$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ef484b3-de87-49e5-a7f9-21051396b63b.roa File: 8ef484b3-de87-49e5-a7f9-21051396b63b.roa (raw, json) Hash identifier: klH+g1vf2qy/ZBDbTOV3OcjIGZJZiAdT8C6/k5nMbQQ= Subject key identifier: 30:34:97:24:C5:6C:ED:58:41:5D:C6:B7:ED:42:9E:78:FA:DE:4D:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D000C2420D98E2333E53EEC564086835CF787C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ef484b3-de87-49e5-a7f9-21051396b63b.roa Signing time: Tue 19 May 2026 00:10:37 +0000 ROA not before: Tue 19 May 2026 00:10:37 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 45.57.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:00:0c:24:20:d9:8e:23:33:e5:3e:ec:56:40:86:83:5c:f7:87:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:10:37 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=7d1e7f1c027f79ae957791eb136b3f751d38053dbc37c8eda85625d926da75a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:af:bf:46:7b:d9:a4:1f:31:2d:6c:c9:12:ed: 1d:1e:37:eb:3a:26:07:46:39:73:e3:a7:bf:7e:c9: 6a:12:c4:f0:32:81:0c:34:b8:0b:c2:a3:84:5a:75: 27:96:70:1e:65:22:5a:bb:70:64:74:3b:b5:7f:ae: fc:dd:da:33:fd:0b:8a:c2:9d:9b:94:80:a5:b2:99: 26:a6:d6:20:e2:34:7d:26:84:13:5a:0f:3e:93:d5: 8f:94:fe:5d:05:a0:f6:93:57:3d:79:29:54:65:10: 7f:38:d9:30:5d:29:bc:22:d3:e1:76:b9:4a:7e:5d: be:62:00:30:8e:56:7a:f1:ca:08:00:80:2d:99:f4: de:e6:b5:a4:4f:5b:79:73:8d:8c:5c:e3:29:ee:76: 2b:8e:6e:66:75:af:e0:e3:ac:3a:39:d1:9f:2e:00: 38:72:96:fb:21:24:53:06:fd:b0:d8:e1:22:97:30: 07:46:4d:12:93:fa:ff:48:11:db:aa:e7:cf:b6:6e: 08:53:e4:2b:b9:c1:8a:9a:e6:bb:76:d6:0d:16:16: 85:b8:34:22:28:22:ca:2e:8e:88:ce:e2:40:bc:1a: d2:ef:74:9a:ba:b9:18:5d:c0:d6:9b:77:6c:42:ff: 6a:18:f9:23:3b:ca:fc:54:cb:9e:1c:e6:44:28:fa: 29:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:34:97:24:C5:6C:ED:58:41:5D:C6:B7:ED:42:9E:78:FA:DE:4D:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8ef484b3-de87-49e5-a7f9-21051396b63b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.128.0/18 Signature Algorithm: sha256WithRSAEncryption cd:92:81:a9:da:11:3d:ec:1c:89:f2:a1:aa:3e:08:4c:90:b1: d4:10:cf:b6:4c:bd:e6:f6:b2:c8:ad:52:e4:88:95:03:33:20: 2c:ce:9a:5a:13:2c:95:cf:c2:0f:f2:32:4e:6c:7c:64:a9:78: a1:e5:1d:bf:c1:a6:0c:b8:18:09:5a:7b:da:61:01:33:60:57: 29:3e:af:80:7b:e9:b4:c5:15:23:6f:d5:ce:dc:db:d0:8b:8c: 9c:65:54:75:76:4d:fd:e5:25:ca:b5:9b:60:f4:7d:c8:a3:da: ee:2f:86:8f:bc:11:12:55:ba:ee:15:02:32:ec:2c:5a:ce:dc: 08:23:a9:a7:6f:d1:65:9f:57:1a:db:2f:dd:b1:1d:7e:42:b4: c1:f2:f7:b6:b0:2b:e1:86:f9:15:54:a6:4b:d9:58:9c:8c:e1: c5:e3:2a:06:b1:77:78:a4:14:2d:5b:80:58:4c:62:17:9a:6f: 65:96:a9:3f:13:c7:21:01:34:c1:7a:7f:3d:ab:9f:dd:77:d6: c7:45:06:23:6c:82:aa:b3:fa:26:90:1c:cd:22:70:e0:76:a2: ff:c6:e3:50:35:5d:cc:94:28:4f:3c:b8:04:71:14:9c:bc:cf: bb:cc:d1:15:f1:07:28:cc:f7:68:6a:b9:30:93:32:85:95:e1: 93:31:eb:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDQAMJCDZjiMz5T7sVkCGg1z3h8cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDAxMDM3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDFlN2YxYzAyN2Y3OWFlOTU3NzkxZWIxMzZiM2Y3NTFk MzgwNTNkYmMzN2M4ZWRhODU2MjVkOTI2ZGE3NWE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZr79Ge9mkHzEtbMkS7R0eN+s6JgdGOXPjp79+yWoSxPAy gQw0uAvCo4RadSeWcB5lIlq7cGR0O7V/rvzd2jP9C4rCnZuUgKWymSam1iDiNH0m hBNaDz6T1Y+U/l0FoPaTVz15KVRlEH842TBdKbwi0+F2uUp+Xb5iADCOVnrxyggA gC2Z9N7mtaRPW3lzjYxc4ynudiuObmZ1r+DjrDo50Z8uADhylvshJFMG/bDY4SKX MAdGTRKT+v9IEduq58+2bghT5Cu5wYqa5rt21g0WFoW4NCIoIsoujojO4kC8GtLv dJq6uRhdwNabd2xC/2oY+SM7yvxUy54c5kQo+inRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMDSXJMVs7VhBXca37UKeePreTSIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlZjQ4NGIzLWRlODctNDllNS1hN2Y5LTIxMDUxMzk2YjYzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYtOYAwDQYJKoZIhvcNAQELBQADggEBAM2SganaET3sHInyoao+CEyQsdQQ z7ZMveb2ssitUuSIlQMzICzOmloTLJXPwg/yMk5sfGSpeKHlHb/Bpgy4GAlae9ph ATNgVyk+r4B76bTFFSNv1c7c29CLjJxlVHV2Tf3lJcq1m2D0fcij2u4vho+8ERJV uu4VAjLsLFrO3Agjqadv0WWfVxrbL92xHX5CtMHy97awK+GG+RVUpkvZWJyM4cXj Kgaxd3ikFC1bgFhMYheab2WWqT8TxyEBNMF6fz2rn9131sdFBiNsgqqz+iaQHM0i cOB2ov/G41A1XcyUKE88uARxFJy8z7vM0RXxByjM92hquTCTMoWV4ZMx67A= -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:18 2026 by rpki-client