$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3959a7-6911-4246-baa0-2136c782f021.roa File: 1c3959a7-6911-4246-baa0-2136c782f021.roa (raw, json) Hash identifier: fuNWZkcN6FVdPrTB85azO7AlG42ZpHBKhqXTIxmnGGY= Subject key identifier: 4D:45:65:9D:A1:2E:09:ED:07:F5:10:75:CE:3B:08:D0:15:3D:54:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CD8EEB36E722C1FBBDD5AC4DE4C3BE871C3C7A4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3959a7-6911-4246-baa0-2136c782f021.roa Signing time: Sat 16 May 2026 01:01:23 +0000 ROA not before: Sat 16 May 2026 01:01:23 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d8:ee:b3:6e:72:2c:1f:bb:dd:5a:c4:de:4c:3b:e8:71:c3:c7:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:01:23 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=741f2900b34500e43e597955abd8e8c78b3e19c8196dd77a563544e9959f9220, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:fe:58:34:c4:e8:32:a4:12:bf:5c:f8:52:67: 9d:4c:e7:37:e8:d4:6c:64:12:9e:a7:b8:5a:c9:71: 56:f9:18:c8:59:85:61:26:6d:54:89:6f:2b:7e:7f: 5c:98:f4:26:7a:39:91:c9:d4:48:b7:fb:38:a5:e2: d7:74:be:83:13:23:17:e4:c6:fc:e9:89:18:15:36: 6e:8c:74:90:06:6c:49:19:ba:a0:5e:0f:78:71:72: 28:59:0a:fd:2f:78:d2:35:0a:bf:8a:41:92:26:60: a7:f0:49:37:19:11:19:f7:ba:c1:35:6f:7b:67:ee: 94:ec:83:e5:20:4c:db:05:d8:92:44:1d:32:7d:ae: 2b:22:2e:dc:22:a1:60:c3:00:9b:02:27:79:fb:32: 67:48:15:6e:03:b9:de:1f:fe:6b:46:b4:c9:53:00: a2:54:c5:93:d5:46:3a:7e:29:d1:da:96:8c:50:0e: 59:a2:29:2f:61:0e:f7:30:32:3e:fe:c5:49:16:05: 89:88:ae:3b:43:c3:e0:fa:99:09:9e:9a:fb:6f:c9: 60:42:71:79:84:ae:21:bd:5f:c3:33:3c:ec:c7:a6: c1:3d:3d:6f:f5:27:bb:91:a5:5f:b7:eb:aa:3e:84: 77:d9:40:83:18:d3:79:8b:49:98:0b:c5:d1:86:85: b4:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:45:65:9D:A1:2E:09:ED:07:F5:10:75:CE:3B:08:D0:15:3D:54:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c3959a7-6911-4246-baa0-2136c782f021.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.0.0/19 Signature Algorithm: sha256WithRSAEncryption 16:14:50:19:49:98:62:67:1a:48:9a:6a:d0:a4:75:91:5b:80: df:09:6d:d6:87:40:b9:22:4f:8a:11:a5:fb:50:ff:7d:ef:ba: 51:b1:25:81:cf:c6:cc:63:3c:bd:c0:1c:38:2c:8d:cb:ae:22: 85:32:00:37:7e:93:93:8c:ef:04:5b:81:0c:6c:21:5f:bb:c7: e3:39:3c:cb:72:74:68:88:b7:3b:af:bc:a0:6c:13:d0:bd:1d: 26:de:a4:bb:6b:dd:85:af:6f:43:ca:9a:87:f0:95:3f:97:b0: ca:f7:9e:fe:4a:94:1c:0a:2e:6b:25:fa:08:91:8e:e4:6e:35: 88:ec:0c:55:3d:c5:34:1d:59:b0:24:42:a6:67:6c:d4:95:98: db:f9:eb:05:a0:e0:03:98:5d:1e:6e:c7:3a:d7:50:67:1c:b8: 8a:fa:33:5c:7a:35:0e:4e:2f:1f:6c:b8:dd:51:96:7b:ed:b0: e5:c4:d1:76:fa:ed:28:53:c6:00:f4:7e:37:f5:ff:1d:2d:b7: 7a:d5:c2:52:d4:ed:33:ad:43:35:6e:c5:66:82:13:34:50:c4: 3a:c2:d4:c3:bc:0c:37:1f:8c:a0:a4:1c:9e:3c:4a:be:d3:fa: 08:8b:3b:2f:66:0c:99:82:53:f5:be:45:fa:d9:95:3e:5c:fe: a3:af:73:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULNjus25yLB+73VrE3kw76HHDx6QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEwMTIzWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDFmMjkwMGIzNDUwMGU0M2U1OTc5NTVhYmQ4ZThjNzhi M2UxOWM4MTk2ZGQ3N2E1NjM1NDRlOTk1OWY5MjIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDG/lg0xOgypBK/XPhSZ51M5zfo1GxkEp6nuFrJcVb5GMhZ hWEmbVSJbyt+f1yY9CZ6OZHJ1Ei3+zil4td0voMTIxfkxvzpiRgVNm6MdJAGbEkZ uqBeD3hxcihZCv0veNI1Cr+KQZImYKfwSTcZERn3usE1b3tn7pTsg+UgTNsF2JJE HTJ9risiLtwioWDDAJsCJ3n7MmdIFW4Dud4f/mtGtMlTAKJUxZPVRjp+KdHaloxQ DlmiKS9hDvcwMj7+xUkWBYmIrjtDw+D6mQmemvtvyWBCcXmEriG9X8MzPOzHpsE9 PW/1J7uRpV+366o+hHfZQIMY03mLSZgLxdGGhbSLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTUVlnaEuCe0H9RB1zjsI0BU9VBYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjMzk1OWE3LTY5MTEtNDI0Ni1iYWEwLTIxMzZjNzgyZjAyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXFQAwDQYJKoZIhvcNAQELBQADggEBABYUUBlJmGJnGkiaatCkdZFbgN8J bdaHQLkiT4oRpftQ/33vulGxJYHPxsxjPL3AHDgsjcuuIoUyADd+k5OM7wRbgQxs IV+7x+M5PMtydGiItzuvvKBsE9C9HSbepLtr3YWvb0PKmofwlT+XsMr3nv5KlBwK Lmsl+giRjuRuNYjsDFU9xTQdWbAkQqZnbNSVmNv56wWg4AOYXR5uxzrXUGccuIr6 M1x6NQ5OLx9suN1RlnvtsOXE0Xb67ShTxgD0fjf1/x0tt3rVwlLU7TOtQzVuxWaC EzRQxDrC1MO8DDcfjKCkHJ48Sr7T+giLOy9mDJmCU/W+RfrZlT5c/qOvc1U= -----END CERTIFICATE-----Generated at Sat Jun 13 07:22:20 2026 by rpki-client