$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa File: 235ba01b-bc16-4244-a93f-06a145b0732c.roa (raw, json) Hash identifier: f2IMSMOsc3Ng8o6OS0S8OE6RCK+6/Bvwrf5YYnHKEzE= Subject key identifier: 35:26:B3:FA:DE:52:2D:55:85:83:CE:78:C0:4B:6D:F5:C5:5C:25:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3596E962DE9F5D74E4A535FD9EDE5879C9F594EA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa Signing time: Fri 15 May 2026 01:21:44 +0000 ROA not before: Fri 15 May 2026 01:21:44 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 147.106.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:96:e9:62:de:9f:5d:74:e4:a5:35:fd:9e:de:58:79:c9:f5:94:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:21:44 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=6ac91d724edf441f050a0d7c14bb4cbe92924787a010da567a484abb54b82eba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:39:4c:df:33:b0:21:21:ef:f3:1a:53:bf:c2: fb:77:32:59:73:8f:72:93:49:17:5d:68:e4:46:ad: ce:8d:60:26:60:de:a1:58:d5:b8:c1:6a:88:a6:1c: d9:2a:39:70:81:da:ba:d5:c8:23:d8:eb:d6:ab:2e: bc:4a:6d:8a:12:b4:60:75:f5:00:07:3a:df:07:cb: 67:ce:eb:0f:3b:bc:23:d3:d6:fd:4a:a3:57:7d:38: b1:50:49:04:cb:03:12:48:96:38:e8:07:9e:ef:9c: 19:35:d8:83:53:76:5b:9c:1f:da:a1:da:f1:40:8b: ab:86:57:c3:7b:37:76:ae:ff:78:35:c3:72:18:36: f6:cc:41:78:9c:41:6c:51:80:d1:92:e7:22:4f:b8: ae:fe:76:d5:25:fc:b6:05:d1:e4:8c:e1:4b:b8:4c: 23:af:38:fa:87:a1:b8:93:fd:d3:bf:ed:0a:9d:fc: e4:90:3f:91:aa:bd:dd:e1:c6:34:0d:6f:fd:25:0f: e6:ef:c0:15:66:92:89:3b:26:f0:ff:8f:dc:88:ac: db:ee:da:9c:f0:24:7e:c7:66:a4:92:2a:9f:19:1a: 32:cb:42:f8:d9:b1:88:1c:c8:2a:5d:e7:90:3d:ef: 3d:d5:a2:92:07:f4:00:ff:43:f8:b6:3b:29:7e:b5: 83:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 35:26:B3:FA:DE:52:2D:55:85:83:CE:78:C0:4B:6D:F5:C5:5C:25:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.128.0/18 Signature Algorithm: sha256WithRSAEncryption 55:b3:c4:ae:ec:95:e2:54:42:f6:a2:e9:de:88:79:50:18:99: 61:e0:c5:d9:38:f0:36:16:c3:b8:59:36:c0:11:4b:8f:b0:96: cb:ed:95:11:50:93:df:ba:99:cd:a0:45:e3:7a:ba:d3:36:0b: 07:2b:3f:b9:48:9c:6d:aa:0d:aa:a4:b8:8b:2e:c7:db:d3:34: e9:79:0d:28:16:d1:d3:cf:33:bd:a2:04:d9:d9:af:45:dd:41: df:b7:52:fd:8c:f4:31:3c:05:15:48:da:21:89:36:b5:3f:17: 4d:42:0b:46:36:27:bd:3d:b4:02:20:f8:a9:78:a8:a1:29:5e: 2b:06:e5:7a:5c:48:4d:23:9b:29:7b:93:53:ec:91:09:d9:b2: 66:fe:05:c6:2d:67:d6:18:19:9c:ea:81:cd:30:e2:45:cf:fd: ef:3a:03:0f:d4:79:f1:ac:11:8c:8e:b0:7b:f0:45:af:4a:a2: 82:45:8a:c4:f9:ba:5c:f9:4a:2b:da:3e:96:bd:63:f7:ec:b0: 80:07:1f:88:6d:04:30:0a:36:c6:cb:5b:d9:d1:8d:cd:ee:71: 14:a5:5c:43:3a:ae:8d:08:e0:9b:ad:05:17:bf:f6:5f:68:c6: b8:f3:d0:59:db:39:2a:4c:a6:ea:99:4f:24:fb:99:3d:e0:ec: 03:fd:4a:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNZbpYt6fXXTkpTX9nt5Yecn1lOowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDEyMTQ0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2YWM5MWQ3MjRlZGY0NDFmMDUwYTBkN2MxNGJiNGNiZTky OTI0Nzg3YTAxMGRhNTY3YTQ4NGFiYjU0YjgyZWJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnOUzfM7AhIe/zGlO/wvt3Mllzj3KTSRddaORGrc6NYCZg 3qFY1bjBaoimHNkqOXCB2rrVyCPY69arLrxKbYoStGB19QAHOt8Hy2fO6w87vCPT 1v1Ko1d9OLFQSQTLAxJIljjoB57vnBk12INTdlucH9qh2vFAi6uGV8N7N3au/3g1 w3IYNvbMQXicQWxRgNGS5yJPuK7+dtUl/LYF0eSM4Uu4TCOvOPqHobiT/dO/7Qqd /OSQP5Gqvd3hxjQNb/0lD+bvwBVmkok7JvD/j9yIrNvu2pzwJH7HZqSSKp8ZGjLL QvjZsYgcyCpd55A97z3VopIH9AD/Q/i2Oyl+tYNDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNSaz+t5SLVWFg854wEtt9cVcJfkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNWJhMDFiLWJjMTYtNDI0NC1hOTNmLTA2YTE0NWIwNzMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTaoAwDQYJKoZIhvcNAQELBQADggEBAFWzxK7sleJUQvai6d6IeVAYmWHg xdk48DYWw7hZNsARS4+wlsvtlRFQk9+6mc2gReN6utM2CwcrP7lInG2qDaqkuIsu x9vTNOl5DSgW0dPPM72iBNnZr0XdQd+3Uv2M9DE8BRVI2iGJNrU/F01CC0Y2J709 tAIg+Kl4qKEpXisG5XpcSE0jmyl7k1PskQnZsmb+BcYtZ9YYGZzqgc0w4kXP/e86 Aw/UefGsEYyOsHvwRa9KooJFisT5ulz5SivaPpa9Y/fssIAHH4htBDAKNsbLW9nR jc3ucRSlXEM6ro0I4JutBRe/9l9oxrjz0FnbOSpMpuqZTyT7mT3g7AP9SoE= -----END CERTIFICATE-----Generated at Sat Jun 13 05:50:33 2026 by rpki-client