$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/591acf32-d365-4f92-a730-b14202d5b086.roa File: 591acf32-d365-4f92-a730-b14202d5b086.roa (raw, json) Hash identifier: RC8GLEJzlFfOcaBdUxfLAQnXkoashITtwXpBIwug2JU= Subject key identifier: E7:3A:01:14:4D:CA:8C:78:42:E9:24:52:90:CC:14:53:1F:C6:3A:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 395D8977E510270E9369CD48B8A5AAFECF3F5569 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/591acf32-d365-4f92-a730-b14202d5b086.roa Signing time: Tue 19 May 2026 00:20:06 +0000 ROA not before: Tue 19 May 2026 00:20:06 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 129.224.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:5d:89:77:e5:10:27:0e:93:69:cd:48:b8:a5:aa:fe:cf:3f:55:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:20:06 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=dec2e0f8ede05ca19ea8452f94e583b7b82cfc1afcb6d9a75e7e89895dbc63d2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:80:82:58:ab:b4:da:01:9b:79:7b:c6:b8:70: 2f:33:84:9c:1a:fb:3f:45:0b:09:ad:11:98:5d:97: c8:e8:43:13:0e:1d:4f:36:c9:d6:15:25:1e:13:cc: 11:1e:9b:7e:5d:8d:7e:f2:40:7d:89:0d:33:47:4a: c3:19:dd:5d:95:42:95:d7:16:53:36:68:32:18:13: 9b:02:27:28:c9:d7:7c:9c:08:fd:e6:a9:7f:ae:eb: 80:f3:4a:fc:9e:ea:60:5a:ae:19:37:96:b0:0c:68: cf:6a:14:84:32:e9:6b:05:b2:f5:71:bc:2a:03:29: 89:1f:7a:3c:b4:28:55:7a:05:21:a7:de:b4:63:a0: 41:f4:f8:75:f0:ea:3d:bb:0a:57:cd:01:29:c9:3c: 70:42:85:0c:e1:5a:d4:51:fe:3c:3f:2e:8d:70:61: 0e:7b:03:95:3a:06:86:4a:74:72:76:24:79:0c:82: e6:93:2c:9e:dd:5e:36:1f:79:3b:19:86:e9:c4:d0: 5a:00:5a:98:87:e1:aa:0c:3c:9e:e5:2f:1a:9e:b9: 7b:8d:13:4f:a6:28:1f:41:d6:6b:a4:9f:f4:08:0b: a3:92:36:af:2b:fc:ff:4f:b7:e0:aa:e3:cd:fa:2a: 42:eb:33:a7:8a:ec:d2:47:47:75:88:50:f8:d9:b5: 46:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:3A:01:14:4D:CA:8C:78:42:E9:24:52:90:CC:14:53:1F:C6:3A:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/591acf32-d365-4f92-a730-b14202d5b086.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.224.128.0/18 Signature Algorithm: sha256WithRSAEncryption 9a:f8:51:70:12:0f:7d:01:85:00:87:9d:77:6b:50:08:ac:a9: d8:f2:e1:05:d5:3c:5f:d0:5b:7e:5d:5e:a4:94:b6:a2:e2:6d: 7b:67:67:03:17:c6:da:ad:24:31:bc:38:1b:01:63:74:9b:2a: 8d:2c:e0:b2:e0:b4:53:50:88:77:7e:64:f9:b9:f3:65:9a:af: 32:e5:a9:9b:d1:9b:1f:ae:b4:2c:3f:47:9d:29:99:24:17:a5: 4f:2a:78:b5:52:57:80:ad:f7:49:42:16:99:20:21:5f:54:40: d1:97:e1:06:3f:d8:14:52:dd:56:e5:79:be:d4:e9:68:eb:0d: ef:ee:ae:d1:34:86:f6:2c:3c:e6:94:36:2f:10:86:1e:6b:b2: f1:dd:26:91:67:56:10:68:99:67:5d:5d:af:f5:16:13:fa:e7: 52:fa:e4:6d:a3:f4:76:20:3e:fa:98:b6:5d:7f:90:44:0e:da: a1:ed:cc:59:c5:ad:84:a9:db:bc:53:64:23:e9:9c:b8:05:14: e5:07:bd:b3:33:78:60:25:37:d8:b6:40:57:dc:94:a6:13:74: 4d:38:12:9e:10:cb:39:ea:4a:fe:12:bd:8f:1d:c1:77:ce:dc: e8:9d:37:92:d7:aa:dd:81:8b:93:ea:14:86:2a:01:18:f5:ac: 68:f9:0c:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOV2Jd+UQJw6Tac1IuKWq/s8/VWkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAyMDA2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWMyZTBmOGVkZTA1Y2ExOWVhODQ1MmY5NGU1ODNiN2I4 MmNmYzFhZmNiNmQ5YTc1ZTdlODk4OTVkYmM2M2QyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDXgIJYq7TaAZt5e8a4cC8zhJwa+z9FCwmtEZhdl8joQxMO HU82ydYVJR4TzBEem35djX7yQH2JDTNHSsMZ3V2VQpXXFlM2aDIYE5sCJyjJ13yc CP3mqX+u64DzSvye6mBarhk3lrAMaM9qFIQy6WsFsvVxvCoDKYkfejy0KFV6BSGn 3rRjoEH0+HXw6j27ClfNASnJPHBChQzhWtRR/jw/Lo1wYQ57A5U6BoZKdHJ2JHkM guaTLJ7dXjYfeTsZhunE0FoAWpiH4aoMPJ7lLxqeuXuNE0+mKB9B1mukn/QIC6OS Nq8r/P9Pt+Cq4836KkLrM6eK7NJHR3WIUPjZtUbXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5zoBFE3KjHhC6SRSkMwUUx/GOs4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5MWFjZjMyLWQzNjUtNGY5Mi1hNzMwLWIxNDIwMmQ1YjA4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaB4IAwDQYJKoZIhvcNAQELBQADggEBAJr4UXASD30BhQCHnXdrUAisqdjy 4QXVPF/QW35dXqSUtqLibXtnZwMXxtqtJDG8OBsBY3SbKo0s4LLgtFNQiHd+ZPm5 82WarzLlqZvRmx+utCw/R50pmSQXpU8qeLVSV4Ct90lCFpkgIV9UQNGX4QY/2BRS 3Vbleb7U6WjrDe/urtE0hvYsPOaUNi8Qhh5rsvHdJpFnVhBomWddXa/1FhP651L6 5G2j9HYgPvqYtl1/kEQO2qHtzFnFrYSp27xTZCPpnLgFFOUHvbMzeGAlN9i2QFfc lKYTdE04Ep4QyznqSv4SvY8dwXfO3OidN5LXqt2Bi5PqFIYqARj1rGj5DEg= -----END CERTIFICATE-----Generated at Sat Jun 13 05:51:45 2026 by rpki-client