$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a62f6cd-82ea-4bfa-ac20-43291afe7df2.roa File: 0a62f6cd-82ea-4bfa-ac20-43291afe7df2.roa (raw, json) Hash identifier: zJKj9TT8QMvTebkkXe0OQt/3tPAoD+xVLGixkwVxhrI= Subject key identifier: D9:B2:4D:A5:35:20:EB:FA:62:0F:41:EF:E0:03:4A:F3:D0:37:86:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B69C792883FB5438FB3C59AD918AB237E20653F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a62f6cd-82ea-4bfa-ac20-43291afe7df2.roa Signing time: Sun 17 May 2026 01:00:08 +0000 ROA not before: Sun 17 May 2026 01:00:08 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.244.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:69:c7:92:88:3f:b5:43:8f:b3:c5:9a:d9:18:ab:23:7e:20:65:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 01:00:08 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=3361167c7bc48cdfdb9f4339919b2477492f3b03e57490b6d2de3fec41835f14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:6b:52:5c:2e:98:fb:33:93:4a:1b:a6:e8:83: 92:c7:3b:77:ec:4d:dc:92:af:96:5b:e4:41:7e:5a: c8:64:90:96:5b:71:9a:44:da:ea:1e:55:f7:de:5e: af:61:8e:28:a6:49:ae:d6:1a:ab:1c:0c:8f:7d:16: d6:3a:50:c3:41:c2:31:32:89:c7:83:95:d0:2b:76: bb:ae:90:62:7c:7a:83:b1:70:62:6b:51:af:b3:e9: 15:e3:e0:a5:a6:ba:a8:ed:6c:27:0e:7f:3f:95:19: b0:b4:cd:59:e7:ca:f9:02:42:d1:c1:37:33:a9:b8: 74:10:7c:f3:48:c6:08:2c:dc:f6:b9:59:9b:b0:b7: c5:0f:d6:b9:dc:ea:c1:7e:19:77:c5:a7:e3:37:90: 1e:86:9f:ec:e5:6a:54:72:7c:29:70:1a:6c:51:c0: 82:fe:a0:aa:f8:6a:ce:60:16:01:b7:df:75:46:34: fd:49:6c:a7:c9:95:e3:7f:21:df:15:b1:df:a4:20: 94:7c:3b:09:c4:49:1e:2b:9a:ee:f6:72:5c:31:0f: cd:da:46:7c:d2:3e:54:98:0d:e3:d9:17:2c:3b:20: 87:5b:44:88:38:f4:cc:8e:f5:34:97:eb:ee:0d:94: 82:cd:f1:4b:65:19:47:44:49:a7:d4:07:f1:e1:ea: d2:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:B2:4D:A5:35:20:EB:FA:62:0F:41:EF:E0:03:4A:F3:D0:37:86:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a62f6cd-82ea-4bfa-ac20-43291afe7df2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.244.0.0/16 Signature Algorithm: sha256WithRSAEncryption 08:9e:4f:2b:8b:d5:86:bb:9c:8b:b6:23:f5:c9:47:21:aa:6a: 1a:4c:97:31:d8:32:9a:69:b1:11:fe:a6:92:e4:9f:7c:ab:f4: d5:f7:75:3d:a0:db:05:20:bb:29:d3:f0:e7:36:30:40:10:f9: cc:02:de:4a:06:ef:11:6e:aa:58:e5:fb:b6:25:b0:17:6b:d0: 12:b5:1a:37:90:f8:0e:f1:75:01:cf:ab:4d:32:4d:26:41:61: 8a:b0:cb:eb:9d:4c:b2:d7:54:67:c3:bd:4d:eb:11:70:f7:22: 26:6d:1a:08:df:d7:f0:b6:43:d1:30:c1:75:01:26:23:39:bf: 0f:b0:0c:21:3c:fa:d5:f7:70:dc:72:39:e9:42:19:ae:73:07: 6d:a1:ab:ed:26:12:8b:9d:8a:da:8e:3e:99:6d:bd:6c:50:17: a7:57:46:d6:03:9a:62:9e:b4:72:91:e1:11:5d:e6:df:6b:98: 52:7b:4b:dd:b0:be:7f:a5:32:0e:83:e5:07:e3:b8:44:df:52: 42:d8:e5:6b:14:a8:c8:fc:65:38:b3:3e:7a:91:93:84:35:40: cd:61:e0:6c:a1:e9:c6:04:32:e9:cc:00:e5:a3:74:41:ba:55: d7:98:64:df:d3:4b:6c:dd:0c:56:4c:f0:b0:f2:7a:4d:b5:e0: 09:03:a0:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUe2nHkog/tUOPs8Wa2RirI34gZT8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDEwMDA4WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzYxMTY3YzdiYzQ4Y2RmZGI5ZjQzMzk5MTliMjQ3NzQ5 MmYzYjAzZTU3NDkwYjZkMmRlM2ZlYzQxODM1ZjE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaa1JcLpj7M5NKG6bog5LHO3fsTdySr5Zb5EF+WshkkJZb cZpE2uoeVffeXq9hjiimSa7WGqscDI99FtY6UMNBwjEyiceDldArdruukGJ8eoOx cGJrUa+z6RXj4KWmuqjtbCcOfz+VGbC0zVnnyvkCQtHBNzOpuHQQfPNIxggs3Pa5 WZuwt8UP1rnc6sF+GXfFp+M3kB6Gn+zlalRyfClwGmxRwIL+oKr4as5gFgG333VG NP1JbKfJleN/Id8Vsd+kIJR8OwnESR4rmu72clwxD83aRnzSPlSYDePZFyw7IIdb RIg49MyO9TSX6+4NlILN8UtlGUdESafUB/Hh6tLPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2bJNpTUg6/piD0Hv4ANK89A3hiYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhNjJmNmNkLTgyZWEtNGJmYS1hYzIwLTQzMjkxYWZlN2RmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA49DANBgkqhkiG9w0BAQsFAAOCAQEACJ5PK4vVhruci7Yj9clHIapqGkyX MdgymmmxEf6mkuSffKv01fd1PaDbBSC7KdPw5zYwQBD5zALeSgbvEW6qWOX7tiWw F2vQErUaN5D4DvF1Ac+rTTJNJkFhirDL651MstdUZ8O9TesRcPciJm0aCN/X8LZD 0TDBdQEmIzm/D7AMITz61fdw3HI56UIZrnMHbaGr7SYSi52K2o4+mW29bFAXp1dG 1gOaYp60cpHhEV3m32uYUntL3bC+f6UyDoPlB+O4RN9SQtjlaxSoyPxlOLM+epGT hDVAzWHgbKHpxgQy6cwA5aN0QbpV15hk39NLbN0MVkzwsPJ6TbXgCQOgCw== -----END CERTIFICATE-----Generated at Sat Jun 13 05:46:49 2026 by rpki-client