$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74a67a16-ec65-4294-84bf-ad2edc5d1909.roa File: 74a67a16-ec65-4294-84bf-ad2edc5d1909.roa (raw, json) Hash identifier: gDyAjcWdICtJQL66iMm6Y6Rew+Qo+2IPB3UaNDIRPB8= Subject key identifier: BF:BB:E2:D4:0F:99:FB:E3:90:06:72:3B:11:62:7E:04:CA:6C:EA:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B24E13669FF22AA594D8C9710CC06DE33BDC8A3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74a67a16-ec65-4294-84bf-ad2edc5d1909.roa Signing time: Tue 19 May 2026 00:11:01 +0000 ROA not before: Tue 19 May 2026 00:11:01 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.243.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:24:e1:36:69:ff:22:aa:59:4d:8c:97:10:cc:06:de:33:bd:c8:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:11:01 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=edfd7b1dd28c2672b3361821b593aa946b9ad7cfd7df6cd7e2441e71f9d3dc36, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:8a:14:1b:a7:e6:76:0c:53:e2:dd:e5:74:5c: 1a:e3:2e:c3:b9:0e:0a:56:f3:59:17:71:9c:bb:d6: c2:2f:91:ea:cd:dc:95:85:fe:e4:5c:a7:a9:49:42: 87:03:43:34:17:bc:c2:c3:72:c3:bf:82:ee:d9:0a: d5:f0:90:f5:d3:99:0d:65:06:2b:4c:71:66:d4:30: 43:da:22:b4:ab:cf:32:26:7f:d5:78:78:c5:87:e6: 6a:03:24:90:b2:9c:1f:06:e5:82:78:67:3d:47:4c: e0:09:7a:6b:f4:09:66:78:c5:31:93:7c:64:dd:ca: ef:44:e6:f6:6f:28:74:06:b1:a0:b0:96:11:f9:58: 66:c1:48:58:03:1f:81:80:d9:a5:b3:44:6a:3d:48: 8a:7e:aa:ba:ca:4a:37:c9:e1:9c:b5:37:08:35:9b: fd:f3:59:3d:5b:b5:45:ef:fb:15:e9:d9:a1:25:96: 9e:1f:6b:af:fa:80:5e:fa:03:dd:25:a1:77:f8:79: cc:b1:60:97:c6:b1:c0:0b:a5:00:a5:49:1b:ec:0f: bb:06:f8:ab:f4:2b:52:55:41:8a:f2:a0:90:7b:b4: 5a:8a:58:21:db:8c:53:17:c1:8d:0c:b2:50:47:1a: 46:5c:e2:5f:35:a5:f5:3d:bb:98:ab:e2:06:c1:b5: 48:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:BB:E2:D4:0F:99:FB:E3:90:06:72:3B:11:62:7E:04:CA:6C:EA:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74a67a16-ec65-4294-84bf-ad2edc5d1909.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.40.0/22 Signature Algorithm: sha256WithRSAEncryption c6:f2:83:44:fd:99:e4:a4:72:52:69:41:49:8a:7b:2c:e7:76: 8b:fa:e5:55:02:70:c5:96:7f:08:b9:ff:ad:80:ab:48:94:0f: e0:16:08:e3:78:eb:88:ab:d7:d4:e5:a5:09:a9:60:4e:59:95: d3:97:95:5b:f7:44:90:51:67:3d:41:aa:dc:9f:17:56:60:f1: a1:7d:40:9e:64:5f:cb:de:b4:d3:a3:33:b0:4c:ec:2f:e3:40: fd:05:40:88:d2:d9:b6:43:de:3c:b1:f3:ca:ce:90:bb:41:ad: f8:fd:16:a4:33:d7:f1:b3:43:39:ed:96:81:0c:6c:85:1b:84: d8:6c:22:c3:40:be:27:54:6e:37:9e:c5:8f:ba:5b:41:f2:f8: ed:71:b3:fb:f3:78:dc:17:38:99:b2:13:9e:82:f4:67:ce:ce: f4:53:a6:b6:bc:e4:0b:b7:7c:f3:e4:2b:f4:c6:a5:f2:12:29: 01:2d:9d:2a:76:fa:6f:5f:50:67:a7:45:1c:b6:32:af:e7:ca: c7:d8:d4:29:6e:40:8b:37:6b:69:e9:04:21:7d:22:25:35:00: cd:06:2c:2c:08:5e:11:3a:47:3f:b6:bf:e9:be:b8:39:f5:73: e7:a8:f7:5b:38:af:fa:67:17:21:f8:3d:ea:ea:d7:f5:78:b3: 38:0e:17:84 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWyThNmn/IqpZTYyXEMwG3jO9yKMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAxMTAxWhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGZkN2IxZGQyOGMyNjcyYjMzNjE4MjFiNTkzYWE5NDZi OWFkN2NmZDdkZjZjZDdlMjQ0MWU3MWY5ZDNkYzM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBihQbp+Z2DFPi3eV0XBrjLsO5DgpW81kXcZy71sIvkerN 3JWF/uRcp6lJQocDQzQXvMLDcsO/gu7ZCtXwkPXTmQ1lBitMcWbUMEPaIrSrzzIm f9V4eMWH5moDJJCynB8G5YJ4Zz1HTOAJemv0CWZ4xTGTfGTdyu9E5vZvKHQGsaCw lhH5WGbBSFgDH4GA2aWzRGo9SIp+qrrKSjfJ4Zy1Nwg1m/3zWT1btUXv+xXp2aEl lp4fa6/6gF76A90loXf4ecyxYJfGscALpQClSRvsD7sG+Kv0K1JVQYryoJB7tFqK WCHbjFMXwY0MslBHGkZc4l81pfU9u5ir4gbBtUg7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv7vi1A+Z++OQBnI7EWJ+BMps6rYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0YTY3YTE2LWVjNjUtNDI5NC04NGJmLWFkMmVkYzVkMTkwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr8ygwDQYJKoZIhvcNAQELBQADggEBAMbyg0T9meSkclJpQUmKeyzndov6 5VUCcMWWfwi5/62Aq0iUD+AWCON464ir19TlpQmpYE5ZldOXlVv3RJBRZz1Bqtyf F1Zg8aF9QJ5kX8vetNOjM7BM7C/jQP0FQIjS2bZD3jyx88rOkLtBrfj9FqQz1/Gz QzntloEMbIUbhNhsIsNAvidUbjeexY+6W0Hy+O1xs/vzeNwXOJmyE56C9GfOzvRT pra85Au3fPPkK/TGpfISKQEtnSp2+m9fUGenRRy2Mq/nysfY1CluQIs3a2npBCF9 IiU1AM0GLCwIXhE6Rz+2v+m+uDn1c+eo91s4r/pnFyH4Perq1/V4szgOF4Q= -----END CERTIFICATE-----Generated at Sat Jun 13 05:48:44 2026 by rpki-client