$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a4c721c-56dc-4bfb-a898-5f7959487330.roa File: 1a4c721c-56dc-4bfb-a898-5f7959487330.roa (raw, json) Hash identifier: rVASYW5/WtDrlmqHdSPW5Yj5FqOVwy02Ia+DdnzjlpU= Subject key identifier: 22:69:3D:57:26:60:4E:C2:C5:98:C9:0B:38:88:FF:36:96:54:91:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A7AA0DA91B7F1E86818267F1D03443217E84C02 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a4c721c-56dc-4bfb-a898-5f7959487330.roa Signing time: Sat 16 May 2026 02:10:06 +0000 ROA not before: Sat 16 May 2026 02:10:06 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 119.12.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:7a:a0:da:91:b7:f1:e8:68:18:26:7f:1d:03:44:32:17:e8:4c:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 02:10:06 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=989fdcc7e53bf447e3d1b2f3c6cb7992ca785372c42809ab53ea22f7bad0db0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:57:d9:c3:68:cd:b0:ba:8d:ee:a8:40:5c:87: 02:48:72:58:b0:50:1f:35:6d:47:e4:3f:eb:c1:a6: e2:e7:3d:56:87:5a:e1:55:2c:be:52:a1:9b:b8:f8: bb:ae:77:ba:3b:0f:17:a3:b6:8c:49:2e:cd:c1:f0: 51:fa:79:3b:25:57:12:69:18:72:bb:80:57:4d:d8: f5:8b:b1:4a:b5:06:0e:22:73:fc:e7:a4:ae:e1:fd: dd:70:1e:e2:96:26:e8:f0:2f:cb:d1:dd:e0:ec:a2: 45:06:b3:eb:ff:ec:cc:73:a0:a2:0c:2b:89:e4:04: 55:65:b6:73:70:ca:e2:79:c7:c3:3d:0f:73:23:09: d8:17:04:26:24:63:07:67:35:86:91:f3:62:b9:98: e0:2b:0c:e0:91:e4:98:7d:d2:c5:05:b3:5e:9d:ca: 1b:c4:fc:3a:93:b4:09:e9:c9:25:5b:e0:63:c7:66: 41:40:83:0b:3a:ff:4c:a1:c3:f9:18:d6:50:c7:2c: 14:72:d2:3e:fc:51:4c:d1:f7:e3:11:de:c6:6c:89: 2f:81:30:fd:55:f3:e7:46:ff:e9:b3:f4:68:de:b2: cb:13:da:ce:f2:80:50:0b:1e:e3:b4:87:2c:bf:04: 6e:09:d3:5a:cd:22:85:ba:09:6a:97:65:04:e0:67: 2d:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:69:3D:57:26:60:4E:C2:C5:98:C9:0B:38:88:FF:36:96:54:91:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a4c721c-56dc-4bfb-a898-5f7959487330.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.12.0.0/20 Signature Algorithm: sha256WithRSAEncryption 99:15:86:97:c2:a4:53:74:2b:2e:ce:2e:7d:4d:59:c2:7f:99: 4e:d2:54:f5:c0:4d:52:9a:97:49:1a:d3:16:36:ce:da:32:c2: 6c:f9:ae:43:af:40:a1:98:41:1b:59:eb:c2:63:83:74:c2:cd: 99:a5:5c:30:92:1f:92:f6:41:82:14:bc:6a:2f:d4:0a:05:76: 04:83:53:d7:97:cd:61:19:84:17:e3:cc:6b:96:96:a6:0c:4b: 39:f5:80:cd:06:4b:bf:8d:64:85:1b:a0:27:13:bd:fd:a2:7b: 89:e2:4f:2e:e1:f9:3a:87:54:eb:49:0e:32:80:dd:42:43:dc: 4b:57:4a:f2:5e:54:7d:e4:ac:dc:54:ae:f9:a5:b3:7e:7c:05: f0:0b:9a:01:86:87:4d:9d:a9:6a:34:fc:ba:43:d3:1d:6a:bf: 1a:af:4e:44:37:45:fe:1a:46:75:91:5d:38:78:43:2c:19:88: b8:48:22:9c:66:74:b7:e3:e0:45:a0:47:8b:cb:1f:e0:f9:1b: 17:6b:fe:18:1a:66:a3:db:38:e4:71:e4:73:24:fd:76:55:9a: f8:1c:d9:1a:ba:e6:cd:b9:42:a6:2f:48:11:b2:ff:51:90:cf: 82:44:a4:aa:1f:a2:c8:71:04:43:52:fe:1e:f5:4d:3d:e4:48: b8:86:57:e3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSnqg2pG38ehoGCZ/HQNEMhfoTAIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDIxMDA2WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODlmZGNjN2U1M2JmNDQ3ZTNkMWIyZjNjNmNiNzk5MmNh Nzg1MzcyYzQyODA5YWI1M2VhMjJmN2JhZDBkYjBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2V9nDaM2wuo3uqEBchwJIcliwUB81bUfkP+vBpuLnPVaH WuFVLL5SoZu4+Luud7o7DxejtoxJLs3B8FH6eTslVxJpGHK7gFdN2PWLsUq1Bg4i c/znpK7h/d1wHuKWJujwL8vR3eDsokUGs+v/7MxzoKIMK4nkBFVltnNwyuJ5x8M9 D3MjCdgXBCYkYwdnNYaR82K5mOArDOCR5Jh90sUFs16dyhvE/DqTtAnpySVb4GPH ZkFAgws6/0yhw/kY1lDHLBRy0j78UUzR9+MR3sZsiS+BMP1V8+dG/+mz9GjesssT 2s7ygFALHuO0hyy/BG4J01rNIoW6CWqXZQTgZy0LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUImk9VyZgTsLFmMkLOIj/NpZUkT8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhNGM3MjFjLTU2ZGMtNGJmYi1hODk4LTVmNzk1OTQ4NzMzMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAR3DAAwDQYJKoZIhvcNAQELBQADggEBAJkVhpfCpFN0Ky7OLn1NWcJ/mU7S VPXATVKal0ka0xY2ztoywmz5rkOvQKGYQRtZ68Jjg3TCzZmlXDCSH5L2QYIUvGov 1AoFdgSDU9eXzWEZhBfjzGuWlqYMSzn1gM0GS7+NZIUboCcTvf2ie4niTy7h+TqH VOtJDjKA3UJD3EtXSvJeVH3krNxUrvmls358BfALmgGGh02dqWo0/LpD0x1qvxqv TkQ3Rf4aRnWRXTh4QywZiLhIIpxmdLfj4EWgR4vLH+D5Gxdr/hgaZqPbOORx5HMk /XZVmvgc2Rq65s25QqYvSBGy/1GQz4JEpKofoshxBENS/h71TT3kSLiGV+M= -----END CERTIFICATE-----Generated at Sat Jun 13 07:10:32 2026 by rpki-client