:a4:28:33:9f:0c:6a: 6c:e9:de:e8:df:f3:ad:46:53:07:93:0e:3b:d5:52: 97:5a:d7:f5:37:ea:a0:13:0b:f4:2d:9d:f6:3f:3b: 67:6b:af:6b:44:0d:9b:5e:b7:77:33:db:f0:38:72: 6f:13:e6:5d:33:dd:ec:f5:b3:ca:89:d8:11:18:d3: 33:94:51:b7:f8:84:cc:0a:0e:17:b5:82:20:ea:21: 3b:15:38:36:90:74:69:25:72:04:b7:03:f6:13:a0: 6f:e0:86:49:4f:f9:d6:67:7a:b1:0d:ba:d4:74:69: 60:08:8a:8f:88:65:be:0e:89:ca:dd:b2:40:16:8f: 3a:df:0b:a2:5d:72:26:41:90:e5:d5:45:44:14:34: 24:cc:93:49:51:ad:b5:f7:bd:45:5f:1f:06:03:42: a9:5e:15:47:5a:23:26:25:ad:24:2a:ed:d1:f0:8a: f4:e6:fa:75:c9:72:c4:47:8d:90:69:f6:48:97:6d: f9:9b:22:db:47:16:2e:ac:a0:0d:35:d2:8f:38:18: 27:66:e2:c1:af:19:60:89:e8:db:bd:97:4e:68:91: 34:84:e3:e0:29:3c:43:22:34:0f:48:21:75:38:b5: bc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:0E:5A:B5:79:35:5B:65:6D:CC:BB:7C:CA:0F:54:E4:6B:39:33:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/06059ff6-507b-48bc-b001-58f4b8757574.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.64.0/21 Signature Algorithm: sha256WithRSAEncryption 79:76:62:b6:90:c2:0f:b6:b8:30:80:6c:84:75:85:0b:67:dd: 70:08:c3:2c:8e:dd:2b:2c:e8:8d:6e:28:a2:61:e1:d1:20:cb: 31:2f:0e:8b:84:49:94:79:a3:dc:85:53:11:3b:f7:fc:9d:f3: 33:51:9f:1c:1f:e3:47:37:c1:d5:44:e1:2c:94:9f:b9:21:16: 15:0d:1c:3d:0a:91:30:ca:0b:0d:d7:64:a1:3e:36:66:ab:cd: 09:e6:3f:31:3a:b5:8b:7c:be:7f:35:92:a1:8a:3a:4c:86:98: d3:98:b5:be:02:ca:02:34:17:6e:14:74:22:0c:8a:43:90:36: 7e:4b:e0:38:4c:f4:ca:72:75:02:bc:8b:e3:39:04:b1:0d:31: 89:c1:22:2b:70:56:46:0c:8f:5f:52:1f:0e:a5:39:48:51:ee: c5:79:cc:41:02:ac:35:8f:6a:b1:59:14:68:62:6a:28:b4:18: 3c:dc:83:b4:c9:ae:d1:cf:31:74:4f:9e:60:56:d4:73:08:ad: 53:52:6a:e1:96:36:8b:14:e4:21:b8:34:87:5e:4f:98:7e:25: 49:53:e3:f9:a2:04:89:9d:80:48:17:e8:25:45:23:24:c9:2c: 45:a5:2b:ca:12:c9:44:49:57:54:a5:6b:6d:a9:ab:c3:89:0d: f0:46:9b:ff -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNdtGDM/UBcbjL68LbJvHWiGvWX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMTAwWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTg4NTM4MTQ2YTBhYzU4OGZmY2UyZTUzMjNjN2MwYmZj NzIzZmZhZjJmMWZlZTgxZGQxYTZmMDNmZTBjMzhlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXc5HKTb3cyNZfrp0zvnqrWt+IPfnFQqQoM58Mamzp3ujf 861GUweTDjvVUpda1/U36qATC/QtnfY/O2drr2tEDZtet3cz2/A4cm8T5l0z3ez1 s8qJ2BEY0zOUUbf4hMwKDhe1giDqITsVODaQdGklcgS3A/YToG/ghklP+dZnerEN utR0aWAIio+IZb4OicrdskAWjzrfC6JdciZBkOXVRUQUNCTMk0lRrbX3vUVfHwYD QqleFUdaIyYlrSQq7dHwivTm+nXJcsRHjZBp9kiXbfmbIttHFi6soA010o84GCdm 4sGvGWCJ6Nu9l05okTSE4+ApPEMiNA9IIXU4tbwvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYQ5atXk1W2VtzLt8yg9U5Gs5M4IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA2MDU5ZmY2LTUwN2ItNDhiYy1iMDAxLTU4ZjRiODc1NzU3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMXFkAwDQYJKoZIhvcNAQELBQADggEBAHl2YraQwg+2uDCAbIR1hQtn3XAI wyyO3Sss6I1uKKJh4dEgyzEvDouESZR5o9yFUxE79/yd8zNRnxwf40c3wdVE4SyU n7khFhUNHD0KkTDKCw3XZKE+NmarzQnmPzE6tYt8vn81kqGKOkyGmNOYtb4CygI0 F24UdCIMikOQNn5L4DhM9MpydQK8i+M5BLENMYnBIitwVkYMj19SHw6lOUhR7sV5 zEECrDWParFZFGhiaii0GDzcg7TJrtHPMXRPnmBW1HMIrVNSauGWNosU5CG4NIde T5h+JUlT4/miBImdgEgX6CVFIyTJLEWlK8oSyURJV1Sla22pq8OJDfBGm/8= -----END CERTIFICATE-----Generated at Sat Jun 13 07:15:00 2026 by rpki-client