$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17e1b75e-5428-4ec7-860a-8774e7c6459f.roa File: 17e1b75e-5428-4ec7-860a-8774e7c6459f.roa (raw, json) Hash identifier: Y8y5H5e7WOBy3UPBb7A1q14ScIss0UnHk++vT5Ms6Uc= Subject key identifier: E0:E3:DE:EF:86:B0:2B:42:74:36:1E:68:E2:26:1F:E2:A2:25:0B:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19A07CAC040124BCF312C0670F62904528AEF548 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17e1b75e-5428-4ec7-860a-8774e7c6459f.roa Signing time: Sun 17 May 2026 01:00:06 +0000 ROA not before: Sun 17 May 2026 01:00:06 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 26982 IP address blocks: 204.87.185.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:a0:7c:ac:04:01:24:bc:f3:12:c0:67:0f:62:90:45:28:ae:f5:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 01:00:06 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=b7fa553921d51593b848a1883b7c4f464d29dfff46673079db25ae54abb7742e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:a1:b3:5d:07:80:bf:5d:78:11:1f:73:28:ad: fc:3d:4b:c9:82:b6:ed:1b:e0:08:6f:b6:35:18:e6: 12:25:91:22:4a:9d:1d:ac:69:88:54:3b:f7:5e:e9: 78:8f:30:63:f0:e1:61:0d:db:25:fd:bd:20:4b:3e: 07:60:60:11:fd:48:fa:22:1b:28:49:18:71:3b:22: ab:80:1b:70:53:d0:17:bc:4a:6c:a0:31:36:0f:61: 05:63:5e:58:ca:4e:ab:f7:91:45:f6:30:21:e1:d3: e8:93:0d:94:0b:88:79:67:58:d2:de:7e:f1:a4:4e: 45:a0:e5:ee:41:77:21:2e:2e:56:53:d5:78:b5:ed: 35:22:62:40:2e:78:c2:49:f7:b8:87:84:a4:8b:9f: c8:e4:a6:c4:33:a4:77:55:3f:39:b9:a5:43:7e:b2: 51:59:94:81:7d:77:fa:cd:01:28:55:48:6c:2a:e0: 2d:36:ff:a7:06:b1:ed:e3:f6:ed:95:1f:a6:d6:06: f3:f8:aa:b8:63:74:cd:0a:a7:58:06:6a:96:de:6a: e8:99:90:f5:d5:b7:87:db:07:5e:37:95:ca:21:ff: fe:a9:6c:70:ce:7f:cd:9a:8a:4c:d5:22:13:66:25: 3e:c9:37:a1:4d:b5:dc:60:84:7b:3b:85:91:f6:d4: 94:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:E3:DE:EF:86:B0:2B:42:74:36:1E:68:E2:26:1F:E2:A2:25:0B:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17e1b75e-5428-4ec7-860a-8774e7c6459f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.87.185.0/24 Signature Algorithm: sha256WithRSAEncryption 54:0c:3a:7a:95:58:39:bd:07:fb:10:9d:4c:df:f0:69:14:c2: a1:d0:f4:4a:a9:1d:5c:eb:27:18:67:ca:17:4c:44:5e:66:fb: 01:d4:4f:0a:14:38:8b:65:f2:40:0f:d3:05:16:87:78:9c:86: 81:b9:48:ea:01:2e:3b:dc:a2:80:08:33:ba:93:7a:f1:e8:50: 7e:e1:b3:0f:12:a0:b1:59:3a:35:c4:f4:9d:3f:04:95:a8:86: 44:ed:68:08:05:de:3f:50:23:3d:4b:b9:80:b7:18:81:47:40: 2c:7a:6f:aa:a1:6e:d1:e8:c8:af:e5:a3:a1:11:91:b8:fb:66: 8e:cd:89:40:f5:f4:3f:f2:bd:36:19:f6:57:7e:31:5f:30:05: 79:df:04:3c:50:43:37:55:18:10:29:64:4e:cd:59:9d:59:04: d6:97:e4:18:8a:b8:88:24:ec:b7:63:93:93:d9:d9:9c:2e:1e: b5:46:8a:ec:e1:94:3c:99:1a:59:e7:5b:49:de:1f:29:13:dd: 79:ed:58:87:97:8a:d0:42:0e:af:ac:c6:95:d3:2e:62:e9:b4: 85:c6:ef:bd:34:98:e0:b4:8c:6b:a4:e3:d6:bd:45:94:6a:fe: 91:c3:d0:cd:45:e9:ac:d3:2e:31:59:1c:eb:f4:ab:94:aa:36: a5:a1:8d:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGaB8rAQBJLzzEsBnD2KQRSiu9UgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDEwMDA2WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiN2ZhNTUzOTIxZDUxNTkzYjg0OGExODgzYjdjNGY0NjRk MjlkZmZmNDY2NzMwNzlkYjI1YWU1NGFiYjc3NDJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDeobNdB4C/XXgRH3Morfw9S8mCtu0b4AhvtjUY5hIlkSJK nR2saYhUO/de6XiPMGPw4WEN2yX9vSBLPgdgYBH9SPoiGyhJGHE7IquAG3BT0Be8 SmygMTYPYQVjXljKTqv3kUX2MCHh0+iTDZQLiHlnWNLefvGkTkWg5e5BdyEuLlZT 1Xi17TUiYkAueMJJ97iHhKSLn8jkpsQzpHdVPzm5pUN+slFZlIF9d/rNAShVSGwq 4C02/6cGse3j9u2VH6bWBvP4qrhjdM0Kp1gGapbeauiZkPXVt4fbB143lcoh//6p bHDOf82aikzVIhNmJT7JN6FNtdxghHs7hZH21JTtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4OPe74awK0J0Nh5o4iYf4qIlC8swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3ZTFiNzVlLTU0MjgtNGVjNy04NjBhLTg3NzRlN2M2NDU5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADMV7kwDQYJKoZIhvcNAQELBQADggEBAFQMOnqVWDm9B/sQnUzf8GkUwqHQ 9EqpHVzrJxhnyhdMRF5m+wHUTwoUOItl8kAP0wUWh3ichoG5SOoBLjvcooAIM7qT evHoUH7hsw8SoLFZOjXE9J0/BJWohkTtaAgF3j9QIz1LuYC3GIFHQCx6b6qhbtHo yK/lo6ERkbj7Zo7NiUD19D/yvTYZ9ld+MV8wBXnfBDxQQzdVGBApZE7NWZ1ZBNaX 5BiKuIgk7Ldjk5PZ2ZwuHrVGiuzhlDyZGlnnW0neHykT3XntWIeXitBCDq+sxpXT LmLptIXG7700mOC0jGuk49a9RZRq/pHD0M1F6azTLjFZHOv0q5SqNqWhjYE= -----END CERTIFICATE-----Generated at Sat Jun 13 12:56:59 2026 by rpki-client