$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa File: 8d469487-1107-4d13-bd1f-6f60c5d3da36.roa (raw, json) Hash identifier: 7THrWfUFBDBcvdjMJYZ+ek0wzuFv5ch5mf37ddIxzEM= Subject key identifier: FD:01:D2:92:CF:1B:CF:D7:51:9E:DB:91:57:4A:3E:5A:83:95:CC:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 103284AA0E09B966AA4A107EF67C7F6CA54E3FE9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa Signing time: Sat 16 May 2026 00:40:03 +0000 ROA not before: Sat 16 May 2026 00:40:03 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.23.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:32:84:aa:0e:09:b9:66:aa:4a:10:7e:f6:7c:7f:6c:a5:4e:3f:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 00:40:03 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=035dcf0301617ce6afd70babc9ad87c7df34769fcf173c4794e580d91e579c5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:21:b1:41:43:7b:63:a9:d2:3d:92:5f:f1:fa: 36:85:bc:f7:7c:76:bb:ed:2a:6f:fa:d4:d9:15:6e: 78:27:43:c6:60:85:57:ea:11:79:f1:06:19:10:61: 68:a1:d3:8b:b0:6d:81:9f:b9:e2:55:09:9f:a3:6b: 92:b0:7c:70:59:16:a9:89:88:3b:ab:1e:d3:e4:fa: e8:91:ca:8b:25:db:4b:f8:6b:76:b1:f2:32:9e:8e: ed:69:a9:2f:8e:0c:0a:77:ba:02:54:10:51:3f:d6: b3:4a:58:bf:16:67:49:47:a7:4c:44:62:c0:b1:83: 1f:e2:8e:4c:72:ce:33:d1:25:64:1a:b4:87:db:ef: 91:af:51:81:46:fb:18:56:25:30:b6:f7:3c:df:a2: a2:e9:90:23:d7:8d:86:c4:2c:fe:3c:8d:fc:c2:04: 6f:16:87:ae:81:ed:9f:02:e1:03:8f:58:1d:d5:0a: b1:fe:59:c1:9c:64:09:53:97:9c:7a:72:f3:ac:ea: 8f:8e:bc:4a:60:8a:db:a7:97:53:6d:62:a7:f7:fc: fb:21:3e:89:42:ba:d8:30:bc:9c:c4:d0:3d:b1:59: c9:66:3d:04:98:5e:0e:16:91:69:2b:cd:2f:24:d1: da:58:94:e2:c7:ed:dc:1e:a8:27:4c:e1:e5:81:e6: 72:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:01:D2:92:CF:1B:CF:D7:51:9E:DB:91:57:4A:3E:5A:83:95:CC:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.23.0.0/18 Signature Algorithm: sha256WithRSAEncryption 81:6c:d1:91:4b:5e:25:9a:63:45:4f:2f:aa:f0:f8:fd:93:ed: e7:fb:98:95:5b:c5:08:d2:1d:5a:9f:7d:fe:94:b3:6b:39:62: 2c:0d:f5:fc:8c:ea:d2:a0:a0:af:0f:44:13:ae:08:21:b1:6a: c6:a5:ad:1b:08:d3:41:d1:f1:90:d5:ab:a8:2e:f2:df:ed:86: 23:12:41:11:66:b9:9e:ca:cc:e9:dc:3f:37:59:c5:00:d6:43: 27:a5:a2:16:6e:6f:44:c3:d2:29:31:1f:86:62:b4:24:31:0d: 77:f4:c9:bc:04:39:be:ed:ed:01:3f:2e:0c:07:6f:08:1d:7c: 0a:d0:68:4a:37:b7:ba:9e:cf:60:d5:c6:7a:a0:7c:07:6c:b4: 0d:99:fc:8b:1a:32:7f:a0:fc:2e:b1:60:86:fd:95:a2:69:10: 6d:46:2d:24:f4:09:ab:cd:74:d3:20:51:61:b8:5e:9b:53:0f: 89:f5:09:a1:15:a9:e6:2d:9a:25:4a:f8:5c:06:49:48:cb:cd: 0f:3c:05:a3:d9:16:9a:75:74:75:b3:d2:09:ba:67:be:ed:32: 9e:1b:53:09:72:51:a1:26:7c:f5:86:96:a2:4b:f3:0c:a7:30: 14:8a:3f:be:1b:a4:a1:1f:c6:cd:65:77:3b:e4:1a:b8:65:8b: 5b:e5:ea:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEDKEqg4JuWaqShB+9nx/bKVOP+kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDA0MDAzWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMzVkY2YwMzAxNjE3Y2U2YWZkNzBiYWJjOWFkODdjN2Rm MzQ3NjlmY2YxNzNjNDc5NGU1ODBkOTFlNTc5YzViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCIbFBQ3tjqdI9kl/x+jaFvPd8drvtKm/61NkVbngnQ8Zg hVfqEXnxBhkQYWih04uwbYGfueJVCZ+ja5KwfHBZFqmJiDurHtPk+uiRyosl20v4 a3ax8jKeju1pqS+ODAp3ugJUEFE/1rNKWL8WZ0lHp0xEYsCxgx/ijkxyzjPRJWQa tIfb75GvUYFG+xhWJTC29zzfoqLpkCPXjYbELP48jfzCBG8Wh66B7Z8C4QOPWB3V CrH+WcGcZAlTl5x6cvOs6o+OvEpgitunl1NtYqf3/PshPolCutgwvJzE0D2xWclm PQSYXg4WkWkrzS8k0dpYlOLH7dweqCdM4eWB5nL3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/QHSks8bz9dRntuRV0o+WoOVzNQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDY5NDg3LTExMDctNGQxMy1iZDFmLTZmNjBjNWQzZGEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAFwAwDQYJKoZIhvcNAQELBQADggEBAIFs0ZFLXiWaY0VPL6rw+P2T7ef7 mJVbxQjSHVqfff6Us2s5YiwN9fyM6tKgoK8PRBOuCCGxasalrRsI00HR8ZDVq6gu 8t/thiMSQRFmuZ7KzOncPzdZxQDWQyelohZub0TD0ikxH4ZitCQxDXf0ybwEOb7t 7QE/LgwHbwgdfArQaEo3t7qez2DVxnqgfAdstA2Z/IsaMn+g/C6xYIb9laJpEG1G LST0CavNdNMgUWG4XptTD4n1CaEVqeYtmiVK+FwGSUjLzQ88BaPZFpp1dHWz0gm6 Z77tMp4bUwlyUaEmfPWGlqJL8wynMBSKP74bpKEfxs1ldzvkGrhli1vl6io= -----END CERTIFICATE-----Generated at Sat Jun 13 07:08:38 2026 by rpki-client