$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68f82465-3271-47de-9d93-ef187f7c125b.roa File: 68f82465-3271-47de-9d93-ef187f7c125b.roa (raw, json) Hash identifier: IZa0Orr/Rtwb2rQskolk8meLY2Eh3416wDiwmG4C3U8= Subject key identifier: 94:CB:AE:34:3B:F0:9D:AF:B9:11:6B:A2:17:0A:D4:07:75:7F:F8:82 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6646A3AF12A494328B8238A04631DF8EE5F93205 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68f82465-3271-47de-9d93-ef187f7c125b.roa Signing time: Fri 15 May 2026 00:10:13 +0000 ROA not before: Fri 15 May 2026 00:10:13 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:46:a3:af:12:a4:94:32:8b:82:38:a0:46:31:df:8e:e5:f9:32:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:10:13 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=40cda9e5dd2a1a660e67dfe6ad4c8b66d1b603f0b55c1c094adb2d2e64692ac9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:23:22:10:31:42:bd:73:b6:d7:51:5f:6d:9b: 62:ec:4c:bc:ec:84:e4:87:9c:d0:1d:5a:e6:82:d5: ea:0a:65:73:2d:6d:be:0b:34:c0:5f:6a:64:aa:9a: 8e:51:70:d9:01:f5:2a:55:55:30:d2:ef:69:fa:e6: 1c:b0:03:20:90:1e:7e:14:fe:e6:e3:0f:de:7f:20: e6:af:4f:f6:91:06:a0:48:46:65:1d:ad:9c:67:16: 5c:bf:cc:a1:6c:eb:58:2f:42:5f:2d:f6:c1:8a:71: 9d:fa:d6:61:c6:b9:94:be:bd:09:c8:a0:72:c2:98: fd:76:5d:12:8a:5d:68:2e:d5:19:64:fe:a7:0c:90: af:b4:4a:59:1a:85:ce:c6:97:20:6b:30:ef:fb:09: 62:d3:18:1a:0b:0e:46:f1:83:a9:be:1b:7c:02:ec: 2a:85:d7:65:3b:37:5c:7d:87:4a:1e:32:03:69:81: 32:92:f4:c8:2c:cb:c0:93:65:08:82:a2:c2:4a:41: c1:05:a1:ad:65:40:36:55:ce:47:6c:21:c6:2a:6c: c7:8c:6c:e4:be:eb:75:8e:4c:f9:33:25:05:ff:7e: 9c:07:d2:8b:06:d4:d5:e8:fc:f9:88:54:de:f0:31: 1a:94:66:9b:82:d7:5f:b7:13:06:0a:95:bf:67:4c: 9d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:CB:AE:34:3B:F0:9D:AF:B9:11:6B:A2:17:0A:D4:07:75:7F:F8:82 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68f82465-3271-47de-9d93-ef187f7c125b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.0.0/18 Signature Algorithm: sha256WithRSAEncryption b9:2f:b0:94:1e:cf:68:00:3e:12:53:87:7f:47:16:c0:4e:5f: e2:c3:23:27:6d:e8:c1:04:6f:37:07:69:b6:18:0f:2d:26:8d: 9e:d8:9a:6a:b3:27:98:87:02:2b:31:06:7d:d9:dd:14:1a:a4: f8:99:1f:9e:d3:d0:0e:45:9d:9c:f4:40:ed:71:77:b1:ce:81: 15:16:f9:a1:94:97:1d:f8:6f:ad:67:dd:7f:61:cd:17:fa:52: ff:05:cd:c5:3f:d2:c2:c2:90:d0:43:30:2e:f6:12:40:55:d7: dd:0c:08:e4:a2:b7:b1:b7:19:38:33:6b:a0:4b:53:3b:de:fe: 25:fd:57:ba:b5:ed:ab:2f:31:3f:4b:7d:69:9a:63:cf:71:5c: 7a:0e:9e:bf:b1:7e:fe:65:59:38:b1:e4:44:3b:ab:8c:e9:4d: 5b:ac:08:0c:fc:51:05:86:06:a7:43:67:17:72:0b:a5:d5:ca: 83:0a:50:dd:9f:c2:64:a5:36:1d:d7:b3:2a:a2:ba:be:95:e0: 13:50:6d:8d:02:eb:6d:c2:f3:33:50:03:38:4c:99:af:a7:af: f1:15:b9:b2:69:5b:80:10:3d:f5:7d:9b:46:a6:de:f6:41:2b: 33:fe:53:2d:e2:d4:47:29:95:07:93:91:68:61:4f:e4:af:25: ab:81:9c:21 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZkajrxKklDKLgjigRjHfjuX5MgUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDAxMDEzWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MGNkYTllNWRkMmExYTY2MGU2N2RmZTZhZDRjOGI2NmQx YjYwM2YwYjU1YzFjMDk0YWRiMmQyZTY0NjkyYWM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHIyIQMUK9c7bXUV9tm2LsTLzshOSHnNAdWuaC1eoKZXMt bb4LNMBfamSqmo5RcNkB9SpVVTDS72n65hywAyCQHn4U/ubjD95/IOavT/aRBqBI RmUdrZxnFly/zKFs61gvQl8t9sGKcZ361mHGuZS+vQnIoHLCmP12XRKKXWgu1Rlk /qcMkK+0Slkahc7GlyBrMO/7CWLTGBoLDkbxg6m+G3wC7CqF12U7N1x9h0oeMgNp gTKS9Mgsy8CTZQiCosJKQcEFoa1lQDZVzkdsIcYqbMeMbOS+63WOTPkzJQX/fpwH 0osG1NXo/PmIVN7wMRqUZpuC11+3EwYKlb9nTJ1fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlMuuNDvwna+5EWuiFwrUB3V/+IIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4ZjgyNDY1LTMyNzEtNDdkZS05ZDkzLWVmMTg3ZjdjMTI1Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFQAwDQYJKoZIhvcNAQELBQADggEBALkvsJQez2gAPhJTh39HFsBOX+LD Iydt6MEEbzcHabYYDy0mjZ7YmmqzJ5iHAisxBn3Z3RQapPiZH57T0A5FnZz0QO1x d7HOgRUW+aGUlx34b61n3X9hzRf6Uv8FzcU/0sLCkNBDMC72EkBV190MCOSit7G3 GTgza6BLUzve/iX9V7q17asvMT9LfWmaY89xXHoOnr+xfv5lWTix5EQ7q4zpTVus CAz8UQWGBqdDZxdyC6XVyoMKUN2fwmSlNh3Xsyqiur6V4BNQbY0C623C8zNQAzhM ma+nr/EVubJpW4AQPfV9m0am3vZBKzP+Uy3i1EcplQeTkWhhT+SvJauBnCE= -----END CERTIFICATE-----Generated at Sat Jun 13 07:11:53 2026 by rpki-client