$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/603d26d7-c121-42e1-817f-ef0a806e3d69.roa File: 603d26d7-c121-42e1-817f-ef0a806e3d69.roa (raw, json) Hash identifier: Z0uKnETn0ii/Ik8UqaO1aIqP73qeOYRjcMtgjKYEpeM= Subject key identifier: 4C:AA:FE:A0:44:98:24:41:D4:3D:0B:2F:65:97:29:78:98:69:90:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2328C75443BDC0AC802D415375B3F5D638389103 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/603d26d7-c121-42e1-817f-ef0a806e3d69.roa Signing time: Fri 15 May 2026 02:20:52 +0000 ROA not before: Fri 15 May 2026 02:20:52 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 185.212.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:28:c7:54:43:bd:c0:ac:80:2d:41:53:75:b3:f5:d6:38:38:91:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 02:20:52 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=2f11f3de68e1acb64160c20571032718ee2aac0c9e068caacbaf1742e247b758, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f6:25:89:9c:76:10:59:cd:f6:d6:43:62:cd: 79:98:3c:24:7a:3a:dd:4e:c1:96:d1:40:17:fb:d4: 94:c4:22:e9:57:72:58:be:cb:10:c6:03:bf:61:2e: f1:d5:ae:b1:ed:38:c0:e1:88:e4:e1:e9:41:44:e4: 0c:40:f5:6d:6b:70:b7:bf:6d:22:a3:07:0a:a5:5b: 32:80:c9:9e:e4:fb:97:f3:96:b8:09:bf:a6:f1:26: 03:ab:cb:20:8c:b3:f3:ed:fb:3d:a9:3b:93:ec:fe: 30:58:20:d5:c9:1c:0a:3e:76:5f:09:a9:44:82:8f: 81:40:3e:a7:f9:f2:97:5b:f3:0b:b8:fc:72:1c:69: 9a:d0:97:81:a4:39:0f:04:2a:36:b0:54:25:a6:ec: 30:bf:29:14:79:cf:2f:fe:cb:fe:be:e0:7a:3d:39: fa:f5:f1:ac:9d:f0:74:26:29:86:2b:19:ab:c9:e7: f5:60:d8:4b:56:e7:41:f1:ae:be:2a:6c:60:c2:96: a2:26:68:75:a4:38:b3:98:2b:d6:d9:93:79:66:22: 18:90:ce:fb:be:8c:8f:bd:82:26:38:33:d7:b6:8e: 9d:5f:9b:96:3f:56:1d:9d:8c:2c:6a:ed:24:4c:ed: d8:29:35:22:99:82:c1:60:14:2a:46:51:02:ab:2a: cf:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:AA:FE:A0:44:98:24:41:D4:3D:0B:2F:65:97:29:78:98:69:90:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/603d26d7-c121-42e1-817f-ef0a806e3d69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.212.200.0/22 Signature Algorithm: sha256WithRSAEncryption 5a:7b:37:fc:f2:c4:99:5c:67:de:ac:6e:be:ee:90:5d:58:13: ad:75:8b:45:7f:eb:70:32:03:49:b4:04:b5:5d:8e:4b:01:43: 18:72:92:42:f5:a6:cb:52:fa:0e:1d:ca:db:67:2f:e0:9c:d1: 09:e2:44:ed:5c:20:78:4a:6e:ff:fc:2e:21:4c:70:7b:dd:39: 5f:18:e0:d8:67:ac:31:69:f4:11:72:08:e5:53:88:3c:ce:6b: 55:f9:45:e5:df:15:43:d8:8b:2c:37:4b:53:a7:4e:3a:37:cd: c2:31:7a:93:ee:ec:83:b4:a5:21:b5:e5:21:2c:94:e8:ca:ca: e6:60:d8:5e:24:e8:b0:3e:51:08:24:fb:b5:bc:07:4a:57:09: 30:2a:b6:89:8a:6a:38:e3:f3:d1:b9:94:02:47:f8:eb:c6:9a: cb:7b:84:f7:57:c7:a6:ab:96:fb:fc:7f:65:5a:f4:34:a6:22: d4:27:4b:09:f1:72:5b:c9:a9:cd:f1:2f:fd:c4:19:dc:14:0b: ee:7d:f6:f9:9d:86:f6:72:b2:ff:c6:ed:cc:a5:4a:8e:bc:34: 7a:4f:02:a4:9f:66:bc:53:07:ce:f8:28:fa:90:27:4a:54:d1: ab:ae:c9:4f:16:3d:f2:39:32:ca:aa:9c:24:ad:2c:ad:c5:96: 73:41:55:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIyjHVEO9wKyALUFTdbP11jg4kQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDIyMDUyWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjExZjNkZTY4ZTFhY2I2NDE2MGMyMDU3MTAzMjcxOGVl MmFhYzBjOWUwNjhjYWFjYmFmMTc0MmUyNDdiNzU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC19iWJnHYQWc321kNizXmYPCR6Ot1OwZbRQBf71JTEIulX cli+yxDGA79hLvHVrrHtOMDhiOTh6UFE5AxA9W1rcLe/bSKjBwqlWzKAyZ7k+5fz lrgJv6bxJgOryyCMs/Pt+z2pO5Ps/jBYINXJHAo+dl8JqUSCj4FAPqf58pdb8wu4 /HIcaZrQl4GkOQ8EKjawVCWm7DC/KRR5zy/+y/6+4Ho9Ofr18ayd8HQmKYYrGavJ 5/Vg2EtW50Hxrr4qbGDClqImaHWkOLOYK9bZk3lmIhiQzvu+jI+9giY4M9e2jp1f m5Y/Vh2djCxq7SRM7dgpNSKZgsFgFCpGUQKrKs+rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTKr+oESYJEHUPQsvZZcpeJhpkOgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYwM2QyNmQ3LWMxMjEtNDJlMS04MTdmLWVmMGE4MDZlM2Q2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAK51MgwDQYJKoZIhvcNAQELBQADggEBAFp7N/zyxJlcZ96sbr7ukF1YE611 i0V/63AyA0m0BLVdjksBQxhykkL1pstS+g4dyttnL+Cc0QniRO1cIHhKbv/8LiFM cHvdOV8Y4NhnrDFp9BFyCOVTiDzOa1X5ReXfFUPYiyw3S1OnTjo3zcIxepPu7IO0 pSG15SEslOjKyuZg2F4k6LA+UQgk+7W8B0pXCTAqtomKajjj89G5lAJH+OvGmst7 hPdXx6arlvv8f2Va9DSmItQnSwnxclvJqc3xL/3EGdwUC+599vmdhvZysv/G7cyl So68NHpPAqSfZrxTB874KPqQJ0pU0auuyU8WPfI5MsqqnCStLK3FlnNBVXo= -----END CERTIFICATE-----Generated at Sat Jun 13 07:06:10 2026 by rpki-client