$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64cca42d-40a8-4dca-85f4-0ac6a32e6088.roa File: 64cca42d-40a8-4dca-85f4-0ac6a32e6088.roa (raw, json) Hash identifier: gw6jx9B8D4objEFr7E9x4X0NJ9AXvp6RVD1kLw/YQCU= Subject key identifier: B6:99:AB:6E:D7:48:85:BC:92:BC:7A:CE:71:B5:D9:4B:E0:6B:9F:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AFFC348AA3A4FFBF7F167E0D51CFAD43FB979F7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64cca42d-40a8-4dca-85f4-0ac6a32e6088.roa Signing time: Sat 16 May 2026 01:31:04 +0000 ROA not before: Sat 16 May 2026 01:31:04 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:ff:c3:48:aa:3a:4f:fb:f7:f1:67:e0:d5:1c:fa:d4:3f:b9:79:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:31:04 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=42585340f5e34a77242b6fcbdbbe809e332d503779dc668732bc4fc23ccfd0f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:29:b6:d5:2e:d2:92:48:74:59:c2:43:53:3d: cf:6e:7e:12:6c:e4:b1:70:27:4f:89:4e:ce:bc:4a: 87:e0:9a:93:0f:7d:f6:7d:ca:7f:75:67:b8:2b:74: 44:f2:bc:20:df:6c:a0:8d:a0:01:e5:48:ab:d9:48: 9b:64:ad:d9:bc:55:4f:97:a3:ec:d3:54:f8:ec:f1: a7:2a:51:77:76:a2:b5:64:b1:b1:3f:85:f2:89:06: e6:bc:e4:18:1c:0d:1a:60:0b:bc:91:b0:0a:4a:e1: 8d:34:b3:14:bb:81:a6:2e:0b:e7:cd:1b:9c:6e:01: 0c:18:c4:4e:37:10:b0:18:6e:c6:dc:2a:0e:63:a9: d9:de:ee:c2:f3:d5:d3:8e:6f:cf:4c:2e:dd:f9:0c: 42:c7:e0:81:95:95:d6:c1:76:49:11:a1:49:a8:15: d8:5d:1b:6c:35:b7:8a:07:70:c5:2e:c1:b9:c4:c0: 53:13:f9:68:c1:c3:13:98:36:80:26:08:13:0a:ec: f9:e9:16:6c:af:c2:b4:69:ce:49:c8:53:49:27:4a: 26:03:6c:d9:ed:01:84:19:8f:df:ef:f3:c7:0d:a8: c5:ee:fe:04:ac:60:04:55:fe:05:37:55:5a:5c:13: b5:04:59:13:f0:6a:bc:e3:23:1a:6a:39:00:0d:83: 39:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:99:AB:6E:D7:48:85:BC:92:BC:7A:CE:71:B5:D9:4B:E0:6B:9F:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/64cca42d-40a8-4dca-85f4-0ac6a32e6088.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.96.0/19 Signature Algorithm: sha256WithRSAEncryption 6b:a5:b2:65:37:ec:5a:a5:a0:f7:1e:bb:04:e6:3c:bd:96:55: 36:f7:2f:91:5d:df:bc:c6:99:a8:1a:ea:0c:9a:9e:70:2b:e6: 3b:ad:7b:d8:ae:04:d6:54:73:d4:8e:de:28:61:e2:e1:b2:4d: d7:79:3e:dc:4a:5f:ad:75:c5:4e:c5:d6:da:93:80:63:c9:d8: 46:2b:28:f2:50:2a:b2:39:ff:e4:9f:d1:91:25:e7:75:fb:7c: c2:87:d3:93:fe:97:0b:cd:a6:0b:de:90:9c:e2:11:5f:bf:3b: 41:40:8e:ed:b5:26:f6:fc:5f:50:d2:de:8e:62:56:c5:db:e2: e1:82:40:9c:83:93:24:ca:99:3f:e6:9d:f6:66:17:9e:c9:5d: 52:08:51:1c:b3:ed:3b:98:6c:29:11:bc:4a:27:b8:c7:69:44: fa:3f:dc:6d:bc:d0:ed:a3:f3:ed:85:2c:08:78:fb:6a:c4:03: 69:d1:66:37:eb:63:65:88:92:cc:05:60:fd:3e:d6:00:e6:e7: e6:5c:31:03:5a:0b:a0:03:52:01:2b:8c:22:ab:38:31:e5:6d: 84:28:dd:82:43:39:d5:e9:2d:37:1f:01:40:57:51:2c:35:0d: d7:4f:38:73:41:2f:4e:f9:61:71:ed:8e:f2:7b:94:51:51:50: 62:ab:78:ef -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOv/DSKo6T/v38Wfg1Rz61D+5efcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEzMTA0WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjU4NTM0MGY1ZTM0YTc3MjQyYjZmY2JkYmJlODA5ZTMz MmQ1MDM3NzlkYzY2ODczMmJjNGZjMjNjY2ZkMGYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdKbbVLtKSSHRZwkNTPc9ufhJs5LFwJ0+JTs68SofgmpMP ffZ9yn91Z7grdETyvCDfbKCNoAHlSKvZSJtkrdm8VU+Xo+zTVPjs8acqUXd2orVk sbE/hfKJBua85BgcDRpgC7yRsApK4Y00sxS7gaYuC+fNG5xuAQwYxE43ELAYbsbc Kg5jqdne7sLz1dOOb89MLt35DELH4IGVldbBdkkRoUmoFdhdG2w1t4oHcMUuwbnE wFMT+WjBwxOYNoAmCBMK7PnpFmyvwrRpzknIU0knSiYDbNntAYQZj9/v88cNqMXu /gSsYARV/gU3VVpcE7UEWRPwarzjIxpqOQANgzmNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtpmrbtdIhbySvHrOcbXZS+Brn/AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0Y2NhNDJkLTQwYTgtNGRjYS04NWY0LTBhYzZhMzJlNjA4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXFmAwDQYJKoZIhvcNAQELBQADggEBAGulsmU37FqloPceuwTmPL2WVTb3 L5Fd37zGmaga6gyannAr5jute9iuBNZUc9SO3ihh4uGyTdd5PtxKX611xU7F1tqT gGPJ2EYrKPJQKrI5/+Sf0ZEl53X7fMKH05P+lwvNpgvekJziEV+/O0FAju21Jvb8 X1DS3o5iVsXb4uGCQJyDkyTKmT/mnfZmF57JXVIIURyz7TuYbCkRvEonuMdpRPo/ 3G280O2j8+2FLAh4+2rEA2nRZjfrY2WIkswFYP0+1gDm5+ZcMQNaC6ADUgErjCKr ODHlbYQo3YJDOdXpLTcfAUBXUSw1DddPOHNBL075YXHtjvJ7lFFRUGKreO8= -----END CERTIFICATE-----Generated at Sat Jun 13 08:18:08 2026 by rpki-client