$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa File: 47f76ec9-1410-4f5f-930d-b1663472dcc6.roa (raw, json) Hash identifier: o3YNsNq43Xglo49GhdN1tZ4vgJ2hS9dq/DjRBs1O4dk= Subject key identifier: 7A:4A:21:49:DD:DA:CA:81:E7:33:57:A8:64:A7:24:47:CF:6B:32:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11476DAC06D9139905519924D7606C645E7CC4F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa Signing time: Sat 16 May 2026 01:20:31 +0000 ROA not before: Sat 16 May 2026 01:20:31 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.214.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:47:6d:ac:06:d9:13:99:05:51:99:24:d7:60:6c:64:5e:7c:c4:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:20:31 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=5a2e9474bec7266736a9f308c16a27a677e694e457ee88272e2cf29a942e6752, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:46:a5:06:47:20:69:85:74:30:f8:96:ea:3d: 75:16:98:89:7e:02:c0:c5:3f:b2:38:a0:7e:24:ba: c7:ca:e4:a6:5f:9b:d4:2f:23:55:ff:4d:bf:e3:5e: b7:40:34:4b:46:6a:1e:d3:da:a7:6a:7f:bf:20:97: 0a:dc:9e:bf:ab:bf:36:f3:63:ae:be:0e:d1:d8:78: 71:ba:ed:2c:7d:46:bf:2a:b5:ce:eb:1e:56:d6:21: df:df:1c:22:09:90:12:26:06:58:aa:ed:bf:95:a8: cc:47:85:dd:5b:c2:8d:75:ad:65:da:d0:e3:81:89: f7:0b:49:48:c9:46:f6:d2:5d:af:fe:d1:5e:37:5c: 67:ab:5a:0d:d6:a2:d5:69:b8:d0:0b:c7:36:04:1e: 6d:0c:c3:d4:c9:64:56:8b:64:ba:90:ab:04:45:62: 59:f3:da:90:b5:2a:92:ce:bd:a4:1e:fa:f7:83:b6: 46:61:99:4f:8b:19:4e:06:ea:07:12:44:9d:f7:28: e4:34:75:85:90:e2:e6:b5:29:75:c0:50:f9:54:d8: 0d:2e:46:a4:16:92:c4:4d:9f:c3:c7:c2:83:02:e7: e8:d0:27:2f:01:2b:37:29:1d:f8:ee:b3:90:09:68: 82:34:f9:e5:c2:77:3e:dc:8d:dc:65:29:fa:98:45: 59:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:4A:21:49:DD:DA:CA:81:E7:33:57:A8:64:A7:24:47:CF:6B:32:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption ca:9e:eb:c1:5b:b3:25:9c:da:55:17:cc:26:f3:f4:85:d6:de: aa:73:ec:86:29:c9:c8:43:db:93:7a:1d:b5:8a:ab:f5:da:67: 0d:d6:3f:13:28:6c:54:70:d0:19:0a:06:f4:c9:b9:93:a5:53: f4:29:48:0c:f5:90:1e:b7:5b:dd:41:db:c1:91:f3:62:65:1b: 0f:09:55:e6:3d:43:d1:52:9d:a6:54:18:db:e0:cb:4e:b1:26: 88:6f:55:1e:38:84:30:7d:18:60:d1:87:11:d8:d9:a6:35:aa: 07:8f:b9:73:42:4a:f8:d7:35:87:b8:90:cb:e0:3e:5b:6b:eb: 9b:9c:57:6b:3a:94:b6:50:25:7c:d4:17:6b:02:8b:36:49:af: 31:04:45:ee:84:7b:31:1f:66:7f:e3:27:ef:31:be:50:68:29: fc:0d:ec:ef:e3:ed:00:b6:d9:58:44:ad:2d:f3:c0:9e:8a:09: ba:ad:12:6b:c8:28:ec:b3:bb:9d:ae:c3:41:41:01:4a:df:9f: b0:62:9c:14:2d:19:41:2f:17:17:32:46:ff:07:3e:44:23:76: 45:91:e2:77:7b:77:58:de:43:f2:76:d1:e3:b8:38:13:5d:61: 20:c5:12:c9:67:b5:b8:17:25:a6:c6:e6:09:f2:75:e2:78:3e: 79:65:56:99 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEUdtrAbZE5kFUZkk12BsZF58xPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMDMxWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YTJlOTQ3NGJlYzcyNjY3MzZhOWYzMDhjMTZhMjdhNjc3 ZTY5NGU0NTdlZTg4MjcyZTJjZjI5YTk0MmU2NzUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtRqUGRyBphXQw+JbqPXUWmIl+AsDFP7I4oH4kusfK5KZf m9QvI1X/Tb/jXrdANEtGah7T2qdqf78glwrcnr+rvzbzY66+DtHYeHG67Sx9Rr8q tc7rHlbWId/fHCIJkBImBliq7b+VqMxHhd1bwo11rWXa0OOBifcLSUjJRvbSXa/+ 0V43XGerWg3WotVpuNALxzYEHm0Mw9TJZFaLZLqQqwRFYlnz2pC1KpLOvaQe+veD tkZhmU+LGU4G6gcSRJ33KOQ0dYWQ4ua1KXXAUPlU2A0uRqQWksRNn8PHwoMC5+jQ Jy8BKzcpHfjus5AJaII0+eXCdz7cjdxlKfqYRVllAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUekohSd3ayoHnM1eoZKckR89rMgswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3Zjc2ZWM5LTE0MTAtNGY1Zi05MzBkLWIxNjYzNDcyZGNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo1jANBgkqhkiG9w0BAQsFAAOCAQEAyp7rwVuzJZzaVRfMJvP0hdbeqnPs hinJyEPbk3odtYqr9dpnDdY/EyhsVHDQGQoG9Mm5k6VT9ClIDPWQHrdb3UHbwZHz YmUbDwlV5j1D0VKdplQY2+DLTrEmiG9VHjiEMH0YYNGHEdjZpjWqB4+5c0JK+Nc1 h7iQy+A+W2vrm5xXazqUtlAlfNQXawKLNkmvMQRF7oR7MR9mf+Mn7zG+UGgp/A3s 7+PtALbZWEStLfPAnooJuq0Sa8go7LO7na7DQUEBSt+fsGKcFC0ZQS8XFzJG/wc+ RCN2RZHid3t3WN5D8nbR47g4E11hIMUSyWe1uBclpsbmCfJ14ng+eWVWmQ== -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:07 2026 by rpki-client