$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa File: 6d7cb979-c125-4840-893a-6f3570fa019a.roa (raw, json) Hash identifier: tFMIQ5ppAIpU8xwE9XywHhzir53JhZrIoSlCHNJ/Zfc= Subject key identifier: CD:C0:B5:F2:CD:BF:93:9F:46:F7:0B:B9:CA:7B:3F:44:64:9D:4B:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5255D569F57C500AB4083DD9A090E60FC46CCF38 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa Signing time: Sat 16 May 2026 00:31:26 +0000 ROA not before: Sat 16 May 2026 00:31:26 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.32.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:55:d5:69:f5:7c:50:0a:b4:08:3d:d9:a0:90:e6:0f:c4:6c:cf:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:31:26 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=4619858d3d2cea20cf77587f8ff302401a77e1b3c7a5b7ad3e7432a38893ce08, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:46:84:99:21:1d:d1:84:48:c6:83:8b:20:fd: a6:cf:f5:bf:48:bd:eb:de:0b:db:bf:1b:fd:fc:64: 11:25:f0:8c:5c:db:11:8b:23:97:60:3c:78:dd:dc: 66:39:5b:a6:d8:46:35:a2:31:9e:28:e0:e6:5b:c6: fa:0e:e2:9e:ee:53:8c:5b:24:e2:ba:2a:32:69:f5: 34:5f:a7:3f:2a:92:2b:e9:36:5a:38:1a:91:c3:bd: 05:f8:5f:26:48:8a:f0:ac:b7:7c:39:78:3e:39:0e: 9c:42:29:b7:b0:76:39:64:99:1e:00:68:10:c6:12: 2f:5d:7b:36:6f:23:46:7d:09:5c:f5:23:1d:d3:73: 3b:76:3b:2b:47:83:47:db:10:33:e5:f5:48:22:f9: 74:35:85:a6:f2:f1:8a:f4:01:1e:a6:37:3c:0f:75: 3c:80:12:ce:a1:d9:d9:a3:22:82:c5:d2:a0:f1:b2: a9:ef:89:8f:31:45:2b:62:a1:f3:52:39:64:c8:77: d8:6a:eb:67:97:e7:80:ac:f6:f7:1b:d6:41:eb:7f: f3:9b:62:95:58:a4:e0:8c:b9:3c:60:e0:89:28:6f: da:dd:8f:6b:c0:18:42:e4:cd:79:cf:c9:ca:b8:62: 6e:8f:8b:91:21:d1:a9:3d:9c:dc:10:8d:a3:04:a5: 63:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:C0:B5:F2:CD:BF:93:9F:46:F7:0B:B9:CA:7B:3F:44:64:9D:4B:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d7cb979-c125-4840-893a-6f3570fa019a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.32.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:e7:5f:9e:db:eb:83:c2:47:4b:1a:1b:23:41:9c:1a:4a:ac: 3b:2e:32:5b:85:6b:73:14:57:74:5c:db:c9:7a:05:a2:9f:fa: 3d:34:f6:de:7a:ab:98:12:40:dc:8b:c8:9a:0d:3a:81:f2:9f: 4f:70:47:e6:3c:60:f6:cf:7d:36:dc:68:6c:ff:fc:b5:87:82: ad:e8:ba:02:c0:ba:a4:e5:92:f6:03:5e:6c:5c:e2:8d:28:23: 1a:d2:b2:ad:eb:c7:70:b9:dd:c7:60:3f:87:23:66:53:ad:48: ee:f5:35:79:a6:ee:17:94:29:e8:7b:e5:aa:0f:4c:6f:ae:be: 57:df:cb:c0:a7:f5:44:e7:aa:97:1f:c2:0b:d7:0c:8c:ce:69: b9:70:8d:a1:a2:3c:54:e5:57:de:2b:47:ed:e1:09:a3:d8:5b: 72:11:8a:92:5a:2b:99:5d:b5:8d:70:d2:01:b1:fb:0c:3c:e0: 0e:86:c6:6d:90:11:2f:5d:a8:b1:af:04:83:4b:e0:38:3d:08: 96:6c:c2:dc:58:ab:92:e0:f1:f4:06:2d:ef:d5:e5:1b:63:19: 6e:68:2c:44:0c:a2:a5:d2:86:46:47:58:55:74:cc:9d:3d:55: 02:9a:ec:b0:58:e0:d0:eb:dd:9b:06:37:3b:92:69:5b:4a:08: 53:ec:55:63 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUlXVafV8UAq0CD3ZoJDmD8RszzgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDAzMTI2WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NjE5ODU4ZDNkMmNlYTIwY2Y3NzU4N2Y4ZmYzMDI0MDFh NzdlMWIzYzdhNWI3YWQzZTc0MzJhMzg4OTNjZTA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7RoSZIR3RhEjGg4sg/abP9b9IveveC9u/G/38ZBEl8Ixc 2xGLI5dgPHjd3GY5W6bYRjWiMZ4o4OZbxvoO4p7uU4xbJOK6KjJp9TRfpz8qkivp Nlo4GpHDvQX4XyZIivCst3w5eD45DpxCKbewdjlkmR4AaBDGEi9dezZvI0Z9CVz1 Ix3Tczt2OytHg0fbEDPl9Ugi+XQ1haby8Yr0AR6mNzwPdTyAEs6h2dmjIoLF0qDx sqnviY8xRStiofNSOWTId9hq62eX54Cs9vcb1kHrf/ObYpVYpOCMuTxg4Ikob9rd j2vAGELkzXnPycq4Ym6Pi5Eh0ak9nNwQjaMEpWM7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzcC18s2/k59G9wu5yns/RGSdS/4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkN2NiOTc5LWMxMjUtNDg0MC04OTNhLTZmMzU3MGZhMDE5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoIDANBgkqhkiG9w0BAQsFAAOCAQEAU+dfntvrg8JHSxobI0GcGkqsOy4y W4VrcxRXdFzbyXoFop/6PTT23nqrmBJA3IvImg06gfKfT3BH5jxg9s99NtxobP/8 tYeCrei6AsC6pOWS9gNebFzijSgjGtKyrevHcLndx2A/hyNmU61I7vU1eabuF5Qp 6Hvlqg9Mb66+V9/LwKf1ROeqlx/CC9cMjM5puXCNoaI8VOVX3itH7eEJo9hbchGK klormV21jXDSAbH7DDzgDobGbZARL12osa8Eg0vgOD0IlmzC3FirkuDx9AYt79Xl G2MZbmgsRAyipdKGRkdYVXTMnT1VAprssFjg0OvdmwY3O5JpW0oIU+xVYw== -----END CERTIFICATE-----Generated at Sat Jun 13 08:30:28 2026 by rpki-client