$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa File: 21224473-433c-4fa2-9491-e141ae8efbea.roa (raw, json) Hash identifier: /GA2bdCD2OmkrV70nzsQqQ+l3XesqPvoaFbAf54S2o8= Subject key identifier: D3:67:F3:96:A1:5E:A2:CF:18:C6:05:78:57:23:D4:A0:09:DF:58:75 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FFF20C2643BB1C059D02EF69FC655D6561E4FF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa Signing time: Sun 17 May 2026 00:50:38 +0000 ROA not before: Sun 17 May 2026 00:50:38 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 75.3.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:ff:20:c2:64:3b:b1:c0:59:d0:2e:f6:9f:c6:55:d6:56:1e:4f:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:50:38 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=64a7f73477a8d00fb54b5e2f086ec2fcf134c8530cd0799c6ceda5bdf9057a7e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:61:29:24:df:22:e6:3e:22:21:af:26:78:26: e5:ae:d8:ea:0e:e3:05:8b:13:aa:b1:40:5c:8b:ee: 4c:36:d7:b1:33:85:4e:fd:dd:74:f5:84:89:89:e1: 04:11:0a:ae:23:69:96:48:8b:4a:d8:f6:0f:85:ac: cf:c4:69:8f:09:72:49:aa:55:88:03:90:1e:08:4f: 51:7c:e0:40:75:eb:8b:a5:2d:7f:8f:c8:a2:49:99: cf:94:e8:1c:0f:48:7c:ce:0f:2a:32:6b:99:b2:18: 75:a7:e2:4c:47:39:9f:ea:e9:9e:c6:7f:df:da:67: 0e:b7:0b:4a:fb:07:36:ca:d7:cd:94:59:34:27:6a: d3:77:a1:4b:2c:07:3b:12:68:ef:d3:a8:cb:a3:a9: a7:b6:19:4d:73:bb:6d:ca:c2:8e:20:00:92:d4:28: 49:13:07:d8:c4:9c:e1:7b:e7:21:b5:4e:0e:46:8d: cc:b6:74:02:b8:eb:e0:26:4c:52:6c:05:63:f1:4b: 3f:ea:94:2e:30:c1:a5:d3:25:27:be:ba:ae:9f:26: 66:af:aa:d7:a7:9e:9c:ad:f8:1c:f4:88:12:77:9b: 01:ad:75:76:3f:04:a3:71:26:fd:0a:ca:b1:eb:4f: 5b:78:52:44:f0:de:dd:e8:a8:e3:30:c8:b0:c7:4b: e7:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:67:F3:96:A1:5E:A2:CF:18:C6:05:78:57:23:D4:A0:09:DF:58:75 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.3.128.0/18 Signature Algorithm: sha256WithRSAEncryption 33:38:9a:f8:dc:01:2f:e3:48:a5:d3:c0:07:63:ba:95:c8:48: 8f:cd:29:38:d2:8a:f9:47:6f:35:f5:a0:cb:ce:b5:f4:17:fa: 53:d0:2c:d1:e1:c6:30:95:87:d0:04:a7:5b:c6:31:ce:7b:02: ec:fd:65:87:01:13:7b:47:b3:7d:12:03:f3:f8:1d:86:37:2d: a0:33:d1:5c:12:65:3e:00:f7:fc:8e:46:16:75:63:52:7d:85: f3:54:9c:c4:65:67:c4:26:03:81:dc:e2:0b:3e:8a:80:7a:b4: b5:35:90:cb:5c:03:05:4e:69:29:a8:c1:e0:57:91:3e:c1:64: 8c:23:44:bd:98:86:42:ee:a9:00:d7:76:c4:f6:d9:80:8b:49: b1:30:f8:b4:03:e2:33:4d:45:ae:88:d1:a2:1f:43:0d:43:26: 5c:7f:30:e8:ba:33:9f:94:94:6f:b5:16:f4:d2:40:9a:25:70: e5:d7:41:31:e6:13:2e:93:3b:17:96:ff:91:bc:cc:8a:ce:f1: 74:17:58:20:da:39:7a:f2:5e:5f:d8:1e:49:87:fa:05:29:24: 81:85:d6:19:71:b4:30:77:fb:df:d0:a4:ee:c0:0d:f1:10:66: 3f:ec:37:0f:a5:ad:8a:44:89:63:3a:83:f9:a4:bd:f1:ad:8a: c1:6c:6a:e6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP/8gwmQ7scBZ0C72n8ZV1lYeT/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA1MDM4WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NGE3ZjczNDc3YThkMDBmYjU0YjVlMmYwODZlYzJmY2Yx MzRjODUzMGNkMDc5OWM2Y2VkYTViZGY5MDU3YTdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTYSkk3yLmPiIhryZ4JuWu2OoO4wWLE6qxQFyL7kw217Ez hU793XT1hImJ4QQRCq4jaZZIi0rY9g+FrM/EaY8JckmqVYgDkB4IT1F84EB164ul LX+PyKJJmc+U6BwPSHzODyoya5myGHWn4kxHOZ/q6Z7Gf9/aZw63C0r7BzbK182U WTQnatN3oUssBzsSaO/TqMujqae2GU1zu23Kwo4gAJLUKEkTB9jEnOF75yG1Tg5G jcy2dAK46+AmTFJsBWPxSz/qlC4wwaXTJSe+uq6fJmavqtennpyt+Bz0iBJ3mwGt dXY/BKNxJv0KyrHrT1t4UkTw3t3oqOMwyLDHS+djAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU02fzlqFeos8YxgV4VyPUoAnfWHUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxMjI0NDczLTQzM2MtNGZhMi05NDkxLWUxNDFhZThlZmJlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLA4AwDQYJKoZIhvcNAQELBQADggEBADM4mvjcAS/jSKXTwAdjupXISI/N KTjSivlHbzX1oMvOtfQX+lPQLNHhxjCVh9AEp1vGMc57Auz9ZYcBE3tHs30SA/P4 HYY3LaAz0VwSZT4A9/yORhZ1Y1J9hfNUnMRlZ8QmA4Hc4gs+ioB6tLU1kMtcAwVO aSmoweBXkT7BZIwjRL2YhkLuqQDXdsT22YCLSbEw+LQD4jNNRa6I0aIfQw1DJlx/ MOi6M5+UlG+1FvTSQJolcOXXQTHmEy6TOxeW/5G8zIrO8XQXWCDaOXryXl/YHkmH +gUpJIGF1hlxtDB3+9/QpO7ADfEQZj/sNw+lrYpEiWM6g/mkvfGtisFsauY= -----END CERTIFICATE-----Generated at Sat Jun 13 07:06:30 2026 by rpki-client