$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa File: 3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa (raw, json) Hash identifier: okW7noNc/Om4HIhXMv/DpR0gfyoL32XI37JYO3KbWSw= Subject key identifier: F2:C6:6F:7A:A8:58:7D:49:52:F5:DB:40:BE:07:BC:15:66:58:3D:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 12635D40F2EDDBB8BF3567B2218322779379A6D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa Signing time: Sun 17 May 2026 01:00:12 +0000 ROA not before: Sun 17 May 2026 01:00:12 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.68.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:63:5d:40:f2:ed:db:b8:bf:35:67:b2:21:83:22:77:93:79:a6:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 01:00:12 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=b278b8cd04957cc26ef830e6abe82ee8ff99ea1e28018ff2e126e1a07e0f2116, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:bb:38:06:f1:2f:c9:4b:43:fe:c5:c3:64:9a: af:75:95:ae:35:c4:96:a7:f8:37:8f:7a:25:16:da: 08:13:6d:1e:fb:ba:8f:1e:e1:48:da:db:8c:49:4a: 09:2d:50:9a:18:09:94:e3:f3:fc:c1:bb:02:c9:ef: c7:d6:ea:0e:e9:0b:18:00:4a:6e:1f:9f:31:8a:f7: 33:87:c2:7c:c2:d8:50:cd:d8:41:14:d8:99:67:b6: a9:9c:82:c3:67:20:db:8d:41:42:21:67:69:18:13: e8:7b:95:b3:1b:10:2c:34:f5:59:a4:c5:e6:8f:c9: 36:b3:f0:a1:50:6e:79:4d:ea:30:1a:cb:63:01:7d: 2b:d3:18:8a:00:22:4e:c5:c3:40:77:3f:8b:4d:52: fc:f1:49:95:3c:d6:a1:13:0c:e0:88:1d:6b:03:2a: 2a:7a:6c:9d:63:9b:a8:eb:9f:cf:d8:82:9d:4d:65: fa:b2:48:01:2a:dc:46:0b:c2:58:24:db:36:8f:1b: 2d:5f:6e:80:ce:df:bc:3c:24:f1:f9:e3:c8:33:60: 24:90:f6:61:ea:06:a5:52:5d:d5:b5:0f:cf:ff:c8: 02:04:b7:83:ce:21:f3:45:81:7f:3d:c3:86:28:7f: a3:e9:d3:c3:5a:9c:cf:54:8f:6d:50:d0:0e:82:d4: 11:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C6:6F:7A:A8:58:7D:49:52:F5:DB:40:BE:07:BC:15:66:58:3D:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.68.0.0/17 Signature Algorithm: sha256WithRSAEncryption 44:f3:06:d7:ef:95:4f:8a:dc:4b:d4:3f:a4:cb:1c:2c:90:7c: fb:d3:44:4d:9a:a6:40:98:95:63:cb:0d:e8:b7:2e:2b:48:c5: b2:e3:77:00:61:3d:8f:bb:ee:7d:4e:ab:3a:fa:ea:cd:de:5e: 3f:24:65:b0:6b:08:3a:09:08:2c:a5:91:ae:8e:96:fc:f0:7e: ca:a1:9f:54:11:8d:c7:44:56:1d:f4:a2:53:a0:a9:a8:4c:8d: d1:76:62:e3:ac:9e:44:e3:90:92:71:db:9b:24:6f:4b:82:02: 32:28:99:43:0b:97:b6:5d:80:25:0d:67:04:13:cf:3a:8c:7f: 40:b9:f8:32:8d:22:1d:09:9e:d6:1f:1e:6a:8d:2e:c9:38:7f: bd:e2:5b:a0:b1:2f:51:81:14:b2:76:7b:0a:e8:6a:74:29:73: c3:17:c3:15:70:30:db:1e:d5:6c:f8:fe:fe:30:5e:f9:1c:c4: 66:b1:77:85:e9:bf:b1:be:88:47:3a:f2:2c:d7:6c:cd:da:47: 50:bb:2e:a2:f5:55:98:4e:04:0b:e5:7c:df:f9:c1:4d:64:90: 42:e9:0b:f9:4c:1a:20:25:32:40:73:54:b2:f1:2f:93:5f:94: 08:0f:95:36:14:76:4d:8a:73:b4:93:b8:42:61:92:67:cc:eb: 66:d7:a6:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEmNdQPLt27i/NWeyIYMid5N5ptMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDEwMDEyWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjc4YjhjZDA0OTU3Y2MyNmVmODMwZTZhYmU4MmVlOGZm OTllYTFlMjgwMThmZjJlMTI2ZTFhMDdlMGYyMTE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2uzgG8S/JS0P+xcNkmq91la41xJan+DePeiUW2ggTbR77 uo8e4Uja24xJSgktUJoYCZTj8/zBuwLJ78fW6g7pCxgASm4fnzGK9zOHwnzC2FDN 2EEU2JlntqmcgsNnINuNQUIhZ2kYE+h7lbMbECw09VmkxeaPyTaz8KFQbnlN6jAa y2MBfSvTGIoAIk7Fw0B3P4tNUvzxSZU81qETDOCIHWsDKip6bJ1jm6jrn8/Ygp1N ZfqySAEq3EYLwlgk2zaPGy1fboDO37w8JPH548gzYCSQ9mHqBqVSXdW1D8//yAIE t4POIfNFgX89w4Yof6Pp08NanM9Uj21Q0A6C1BGBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8sZveqhYfUlS9dtAvge8FWZYPcUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiMWMwMjBkLTQxMzEtNDdmMC1hM2Y3LWIwNTU1Y2YwMjZlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc4RAAwDQYJKoZIhvcNAQELBQADggEBAETzBtfvlU+K3EvUP6TLHCyQfPvT RE2apkCYlWPLDei3LitIxbLjdwBhPY+77n1Oqzr66s3eXj8kZbBrCDoJCCylka6O lvzwfsqhn1QRjcdEVh30olOgqahMjdF2YuOsnkTjkJJx25skb0uCAjIomUMLl7Zd gCUNZwQTzzqMf0C5+DKNIh0JntYfHmqNLsk4f73iW6CxL1GBFLJ2ewroanQpc8MX wxVwMNse1Wz4/v4wXvkcxGaxd4Xpv7G+iEc68izXbM3aR1C7LqL1VZhOBAvlfN/5 wU1kkELpC/lMGiAlMkBzVLLxL5NflAgPlTYUdk2Kc7STuEJhkmfM62bXpiA= -----END CERTIFICATE-----Generated at Sat Jun 13 05:47:37 2026 by rpki-client