$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa File: 3550ed23-56cb-4039-b3db-d2d82f35e363.roa (raw, json) Hash identifier: qXDnZNpMsRo4KHvECwC1hx6ualid8y2mFggGdxfEGHo= Subject key identifier: 16:5A:8C:50:34:D0:72:52:22:05:08:DD:22:66:EB:31:BD:ED:D6:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 462BBE507B5D6B57406E7246F38B25EAE803AC40 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa Signing time: Fri 15 May 2026 00:50:32 +0000 ROA not before: Fri 15 May 2026 00:50:32 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.225.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:2b:be:50:7b:5d:6b:57:40:6e:72:46:f3:8b:25:ea:e8:03:ac:40 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:50:32 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=8c12cd5549c5640d0f0ee716d1d9981a9a77d50f280fed99faa5dcea33946efd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1b:22:8c:3d:0b:f4:a8:bc:0d:82:b0:4f:99: 8e:da:eb:80:54:a1:d4:e1:b1:b2:71:ba:2d:f7:3f: dc:12:e0:14:23:68:13:ba:14:c9:78:1f:90:cd:67: 86:e9:4a:fe:49:1b:f9:04:34:ba:6d:6b:85:5b:f5: bf:f9:c0:af:52:e1:5d:4b:07:5a:99:fa:4f:43:8e: 19:1b:1e:87:23:06:31:e3:ec:d3:9b:9f:67:7e:0d: c9:0f:e4:88:8c:19:93:24:5c:12:f3:bb:86:a5:a8: ce:f7:8c:4c:7f:c0:2d:3a:fc:ab:8a:f1:fa:e2:87: 0c:9a:23:0a:73:de:eb:e9:0e:d4:90:fa:68:8e:ec: 59:94:80:0c:aa:c0:f4:7f:fd:85:ea:72:84:52:7a: 64:a7:b5:6a:7d:15:0c:09:a4:e2:37:7c:3a:ec:cf: 25:bd:a8:2e:67:03:e9:68:47:f1:83:24:c7:30:0b: 20:09:71:c0:a4:6e:92:dd:6a:d9:c4:19:15:a7:7c: d0:9f:5e:ad:82:85:28:f3:08:25:07:20:ac:f5:f0: 31:c6:27:12:5b:2b:4f:76:f1:d8:0d:3f:be:bc:ae: ba:a8:16:39:3a:e2:35:64:9c:90:e4:dc:d7:72:37: 0a:61:83:b9:32:0f:5d:a0:be:ff:1b:8c:84:66:07: a0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:5A:8C:50:34:D0:72:52:22:05:08:DD:22:66:EB:31:BD:ED:D6:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:ac:aa:f0:a7:bd:34:70:92:47:5a:14:28:3f:5d:b9:d5:e7: 9b:e2:90:2e:64:c6:44:9d:61:ee:e4:3e:4e:4e:ae:21:be:63: 11:f2:9a:a2:cf:40:1d:8e:0c:da:7c:8e:d3:93:00:8e:e2:e1: 50:39:9d:bf:c7:bf:9c:8c:9b:6a:76:23:98:84:6c:85:58:6a: 17:6c:23:9a:9e:89:c5:08:81:61:9e:8d:62:49:6e:0c:8d:0d: 7c:73:4f:e3:93:71:c5:05:31:7d:69:50:33:e8:7f:e7:1e:6d: c6:34:70:a7:14:e7:4b:14:5e:74:12:e7:3e:bf:84:a6:90:5a: 8d:83:f8:7b:fb:81:32:54:b7:b3:77:0e:be:24:32:dc:93:d5: 55:ad:9f:a4:c2:ca:5f:bf:90:b5:79:bc:8e:5d:7b:6f:7c:1f: f6:9f:88:63:3d:2c:56:76:68:c6:48:70:f3:54:99:bf:2f:b1: c8:e3:93:72:03:cd:ec:12:d0:f0:93:da:80:42:75:90:d4:63: 1f:6b:9e:f8:1c:c4:72:5a:18:c7:82:a4:a8:fa:f5:b4:30:6d: 08:7d:82:8f:26:07:2c:ca:a6:79:f8:26:ec:81:bc:4b:12:cc: 00:d7:82:cf:af:68:15:c8:b1:b9:7a:6c:8f:d9:c3:cc:77:d2: 62:f5:4b:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURiu+UHtda1dAbnJG84sl6ugDrEAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDA1MDMyWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzEyY2Q1NTQ5YzU2NDBkMGYwZWU3MTZkMWQ5OTgxYTlh NzdkNTBmMjgwZmVkOTlmYWE1ZGNlYTMzOTQ2ZWZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCbGyKMPQv0qLwNgrBPmY7a64BUodThsbJxui33P9wS4BQj aBO6FMl4H5DNZ4bpSv5JG/kENLpta4Vb9b/5wK9S4V1LB1qZ+k9DjhkbHocjBjHj 7NObn2d+DckP5IiMGZMkXBLzu4alqM73jEx/wC06/KuK8frihwyaIwpz3uvpDtSQ +miO7FmUgAyqwPR//YXqcoRSemSntWp9FQwJpOI3fDrszyW9qC5nA+loR/GDJMcw CyAJccCkbpLdatnEGRWnfNCfXq2ChSjzCCUHIKz18DHGJxJbK0928dgNP768rrqo Fjk64jVknJDk3NdyNwphg7kyD12gvv8bjIRmB6BpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUFlqMUDTQclIiBQjdImbrMb3t1pwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NTBlZDIzLTU2Y2ItNDAzOS1iM2RiLWQyZDgyZjM1ZTM2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP4TANBgkqhkiG9w0BAQsFAAOCAQEAhKyq8Ke9NHCSR1oUKD9dudXnm+KQ LmTGRJ1h7uQ+Tk6uIb5jEfKaos9AHY4M2nyO05MAjuLhUDmdv8e/nIybanYjmIRs hVhqF2wjmp6JxQiBYZ6NYkluDI0NfHNP45NxxQUxfWlQM+h/5x5txjRwpxTnSxRe dBLnPr+EppBajYP4e/uBMlS3s3cOviQy3JPVVa2fpMLKX7+QtXm8jl17b3wf9p+I Yz0sVnZoxkhw81SZvy+xyOOTcgPN7BLQ8JPagEJ1kNRjH2ue+BzEcloYx4KkqPr1 tDBtCH2CjyYHLMqmefgm7IG8SxLMANeCz69oFcixuXpsj9nDzHfSYvVLiQ== -----END CERTIFICATE-----Generated at Sat Jun 13 05:48:27 2026 by rpki-client