$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa File: 3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa (raw, json) Hash identifier: zJzbU5FxLZMseFGPHIa5AUj4Q2bKnKrNoLtsViN8Gnw= Subject key identifier: 0F:92:46:5B:BA:B3:74:BA:12:BE:A7:92:DA:A5:0B:86:85:80:12:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 380134B3ABFE1EDDB73C047DF4E7E8C9A972D549 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa Signing time: Tue 19 May 2026 00:30:11 +0000 ROA not before: Tue 19 May 2026 00:30:11 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 168.102.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 38:01:34:b3:ab:fe:1e:dd:b7:3c:04:7d:f4:e7:e8:c9:a9:72:d5:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:30:11 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=01283a238a25051f85a67e0e2ec1c6b345cbd30e508d8d795567a743f2022abc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:a1:7f:f1:bf:b4:a0:30:75:cb:9b:cc:ca:57: a8:6a:bd:b5:60:68:52:78:ee:a4:7f:1a:79:09:22: e7:4e:1e:a9:0a:72:d7:8c:b6:34:ae:f2:9c:e1:57: 87:8f:f3:cf:30:93:1d:f0:87:0d:4c:04:96:ec:96: 08:86:cc:bc:2e:46:0f:a7:11:d6:92:97:e5:fd:4b: 9a:31:cd:ad:18:e8:56:80:a9:b2:dc:bf:0f:df:82: 7a:7b:b8:eb:7a:af:5a:93:bd:73:b3:65:76:d3:98: 17:29:af:e7:39:f0:0c:65:6c:a4:1c:59:74:a6:15: 64:a7:9c:68:1a:ba:a1:be:3c:49:82:3c:0e:71:64: 78:4e:64:1d:ea:57:9d:df:af:f7:21:3f:20:2e:36: 58:8c:d7:8c:40:46:17:f0:fa:ee:14:41:c7:87:90: 74:43:7f:40:3c:81:c8:c8:55:1c:22:3c:4b:f9:d9: 06:7c:17:8a:dc:0f:a4:29:47:73:a6:37:e0:43:0d: 57:13:27:de:46:5d:ba:d3:a0:af:e8:4f:57:c4:7d: 57:ab:0e:1c:8a:89:c7:8e:51:33:1e:04:cd:e3:44: 18:0d:dd:ba:fe:e9:e3:ee:ab:58:63:9c:90:9c:13: 75:71:cb:74:9e:f5:b2:27:c4:a3:f9:0e:3d:c1:07: 12:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:92:46:5B:BA:B3:74:BA:12:BE:A7:92:DA:A5:0B:86:85:80:12:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.102.144.0/20 Signature Algorithm: sha256WithRSAEncryption d1:bd:0f:17:b9:6e:2b:ee:c3:e8:2f:3f:88:d4:65:4e:e7:a6: 75:2a:fc:b4:75:8a:d8:08:d9:b9:b1:12:c4:7f:ec:e5:1a:a9: 41:dc:16:cf:9b:93:e4:bb:24:b5:97:0e:26:ab:f1:42:32:9f: fd:62:57:cc:89:e8:b6:58:25:f8:54:ac:a6:2c:72:bf:be:65: a7:db:e2:93:73:35:fa:7a:ab:3e:2f:c5:74:d8:f5:42:ec:ca: e4:1c:fe:ca:0f:8d:8b:c0:56:f6:52:93:93:59:f7:0e:a1:79: 7d:47:e2:6b:5b:0a:cb:a0:94:ee:29:63:14:f6:a0:94:02:e6: 36:95:a4:39:7d:af:b7:6d:a8:e6:b9:c8:16:fe:88:b4:94:4a: 7d:91:cb:d7:a1:62:1f:b2:e9:f4:d6:be:d0:88:3d:47:ee:50: 66:c3:fa:58:c5:80:49:1b:15:f6:7b:18:59:49:77:dd:ca:4b: c9:9b:72:e0:04:0f:7a:e2:a7:93:da:8b:10:62:18:9d:d7:7f: 85:84:05:2f:23:9d:45:fa:59:52:ec:6c:0b:14:b8:39:98:28: 1c:23:a3:23:cd:4a:1a:70:5b:fc:74:cb:ac:15:0b:ec:49:f1: 02:d8:41:72:e6:c0:5a:8a:88:0a:1f:77:d3:a9:c2:62:c5:d0: 5b:90:e6:83 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOAE0s6v+Ht23PAR99Ofoyaly1UkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAzMDExWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMTI4M2EyMzhhMjUwNTFmODVhNjdlMGUyZWMxYzZiMzQ1 Y2JkMzBlNTA4ZDhkNzk1NTY3YTc0M2YyMDIyYWJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9oX/xv7SgMHXLm8zKV6hqvbVgaFJ47qR/GnkJIudOHqkK cteMtjSu8pzhV4eP888wkx3whw1MBJbslgiGzLwuRg+nEdaSl+X9S5oxza0Y6FaA qbLcvw/fgnp7uOt6r1qTvXOzZXbTmBcpr+c58AxlbKQcWXSmFWSnnGgauqG+PEmC PA5xZHhOZB3qV53fr/chPyAuNliM14xARhfw+u4UQceHkHRDf0A8gcjIVRwiPEv5 2QZ8F4rcD6QpR3OmN+BDDVcTJ95GXbrToK/oT1fEfVerDhyKiceOUTMeBM3jRBgN 3br+6ePuq1hjnJCcE3Vxy3Se9bInxKP5Dj3BBxIPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUD5JGW7qzdLoSvqeS2qULhoWAEvYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkM2M2Y2E0LThhMTgtNDQxZS1hNDYyLTlkN2Q3NmU3MzQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASoZpAwDQYJKoZIhvcNAQELBQADggEBANG9Dxe5bivuw+gvP4jUZU7npnUq /LR1itgI2bmxEsR/7OUaqUHcFs+bk+S7JLWXDiar8UIyn/1iV8yJ6LZYJfhUrKYs cr++Zafb4pNzNfp6qz4vxXTY9ULsyuQc/soPjYvAVvZSk5NZ9w6heX1H4mtbCsug lO4pYxT2oJQC5jaVpDl9r7dtqOa5yBb+iLSUSn2Ry9ehYh+y6fTWvtCIPUfuUGbD +ljFgEkbFfZ7GFlJd93KS8mbcuAED3rip5PaixBiGJ3Xf4WEBS8jnUX6WVLsbAsU uDmYKBwjoyPNShpwW/x0y6wVC+xJ8QLYQXLmwFqKiAofd9OpwmLF0FuQ5oM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:28:58 2026 by rpki-client