$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa File: 66e59786-c1f4-4146-bccb-708e47a5469a.roa (raw, json) Hash identifier: 3GFTAqamMCxo8yK3cm3qtFOdfmcDyvw/eR3KqvePNqE= Subject key identifier: FD:63:9E:16:E1:E3:CE:58:0B:73:F0:96:17:20:E5:0E:A7:22:9A:19 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 44DF122D6C67E3779AB8E16A4F02D370511B229C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa Signing time: Sat 16 May 2026 00:41:08 +0000 ROA not before: Sat 16 May 2026 00:41:08 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.48.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:df:12:2d:6c:67:e3:77:9a:b8:e1:6a:4f:02:d3:70:51:1b:22:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:41:08 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a8e36834443bd657b4ea6140228bdc5437b237fd3f398ed5fa76cf27383dd3cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:12:c5:9a:97:71:1f:14:d4:2e:65:3c:0f:bb: 72:05:e4:40:e8:42:a8:e0:ed:94:7b:60:68:92:07: ba:20:d0:eb:63:6f:c9:93:a9:79:01:45:99:ad:13: 52:5e:17:d8:fd:39:27:f7:b1:5f:1b:b5:33:0a:d9: f3:1d:ca:30:66:36:99:1c:4d:16:d4:30:96:30:58: 1f:71:8f:8f:85:97:b2:78:b4:0d:19:6d:de:5c:e1: 9f:d7:76:3d:41:c3:40:b0:3a:f8:9d:d6:5e:be:ea: c0:18:a4:8a:f1:0f:fc:4a:66:55:ed:91:46:66:d8: ef:fe:e8:4b:99:c6:74:42:4d:95:3b:4f:7e:5c:97: 87:b2:6e:3b:5b:82:f2:28:5f:e4:5a:f7:7a:26:e6: 1a:a5:39:d3:89:3c:92:87:d8:19:f4:c6:5a:7a:fe: 6c:1e:6e:eb:eb:be:ea:40:03:56:02:e4:7c:7f:5d: 0b:0d:fd:b8:df:7f:e1:e4:17:4c:ec:15:2d:3a:09: 81:b7:57:48:e5:31:bb:eb:ad:f7:2b:56:f5:a2:f2: 43:30:66:17:04:8c:3d:f2:e7:28:a7:be:93:5e:a3: 68:78:9b:2d:70:8d:00:a2:99:bb:64:39:c7:89:4c: 05:81:14:57:c9:4b:f1:07:b6:86:30:9e:9d:94:14: ba:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:63:9E:16:E1:E3:CE:58:0B:73:F0:96:17:20:E5:0E:A7:22:9A:19 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.48.0.0/16 Signature Algorithm: sha256WithRSAEncryption 61:1c:ca:6e:10:c2:5c:73:d3:8b:55:b3:35:0f:cf:39:43:03: df:0a:7b:e8:c0:57:2b:23:1e:c7:53:db:9c:e2:07:c1:ac:11: 0a:c9:65:cc:59:82:92:b9:5b:ba:4d:ea:9c:e6:4f:10:99:a8: 3f:5a:cf:8d:d9:91:17:f0:9c:3a:9c:90:ea:7b:d1:b1:12:9f: 10:93:1f:d3:94:2c:b2:1d:90:7c:6d:d7:9a:06:20:54:39:ac: 47:28:d0:2c:3c:5f:5c:a5:e9:73:a8:92:c9:af:de:f7:35:06: 48:cf:6a:08:30:67:04:5e:14:01:da:0c:d2:f6:ca:dd:29:8d: 53:94:f5:c5:13:fa:21:9e:a1:6d:79:b0:35:27:f1:49:d6:a7: 7c:74:d8:90:74:49:a0:7d:79:17:45:9c:a8:4e:01:f3:f2:ef: 6e:1c:ec:83:7f:40:46:43:f3:dc:a2:92:f1:86:16:af:6e:20: 18:fc:75:8f:1d:c9:ee:af:f4:58:b6:c5:39:85:b9:d0:16:71: 18:06:90:54:e4:39:86:a7:32:f3:6f:97:a4:3d:c1:c1:f0:56: c4:37:11:cf:1a:56:c9:f3:32:a4:7a:7a:b1:9d:a6:09:43:e5: 8f:a9:7c:2d:93:65:d2:f4:f1:b4:27:9f:70:55:d0:99:6d:6a: c4:f5:88:87 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIURN8SLWxn43eauOFqTwLTcFEbIpwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDA0MTA4WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGUzNjgzNDQ0M2JkNjU3YjRlYTYxNDAyMjhiZGM1NDM3 YjIzN2ZkM2YzOThlZDVmYTc2Y2YyNzM4M2RkM2NjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeEsWal3EfFNQuZTwPu3IF5EDoQqjg7ZR7YGiSB7og0Otj b8mTqXkBRZmtE1JeF9j9OSf3sV8btTMK2fMdyjBmNpkcTRbUMJYwWB9xj4+Fl7J4 tA0Zbd5c4Z/Xdj1Bw0CwOvid1l6+6sAYpIrxD/xKZlXtkUZm2O/+6EuZxnRCTZU7 T35cl4eybjtbgvIoX+Ra93om5hqlOdOJPJKH2Bn0xlp6/mwebuvrvupAA1YC5Hx/ XQsN/bjff+HkF0zsFS06CYG3V0jlMbvrrfcrVvWi8kMwZhcEjD3y5yinvpNeo2h4 my1wjQCimbtkOceJTAWBFFfJS/EHtoYwnp2UFLoTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/WOeFuHjzlgLc/CWFyDlDqcimhkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2ZTU5Nzg2LWMxZjQtNDE0Ni1iY2NiLTcwOGU0N2E1NDY5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoMDANBgkqhkiG9w0BAQsFAAOCAQEAYRzKbhDCXHPTi1WzNQ/POUMD3wp7 6MBXKyMex1PbnOIHwawRCsllzFmCkrlbuk3qnOZPEJmoP1rPjdmRF/CcOpyQ6nvR sRKfEJMf05Qssh2QfG3XmgYgVDmsRyjQLDxfXKXpc6iSya/e9zUGSM9qCDBnBF4U AdoM0vbK3SmNU5T1xRP6IZ6hbXmwNSfxSdanfHTYkHRJoH15F0WcqE4B8/Lvbhzs g39ARkPz3KKS8YYWr24gGPx1jx3J7q/0WLbFOYW50BZxGAaQVOQ5hqcy82+XpD3B wfBWxDcRzxpWyfMypHp6sZ2mCUPlj6l8LZNl0vTxtCefcFXQmW1qxPWIhw== -----END CERTIFICATE-----Generated at Sat Jun 13 05:52:17 2026 by rpki-client