$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa File: 12b6201c-9d02-4277-832d-0f1c79e967c0.roa (raw, json) Hash identifier: oa1EAbQlmPwnpLIYCD8O6D+qyZ2mbZs+hl3lV9wu2pU= Subject key identifier: 3F:AC:F2:9F:62:5F:1A:96:32:D7:BC:53:6B:D0:18:4E:19:09:B7:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 537440B5959130B38E1CADF90C73446466920D43 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa Signing time: Sat 16 May 2026 01:40:09 +0000 ROA not before: Sat 16 May 2026 01:40:09 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.80.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:74:40:b5:95:91:30:b3:8e:1c:ad:f9:0c:73:44:64:66:92:0d:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:40:09 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=98f6a13269df87e8890be235857d0eac9ddc77b737cc349ffb12d7c7d0f5f102, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:cc:24:9c:19:71:ad:8e:42:5c:d4:7c:2a:0a: f9:ae:3c:99:03:7d:0c:48:d8:98:db:d1:5d:fb:69: 29:8a:c7:24:0d:4c:d9:a0:0e:d3:42:4a:1a:ef:1a: 78:a1:e0:7d:a7:03:49:1a:23:c0:cd:44:14:b7:95: 3b:bb:d7:7a:55:1f:fb:98:2a:64:f1:64:39:2b:8b: 06:46:1b:f7:55:86:68:d1:7a:78:02:d1:a7:56:d7: f0:f4:a8:21:db:db:64:ca:3d:22:98:dc:14:af:60: 8c:0d:bf:8e:f2:72:c2:3a:b3:65:be:a0:8d:25:fc: 1c:be:4b:c3:d7:0e:9d:ab:a3:73:6e:73:47:9c:45: 16:cb:c4:11:ab:56:df:3b:f6:f3:2f:97:ac:22:de: 52:ce:bb:8e:8d:d8:50:60:36:90:17:8e:a2:d8:6d: 36:e8:a8:d6:76:09:5b:4c:c7:6d:57:76:1d:bc:06: 57:cc:1d:5a:ce:58:51:0d:62:05:8b:28:b9:0b:31: b1:7b:39:b5:e4:44:b7:50:75:0f:cc:3d:f5:fe:87: 4e:a7:42:0c:d0:3a:a4:9b:d3:09:b4:cb:99:c6:49: 9b:74:be:6d:5a:dd:85:cf:f8:6b:f4:3e:1b:b4:78: 93:80:6a:ae:2e:db:a1:df:59:45:02:74:65:df:df: 86:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:AC:F2:9F:62:5F:1A:96:32:D7:BC:53:6B:D0:18:4E:19:09:B7:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/12b6201c-9d02-4277-832d-0f1c79e967c0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.80.0/20 Signature Algorithm: sha256WithRSAEncryption 34:16:9f:44:6d:6a:e9:2e:b6:62:c1:2d:07:72:4e:6c:1a:e3: b3:52:8b:c9:e5:3d:59:0e:65:8f:ce:a5:89:68:99:a0:09:9a: a8:b4:e5:1a:57:7a:e4:03:ca:5c:31:32:af:9a:fb:86:5f:c7: 00:1a:6d:c7:ee:ec:51:7a:51:7b:34:c7:a9:b1:42:68:da:b7: 4d:a9:c5:47:85:22:3c:6a:7b:2f:12:7f:73:c5:9f:9c:5a:db: ab:0d:85:af:6f:95:74:1f:ac:e1:e4:77:6a:a6:e6:3d:c6:d9: 92:f9:a3:68:67:89:e2:31:8c:ff:bc:f0:8e:b3:f4:03:9e:6a: 86:77:4d:c5:7c:77:33:0c:32:29:49:ca:18:ec:fc:17:ba:f1: fc:26:77:99:8c:de:e8:3d:72:6b:c5:90:4e:ca:e6:10:1b:80: 39:e5:48:90:64:82:ce:dd:7e:49:b7:b6:27:aa:f4:be:85:7f: 69:16:0d:83:06:e3:35:8f:23:5e:fe:9f:3c:98:d7:59:04:a2: 69:ba:03:a9:f8:a6:11:b9:24:b7:c8:9a:ef:e8:b8:c9:33:fa: c3:19:67:c8:85:6e:2c:be:8d:7e:c1:c3:06:9b:af:d9:66:9b: 07:34:a8:46:15:c0:0c:19:cf:d6:20:42:aa:2d:32:da:80:a3: c7:9a:35:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUU3RAtZWRMLOOHK35DHNEZGaSDUMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDE0MDA5WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OGY2YTEzMjY5ZGY4N2U4ODkwYmUyMzU4NTdkMGVhYzlk ZGM3N2I3MzdjYzM0OWZmYjEyZDdjN2QwZjVmMTAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2zCScGXGtjkJc1HwqCvmuPJkDfQxI2Jjb0V37aSmKxyQN TNmgDtNCShrvGnih4H2nA0kaI8DNRBS3lTu713pVH/uYKmTxZDkriwZGG/dVhmjR engC0adW1/D0qCHb22TKPSKY3BSvYIwNv47ycsI6s2W+oI0l/By+S8PXDp2ro3Nu c0ecRRbLxBGrVt879vMvl6wi3lLOu46N2FBgNpAXjqLYbTboqNZ2CVtMx21Xdh28 BlfMHVrOWFENYgWLKLkLMbF7ObXkRLdQdQ/MPfX+h06nQgzQOqSb0wm0y5nGSZt0 vm1a3YXP+Gv0Phu0eJOAaq4u26HfWUUCdGXf34bxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP6zyn2JfGpYy17xTa9AYThkJtwYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyYjYyMDFjLTlkMDItNDI3Ny04MzJkLTBmMWM3OWU5NjdjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXF1AwDQYJKoZIhvcNAQELBQADggEBADQWn0RtaukutmLBLQdyTmwa47NS i8nlPVkOZY/OpYlomaAJmqi05RpXeuQDylwxMq+a+4ZfxwAabcfu7FF6UXs0x6mx Qmjat02pxUeFIjxqey8Sf3PFn5xa26sNha9vlXQfrOHkd2qm5j3G2ZL5o2hnieIx jP+88I6z9AOeaoZ3TcV8dzMMMilJyhjs/Be68fwmd5mM3ug9cmvFkE7K5hAbgDnl SJBkgs7dfkm3tieq9L6Ff2kWDYMG4zWPI17+nzyY11kEomm6A6n4phG5JLfImu/o uMkz+sMZZ8iFbiy+jX7Bwwabr9lmmwc0qEYVwAwZz9YgQqotMtqAo8eaNfk= -----END CERTIFICATE-----Generated at Sat Jun 13 05:51:41 2026 by rpki-client