$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa File: 43679d0b-d4d6-4195-8f78-61e5d3431f35.roa (raw, json) Hash identifier: +wsFFklKWglls7kKh9+iNW1yWb9Gs+Yv2Tz4lx88LFY= Subject key identifier: A1:06:AC:43:54:DA:F3:F8:6D:D4:9B:3C:4D:5F:BE:C9:DB:81:97:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02528C8A9047186152BDE2C16C4360F04C409146 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa Signing time: Fri 15 May 2026 02:20:08 +0000 ROA not before: Fri 15 May 2026 02:20:08 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:52:8c:8a:90:47:18:61:52:bd:e2:c1:6c:43:60:f0:4c:40:91:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:20:08 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=a82004497170d43f327a6c26fbc712ebc8111fca17d2d946031c21f16074a6e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:ba:e5:0d:39:b5:55:08:bc:b5:35:ee:0d:b0: b7:d0:fd:78:8c:2c:c7:21:e8:b5:62:cc:64:d9:97: e3:84:3d:cb:45:b7:24:ca:f9:3d:c0:02:0c:a4:0f: 90:7a:5c:69:43:7e:73:0e:84:fc:81:4c:64:0e:15: 4e:92:13:5b:3f:eb:a4:56:65:6f:4e:8e:0a:37:41: cf:23:86:78:b9:81:f4:2b:3d:d2:35:f9:76:ab:fa: a9:cc:a4:98:b0:6a:27:78:2b:f7:6d:8e:79:33:88: 1d:e0:84:76:22:e3:01:99:a9:2a:57:ae:59:60:8d: 79:7c:a5:3b:3e:3f:29:e0:8a:b5:56:d3:99:f1:af: e2:dd:93:7d:cf:90:01:9d:8f:9c:9a:12:0f:86:4b: 56:be:fa:fa:21:56:2a:97:b1:9b:ed:b6:ac:1f:ee: d3:c3:1b:ff:f8:3f:a4:6b:ca:e5:7d:45:3f:86:b5: d2:f7:31:58:ba:7d:c2:7e:ae:b0:a7:0e:21:f6:eb: 98:7c:a7:b0:08:ea:d3:7e:11:cd:1c:b7:67:57:74: 8e:52:ef:a3:b0:36:b7:02:0c:85:6a:e2:2d:cf:a5: d1:30:6d:f9:3c:45:fe:31:61:78:3d:20:be:9e:ab: 94:f3:8b:d8:7b:af:53:cb:20:e2:c9:83:31:45:de: 4d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:06:AC:43:54:DA:F3:F8:6D:D4:9B:3C:4D:5F:BE:C9:DB:81:97:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.200.0/22 Signature Algorithm: sha256WithRSAEncryption 15:e7:05:4a:e7:24:95:51:e4:b9:aa:ae:77:b2:76:07:12:fa: 26:b7:96:7f:b7:c0:04:e1:ca:1e:65:77:a5:3d:93:e4:f6:f0: 6c:20:87:8e:0f:d0:0c:e1:0c:d6:6a:d9:b9:e0:a1:43:40:c9: 38:9a:b1:ab:fa:cc:68:00:0e:b0:38:b0:18:4a:57:83:df:da: 6c:28:80:a0:a0:41:21:e4:09:aa:46:b4:74:81:ca:1c:ff:d8: ef:aa:18:1f:4c:16:b6:9b:13:c4:66:92:84:6f:30:11:3d:8b: 70:de:d4:2b:4d:f5:e7:c6:54:f0:4b:ae:ff:c1:41:ea:63:96: 1d:d6:0b:0e:5f:c1:65:d5:0b:d1:a3:0b:e3:22:33:cb:b7:10: 6f:b8:3d:b3:95:1f:4e:cf:5f:68:16:52:d6:8d:5c:22:cf:bb: bd:15:ee:c6:be:dd:9b:d6:e9:52:9b:9c:99:f0:f6:79:7b:63: 39:32:7a:99:0a:e4:e3:05:e4:df:18:90:a0:40:87:5a:18:27: 1d:48:d4:6a:e1:83:ed:f9:a6:ea:ed:ab:b5:7b:fd:1e:5e:97: 0d:2b:7b:b7:eb:40:41:8c:43:a5:66:e9:79:72:21:c1:d4:04: 74:13:9c:5e:2e:67:f0:87:71:e7:da:eb:77:cc:e9:99:e1:43: d1:e9:f4:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAlKMipBHGGFSveLBbENg8ExAkUYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIyMDA4WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhODIwMDQ0OTcxNzBkNDNmMzI3YTZjMjZmYmM3MTJlYmM4 MTExZmNhMTdkMmQ5NDYwMzFjMjFmMTYwNzRhNmU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3uuUNObVVCLy1Ne4NsLfQ/XiMLMch6LVizGTZl+OEPctF tyTK+T3AAgykD5B6XGlDfnMOhPyBTGQOFU6SE1s/66RWZW9Ojgo3Qc8jhni5gfQr PdI1+Xar+qnMpJiwaid4K/dtjnkziB3ghHYi4wGZqSpXrllgjXl8pTs+PyngirVW 05nxr+Ldk33PkAGdj5yaEg+GS1a++vohViqXsZvttqwf7tPDG//4P6RryuV9RT+G tdL3MVi6fcJ+rrCnDiH265h8p7AI6tN+Ec0ct2dXdI5S76OwNrcCDIVq4i3PpdEw bfk8Rf4xYXg9IL6eq5Tzi9h7r1PLIOLJgzFF3k3PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoQasQ1Ta8/ht1Js8TV++yduBl6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNjc5ZDBiLWQ0ZDYtNDE5NS04Zjc4LTYxZTVkMzQzMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmMgwDQYJKoZIhvcNAQELBQADggEBABXnBUrnJJVR5LmqrneydgcS+ia3 ln+3wAThyh5ld6U9k+T28Gwgh44P0AzhDNZq2bngoUNAyTiasav6zGgADrA4sBhK V4Pf2mwogKCgQSHkCapGtHSByhz/2O+qGB9MFrabE8RmkoRvMBE9i3De1CtN9efG VPBLrv/BQepjlh3WCw5fwWXVC9GjC+MiM8u3EG+4PbOVH07PX2gWUtaNXCLPu70V 7sa+3ZvW6VKbnJnw9nl7YzkyepkK5OMF5N8YkKBAh1oYJx1I1Grhg+35purtq7V7 /R5elw0re7frQEGMQ6Vm6XlyIcHUBHQTnF4uZ/CHcefa63fM6ZnhQ9Hp9H8= -----END CERTIFICATE-----Generated at Sat Jun 13 07:12:17 2026 by rpki-client