$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815dbd30-4974-4c77-9a27-6ac45a9fb646.roa File: 815dbd30-4974-4c77-9a27-6ac45a9fb646.roa (raw, json) Hash identifier: o4JSmOx+/cXYWpQTlghhKzxjiXhQEyBDdcITAYt2Ngg= Subject key identifier: 4D:80:EF:34:8C:7B:02:DF:7F:ED:C8:94:5B:2B:F7:46:E0:B0:3E:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 405D2D070BAB55671809E5EC4C67A6D5FDAF0C74 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815dbd30-4974-4c77-9a27-6ac45a9fb646.roa Signing time: Wed 20 May 2026 00:20:04 +0000 ROA not before: Wed 20 May 2026 00:20:04 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 22394 IP address blocks: 162.208.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:5d:2d:07:0b:ab:55:67:18:09:e5:ec:4c:67:a6:d5:fd:af:0c:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:20:04 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=335e6d66ba6ff682909f48a0ce5b90538c0749224ea0cbb7341e24d00d634355, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c9:c2:05:db:98:96:12:95:76:52:84:59:69: fa:d7:3b:4d:0e:41:fa:32:fa:01:b9:23:54:9c:34: 78:57:d0:6f:e4:d0:10:d9:6f:13:41:aa:73:e9:7e: fc:29:65:f1:3f:26:39:33:ce:1a:1d:3c:95:19:39: 75:41:f7:ce:0f:45:cd:6c:a4:ca:e4:e4:fb:aa:d0: 1e:31:38:9c:a5:01:5f:06:99:80:eb:73:52:7f:c2: 66:9c:8e:fd:5d:1b:ae:08:86:0d:b8:a5:83:4b:f0: 15:5e:a1:30:e7:33:a0:2d:5c:86:e3:ea:5a:76:73: bf:0c:13:cc:71:e1:c7:18:f9:27:49:b8:8b:72:d6: b7:8f:d8:fb:23:03:b9:d6:d2:3f:c0:13:7b:02:7b: 8d:b3:33:0d:3e:59:0b:00:3c:b2:84:a4:f0:94:3f: 65:e9:26:78:39:14:1a:5c:3a:9a:cb:86:fc:f4:51: 4c:70:eb:bd:33:fa:e7:02:05:32:54:96:c5:06:d9: f2:49:55:e2:d9:d2:17:90:7a:9f:6c:cc:32:2d:ed: 9e:67:98:14:23:70:6c:7b:f8:cc:85:44:65:44:99: 34:05:fb:a2:7c:e8:00:60:2e:54:2b:be:2e:ca:73: 62:58:ea:be:15:6d:69:7c:63:5d:ec:07:04:e7:81: dc:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:80:EF:34:8C:7B:02:DF:7F:ED:C8:94:5B:2B:F7:46:E0:B0:3E:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815dbd30-4974-4c77-9a27-6ac45a9fb646.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.122.0/24 Signature Algorithm: sha256WithRSAEncryption 2a:01:a0:6c:3b:06:e5:80:dd:d7:9a:a5:da:94:8f:a5:0f:c5: c7:8c:40:cd:87:e4:d2:d0:bc:02:aa:cd:03:dc:a3:ad:e2:d7: 52:e9:16:4d:05:9c:c6:1e:a6:97:24:e3:67:02:8d:a7:77:90: 90:81:5f:b7:90:00:41:38:19:05:93:09:33:f8:e8:99:29:75: d6:2d:97:21:13:c3:aa:d0:ae:7f:23:b1:01:a1:f2:b4:ea:5f: 59:a3:08:6c:fa:4a:ca:0b:9d:61:68:87:d5:58:bf:da:1e:a6: 9e:16:ea:92:ea:8f:df:3b:f0:b6:52:74:82:36:89:2f:82:37: 28:20:60:4c:89:49:93:44:02:74:ce:f2:d5:09:5c:ac:eb:52: f9:4e:93:19:2a:bb:5b:a3:6b:92:76:33:7f:ea:be:30:2e:97: bd:59:b0:3a:4f:e2:00:95:51:59:63:25:a6:2e:cb:4b:aa:66: 86:2e:76:b8:5c:28:51:e3:6a:a2:94:8a:78:a3:80:82:62:aa: 48:ce:4e:f0:18:81:35:7f:20:12:2f:80:4f:c6:b7:c3:b9:29: 8c:84:02:88:12:0e:72:a3:b2:9c:1d:5f:c8:e9:45:13:82:e2: e0:60:17:ef:41:77:65:d3:8b:57:79:bf:c5:fd:fe:87:d3:8c: fe:8a:74:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQF0tBwurVWcYCeXsTGem1f2vDHQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAyMDA0WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzVlNmQ2NmJhNmZmNjgyOTA5ZjQ4YTBjZTViOTA1Mzhj MDc0OTIyNGVhMGNiYjczNDFlMjRkMDBkNjM0MzU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD2ycIF25iWEpV2UoRZafrXO00OQfoy+gG5I1ScNHhX0G/k 0BDZbxNBqnPpfvwpZfE/JjkzzhodPJUZOXVB984PRc1spMrk5Puq0B4xOJylAV8G mYDrc1J/wmacjv1dG64Ihg24pYNL8BVeoTDnM6AtXIbj6lp2c78ME8xx4ccY+SdJ uIty1reP2PsjA7nW0j/AE3sCe42zMw0+WQsAPLKEpPCUP2XpJng5FBpcOprLhvz0 UUxw670z+ucCBTJUlsUG2fJJVeLZ0heQep9szDIt7Z5nmBQjcGx7+MyFRGVEmTQF +6J86ABgLlQrvi7Kc2JY6r4VbWl8Y13sBwTngdy3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTYDvNIx7At9/7ciUWyv3RuCwPn4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxNWRiZDMwLTQ5NzQtNGM3Ny05YTI3LTZhYzQ1YTlmYjY0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HowDQYJKoZIhvcNAQELBQADggEBACoBoGw7BuWA3deapdqUj6UPxceM QM2H5NLQvAKqzQPco63i11LpFk0FnMYeppck42cCjad3kJCBX7eQAEE4GQWTCTP4 6JkpddYtlyETw6rQrn8jsQGh8rTqX1mjCGz6SsoLnWFoh9VYv9oepp4W6pLqj987 8LZSdII2iS+CNyggYEyJSZNEAnTO8tUJXKzrUvlOkxkqu1uja5J2M3/qvjAul71Z sDpP4gCVUVljJaYuy0uqZoYudrhcKFHjaqKUinijgIJiqkjOTvAYgTV/IBIvgE/G t8O5KYyEAogSDnKjspwdX8jpRROC4uBgF+9Bd2XTi1d5v8X9/ofTjP6KdFM= -----END CERTIFICATE-----Generated at Sat Jun 13 13:04:15 2026 by rpki-client