$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f8ae91-92eb-4054-9a85-d212ce02b957.roa File: 40f8ae91-92eb-4054-9a85-d212ce02b957.roa (raw, json) Hash identifier: aRRNrOti9erMgsuQP3hhD6s+e9xwPs99cZ0BCDIEBO8= Subject key identifier: 96:5B:95:8E:6B:21:7E:E5:14:3B:41:4B:52:6A:4A:90:B5:BD:88:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0949572C1A6300E3FE9E5DBCFC8052CC07ADF1DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f8ae91-92eb-4054-9a85-d212ce02b957.roa Signing time: Fri 15 May 2026 01:10:10 +0000 ROA not before: Fri 15 May 2026 01:10:10 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 157.175.8.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:49:57:2c:1a:63:00:e3:fe:9e:5d:bc:fc:80:52:cc:07:ad:f1:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:10:10 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=36110d4da12e0ae2d853ca244c32d3e03dd509bc5ab4723fe6f32959afd7f567, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:2d:b2:ef:a7:20:aa:28:16:b9:ce:4d:86:a8: 41:2c:e2:2f:78:de:6e:cd:25:53:22:c9:b1:19:15: b6:12:57:57:06:58:0d:f6:ad:64:90:1a:b4:a2:27: ca:08:c2:c1:59:18:f1:74:73:6d:7d:ff:3d:a1:2d: 56:6a:fb:d9:60:e1:f3:35:0e:11:67:f9:ff:52:f6: d6:9f:cf:cb:82:e6:ed:ce:5b:8b:03:a5:8e:ef:01: 92:1c:11:b5:96:37:6e:57:33:c4:95:0f:f6:09:fe: 0f:22:3d:22:c8:d1:24:b6:ae:31:e6:27:08:4c:a8: 2a:66:18:f2:5a:8b:33:ff:b8:45:bb:d8:be:ed:dd: b4:79:31:fa:3d:fd:ef:55:f2:09:14:31:4d:29:17: c1:0d:53:f7:55:d3:2a:71:91:ce:37:d0:e1:50:af: e4:38:ad:ca:83:6c:22:23:68:80:46:07:96:03:ae: d4:37:41:91:0e:e3:f9:21:d8:31:9c:e6:1a:27:40: 8d:8e:85:20:56:c2:b1:e9:45:a6:58:85:60:84:ab: dc:87:24:4c:3a:cb:62:bf:d8:37:e5:89:76:2d:8b: 26:23:0e:d2:d3:99:0a:27:e9:aa:62:bc:de:f1:56: e0:95:4b:2d:33:bd:72:1d:28:d1:02:d4:97:ce:5f: b3:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:5B:95:8E:6B:21:7E:E5:14:3B:41:4B:52:6A:4A:90:B5:BD:88:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40f8ae91-92eb-4054-9a85-d212ce02b957.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.175.8.0/21 Signature Algorithm: sha256WithRSAEncryption a1:a4:a4:2a:d4:6e:4d:82:9d:33:74:f9:6b:14:b1:4b:52:a8: 8b:65:09:d6:a8:69:22:c7:db:b3:81:a6:6c:d1:cc:ed:e1:6a: 31:93:e2:df:07:20:47:18:cf:6c:90:00:ab:69:e2:61:c0:b6: 4e:41:ed:42:9b:24:66:24:2a:7e:86:8f:68:69:70:c7:ea:73: 8c:46:71:f7:9a:a2:b9:8e:09:6b:3c:79:d9:d8:ce:2e:b5:f1: 4b:e3:22:b1:ea:32:4c:cb:2a:8a:41:f1:43:38:b2:a1:f4:ab: 30:25:d3:47:2c:2f:10:4b:e4:83:b3:ab:59:9e:54:80:56:4e: 50:22:e0:07:4c:2e:b6:bf:52:02:55:13:db:84:62:c8:9e:ad: b8:fe:88:08:42:0b:59:ad:c0:68:b8:17:32:69:28:86:a0:ce: 10:bf:0e:5d:18:e1:32:c0:06:e5:1d:69:ab:76:c0:11:a5:e0: 63:52:43:a2:21:22:44:cb:94:9e:6c:f6:9f:7d:10:ee:a1:7e: 54:d9:48:87:f5:76:dd:34:ad:e3:fb:b9:f7:e8:0e:08:06:5c: 07:9b:b5:68:19:5e:53:19:8e:20:59:05:f7:c0:fd:d4:1e:d8: d9:ca:14:7e:cd:d0:31:36:a0:44:9d:0b:5e:33:36:b2:cb:10: 1e:31:ff:96 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCUlXLBpjAOP+nl28/IBSzAet8dswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDExMDEwWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjExMGQ0ZGExMmUwYWUyZDg1M2NhMjQ0YzMyZDNlMDNk ZDUwOWJjNWFiNDcyM2ZlNmYzMjk1OWFmZDdmNTY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDbLbLvpyCqKBa5zk2GqEEs4i943m7NJVMiybEZFbYSV1cG WA32rWSQGrSiJ8oIwsFZGPF0c219/z2hLVZq+9lg4fM1DhFn+f9S9tafz8uC5u3O W4sDpY7vAZIcEbWWN25XM8SVD/YJ/g8iPSLI0SS2rjHmJwhMqCpmGPJaizP/uEW7 2L7t3bR5Mfo9/e9V8gkUMU0pF8ENU/dV0ypxkc430OFQr+Q4rcqDbCIjaIBGB5YD rtQ3QZEO4/kh2DGc5honQI2OhSBWwrHpRaZYhWCEq9yHJEw6y2K/2DfliXYtiyYj DtLTmQon6apivN7xVuCVSy0zvXIdKNEC1JfOX7NbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlluVjmshfuUUO0FLUmpKkLW9iDAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwZjhhZTkxLTkyZWItNDA1NC05YTg1LWQyMTJjZTAyYjk1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOdrwgwDQYJKoZIhvcNAQELBQADggEBAKGkpCrUbk2CnTN0+WsUsUtSqItl CdaoaSLH27OBpmzRzO3hajGT4t8HIEcYz2yQAKtp4mHAtk5B7UKbJGYkKn6Gj2hp cMfqc4xGcfeaormOCWs8ednYzi618UvjIrHqMkzLKopB8UM4sqH0qzAl00csLxBL 5IOzq1meVIBWTlAi4AdMLra/UgJVE9uEYsierbj+iAhCC1mtwGi4FzJpKIagzhC/ Dl0Y4TLABuUdaat2wBGl4GNSQ6IhIkTLlJ5s9p99EO6hflTZSIf1dt00reP7uffo DggGXAebtWgZXlMZjiBZBffA/dQe2NnKFH7N0DE2oESdC14zNrLLEB4x/5Y= -----END CERTIFICATE-----Generated at Sat Jun 13 08:22:29 2026 by rpki-client