$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa File: 54dba2ae-fa55-448d-8286-0b2647236884.roa (raw, json) Hash identifier: mqwryrEyR95S9PooCJDHSuMbdoi3O/ZW7aJmkJ4xQU4= Subject key identifier: 96:93:03:63:C2:DB:D4:1A:E4:ED:AC:F1:D2:25:EB:EA:43:9B:71:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F6E5CB64472C7F44BC95476E0765314D0C1E02B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa Signing time: Fri 15 May 2026 02:20:54 +0000 ROA not before: Fri 15 May 2026 02:20:54 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:6e:5c:b6:44:72:c7:f4:4b:c9:54:76:e0:76:53:14:d0:c1:e0:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:20:54 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=994030a8c6dc094b8f49abae5c23e8428287aec1d6d5a266e6f85970ede62b06, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:86:e3:96:85:85:a4:e3:e0:12:1a:67:a3:79: dc:b5:08:3f:e1:38:8b:44:c1:72:42:61:a9:44:15: 19:04:2f:61:47:95:4d:86:ab:18:82:6c:a4:24:e7: 78:e5:d6:c1:e8:de:2e:ce:40:95:7a:3b:b4:25:8f: d3:53:79:ce:67:38:20:ed:09:66:8b:7d:90:9b:5b: 6f:f4:71:6e:a7:26:3b:4a:56:7e:09:50:55:95:3f: 17:6a:a6:fb:71:2a:b2:ab:1d:a9:0f:f6:bb:8f:a6: 68:bd:16:00:72:60:e1:c5:57:84:65:ca:7b:a7:89: 0b:bd:2a:b4:82:a3:6b:38:0c:40:02:2a:f2:54:3d: 5c:dc:f8:ec:d6:11:d7:47:44:e5:be:86:3d:83:32: 34:67:42:ee:7b:19:04:37:d6:b3:1b:76:eb:52:b3: 0c:10:7c:56:91:93:d9:f9:ad:d6:b4:4e:66:a3:fd: 3f:73:4d:60:e4:4e:66:18:91:40:6f:cb:44:ae:d3: 2e:6b:f4:0b:3f:7b:b0:dc:10:71:ef:f1:2e:d5:fa: 32:74:76:ba:fb:d4:9f:62:fb:f0:67:cc:eb:e8:33: 96:b4:a8:b3:b1:74:d3:f8:b2:76:3d:03:62:a0:a9: 51:b6:b9:86:53:a1:49:71:b5:2d:3b:77:a7:1f:4e: f0:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:93:03:63:C2:DB:D4:1A:E4:ED:AC:F1:D2:25:EB:EA:43:9B:71:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/54dba2ae-fa55-448d-8286-0b2647236884.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.168.0/21 Signature Algorithm: sha256WithRSAEncryption 1e:40:6a:15:ff:9b:85:54:eb:fb:cd:38:1f:12:e0:7b:93:a7: 99:e1:18:c2:1c:2a:c4:ac:dc:c2:6d:bc:fa:bc:62:bd:5b:3e: 36:90:9c:75:7a:d9:b6:57:c9:84:4a:6a:b3:2d:ef:27:35:df: 56:23:42:86:50:31:e1:5b:a3:99:43:6d:d4:f2:2c:ba:71:d0: eb:4b:a6:69:83:fd:8e:cc:0f:9b:57:46:c8:fb:0c:cc:3c:28: ec:ab:46:da:df:e6:3c:df:c2:d6:8c:ed:1b:a6:e7:11:93:7f: ae:94:72:03:10:99:e8:ae:1a:a5:c8:b3:a1:a5:60:60:22:f2: 54:ce:92:37:f9:f4:02:39:ff:df:fe:af:09:ee:08:8e:0d:14: 1b:10:80:54:8f:9d:3f:de:29:aa:fe:cf:5d:5c:db:97:9c:b0: 5c:62:d4:b4:b5:ec:2e:30:6d:0b:d5:f4:74:48:1e:bf:6c:37: 6b:79:d0:b5:2a:f0:f6:ed:10:78:03:eb:d9:ee:35:d3:f9:f3: 9b:df:fe:19:92:cc:95:60:0e:4c:ff:f0:28:d5:7f:63:ac:7a: 35:26:85:5b:3c:56:8a:78:d1:55:f6:73:e1:80:ab:38:bb:d9: ac:1d:fe:66:cf:b4:4c:21:83:b1:54:07:fd:03:7b:34:28:f8: f9:5b:b0:31 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP25ctkRyx/RLyVR24HZTFNDB4CswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIyMDU0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTQwMzBhOGM2ZGMwOTRiOGY0OWFiYWU1YzIzZTg0Mjgy ODdhZWMxZDZkNWEyNjZlNmY4NTk3MGVkZTYyYjA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClhuOWhYWk4+ASGmejedy1CD/hOItEwXJCYalEFRkEL2FH lU2GqxiCbKQk53jl1sHo3i7OQJV6O7Qlj9NTec5nOCDtCWaLfZCbW2/0cW6nJjtK Vn4JUFWVPxdqpvtxKrKrHakP9ruPpmi9FgByYOHFV4RlynuniQu9KrSCo2s4DEAC KvJUPVzc+OzWEddHROW+hj2DMjRnQu57GQQ31rMbdutSswwQfFaRk9n5rda0Tmaj /T9zTWDkTmYYkUBvy0Su0y5r9As/e7DcEHHv8S7V+jJ0drr71J9i+/BnzOvoM5a0 qLOxdNP4snY9A2KgqVG2uYZToUlxtS07d6cfTvCBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlpMDY8Lb1Brk7azx0iXr6kObcVwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU0ZGJhMmFlLWZhNTUtNDQ4ZC04Mjg2LTBiMjY0NzIzNjg4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOkmKgwDQYJKoZIhvcNAQELBQADggEBAB5AahX/m4VU6/vNOB8S4HuTp5nh GMIcKsSs3MJtvPq8Yr1bPjaQnHV62bZXyYRKarMt7yc131YjQoZQMeFbo5lDbdTy LLpx0OtLpmmD/Y7MD5tXRsj7DMw8KOyrRtrf5jzfwtaM7Rum5xGTf66UcgMQmeiu GqXIs6GlYGAi8lTOkjf59AI5/9/+rwnuCI4NFBsQgFSPnT/eKar+z11c25ecsFxi 1LS17C4wbQvV9HRIHr9sN2t50LUq8PbtEHgD69nuNdP585vf/hmSzJVgDkz/8CjV f2OsejUmhVs8Vop40VX2c+GAqzi72awd/mbPtEwhg7FUB/0DezQo+PlbsDE= -----END CERTIFICATE-----Generated at Sat Jun 13 07:08:51 2026 by rpki-client