$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa File: 707b5de7-4469-4150-b167-4708f1391d71.roa (raw, json) Hash identifier: yGBCwlGipk5YJzwkc4auy+e/RzVjtjsU5E1mlEWQdBs= Subject key identifier: 36:5B:AF:C8:D6:C3:5D:80:95:83:F8:E0:B2:63:93:EA:E1:FB:BC:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BC2AAF5C179F26BBECE63E043A93A5BE1E5DC4D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa Signing time: Tue 19 May 2026 00:20:07 +0000 ROA not before: Tue 19 May 2026 00:20:07 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 158.254.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:c2:aa:f5:c1:79:f2:6b:be:ce:63:e0:43:a9:3a:5b:e1:e5:dc:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:20:07 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=01dd807705d8dfad1d87a3f9c988647e1299cf73df44d8d6a9634e2acdf58f27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:82:cc:db:4f:9b:92:4b:ef:6d:03:47:f1:9b: fb:54:40:14:a4:5a:57:09:45:22:39:e5:fa:eb:64: 3e:f2:11:79:f1:3e:d2:3b:35:01:31:e9:a1:1a:67: b2:d4:87:e1:83:70:de:35:31:d6:1f:20:35:c0:c4: 78:27:b2:bd:01:fb:42:ad:9e:e5:66:1a:ee:4f:51: 04:41:3f:c9:b7:d6:f5:6b:f6:10:33:d6:36:01:0c: ec:13:aa:1d:a7:07:c5:67:02:e9:e3:d2:fc:72:c5: 7d:4c:c5:bd:11:0f:44:b0:b0:1b:46:2b:72:fd:be: 34:c6:f1:00:4f:27:56:28:5d:31:d6:b4:51:64:bf: eb:84:42:bc:c8:b4:f4:31:76:25:b9:15:cc:8d:1a: 34:d3:52:57:49:67:08:2f:0f:47:0a:19:d0:69:a7: 2a:bd:ab:11:49:37:4f:62:e0:69:9b:63:1b:3c:aa: 7f:ab:dc:64:73:c9:2e:e5:dc:97:3e:96:83:a1:5e: d9:99:19:f6:a0:45:db:fc:27:eb:5d:20:a0:95:5e: 4b:a9:67:4f:dd:1f:08:fa:fd:54:87:85:6c:bd:b1: a8:b7:e8:ab:a3:d5:37:d9:21:0d:88:32:2a:3e:13: 71:e1:52:dc:3b:0e:1c:01:da:d2:ae:06:65:8c:ed: 80:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:5B:AF:C8:D6:C3:5D:80:95:83:F8:E0:B2:63:93:EA:E1:FB:BC:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/707b5de7-4469-4150-b167-4708f1391d71.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 158.254.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:9a:8c:c6:bc:c9:9a:2e:49:c7:e1:cd:48:bb:61:6f:e9:fe: 54:9a:29:ce:af:33:44:c5:fa:0d:3d:c6:09:94:de:78:8f:55: 1a:5e:9f:ad:ef:b3:fe:78:94:51:5b:d1:83:19:a2:7a:f4:23: d4:fc:54:e8:d3:b8:22:73:6d:68:28:e4:b8:7d:36:fd:44:65: 82:99:e8:aa:3d:8f:06:33:ce:98:b9:0b:5d:69:ad:4c:88:6b: d0:2b:70:6f:2e:a9:b3:06:66:51:e8:de:30:e5:eb:a8:4c:0d: 95:20:0f:c8:83:d5:36:60:e0:71:f4:c8:cd:d4:71:61:14:db: 9f:57:7e:b5:16:68:be:9f:ef:cf:86:2a:7b:d1:d3:f9:ff:05: 4d:35:56:39:a3:03:13:bc:b4:3f:84:48:ce:ff:0f:3f:39:c5: 71:5c:3f:40:6f:a6:46:01:28:9b:45:3f:d3:09:50:5f:dd:be: 8b:1d:f8:3c:45:12:d8:75:93:31:58:aa:ba:e7:07:3f:0e:d4: a8:62:e7:61:71:53:3c:67:03:87:01:c1:fd:06:71:70:10:f8: 01:07:ab:b1:8c:fe:ed:c4:de:11:21:9d:91:e6:52:91:c3:62: ef:6a:9f:7e:a3:0b:dc:f8:26:84:c2:67:96:c6:4c:e5:57:43: 4e:94:b9:68 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUK8Kq9cF58mu+zmPgQ6k6W+Hl3E0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAyMDA3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWRkODA3NzA1ZDhkZmFkMWQ4N2EzZjljOTg4NjQ3ZTEy OTljZjczZGY0NGQ4ZDZhOTYzNGUyYWNkZjU4ZjI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCogszbT5uSS+9tA0fxm/tUQBSkWlcJRSI55frrZD7yEXnx PtI7NQEx6aEaZ7LUh+GDcN41MdYfIDXAxHgnsr0B+0KtnuVmGu5PUQRBP8m31vVr 9hAz1jYBDOwTqh2nB8VnAunj0vxyxX1Mxb0RD0SwsBtGK3L9vjTG8QBPJ1YoXTHW tFFkv+uEQrzItPQxdiW5FcyNGjTTUldJZwgvD0cKGdBppyq9qxFJN09i4GmbYxs8 qn+r3GRzyS7l3Jc+loOhXtmZGfagRdv8J+tdIKCVXkupZ0/dHwj6/VSHhWy9sai3 6Kuj1TfZIQ2IMio+E3HhUtw7DhwB2tKuBmWM7YAzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUNluvyNbDXYCVg/jgsmOT6uH7vP4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwN2I1ZGU3LTQ0NjktNDE1MC1iMTY3LTQ3MDhmMTM5MWQ3MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCe/jANBgkqhkiG9w0BAQsFAAOCAQEAcpqMxrzJmi5Jx+HNSLthb+n+VJop zq8zRMX6DT3GCZTeeI9VGl6fre+z/niUUVvRgxmievQj1PxU6NO4InNtaCjkuH02 /URlgpnoqj2PBjPOmLkLXWmtTIhr0Ctwby6pswZmUejeMOXrqEwNlSAPyIPVNmDg cfTIzdRxYRTbn1d+tRZovp/vz4Yqe9HT+f8FTTVWOaMDE7y0P4RIzv8PPznFcVw/ QG+mRgEom0U/0wlQX92+ix34PEUS2HWTMViquucHPw7UqGLnYXFTPGcDhwHB/QZx cBD4AQersYz+7cTeESGdkeZSkcNi72qffqML3PgmhMJnlsZM5VdDTpS5aA== -----END CERTIFICATE-----Generated at Sat Jun 13 10:00:42 2026 by rpki-client