$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa File: 39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa (raw, json) Hash identifier: e/hXPlr7v7Pa3LOvPE84FQ2J96wLSJHH8Nk0gua8374= Subject key identifier: 1C:68:DF:01:43:82:E9:80:46:F5:28:97:33:54:20:9D:56:28:42:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 754FE1DA1225280C270A6034E636D67DD6F818F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa Signing time: Fri 15 May 2026 00:30:13 +0000 ROA not before: Fri 15 May 2026 00:30:13 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:4f:e1:da:12:25:28:0c:27:0a:60:34:e6:36:d6:7d:d6:f8:18:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:30:13 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=fdd5a9814faca3505e4c1a299bf4abd207f4c59f82e150ddcc7702cb2afa200a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b8:1d:05:3e:14:7c:1f:c8:2e:06:72:6c:7b: ad:43:30:f2:e4:b5:28:bf:54:c6:f2:c5:21:64:8d: cc:56:a0:ff:55:9f:77:73:5d:db:0b:fa:2d:10:38: 9e:c8:c4:61:dc:7f:28:9e:41:f0:1a:25:eb:ca:90: 2c:2e:89:8c:96:36:64:7e:de:1b:63:53:27:f0:bb: f2:3d:d7:0a:1d:ab:5f:63:f3:67:13:d7:c8:5d:ad: ec:51:74:d1:78:4f:7f:d9:d6:62:7e:c6:4f:29:dc: 39:b2:26:a0:74:0d:38:27:f1:81:98:0e:bb:b4:88: e0:af:bc:e3:2b:64:e7:0b:76:9c:c8:17:7a:5a:f2: 55:24:17:14:3f:33:6e:38:92:44:5d:73:bc:e8:54: fa:98:6b:7b:53:3d:ff:c3:c9:8a:8c:54:4e:61:75: 30:44:b4:7f:60:34:5d:32:78:75:38:88:1e:b1:57: f2:bc:38:ee:a0:0d:08:36:74:35:e3:bc:ec:03:7e: 22:23:65:c5:7a:53:6e:6c:7c:9c:d7:7c:81:95:c1: 95:3c:c8:10:52:5e:c1:9d:02:b0:70:cf:85:99:63: 71:0f:3b:cb:4e:82:17:14:c0:a3:17:1b:b9:fd:bf: c8:fc:39:37:9a:20:70:6f:3b:71:6e:e5:aa:43:5f: 43:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:68:DF:01:43:82:E9:80:46:F5:28:97:33:54:20:9D:56:28:42:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.200.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:05:a3:5d:d4:f3:e0:72:32:55:67:d1:56:4c:29:d2:a4:1a: d0:99:af:10:87:60:a9:7a:7b:da:63:2c:f3:74:88:b6:90:a1: 15:0d:09:70:2d:67:1e:07:b4:fe:a2:97:51:e9:b6:73:3e:fd: 02:ec:96:14:d7:bd:d2:5b:0c:6e:3b:24:79:ba:53:ef:08:3d: b8:b3:72:99:a4:a4:f0:79:32:4d:ba:3a:c2:f5:8a:fb:14:32: ae:04:58:15:1f:53:a5:a7:bb:56:4e:48:a4:68:d9:67:f4:e0: 0a:b3:ba:ce:29:35:51:7c:c4:a1:f1:b5:63:6a:8b:ac:c2:5d: 50:9f:76:56:df:ad:e8:28:88:15:ba:fd:e5:67:63:ec:36:d2: dc:a6:a6:8f:dc:80:cc:da:ce:03:c7:c3:7c:99:d1:ea:3a:52: fe:7f:7c:06:12:b8:81:e3:4a:a4:ac:a8:d0:fd:6e:1a:89:a3: d8:47:10:22:80:5c:05:55:00:af:c7:22:db:13:d1:e1:03:45: ef:c4:8a:bd:84:fc:20:1d:30:62:0a:8b:f1:e9:2f:df:3f:e0: 2e:a7:9b:62:43:5b:9d:8a:a4:16:3d:1e:6e:71:fd:11:bc:8c: 9e:d6:04:fb:3c:38:28:20:1b:f9:59:c8:51:cf:90:c9:d7:8d: 77:93:5a:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdU/h2hIlKAwnCmA05jbWfdb4GPUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDAzMDEzWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BmZGQ1YTk4MTRmYWNhMzUwNWU0YzFhMjk5YmY0YWJkMjA3 ZjRjNTlmODJlMTUwZGRjYzc3MDJjYjJhZmEyMDBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtuB0FPhR8H8guBnJse61DMPLktSi/VMbyxSFkjcxWoP9V n3dzXdsL+i0QOJ7IxGHcfyieQfAaJevKkCwuiYyWNmR+3htjUyfwu/I91wodq19j 82cT18hdrexRdNF4T3/Z1mJ+xk8p3DmyJqB0DTgn8YGYDru0iOCvvOMrZOcLdpzI F3pa8lUkFxQ/M244kkRdc7zoVPqYa3tTPf/DyYqMVE5hdTBEtH9gNF0yeHU4iB6x V/K8OO6gDQg2dDXjvOwDfiIjZcV6U25sfJzXfIGVwZU8yBBSXsGdArBwz4WZY3EP O8tOghcUwKMXG7n9v8j8OTeaIHBvO3Fu5apDX0PPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHGjfAUOC6YBG9SiXM1QgnVYoQg0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5OTg3YTRmLWM2MzItNGJkZC04ZjEyLTVlOTJkNGRiM2JlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFcgwDQYJKoZIhvcNAQELBQADggEBAEsFo13U8+ByMlVn0VZMKdKkGtCZ rxCHYKl6e9pjLPN0iLaQoRUNCXAtZx4HtP6il1HptnM+/QLslhTXvdJbDG47JHm6 U+8IPbizcpmkpPB5Mk26OsL1ivsUMq4EWBUfU6Wnu1ZOSKRo2Wf04Aqzus4pNVF8 xKHxtWNqi6zCXVCfdlbfregoiBW6/eVnY+w20tympo/cgMzazgPHw3yZ0eo6Uv5/ fAYSuIHjSqSsqND9bhqJo9hHECKAXAVVAK/HItsT0eEDRe/Eir2E/CAdMGIKi/Hp L98/4C6nm2JDW52KpBY9Hm5x/RG8jJ7WBPs8OCggG/lZyFHPkMnXjXeTWqg= -----END CERTIFICATE-----Generated at Sat Jun 13 05:47:52 2026 by rpki-client