$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a015cff7-ca3c-4365-801a-e2038c714d7f.roa File: a015cff7-ca3c-4365-801a-e2038c714d7f.roa (raw, json) Hash identifier: XjAVtqX1dzRWTYHQBJDb698w50TeBkwnqMrPXI04JIM= Subject key identifier: 8A:FD:48:07:07:A5:E9:46:5E:E3:63:A2:8F:59:CF:1F:B5:D0:31:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B578E42A1FDAB1F9E1FDE151CFE2B4D6B1C7878 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a015cff7-ca3c-4365-801a-e2038c714d7f.roa Signing time: Sun 17 May 2026 00:41:12 +0000 ROA not before: Sun 17 May 2026 00:41:12 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.240.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:57:8e:42:a1:fd:ab:1f:9e:1f:de:15:1c:fe:2b:4d:6b:1c:78:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:41:12 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=a344ed46ca930053673fd8510d70e9bed17f0dc9ab02b828c19e0b3eb0d0996e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:1a:23:92:7f:90:aa:c6:70:b7:51:b7:19:74: c8:2f:e9:9f:95:27:dc:d4:a8:0f:74:0e:ae:16:17: 7c:65:b8:0e:ba:03:fb:e5:67:6a:e8:ae:79:49:89: 9f:ff:11:6b:71:ed:2c:86:b5:68:cd:97:b0:b5:92: 0c:82:8d:9d:bd:2b:4c:2d:45:bd:37:0e:48:3a:9a: a8:33:31:83:22:40:1a:cd:88:e3:c9:dd:4e:c7:00: f1:39:3c:d3:03:37:d8:84:50:90:bb:64:37:04:c7: 93:4c:4c:da:0d:c8:a5:ba:d6:bc:c9:92:a3:d7:fb: b8:d4:2b:90:36:8b:35:b3:06:7c:35:ee:60:27:39: 0c:b9:3b:14:d5:26:f8:cb:0a:33:19:ed:05:ac:6f: 12:8d:4e:ee:ba:7e:00:bd:44:75:92:8d:d7:13:bb: 6f:26:ea:c9:7e:c0:9c:76:c5:bb:43:01:01:3d:42: b1:e1:54:ef:53:4b:b3:fd:9b:8d:d0:b1:98:58:c1: e5:59:24:96:30:71:34:38:e4:33:a1:f7:d8:a7:c7: fa:c7:35:27:da:6e:c8:5d:be:89:70:22:ed:03:b1: 3a:40:4c:a8:22:f1:93:3b:3b:9a:6e:82:76:60:a4: fc:bc:53:9f:8c:2d:ae:22:73:05:ea:8b:8d:cb:e9: f9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:FD:48:07:07:A5:E9:46:5E:E3:63:A2:8F:59:CF:1F:B5:D0:31:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a015cff7-ca3c-4365-801a-e2038c714d7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.240.0/23 Signature Algorithm: sha256WithRSAEncryption bd:2a:54:73:63:a3:16:dd:dc:fb:f8:73:a1:59:5c:dc:d8:da: a0:a8:53:b3:d5:0b:8c:9e:35:c6:a8:64:65:57:ef:e0:bc:c6: d3:26:66:70:a5:e1:54:4b:32:2a:cb:4b:e6:56:5a:22:21:90: 56:30:ec:17:0c:bc:f4:cd:d1:61:e1:18:5c:d1:f9:c6:5c:33: ac:67:f1:5a:a2:75:9f:bf:87:71:20:a6:70:a8:93:08:4e:73: b6:08:fd:f0:8a:7a:b7:8a:1e:00:97:66:83:38:85:b2:70:5e: 8e:92:47:51:d7:ce:68:a9:93:79:c2:98:8f:9e:43:5b:60:cf: bf:3e:76:1c:27:23:f3:32:63:0d:b1:b4:00:b1:e8:8e:6a:a8: dd:67:22:62:77:37:3c:e5:3a:44:ba:49:a7:86:69:f1:29:e5: ef:b8:59:c7:86:8c:f9:8c:09:f9:df:03:79:fc:f3:7a:50:ad: ec:f2:2b:f1:34:cf:21:b3:f0:ff:7f:ab:0b:8b:5d:83:78:ea: e3:7a:41:03:b1:77:85:cb:30:d0:d3:10:c4:6a:b5:d5:e7:10: 84:1a:b0:22:53:aa:bd:52:88:90:d9:c1:2c:67:b8:1e:b8:62: 1b:d0:38:2e:4d:3c:0f:e2:96:97:72:0b:b1:83:54:ff:31:17: 4f:69:72:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO1eOQqH9qx+eH94VHP4rTWsceHgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA0MTEyWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzQ0ZWQ0NmNhOTMwMDUzNjczZmQ4NTEwZDcwZTliZWQx N2YwZGM5YWIwMmI4MjhjMTllMGIzZWIwZDA5OTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzGiOSf5CqxnC3UbcZdMgv6Z+VJ9zUqA90Dq4WF3xluA66 A/vlZ2rornlJiZ//EWtx7SyGtWjNl7C1kgyCjZ29K0wtRb03Dkg6mqgzMYMiQBrN iOPJ3U7HAPE5PNMDN9iEUJC7ZDcEx5NMTNoNyKW61rzJkqPX+7jUK5A2izWzBnw1 7mAnOQy5OxTVJvjLCjMZ7QWsbxKNTu66fgC9RHWSjdcTu28m6sl+wJx2xbtDAQE9 QrHhVO9TS7P9m43QsZhYweVZJJYwcTQ45DOh99inx/rHNSfabshdvolwIu0DsTpA TKgi8ZM7O5pugnZgpPy8U5+MLa4icwXqi43L6fl9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUiv1IBwel6UZe42Oij1nPH7XQMXkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwMTVjZmY3LWNhM2MtNDM2NS04MDFhLWUyMDM4YzcxNGQ3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAPAwDQYJKoZIhvcNAQELBQADggEBAL0qVHNjoxbd3Pv4c6FZXNzY2qCo U7PVC4yeNcaoZGVX7+C8xtMmZnCl4VRLMirLS+ZWWiIhkFYw7BcMvPTN0WHhGFzR +cZcM6xn8VqidZ+/h3EgpnCokwhOc7YI/fCKereKHgCXZoM4hbJwXo6SR1HXzmip k3nCmI+eQ1tgz78+dhwnI/MyYw2xtACx6I5qqN1nImJ3NzzlOkS6SaeGafEp5e+4 WceGjPmMCfnfA3n883pQrezyK/E0zyGz8P9/qwuLXYN46uN6QQOxd4XLMNDTEMRq tdXnEIQasCJTqr1SiJDZwSxnuB64YhvQOC5NPA/ilpdyC7GDVP8xF09pcuE= -----END CERTIFICATE-----Generated at Sat Jun 13 08:15:37 2026 by rpki-client