$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa File: 3589350f-7992-407d-b32f-3238cdd65087.roa (raw, json) Hash identifier: 52lwpH4drkGGq9mHjjtNmIY5kfpJu8EqoGAiDQ+6gJc= Subject key identifier: 88:5F:70:B3:CF:7A:89:C6:A3:DB:9A:7E:3B:02:4D:32:F3:93:92:46 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E5D2DB0A300CCCE73C35C3741DE8629F1D98BE6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa Signing time: Sun 17 May 2026 00:20:56 +0000 ROA not before: Sun 17 May 2026 00:20:56 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:5d:2d:b0:a3:00:cc:ce:73:c3:5c:37:41:de:86:29:f1:d9:8b:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:20:56 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=b138957528f85e669eddd508bd281927a55b8e2bcefb1718dea016dc2d16a34e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c5:fc:cb:8e:2a:de:38:c9:96:1b:ad:af:26: 3d:f0:9d:a7:b5:92:cc:bb:d1:4e:f2:86:47:61:61: d3:5f:0e:fa:d1:32:c0:df:0e:a7:85:80:99:34:b3: 79:97:02:b2:dd:5c:68:82:40:18:95:54:b5:54:cb: a7:43:c1:35:84:c2:04:80:c4:b0:bc:30:11:63:d7: 22:d6:52:ce:c9:79:ca:c8:72:a4:d1:ce:0a:f1:18: 60:99:54:fc:e1:56:9c:6f:8b:95:99:cf:5b:ac:a0: a1:d2:4d:2f:5f:43:b3:8e:95:33:85:1d:a2:0a:21: 8d:20:3a:b0:79:b4:10:b1:83:47:6d:f8:68:dd:56: 04:58:76:ee:c0:86:49:b8:ae:f7:02:6e:fa:b4:9b: 1b:ec:60:47:73:af:a6:3b:2a:d2:df:29:14:f3:d8: 4b:d5:51:22:ab:94:01:df:09:22:f2:14:47:d8:e1: a1:e3:87:27:94:14:a5:00:56:38:f3:f1:72:6b:f0: 7f:d8:d8:85:3d:34:57:3e:1f:d1:17:ec:fe:62:f1: 2e:68:17:87:a3:17:b9:45:1e:ca:77:52:cb:6a:53: f3:ea:7c:44:bd:8d:ad:de:a4:3a:9a:2c:87:8b:a3: cf:49:39:99:dc:94:70:f9:0c:0f:41:8e:2d:d1:f2: 4e:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:5F:70:B3:CF:7A:89:C6:A3:DB:9A:7E:3B:02:4D:32:F3:93:92:46 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.40.0/21 Signature Algorithm: sha256WithRSAEncryption 0a:63:f0:8c:16:3b:0a:e0:24:1e:95:48:50:32:32:3a:d0:c3: 8d:5a:14:9e:be:84:e9:b8:66:af:90:07:6e:58:c8:91:c9:1c: d3:92:e8:2c:82:b4:f9:b4:01:0f:1f:04:2e:d2:fe:86:04:e8: 7f:98:b5:44:72:4f:21:51:aa:fd:48:f4:f8:ce:89:c4:c1:45: 37:f1:3a:bb:97:72:07:b4:d4:0a:69:ad:d6:15:20:66:3f:2a: 73:a2:50:d1:9b:10:e2:04:bb:f0:95:bf:74:4c:9f:f5:78:a9: c7:c8:d1:af:f6:01:90:68:7f:57:74:61:05:93:14:34:47:61: 00:87:a9:ac:d7:eb:d0:27:4b:8b:36:b4:c2:48:3b:79:02:b9: cf:a2:7a:99:6f:27:20:b1:c1:fd:70:70:f5:94:02:c1:14:be: 1c:8a:4c:bc:3c:fb:c4:32:b0:f3:12:ff:73:79:1e:12:8d:4a: a0:e2:77:ae:74:b0:d3:a7:ab:ae:f8:95:56:12:0c:65:cd:a2: da:eb:74:69:fd:88:2b:12:82:27:c3:a4:d4:7b:f5:9b:09:b5: e1:de:37:87:a5:88:50:4a:bd:4e:2c:47:90:c3:3d:b2:13:71: ba:bc:91:d8:2a:a7:75:68:fd:ac:54:49:a0:a2:04:c3:82:ed: 17:5d:45:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbl0tsKMAzM5zw1w3Qd6GKfHZi+YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAyMDU2WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTM4OTU3NTI4Zjg1ZTY2OWVkZGQ1MDhiZDI4MTkyN2E1 NWI4ZTJiY2VmYjE3MThkZWEwMTZkYzJkMTZhMzRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1xfzLjireOMmWG62vJj3wnae1ksy70U7yhkdhYdNfDvrR MsDfDqeFgJk0s3mXArLdXGiCQBiVVLVUy6dDwTWEwgSAxLC8MBFj1yLWUs7JecrI cqTRzgrxGGCZVPzhVpxvi5WZz1usoKHSTS9fQ7OOlTOFHaIKIY0gOrB5tBCxg0dt +GjdVgRYdu7Ahkm4rvcCbvq0mxvsYEdzr6Y7KtLfKRTz2EvVUSKrlAHfCSLyFEfY 4aHjhyeUFKUAVjjz8XJr8H/Y2IU9NFc+H9EX7P5i8S5oF4ejF7lFHsp3UstqU/Pq fES9ja3epDqaLIeLo89JOZnclHD5DA9Bji3R8k5fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiF9ws896icaj25p+OwJNMvOTkkYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ODkzNTBmLTc5OTItNDA3ZC1iMzJmLTMyMzhjZGQ2NTA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANILCgwDQYJKoZIhvcNAQELBQADggEBAApj8IwWOwrgJB6VSFAyMjrQw41a FJ6+hOm4Zq+QB25YyJHJHNOS6CyCtPm0AQ8fBC7S/oYE6H+YtURyTyFRqv1I9PjO icTBRTfxOruXcge01ApprdYVIGY/KnOiUNGbEOIEu/CVv3RMn/V4qcfI0a/2AZBo f1d0YQWTFDRHYQCHqazX69AnS4s2tMJIO3kCuc+ieplvJyCxwf1wcPWUAsEUvhyK TLw8+8QysPMS/3N5HhKNSqDid650sNOnq674lVYSDGXNotrrdGn9iCsSgifDpNR7 9ZsJteHeN4eliFBKvU4sR5DDPbITcbq8kdgqp3Vo/axUSaCiBMOC7RddRXk= -----END CERTIFICATE-----Generated at Sat Jun 13 08:22:14 2026 by rpki-client