$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa File: 70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa (raw, json) Hash identifier: aPZ2ozXivqvhCD+i6wJA/cZ1Gk2+CF2o9J8Y/xMUehU= Subject key identifier: 05:71:40:3E:33:DB:CA:62:42:8C:7C:D9:CF:68:8C:8F:51:8A:09:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 57262C1A8C66E95876B2A9C57DAE9E453F7875C1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa Signing time: Sat 16 May 2026 01:21:05 +0000 ROA not before: Sat 16 May 2026 01:21:05 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:26:2c:1a:8c:66:e9:58:76:b2:a9:c5:7d:ae:9e:45:3f:78:75:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:21:05 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=bdc693a5e6a1189aafbdc82a7ce0a8e1f20d837d7932d017b09d218f99c615e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:88:d6:b5:c3:8c:0e:87:f1:62:50:6c:47:80: 36:fe:cf:b7:b7:d0:7b:11:84:53:dc:07:0a:a0:00: 2e:97:06:96:05:3b:68:32:09:2b:66:cd:91:03:16: 5d:8a:f7:95:1b:3d:e4:2e:73:bd:78:49:0f:04:57: 0e:76:ba:89:fd:ad:af:23:3e:8f:b8:bf:34:1f:2a: dd:7e:54:e4:d9:0f:5a:ed:fe:8b:d7:50:08:b2:f7: f3:59:e0:d5:7f:3a:76:08:81:cc:77:94:0e:6a:f8: dc:1c:b6:db:92:33:df:a0:fc:c3:84:c5:90:54:0b: 1b:26:1f:f0:05:53:97:22:eb:31:83:13:61:ec:ae: 76:70:77:d5:d1:ba:53:4c:bb:74:6d:c8:ed:10:52: d2:83:24:11:ce:a7:8c:8b:8a:8c:0e:76:7f:10:b9: 8d:99:ff:91:95:0c:5f:7a:13:17:8b:3a:05:df:7e: 2f:e9:96:3a:2e:d7:38:da:51:d9:67:b6:7a:bd:63: ce:50:10:1e:a8:d3:2a:60:3f:57:5b:5f:eb:f8:3d: ad:85:5d:d8:86:77:a0:ab:2b:67:48:f0:a9:b1:30: 6a:6d:3a:7c:d2:9d:cb:da:d8:a1:6c:ab:08:87:e6: d0:16:7f:9a:c2:71:a5:38:4b:65:6a:72:50:40:21: 65:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:71:40:3E:33:DB:CA:62:42:8C:7C:D9:CF:68:8C:8F:51:8A:09:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70eb0b36-5a6b-4553-808b-0006fc6be8e0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.128.0/17 Signature Algorithm: sha256WithRSAEncryption 40:55:65:2b:be:4b:6b:ab:9d:d4:ab:60:4c:ff:03:dd:f7:cd: c5:b2:95:aa:52:29:4b:09:b1:dc:f9:dd:81:88:cc:41:d6:e3: fe:53:a7:8f:d6:b4:f1:2a:08:9a:21:3d:94:1f:6b:e2:98:c4: 95:b4:48:00:91:9b:8a:a9:f6:d2:ca:72:1e:44:04:da:98:97: f4:ba:1e:ee:ec:bc:6a:51:51:97:c9:9e:43:d9:d4:7e:0e:96: 7d:b2:57:01:a3:d8:d6:55:f4:c2:91:bf:91:ba:4f:92:20:f4: ef:0e:d4:88:43:c4:54:45:09:eb:db:9e:02:3a:f9:37:e2:7e: ee:9b:54:90:2a:2d:c1:1c:c7:52:32:1a:7f:65:a5:fa:be:5b: 96:2e:8f:5e:81:5b:f8:a2:11:c8:fd:69:95:42:52:9d:fc:4a: 7b:45:42:10:f5:45:4b:9c:fc:05:7f:45:39:8c:32:23:1b:a6: ad:0b:89:08:01:12:fd:b0:b2:95:45:00:e2:0b:d9:d5:0a:e4: 24:c8:53:e0:af:0a:bf:6a:28:92:7e:0f:0a:bc:de:82:be:16: 7e:fc:f1:42:00:3c:39:d0:cc:bc:4d:38:9b:48:66:46:39:44: 70:07:d6:39:e4:f6:5c:5b:84:3f:77:c1:65:92:e0:fa:f6:b7: 17:17:a3:7d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVyYsGoxm6Vh2sqnFfa6eRT94dcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMTA1WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZGM2OTNhNWU2YTExODlhYWZiZGM4MmE3Y2UwYThlMWYy MGQ4MzdkNzkzMmQwMTdiMDlkMjE4Zjk5YzYxNWU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpiNa1w4wOh/FiUGxHgDb+z7e30HsRhFPcBwqgAC6XBpYF O2gyCStmzZEDFl2K95UbPeQuc714SQ8EVw52uon9ra8jPo+4vzQfKt1+VOTZD1rt /ovXUAiy9/NZ4NV/OnYIgcx3lA5q+NwcttuSM9+g/MOExZBUCxsmH/AFU5ci6zGD E2HsrnZwd9XRulNMu3RtyO0QUtKDJBHOp4yLiowOdn8QuY2Z/5GVDF96ExeLOgXf fi/pljou1zjaUdlntnq9Y85QEB6o0ypgP1dbX+v4Pa2FXdiGd6CrK2dI8KmxMGpt OnzSncva2KFsqwiH5tAWf5rCcaU4S2VqclBAIWWTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBXFAPjPbymJCjHzZz2iMj1GKCaEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwZWIwYjM2LTVhNmItNDU1My04MDhiLTAwMDZmYzZiZThlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXFYAwDQYJKoZIhvcNAQELBQADggEBAEBVZSu+S2urndSrYEz/A933zcWy lapSKUsJsdz53YGIzEHW4/5Tp4/WtPEqCJohPZQfa+KYxJW0SACRm4qp9tLKch5E BNqYl/S6Hu7svGpRUZfJnkPZ1H4Oln2yVwGj2NZV9MKRv5G6T5Ig9O8O1IhDxFRF CevbngI6+Tfifu6bVJAqLcEcx1IyGn9lpfq+W5Yuj16BW/iiEcj9aZVCUp38SntF QhD1RUuc/AV/RTmMMiMbpq0LiQgBEv2wspVFAOIL2dUK5CTIU+CvCr9qKJJ+Dwq8 3oK+Fn788UIAPDnQzLxNOJtIZkY5RHAH1jnk9lxbhD93wWWS4Pr2txcXo30= -----END CERTIFICATE-----Generated at Sat Jun 13 05:50:21 2026 by rpki-client