$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20f17517-4992-480d-9d79-b11ee8e9ff75.roa File: 20f17517-4992-480d-9d79-b11ee8e9ff75.roa (raw, json) Hash identifier: uLdrPvQR09R/v13J+a9o0gz113FDqTwkVCoZFGuCtx4= Subject key identifier: 10:08:B7:89:03:2E:7A:E5:31:4E:06:86:9A:3C:04:06:C5:52:DC:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A531BE970A1DFFC2AD954D697938CDD16D12A32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20f17517-4992-480d-9d79-b11ee8e9ff75.roa Signing time: Fri 15 May 2026 02:00:51 +0000 ROA not before: Fri 15 May 2026 02:00:51 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:53:1b:e9:70:a1:df:fc:2a:d9:54:d6:97:93:8c:dd:16:d1:2a:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:00:51 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=753374558a5456f5fff4274f3ffde734cd9eea643d33a3069fe0055cbf62a6a9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:56:23:a6:3d:f3:0d:c5:7a:96:de:22:15:a0: 27:d3:57:74:15:be:79:31:20:d2:ba:3b:38:36:e5: 2d:bf:e9:8b:74:75:d0:80:27:54:17:33:d1:14:8a: 27:3f:7b:b7:1f:6d:ae:77:33:df:05:25:77:39:90: 77:59:fe:18:56:86:53:b3:1e:0b:73:a9:0c:4c:91: 15:9b:be:c9:e6:62:0e:3a:7e:fb:ce:94:7e:c4:71: 87:1c:43:95:24:4e:56:88:3a:90:33:9f:02:6f:17: ea:33:b3:e4:7b:d4:ba:6e:b2:0d:0e:d7:60:d6:a1: 0c:4a:f1:e7:85:09:53:0e:1b:4d:e4:a5:c2:70:7d: 5c:d1:6b:29:c3:6b:db:3b:4c:e4:11:ca:9a:f3:bd: f5:ef:f2:0d:6d:50:ca:7f:87:a3:4d:e0:1d:04:f3: 35:26:d4:24:42:cb:7e:94:d3:71:29:01:79:82:d6: bd:67:b3:80:44:64:37:07:85:9c:a1:61:6a:5d:4b: 94:95:12:8b:04:bd:ca:d2:0b:8d:40:ec:81:ce:f8: 7c:65:44:20:8b:5a:ee:74:7b:3d:fd:59:5a:9b:72: 99:25:7f:34:27:99:d0:46:ca:3e:71:cb:c7:f0:00: ef:d1:0f:3a:d1:68:8a:b1:80:5d:12:60:95:e4:6d: 10:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:08:B7:89:03:2E:7A:E5:31:4E:06:86:9A:3C:04:06:C5:52:DC:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20f17517-4992-480d-9d79-b11ee8e9ff75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.136.0/21 Signature Algorithm: sha256WithRSAEncryption 23:fb:3e:a0:d6:9b:57:07:dd:a5:49:67:8e:1a:f8:52:f8:7e: 00:a3:40:f7:00:87:20:e6:f2:3a:d0:32:ed:e3:47:cd:b0:2a: 52:10:20:96:c5:3a:2a:58:92:29:53:91:af:79:a3:ac:b6:15: e6:b1:14:1a:7f:a2:9f:b3:21:bf:80:57:1b:b9:bc:fe:35:b2: 92:14:55:c2:57:ff:c0:04:b1:ad:bf:d2:6b:75:e7:e1:0e:bb: af:87:8c:92:00:4f:fa:63:00:53:cb:d5:48:c6:65:03:bc:68: 30:83:d9:a1:25:92:28:ac:b5:e7:79:55:e4:0f:53:6f:de:20: 7d:04:82:d8:9f:70:37:71:49:24:73:a0:a1:d8:e0:1d:cb:bb: 7a:43:66:7b:b3:89:a9:8f:cc:fc:c0:ea:62:5a:69:ae:1c:bd: 67:b9:ed:48:4a:e0:f9:c2:ed:5c:7c:84:92:59:55:1a:6e:3e: 12:b6:d4:5b:15:66:ff:d6:09:f4:71:28:28:76:0c:ca:67:02: 2a:a7:f6:ca:4d:a0:48:68:07:8d:b1:68:52:e7:b3:a3:da:f9: d4:32:2e:46:db:e2:29:b7:f5:3e:b7:99:97:b8:fc:d9:fa:21: 71:a7:0e:b7:88:2e:e2:31:92:58:2d:5a:e6:6b:b4:7a:ca:18: 91:4d:c7:3b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUClMb6XCh3/wq2VTWl5OM3RbRKjIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIwMDUxWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTMzNzQ1NThhNTQ1NmY1ZmZmNDI3NGYzZmZkZTczNGNk OWVlYTY0M2QzM2EzMDY5ZmUwMDU1Y2JmNjJhNmE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsViOmPfMNxXqW3iIVoCfTV3QVvnkxINK6Ozg25S2/6Yt0 ddCAJ1QXM9EUiic/e7cfba53M98FJXc5kHdZ/hhWhlOzHgtzqQxMkRWbvsnmYg46 fvvOlH7EcYccQ5UkTlaIOpAznwJvF+ozs+R71Lpusg0O12DWoQxK8eeFCVMOG03k pcJwfVzRaynDa9s7TOQRyprzvfXv8g1tUMp/h6NN4B0E8zUm1CRCy36U03EpAXmC 1r1ns4BEZDcHhZyhYWpdS5SVEosEvcrSC41A7IHO+HxlRCCLWu50ez39WVqbcpkl fzQnmdBGyj5xy8fwAO/RDzrRaIqxgF0SYJXkbRCVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEAi3iQMueuUxTgaGmjwEBsVS3AIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwZjE3NTE3LTQ5OTItNDgwZC05ZDc5LWIxMWVlOGU5ZmY3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPM7IgwDQYJKoZIhvcNAQELBQADggEBACP7PqDWm1cH3aVJZ44a+FL4fgCj QPcAhyDm8jrQMu3jR82wKlIQIJbFOipYkilTka95o6y2FeaxFBp/op+zIb+AVxu5 vP41spIUVcJX/8AEsa2/0mt15+EOu6+HjJIAT/pjAFPL1UjGZQO8aDCD2aElkiis ted5VeQPU2/eIH0EgtifcDdxSSRzoKHY4B3Lu3pDZnuziamPzPzA6mJaaa4cvWe5 7UhK4PnC7Vx8hJJZVRpuPhK21FsVZv/WCfRxKCh2DMpnAiqn9spNoEhoB42xaFLn s6Pa+dQyLkbb4im39T63mZe4/Nn6IXGnDreILuIxklgtWuZrtHrKGJFNxzs= -----END CERTIFICATE-----Generated at Sat Jun 13 05:48:33 2026 by rpki-client