$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96e165dc-4d07-4326-aacf-c4700465f695.roa File: 96e165dc-4d07-4326-aacf-c4700465f695.roa (raw, json) Hash identifier: 3u+n07RlGU+4W6nodwz8IvRB7Z3F/T71+Cdp8FSozGw= Subject key identifier: D2:B6:3C:D3:13:6B:29:FC:E8:F7:77:23:F0:F6:7E:65:63:1F:D2:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06D8DCCEAD0D71D0083B2EADF1AC3DF6049F42DB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96e165dc-4d07-4326-aacf-c4700465f695.roa Signing time: Wed 20 May 2026 00:21:18 +0000 ROA not before: Wed 20 May 2026 00:21:18 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 98.130.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:d8:dc:ce:ad:0d:71:d0:08:3b:2e:ad:f1:ac:3d:f6:04:9f:42:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:21:18 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=65e6600c793fd1e9990150867cacd4fdbd3fae199d7bc24d8f65c3a86908cb5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f5:7f:04:8a:f4:7d:fe:05:47:7a:ef:95:67: e4:7c:3b:cd:68:62:a0:19:26:a2:52:b1:3b:2f:92: 20:86:bc:30:bc:af:fb:c2:f8:90:9f:6c:62:0b:9a: 77:16:5f:5a:6a:42:86:c9:dc:4a:02:0d:01:0e:22: c0:8f:1c:d4:62:d6:81:e8:de:65:de:3c:4d:89:11: cd:fd:03:18:e4:24:bd:7a:f3:62:f6:41:47:c4:89: 8b:2f:05:35:ca:7e:49:db:d1:73:80:65:cf:c5:38: f0:f8:e7:1e:af:1a:b2:ff:74:80:92:6e:e1:af:75: ad:83:c6:8b:11:e9:48:4f:c2:b4:4c:6b:d7:14:c1: ff:83:d6:45:47:84:ab:44:57:b5:06:7d:4d:cd:6e: 71:ca:3f:a5:da:44:02:3f:4d:97:76:84:b8:50:83: fc:18:11:de:9d:76:e9:d8:5f:5a:7a:2a:da:81:9b: f4:09:58:63:78:9c:6b:67:87:70:e4:e9:90:02:5c: 0d:70:22:6e:89:f7:32:4a:23:fd:e9:78:8c:8b:6d: 4e:0b:e2:86:bb:d7:45:4c:fb:13:06:19:c5:95:a6: e0:94:65:03:27:9d:cc:f9:5b:d4:56:10:c7:7c:eb: eb:60:bb:f6:63:29:42:8e:43:bd:09:f6:0a:49:fb: 25:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:B6:3C:D3:13:6B:29:FC:E8:F7:77:23:F0:F6:7E:65:63:1F:D2:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/96e165dc-4d07-4326-aacf-c4700465f695.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 98.130.0.0/15 Signature Algorithm: sha256WithRSAEncryption 3d:7c:71:35:02:96:6e:8f:c4:43:18:c1:d3:25:80:59:16:1a: e7:08:0b:45:71:79:25:dc:c8:4b:de:39:0b:e1:3e:de:e7:a8: b3:44:94:ae:8a:24:a5:84:06:1c:ad:31:00:a2:68:42:d9:b6: 04:8b:88:74:b3:ab:2a:5d:e0:41:da:a9:74:da:18:ba:9e:8b: b1:2d:73:c5:ba:ff:2c:9f:fa:d7:4c:d2:d8:7e:4f:d4:bf:42: 21:e8:90:3f:79:fb:c0:eb:e0:2a:0c:2a:16:68:9c:47:43:54: ad:6a:7b:3c:c0:5c:93:ae:83:1f:60:6a:f8:29:ef:aa:51:2a: c4:1a:5a:b3:ae:00:43:47:40:a8:14:f0:6a:82:22:e2:c1:ce: bd:4d:66:82:77:c4:3e:a6:09:1c:3e:99:dd:ee:05:03:8c:71: 4b:eb:cf:c2:c0:62:ee:f1:f1:92:35:0f:0a:6b:be:8d:3f:3f: 7d:f3:6c:a0:a7:ed:68:82:f3:b2:44:84:4e:63:46:ca:a8:c8: 4a:35:51:de:de:1f:a4:00:1f:7a:60:21:dd:01:a3:97:3c:b4: 6a:32:60:a3:55:13:ae:e1:e0:2a:a4:3a:81:69:d0:a7:2b:03: 82:a1:3f:fa:3c:67:25:ec:c4:ed:6f:cd:ae:af:c2:05:99:e8: 25:54:cd:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBtjczq0NcdAIOy6t8aw99gSfQtswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAyMTE4WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NWU2NjAwYzc5M2ZkMWU5OTkwMTUwODY3Y2FjZDRmZGJk M2ZhZTE5OWQ3YmMyNGQ4ZjY1YzNhODY5MDhjYjVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi9X8EivR9/gVHeu+VZ+R8O81oYqAZJqJSsTsvkiCGvDC8 r/vC+JCfbGILmncWX1pqQobJ3EoCDQEOIsCPHNRi1oHo3mXePE2JEc39AxjkJL16 82L2QUfEiYsvBTXKfknb0XOAZc/FOPD45x6vGrL/dICSbuGvda2DxosR6UhPwrRM a9cUwf+D1kVHhKtEV7UGfU3NbnHKP6XaRAI/TZd2hLhQg/wYEd6ddunYX1p6KtqB m/QJWGN4nGtnh3Dk6ZACXA1wIm6J9zJKI/3peIyLbU4L4oa710VM+xMGGcWVpuCU ZQMnncz5W9RWEMd86+tgu/ZjKUKOQ70J9gpJ+yV/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0rY80xNrKfzo93cj8PZ+ZWMf0oAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk2ZTE2NWRjLTRkMDctNDMyNi1hYWNmLWM0NzAwNDY1ZjY5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFigjANBgkqhkiG9w0BAQsFAAOCAQEAPXxxNQKWbo/EQxjB0yWAWRYa5wgL RXF5JdzIS945C+E+3ueos0SUrookpYQGHK0xAKJoQtm2BIuIdLOrKl3gQdqpdNoY up6LsS1zxbr/LJ/610zS2H5P1L9CIeiQP3n7wOvgKgwqFmicR0NUrWp7PMBck66D H2Bq+CnvqlEqxBpas64AQ0dAqBTwaoIi4sHOvU1mgnfEPqYJHD6Z3e4FA4xxS+vP wsBi7vHxkjUPCmu+jT8/ffNsoKftaILzskSETmNGyqjISjVR3t4fpAAfemAh3QGj lzy0ajJgo1UTruHgKqQ6gWnQpysDgqE/+jxnJezE7W/Nrq/CBZnoJVTNKg== -----END CERTIFICATE-----Generated at Sat Jun 13 05:49:52 2026 by rpki-client