$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa File: 5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa (raw, json) Hash identifier: bb8B630CSu/Jfqy2pFyUfqxrLUPBOnLTbB1h1EdIH6s= Subject key identifier: 3C:42:C2:EE:7D:B8:F2:76:78:72:30:02:AD:38:D9:6A:61:78:F3:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D9E1B3DD683FC78B4BDC7328FF7E31BBB03B392 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa Signing time: Wed 20 May 2026 00:20:45 +0000 ROA not before: Wed 20 May 2026 00:20:45 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:9e:1b:3d:d6:83:fc:78:b4:bd:c7:32:8f:f7:e3:1b:bb:03:b3:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:20:45 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=b5f3c4c2da4c5753b9f686c3a7745fec6361a88de369635d94f1e7c5f7dbff63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:e1:5c:50:8d:b2:24:8a:b2:7e:4e:0c:d3:09: dc:6c:8f:2a:53:62:eb:51:47:5e:42:41:05:db:42: de:f5:fd:69:0f:a0:d3:fa:a3:5b:17:79:4a:61:9e: d6:a5:38:83:66:9d:9c:2e:54:62:cb:e3:c3:d5:8a: 32:44:66:c6:4b:4d:dc:53:de:88:72:c5:b1:74:4a: 38:4d:fa:e7:81:fa:75:7d:ec:12:3d:41:c0:11:e9: 93:9b:e9:02:f9:a0:00:aa:4f:bc:b8:55:c7:a3:62: e4:03:d1:a8:58:49:c9:75:90:18:4a:46:70:67:fa: 23:7a:53:c8:53:cc:68:a8:f4:99:9b:4d:c1:ec:e5: f7:b9:d9:46:bc:e0:18:fe:46:49:5c:62:8d:ba:ba: b2:a9:1b:09:7c:11:1f:23:b8:6b:61:fe:e8:30:7e: db:cc:41:a0:de:c7:28:18:25:3e:c0:7f:b8:2a:91: aa:75:6e:23:c2:0f:e5:3a:0b:89:31:86:5e:31:5f: 52:f9:4e:05:3f:ee:57:64:f0:13:44:0e:57:60:6f: 3b:b1:8f:c6:f9:92:86:bb:08:8d:32:3e:e2:8c:23: d0:d9:35:61:1b:e6:57:de:fd:d8:70:79:b5:7f:5e: 9f:d8:a2:92:7f:fa:a4:78:a8:cb:f9:d7:8e:b2:2d: 9a:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:42:C2:EE:7D:B8:F2:76:78:72:30:02:AD:38:D9:6A:61:78:F3:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5423a80a-be1f-4708-a5ef-17ccc2a1a025.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 9f:12:ef:0e:fb:b1:4d:ac:2e:89:f8:5f:23:2f:73:6b:45:69: 09:98:85:92:d7:6d:06:da:b3:0a:5a:43:2c:db:a0:d6:4a:71: 7f:18:85:20:2e:24:bc:32:0a:e9:0b:85:6c:0c:f1:36:7d:45: c8:82:43:1e:e5:ee:a7:bf:c4:8b:42:d7:da:5f:1a:6c:e5:3d: 62:91:e0:5c:ab:22:d5:cc:08:74:0a:62:9b:82:13:a3:9b:d2: 57:68:d3:23:9d:03:39:33:60:22:82:5e:72:76:d0:d6:e9:56: 4a:96:67:b4:ff:f2:11:cc:68:36:a9:7b:53:e7:e8:9f:c2:c2: 0b:2d:69:43:f4:3b:a6:39:02:62:79:7b:40:62:27:6f:34:31: 4b:f1:3f:50:6f:2f:74:06:57:d4:50:9a:44:28:19:f0:e7:74: 26:27:c7:7b:10:99:73:8d:6c:99:69:0d:4b:03:9a:b3:c2:ba: 14:0b:19:1e:d4:cb:68:b5:73:79:37:a1:ec:2a:e0:f7:bb:b8: 57:b5:39:c3:9f:b2:7d:68:78:c4:94:d1:36:c1:b2:0b:66:35: 4e:4b:76:45:0e:5d:27:51:63:61:1f:20:2b:5f:52:39:08:81: fe:77:8d:91:d6:b1:86:8d:1b:af:19:21:41:12:f6:d7:26:d8: bc:ad:ce:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPZ4bPdaD/Hi0vccyj/fjG7sDs5IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAyMDQ1WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWYzYzRjMmRhNGM1NzUzYjlmNjg2YzNhNzc0NWZlYzYz NjFhODhkZTM2OTYzNWQ5NGYxZTdjNWY3ZGJmZjYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDV4VxQjbIkirJ+TgzTCdxsjypTYutRR15CQQXbQt71/WkP oNP6o1sXeUphntalOINmnZwuVGLL48PVijJEZsZLTdxT3ohyxbF0SjhN+ueB+nV9 7BI9QcAR6ZOb6QL5oACqT7y4VcejYuQD0ahYScl1kBhKRnBn+iN6U8hTzGio9Jmb TcHs5fe52Ua84Bj+RklcYo26urKpGwl8ER8juGth/ugwftvMQaDexygYJT7Af7gq kap1biPCD+U6C4kxhl4xX1L5TgU/7ldk8BNEDldgbzuxj8b5koa7CI0yPuKMI9DZ NWEb5lfe/dhwebV/Xp/YopJ/+qR4qMv5146yLZpLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPELC7n248nZ4cjACrTjZamF482gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0MjNhODBhLWJlMWYtNDcwOC1hNWVmLTE3Y2NjMmExYTAyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYX5MAwDQYJKoZIhvcNAQELBQADggEBAJ8S7w77sU2sLon4XyMvc2tFaQmY hZLXbQbaswpaQyzboNZKcX8YhSAuJLwyCukLhWwM8TZ9RciCQx7l7qe/xItC19pf GmzlPWKR4FyrItXMCHQKYpuCE6Ob0ldo0yOdAzkzYCKCXnJ20NbpVkqWZ7T/8hHM aDape1Pn6J/CwgstaUP0O6Y5AmJ5e0BiJ280MUvxP1BvL3QGV9RQmkQoGfDndCYn x3sQmXONbJlpDUsDmrPCuhQLGR7Uy2i1c3k3oewq4Pe7uFe1OcOfsn1oeMSU0TbB sgtmNU5LdkUOXSdRY2EfICtfUjkIgf53jZHWsYaNG68ZIUES9tcm2LytzqA= -----END CERTIFICATE-----Generated at Sat Jun 13 07:08:38 2026 by rpki-client