$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa File: 63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa (raw, json) Hash identifier: wZuazt2wCfyuNXBH+rZ1/HsnLfohLR20K5H8S74gcPQ= Subject key identifier: 26:0D:7E:15:CD:B1:1E:0B:4F:A4:40:07:0C:5B:2E:CB:DE:C8:EC:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D9BA1F7C1C389DB5B5463B6A335A8A6BFB00603 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa Signing time: Fri 15 May 2026 01:20:09 +0000 ROA not before: Fri 15 May 2026 01:20:09 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.24.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:9b:a1:f7:c1:c3:89:db:5b:54:63:b6:a3:35:a8:a6:bf:b0:06:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:20:09 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=9e57f6c91785fb26675fdffc6b0965de75cbe58f7700a5b48c5cb1663a80095f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:b5:81:ed:43:5a:9f:65:d8:c8:94:62:a6:80: 0b:b7:be:ea:bb:ec:cb:bc:66:76:3a:ce:ee:f3:b3: 79:09:5f:57:4f:2f:92:4e:66:fa:95:7c:b5:0d:b7: eb:91:37:82:3d:85:c9:c5:7c:74:f9:e5:5c:ce:a4: 97:51:c0:df:a8:99:b5:32:62:69:98:db:26:ec:66: e6:1c:52:30:c4:bb:41:33:c9:91:2f:fb:6b:66:72: 9e:db:ff:c7:99:bf:0e:f0:5a:68:8c:ac:c2:78:f7: 08:31:e5:dc:a2:75:10:40:70:5f:78:37:2f:52:8c: 11:49:89:6b:60:38:76:e9:5c:b8:89:ee:35:fe:93: 0a:82:b9:fb:05:4e:28:21:8b:c9:0f:92:de:8d:1d: b2:95:ee:00:a9:e2:8a:8d:e9:65:ee:6b:20:a2:81: 04:6b:b3:c3:34:49:3f:df:8b:51:68:df:25:b0:4d: 45:e6:72:0a:9b:61:e0:d6:a2:eb:1c:fb:4b:fe:0e: c9:cd:e0:15:48:e7:94:43:28:ab:76:a0:62:74:e7: e5:48:f5:cf:74:5f:b2:7c:cd:49:56:b6:5e:65:da: fc:30:63:26:0b:38:6e:6a:c1:8b:be:a0:86:fa:d3: 79:c1:39:a4:24:c6:10:b9:26:f5:8e:6c:cd:97:63: bd:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:0D:7E:15:CD:B1:1E:0B:4F:A4:40:07:0C:5B:2E:CB:DE:C8:EC:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.24.32.0/22 Signature Algorithm: sha256WithRSAEncryption 32:71:5d:3c:f2:5e:58:bd:b4:28:89:ad:b7:76:f3:14:f1:0d: 1b:52:14:c8:88:a1:6d:de:5d:0e:10:b2:52:d8:a7:7b:1d:97: f1:fd:89:26:ea:94:85:32:3c:c8:c2:1f:b9:2b:6b:89:f7:89: 08:23:b7:2b:39:40:f8:d5:d2:d7:4a:13:4d:9a:4b:3e:9a:a7: 6a:c2:ba:f6:4a:ba:3d:b6:f4:60:7c:d9:76:61:6d:b4:dd:55: 5b:1e:5f:c3:9e:bc:89:3d:54:7f:30:c4:52:81:aa:29:ed:0d: a3:b5:a5:a3:3f:06:e7:b6:50:6c:bd:3b:37:b2:5c:9e:fd:4c: 4a:f4:2b:ce:d3:f9:89:d9:62:5e:14:42:f9:19:bb:d8:13:2e: bb:30:61:e6:44:7d:5f:0a:30:57:c8:75:69:f2:ec:25:84:17: 0f:8b:51:cf:70:48:73:8b:f6:da:89:87:74:96:b4:83:09:8f: a2:cd:9a:bd:92:5e:a3:3b:24:1d:04:2e:be:28:12:b4:bc:01: ef:75:e8:68:d7:02:2a:52:62:e2:00:ea:89:c9:c5:9f:3c:d2: e5:24:fa:57:14:3f:20:88:8f:33:41:97:73:93:63:71:46:3a: 68:c5:85:cc:4a:92:d7:5e:9f:4d:f2:4b:95:cf:7a:38:48:b2: cf:9f:34:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfZuh98HDidtbVGO2ozWopr+wBgMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDEyMDA5WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZTU3ZjZjOTE3ODVmYjI2Njc1ZmRmZmM2YjA5NjVkZTc1 Y2JlNThmNzcwMGE1YjQ4YzVjYjE2NjNhODAwOTVmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXtYHtQ1qfZdjIlGKmgAu3vuq77Mu8ZnY6zu7zs3kJX1dP L5JOZvqVfLUNt+uRN4I9hcnFfHT55VzOpJdRwN+ombUyYmmY2ybsZuYcUjDEu0Ez yZEv+2tmcp7b/8eZvw7wWmiMrMJ49wgx5dyidRBAcF94Ny9SjBFJiWtgOHbpXLiJ 7jX+kwqCufsFTighi8kPkt6NHbKV7gCp4oqN6WXuayCigQRrs8M0ST/fi1Fo3yWw TUXmcgqbYeDWousc+0v+DsnN4BVI55RDKKt2oGJ05+VI9c90X7J8zUlWtl5l2vww YyYLOG5qwYu+oIb603nBOaQkxhC5JvWObM2XY72zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJg1+Fc2xHgtPpEAHDFsuy97I7F8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzYTlmZGI5LTIwM2YtNDRmYy1iZTU3LTRjNGIyMjM2ZTZjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQGCAwDQYJKoZIhvcNAQELBQADggEBADJxXTzyXli9tCiJrbd28xTxDRtS FMiIoW3eXQ4QslLYp3sdl/H9iSbqlIUyPMjCH7kra4n3iQgjtys5QPjV0tdKE02a Sz6ap2rCuvZKuj229GB82XZhbbTdVVseX8OevIk9VH8wxFKBqintDaO1paM/Bue2 UGy9OzeyXJ79TEr0K87T+YnZYl4UQvkZu9gTLrswYeZEfV8KMFfIdWny7CWEFw+L Uc9wSHOL9tqJh3SWtIMJj6LNmr2SXqM7JB0ELr4oErS8Ae916GjXAipSYuIA6onJ xZ880uUk+lcUPyCIjzNBl3OTY3FGOmjFhcxKktden03yS5XPejhIss+fNGI= -----END CERTIFICATE-----Generated at Sat Jun 13 12:57:31 2026 by rpki-client