$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa File: 97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa (raw, json) Hash identifier: gdn5HghoOiDaJfNu0BF3n+VQBinl5dNtq7M/03r1P+A= Subject key identifier: FF:D4:33:0A:8B:B2:E0:7A:80:33:81:99:A8:94:94:15:BF:F4:45:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 67402D094795355725FA87DE67206E405E012D9D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa Signing time: Sat 16 May 2026 01:41:25 +0000 ROA not before: Sat 16 May 2026 01:41:25 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.76.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:40:2d:09:47:95:35:57:25:fa:87:de:67:20:6e:40:5e:01:2d:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:41:25 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=def101e887a818eff8b9c8dc8f072739ca0ca1efc2d81a6ce45ce5fd73ebe354, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:5e:3e:be:1e:83:bf:eb:a3:f0:bf:f4:25:4e: 65:6a:21:e0:bf:43:8c:2b:23:5d:95:6e:0d:7d:8c: f9:c0:8d:58:b5:e9:db:2a:02:48:ca:a5:2f:38:44: 41:d4:36:8b:14:64:cf:78:44:11:e0:cb:89:25:0a: 15:29:3a:0c:9a:e8:5f:65:d5:1a:10:50:bd:42:94: d1:cf:2f:f4:2b:b8:7a:3a:4b:0f:c0:52:fa:a1:31: 1f:3c:76:49:fa:04:ba:97:9a:8d:e3:e6:53:02:df: 59:aa:cd:1c:24:42:1e:64:d9:3f:c7:9f:2a:68:4f: ac:ff:86:c5:b2:83:b0:ad:b6:9c:ad:5c:2a:2d:5b: 54:12:fd:f3:b8:65:4e:96:28:5b:e7:7f:b6:5d:06: b2:d3:52:76:88:f1:37:a5:b1:35:70:df:ff:58:d4: f0:53:eb:34:16:11:03:f0:3d:96:24:71:17:41:9b: 52:0f:b0:5a:64:33:df:db:4a:8c:2d:a1:ad:1c:8d: d4:78:2e:47:51:40:99:dd:e5:87:94:2d:4a:dc:b5: 06:e4:76:e6:5e:60:ae:40:49:03:0c:48:bc:be:7c: 6f:0b:97:b1:aa:f0:23:da:fd:63:58:7d:3c:03:91: e0:37:19:65:af:1b:aa:98:03:b5:12:c7:25:20:42: 23:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:D4:33:0A:8B:B2:E0:7A:80:33:81:99:A8:94:94:15:BF:F4:45:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/97124c90-e9d4-44e2-aad7-a1d216f69aa7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.76.0/22 Signature Algorithm: sha256WithRSAEncryption 6b:4b:2f:06:56:ab:cc:34:94:bd:65:03:9f:09:c4:c8:6e:18: 94:68:28:37:6e:6f:24:60:4f:ae:61:31:5d:ae:1c:9a:52:4a: 4f:d6:ec:4b:d2:50:9f:90:32:da:db:97:6c:b7:ae:27:6a:1c: e8:47:ae:91:da:36:8d:81:ea:92:a7:27:93:48:77:07:01:0b: d7:c5:76:cf:d0:78:0f:27:c7:12:d0:85:72:f4:7b:89:ff:10: 7a:bf:83:e4:7b:c6:dc:5b:28:a1:d9:d4:4f:d2:ef:8a:d4:d0: a3:97:19:46:99:89:45:22:06:c0:b1:b8:ab:55:00:d5:18:2e: 2e:d5:e9:81:ca:c8:cf:74:48:33:5f:fc:85:d2:46:0f:b4:ea: a1:d4:5b:00:0f:05:4a:f1:d2:6f:b1:be:dd:0c:66:2b:71:5b: e8:e5:58:27:da:55:c8:0c:72:b4:3a:0e:a1:3c:c0:e8:dd:fc: 21:b0:db:d1:82:26:fe:a6:08:64:b6:40:f8:7a:fd:37:0e:6d: 6e:38:81:83:36:c2:54:68:29:e8:48:88:c3:98:c1:39:38:2e: 28:10:4a:a4:58:e0:d8:82:2c:a1:44:74:85:24:85:52:6a:e5: 94:4f:73:e1:84:2e:10:1a:5d:d1:10:1c:8e:37:38:9f:f4:49: 83:7a:e7:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZ0AtCUeVNVcl+ofeZyBuQF4BLZ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDE0MTI1WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkZWYxMDFlODg3YTgxOGVmZjhiOWM4ZGM4ZjA3MjczOWNh MGNhMWVmYzJkODFhNmNlNDVjZTVmZDczZWJlMzU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5Xj6+HoO/66Pwv/QlTmVqIeC/Q4wrI12Vbg19jPnAjVi1 6dsqAkjKpS84REHUNosUZM94RBHgy4klChUpOgya6F9l1RoQUL1ClNHPL/QruHo6 Sw/AUvqhMR88dkn6BLqXmo3j5lMC31mqzRwkQh5k2T/HnypoT6z/hsWyg7Cttpyt XCotW1QS/fO4ZU6WKFvnf7ZdBrLTUnaI8TelsTVw3/9Y1PBT6zQWEQPwPZYkcRdB m1IPsFpkM9/bSowtoa0cjdR4LkdRQJnd5YeULUrctQbkduZeYK5ASQMMSLy+fG8L l7Gq8CPa/WNYfTwDkeA3GWWvG6qYA7USxyUgQiPpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/9QzCouy4HqAM4GZqJSUFb/0RcYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3MTI0YzkwLWU5ZDQtNDRlMi1hYWQ3LWExZDIxNmY2OWFhNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIXF0wwDQYJKoZIhvcNAQELBQADggEBAGtLLwZWq8w0lL1lA58JxMhuGJRo KDdubyRgT65hMV2uHJpSSk/W7EvSUJ+QMtrbl2y3ridqHOhHrpHaNo2B6pKnJ5NI dwcBC9fFds/QeA8nxxLQhXL0e4n/EHq/g+R7xtxbKKHZ1E/S74rU0KOXGUaZiUUi BsCxuKtVANUYLi7V6YHKyM90SDNf/IXSRg+06qHUWwAPBUrx0m+xvt0MZitxW+jl WCfaVcgMcrQ6DqE8wOjd/CGw29GCJv6mCGS2QPh6/TcObW44gYM2wlRoKehIiMOY wTk4LigQSqRY4NiCLKFEdIUkhVJq5ZRPc+GELhAaXdEQHI43OJ/0SYN6570= -----END CERTIFICATE-----Generated at Sat Jun 13 05:47:32 2026 by rpki-client