$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa File: 436af8e8-480b-485b-a232-f1503410322c.roa (raw, json) Hash identifier: X5Wh+Cyd42l2H4+4SzIFXHfK0pyRwfgtWZNiJDp+uaI= Subject key identifier: A4:F9:29:AF:BE:8C:8B:42:0D:5E:F3:31:87:C1:00:9C:B2:F6:AC:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 677C2354EA9B8243DCECD26BCDCF05C085A6F5A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa Signing time: Fri 15 May 2026 01:10:06 +0000 ROA not before: Fri 15 May 2026 01:10:06 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.128.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:7c:23:54:ea:9b:82:43:dc:ec:d2:6b:cd:cf:05:c0:85:a6:f5:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:10:06 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=4820c40d2eccb6f781e249c1194ffa84ea8eb1fe999dcc8b8fd04f4232baa504, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:d4:92:e7:8a:2b:f4:c6:ab:49:82:42:41:01: 96:a1:67:96:14:c2:c6:f8:b1:22:2f:eb:59:51:75: 0b:f6:65:64:54:5d:b4:6b:4f:93:27:20:1d:d3:b0: 06:ca:cc:26:44:97:cb:0c:0f:48:36:17:53:2c:42: 2b:ac:98:e5:bf:30:e6:d1:72:14:b5:f3:cd:e7:89: fb:06:a3:a9:56:65:8e:1b:3c:4f:9a:e9:3a:e7:ca: 31:41:ca:ad:2a:d7:32:e7:82:54:3e:9e:1c:62:31: 62:fe:f1:af:01:60:9d:c2:fc:e9:7a:70:cf:c8:88: 0a:b4:e6:6a:70:0d:ad:58:0a:c7:2e:86:93:ee:9f: 65:39:e8:57:ef:7e:d0:f7:f7:5a:c4:a3:6f:e6:32: e3:80:1a:f0:7e:65:ad:2f:10:9b:1a:4e:12:bb:2a: 33:1e:37:25:f1:15:fa:af:ae:9e:55:c1:e6:64:0f: 37:58:e3:a3:b2:de:48:b0:b3:a8:b1:17:5a:cd:ff: da:a6:d1:3d:5a:61:55:21:cf:46:a2:b9:38:cc:cf: 27:65:46:fc:a1:b4:e7:41:c3:fd:76:ca:d2:d0:c0: f6:2f:2a:a3:b6:90:b2:dc:3e:bd:81:7c:8d:29:3d: 36:7a:2c:b7:25:96:26:2e:47:48:b3:87:1e:6a:24: ca:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:F9:29:AF:BE:8C:8B:42:0D:5E:F3:31:87:C1:00:9C:B2:F6:AC:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/436af8e8-480b-485b-a232-f1503410322c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.128.0/22 Signature Algorithm: sha256WithRSAEncryption a2:58:87:f7:d8:20:88:dc:bc:bd:28:ee:8c:59:9e:cc:6d:a5: 00:61:d0:3f:6b:ff:db:1a:b6:ac:b4:bd:b3:1c:a7:60:9f:85: 96:d3:9d:d2:cb:08:3d:d2:00:7f:5a:06:35:18:2c:64:2d:ad: 46:64:f8:a9:68:d0:1d:0b:66:80:bd:de:99:8b:b4:73:6c:d7: ae:15:2c:48:40:63:e7:ca:e8:e5:a3:0e:30:70:0b:c4:1f:f8: e2:2c:50:56:78:4e:45:4f:de:c4:58:02:dc:3c:88:50:38:33: 8d:20:4e:82:3b:9e:c4:ec:4d:c4:41:09:42:43:73:1b:18:74: a7:4e:1b:7a:d5:61:58:ab:b9:d5:cd:f2:76:2e:d1:98:1f:58: 1a:d5:9d:41:79:a7:53:31:5f:b5:80:41:31:12:d5:8b:bc:b6: 17:8f:4b:81:8e:65:31:79:9f:93:3d:f5:0d:07:fb:1a:33:43: e3:81:cd:d9:e7:1d:04:83:94:41:e0:db:19:c5:01:3c:64:8a: e0:57:9d:a4:af:79:97:a5:5c:cd:f0:71:a7:97:76:8e:70:b4: 1e:12:bc:b3:c7:36:17:dc:bb:9f:7c:07:eb:6e:e5:5d:b0:d0: f8:89:61:8b:2a:4b:69:29:ef:ab:e3:9b:a4:99:a1:e9:3f:8e: 2b:93:06:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ3wjVOqbgkPc7NJrzc8FwIWm9aYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDExMDA2WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODIwYzQwZDJlY2NiNmY3ODFlMjQ5YzExOTRmZmE4NGVh OGViMWZlOTk5ZGNjOGI4ZmQwNGY0MjMyYmFhNTA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+1JLniiv0xqtJgkJBAZahZ5YUwsb4sSIv61lRdQv2ZWRU XbRrT5MnIB3TsAbKzCZEl8sMD0g2F1MsQiusmOW/MObRchS1883nifsGo6lWZY4b PE+a6TrnyjFByq0q1zLnglQ+nhxiMWL+8a8BYJ3C/Ol6cM/IiAq05mpwDa1YCscu hpPun2U56FfvftD391rEo2/mMuOAGvB+Za0vEJsaThK7KjMeNyXxFfqvrp5VweZk DzdY46Oy3kiws6ixF1rN/9qm0T1aYVUhz0aiuTjMzydlRvyhtOdBw/12ytLQwPYv KqO2kLLcPr2BfI0pPTZ6LLclliYuR0izhx5qJMpjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpPkpr76Mi0INXvMxh8EAnLL2rF4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNmFmOGU4LTQ4MGItNDg1Yi1hMjMyLWYxNTAzNDEwMzIyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFIAwDQYJKoZIhvcNAQELBQADggEBAKJYh/fYIIjcvL0o7oxZnsxtpQBh 0D9r/9satqy0vbMcp2CfhZbTndLLCD3SAH9aBjUYLGQtrUZk+Klo0B0LZoC93pmL tHNs164VLEhAY+fK6OWjDjBwC8Qf+OIsUFZ4TkVP3sRYAtw8iFA4M40gToI7nsTs TcRBCUJDcxsYdKdOG3rVYVirudXN8nYu0ZgfWBrVnUF5p1MxX7WAQTES1Yu8theP S4GOZTF5n5M99Q0H+xozQ+OBzdnnHQSDlEHg2xnFATxkiuBXnaSveZelXM3wcaeX do5wtB4SvLPHNhfcu598B+tu5V2w0PiJYYsqS2kp76vjm6SZoek/jiuTBiE= -----END CERTIFICATE-----Generated at Sat Jun 13 15:07:24 2026 by rpki-client