$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa File: 84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa (raw, json) Hash identifier: RDQa5XoU5v10Ntl8fUBMq9KRcmLYW++pdoY4iwCsSMs= Subject key identifier: 0A:0A:77:10:69:D4:E3:61:89:18:F7:17:DB:D1:AF:91:E1:EC:24:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 253D10A7575EBB8069A73BA77C3F22EC5320FC9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa Signing time: Fri 15 May 2026 01:40:44 +0000 ROA not before: Fri 15 May 2026 01:40:44 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:3d:10:a7:57:5e:bb:80:69:a7:3b:a7:7c:3f:22:ec:53:20:fc:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:40:44 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=24f0d4c95b94c16a3ff2f5d16b1e2464dd966660e346c1c840558871d5955155, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:b9:6e:e3:1d:9a:d5:ad:3f:84:45:7e:ff:93: 34:36:23:1b:b7:c0:ff:5b:eb:db:c9:4f:39:c1:a5: b9:a1:0e:70:c1:3f:97:2c:1a:f4:69:3f:ef:dc:49: 98:08:03:8e:d5:45:7b:0c:70:78:83:d6:e6:c7:65: c3:43:55:43:ce:a4:2d:1a:dd:11:48:7e:6c:e4:72: 65:6a:e5:7f:10:08:25:6e:00:df:dc:67:89:01:e2: a0:24:7d:47:a4:3f:a6:c2:e3:e5:5a:1e:a0:59:0b: 9c:e4:57:65:e2:d3:ad:1e:fc:b1:ff:a4:70:28:26: 51:de:f5:69:a0:e9:76:da:9b:0b:09:44:82:57:23: e0:fc:4d:87:86:5c:8a:ad:b0:da:6d:d7:9c:58:5e: 9d:60:dc:60:4d:1a:fd:db:88:12:83:a3:13:13:72: eb:3b:fc:29:e0:15:2d:ca:f0:31:e2:4f:48:e8:f9: df:78:06:84:0f:93:bd:9a:53:10:af:4a:27:b4:dc: 18:20:1b:8f:80:ee:c1:89:0b:6c:00:bd:0e:1b:5c: 14:c0:ba:10:3f:67:7d:b4:c8:2a:9c:f2:4b:15:53: 44:9f:48:f7:cb:1d:05:64:62:65:41:6a:96:e5:79: 9e:c7:20:1a:41:b0:eb:12:1d:bd:4f:09:9e:00:6b: f4:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:0A:77:10:69:D4:E3:61:89:18:F7:17:DB:D1:AF:91:E1:EC:24:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/84dc64ad-1b9e-4419-95fa-e68a2e53fdc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.208.0/20 Signature Algorithm: sha256WithRSAEncryption 14:a6:25:b7:2f:e6:db:7e:b6:9b:a3:5e:fc:15:25:2c:f1:4b: 2a:16:e3:27:54:fe:06:b7:3e:4f:fa:74:40:ae:a6:75:31:8a: 39:1d:54:fc:40:75:09:ad:ac:b5:f4:b2:72:d9:f2:0c:f1:20: bb:eb:10:e4:e5:da:db:90:36:f0:11:ab:ee:51:ce:19:05:9f: 2c:c7:a1:3d:aa:c4:f4:a6:6a:5c:e4:31:a5:a9:98:5a:5d:dc: 9d:75:ad:9a:90:cf:26:f1:45:c4:47:30:13:34:34:1d:8f:22: 56:b3:63:50:0f:a9:ea:95:25:d0:72:13:2a:ff:eb:16:41:05: 87:db:4e:10:00:52:87:2a:fc:78:56:4a:d6:c3:3b:a8:7f:2f: 66:8c:63:61:70:0c:05:b8:40:d7:dd:96:01:b2:57:8f:a1:45: 50:90:06:27:83:3c:7b:4b:e7:80:b8:b9:42:06:4b:80:0a:bb: 1f:9a:28:5c:47:ca:0b:78:9d:13:43:a6:00:db:5b:dc:06:3a: 99:37:f5:2e:1b:af:50:3f:9d:06:91:a4:34:ae:70:32:6a:98: f0:42:a1:ad:ba:19:41:14:48:3c:3d:4d:6c:ee:c3:e5:e7:f2: 3c:83:25:22:69:84:d7:45:46:a3:33:d1:36:0f:d8:ac:3f:16: 7f:be:e9:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJT0Qp1deu4BppzunfD8i7FMg/JswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDE0MDQ0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGYwZDRjOTViOTRjMTZhM2ZmMmY1ZDE2YjFlMjQ2NGRk OTY2NjYwZTM0NmMxYzg0MDU1ODg3MWQ1OTU1MTU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsuW7jHZrVrT+ERX7/kzQ2Ixu3wP9b69vJTznBpbmhDnDB P5csGvRpP+/cSZgIA47VRXsMcHiD1ubHZcNDVUPOpC0a3RFIfmzkcmVq5X8QCCVu AN/cZ4kB4qAkfUekP6bC4+VaHqBZC5zkV2Xi060e/LH/pHAoJlHe9Wmg6XbamwsJ RIJXI+D8TYeGXIqtsNpt15xYXp1g3GBNGv3biBKDoxMTcus7/CngFS3K8DHiT0jo +d94BoQPk72aUxCvSie03BggG4+A7sGJC2wAvQ4bXBTAuhA/Z320yCqc8ksVU0Sf SPfLHQVkYmVBapbleZ7HIBpBsOsSHb1PCZ4Aa/RxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCgp3EGnU42GJGPcX29GvkeHsJGIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg0ZGM2NGFkLTFiOWUtNDQxOS05NWZhLWU2OGEyZTUzZmRjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARrFdAwDQYJKoZIhvcNAQELBQADggEBABSmJbcv5tt+tpujXvwVJSzxSyoW 4ydU/ga3Pk/6dECupnUxijkdVPxAdQmtrLX0snLZ8gzxILvrEOTl2tuQNvARq+5R zhkFnyzHoT2qxPSmalzkMaWpmFpd3J11rZqQzybxRcRHMBM0NB2PIlazY1APqeqV JdByEyr/6xZBBYfbThAAUocq/HhWStbDO6h/L2aMY2FwDAW4QNfdlgGyV4+hRVCQ BieDPHtL54C4uUIGS4AKux+aKFxHygt4nRNDpgDbW9wGOpk39S4br1A/nQaRpDSu cDJqmPBCoa26GUEUSDw9TWzuw+Xn8jyDJSJphNdFRqMz0TYP2Kw/Fn++6eo= -----END CERTIFICATE-----Generated at Sat Jun 13 09:29:02 2026 by rpki-client