$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1af93383-1fd7-4ca1-b61f-5e6110aeec58.roa File: 1af93383-1fd7-4ca1-b61f-5e6110aeec58.roa (raw, json) Hash identifier: YcKL8GwzdJ6vzovP6fVmMZj7AyutorStZ5jvzBZxEj0= Subject key identifier: E1:D2:C8:89:1D:A6:CC:20:E7:E9:33:8B:E3:E7:61:AA:BA:60:CC:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03C9012F9724C931A36A5E6882E1030F4C7BE94D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1af93383-1fd7-4ca1-b61f-5e6110aeec58.roa Signing time: Fri 15 May 2026 02:30:11 +0000 ROA not before: Fri 15 May 2026 02:30:11 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.88.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:c9:01:2f:97:24:c9:31:a3:6a:5e:68:82:e1:03:0f:4c:7b:e9:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:30:11 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=9d819ffa0fc6eccf23b42e8301efbde874a39691fd896fd3d3a033f50bddc46b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:2c:7d:bc:cd:3a:03:aa:c3:d5:fd:29:2e:6a: 77:78:85:0d:04:a7:6c:7c:5c:19:1a:b8:2e:38:b0: 31:b9:42:7a:18:77:67:8f:f7:fa:72:77:3c:cf:33: 2f:36:6c:98:88:39:7d:8f:23:18:a0:68:06:1a:d8: c9:bc:f8:25:fb:87:2a:35:2c:e4:19:0c:45:b5:c5: ac:13:6e:da:05:1e:b3:94:fa:b7:03:b1:4c:50:2d: d5:ad:10:ab:d8:e5:27:eb:38:53:98:66:75:62:33: de:8f:97:87:cc:75:ba:0f:0c:60:31:4f:b5:30:74: 10:5f:bc:d7:6a:f8:5b:20:9e:e9:7c:bb:fa:93:90: 1c:70:e2:60:93:0e:57:9b:c1:10:65:33:7d:dc:59: 88:e7:67:c9:42:46:9e:ff:ac:db:8b:d7:75:86:2b: 41:46:c0:1e:0f:b5:31:d3:91:02:38:28:ca:c5:a1: 16:32:a7:56:98:fe:03:fe:40:ba:d8:fb:59:c2:65: d5:47:e6:94:cc:11:4f:f4:05:41:37:fe:55:e1:b4: d3:e1:ab:e7:8c:c0:a0:9c:b3:73:6c:78:f3:8d:aa: 62:d1:ee:80:98:35:01:fb:4c:ad:81:96:66:b6:e7: 44:f4:6e:ef:f6:59:f9:1d:ee:d1:86:49:d5:cb:0a: bc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:D2:C8:89:1D:A6:CC:20:E7:E9:33:8B:E3:E7:61:AA:BA:60:CC:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1af93383-1fd7-4ca1-b61f-5e6110aeec58.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.88.0/22 Signature Algorithm: sha256WithRSAEncryption ae:28:5b:3f:2b:1f:a4:7a:b7:a9:aa:09:f9:90:40:85:fc:dc: c4:f0:7e:ac:7d:85:27:35:a2:76:b1:13:af:22:c9:e3:22:d4: f6:e4:1d:2f:10:52:6e:26:ca:ac:b6:7d:1c:65:36:83:fc:72: 42:10:13:b9:36:78:8b:ed:55:2e:ff:95:46:88:9d:dc:7c:e4: 78:d1:9c:b3:08:b9:cf:6e:ad:39:16:ad:df:1d:e4:e9:ed:93: c8:26:1c:e7:be:aa:3d:a3:6a:4f:1a:89:d7:7a:2c:e0:a8:03: 67:c4:23:23:83:05:4f:e6:ad:68:7e:6b:cb:83:50:80:23:a1: e3:f9:85:2f:38:87:b2:49:d0:2c:50:1c:bc:ff:b0:28:5f:f9: 12:6d:08:0a:ab:5f:29:2a:c1:8a:85:0b:c6:40:5f:4d:6d:c9: e2:28:81:a0:dd:c0:a3:49:d3:48:99:71:59:77:ca:8d:5c:32: f9:9e:5a:0f:4f:62:b0:de:a2:35:5b:c4:51:70:92:ce:01:bf: ef:5a:ac:8c:5e:b7:50:e6:84:cd:ee:15:58:e2:41:67:ef:3b: cb:89:1d:1a:d7:d4:d8:c9:cc:e3:2e:9d:f5:91:5c:f8:04:83: 7f:5a:34:4b:a5:36:c2:7d:06:39:3c:4a:e9:97:95:c0:cf:5e: e9:08:c5:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA8kBL5ckyTGjal5oguEDD0x76U0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIzMDExWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDgxOWZmYTBmYzZlY2NmMjNiNDJlODMwMWVmYmRlODc0 YTM5NjkxZmQ4OTZmZDNkM2EwMzNmNTBiZGRjNDZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpLH28zToDqsPV/Skuand4hQ0Ep2x8XBkauC44sDG5QnoY d2eP9/pydzzPMy82bJiIOX2PIxigaAYa2Mm8+CX7hyo1LOQZDEW1xawTbtoFHrOU +rcDsUxQLdWtEKvY5SfrOFOYZnViM96Pl4fMdboPDGAxT7UwdBBfvNdq+Fsgnul8 u/qTkBxw4mCTDlebwRBlM33cWYjnZ8lCRp7/rNuL13WGK0FGwB4PtTHTkQI4KMrF oRYyp1aY/gP+QLrY+1nCZdVH5pTMEU/0BUE3/lXhtNPhq+eMwKCcs3NsePONqmLR 7oCYNQH7TK2Blma250T0bu/2Wfkd7tGGSdXLCrx/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4dLIiR2mzCDn6TOL4+dhqrpgzKswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhZjkzMzgzLTFmZDctNGNhMS1iNjFmLTVlNjExMGFlZWM1OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFVgwDQYJKoZIhvcNAQELBQADggEBAK4oWz8rH6R6t6mqCfmQQIX83MTw fqx9hSc1onaxE68iyeMi1PbkHS8QUm4myqy2fRxlNoP8ckIQE7k2eIvtVS7/lUaI ndx85HjRnLMIuc9urTkWrd8d5Ontk8gmHOe+qj2jak8aidd6LOCoA2fEIyODBU/m rWh+a8uDUIAjoeP5hS84h7JJ0CxQHLz/sChf+RJtCAqrXykqwYqFC8ZAX01tyeIo gaDdwKNJ00iZcVl3yo1cMvmeWg9PYrDeojVbxFFwks4Bv+9arIxet1DmhM3uFVji QWfvO8uJHRrX1NjJzOMunfWRXPgEg39aNEulNsJ9Bjk8SumXlcDPXukIxW0= -----END CERTIFICATE-----Generated at Sat Jun 13 07:12:35 2026 by rpki-client