$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a86ce653-a267-4a99-b0c5-99b2a3c45792.roa File: a86ce653-a267-4a99-b0c5-99b2a3c45792.roa (raw, json) Hash identifier: CUMoqVJ/QZGATfwcx+zZrWPz3ft2BXVGc7+BbL3k6lE= Subject key identifier: BA:E9:05:00:46:1B:2C:1C:5E:29:35:05:B2:CD:B9:15:34:BC:81:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31224119A3B6FE9767711B975554C01302CD1BB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a86ce653-a267-4a99-b0c5-99b2a3c45792.roa Signing time: Sat 16 May 2026 01:01:24 +0000 ROA not before: Sat 16 May 2026 01:01:24 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.21.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:22:41:19:a3:b6:fe:97:67:71:1b:97:55:54:c0:13:02:cd:1b:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:01:24 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=a3047ac3e7045581b0ec82a61b2d14101cf1f6265f86d3a01436809da98a9c0d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2a:34:96:91:c7:e1:6f:bf:5b:4f:b6:76:d5: d7:4e:0e:29:75:fe:82:22:45:43:10:8b:bf:b5:43: a9:e0:1c:36:86:7c:8d:0d:0d:d2:69:ea:b3:56:ab: f0:a3:0c:28:d4:f4:0b:1e:90:21:6a:11:44:15:3a: 71:56:ae:67:9c:9a:ad:b3:3d:7b:4e:0a:1d:75:0c: 94:e6:3d:a2:16:f8:e0:e4:5c:c0:6f:2b:13:03:9c: e9:b1:46:e1:0f:01:c2:3e:0b:45:02:22:a3:f3:3f: bf:0c:92:77:e7:d3:0e:0a:4f:e1:f0:08:f3:73:b3: d7:f8:3c:b5:c4:33:76:c0:00:f6:ad:dc:21:d7:58: 0c:9a:1f:22:9f:2c:16:3a:5a:27:4c:62:59:91:3c: 14:80:8b:ce:cd:81:b3:08:42:ab:f1:4b:8b:a4:e3: 62:8e:33:6a:fe:48:a8:54:b5:bb:d1:2e:40:4b:ba: 94:22:45:89:24:8e:66:65:8e:e7:e5:39:e1:16:66: 49:d8:cb:78:de:d0:2c:88:b2:8e:8b:81:dc:b4:63: b7:1e:95:dc:e8:46:e8:5d:26:de:c9:2b:e3:ff:e1: 47:2d:d3:d1:7e:bb:5a:69:24:4e:59:dc:51:c4:ff: 25:b5:b9:13:3b:02:ce:16:8c:85:79:98:8c:89:db: 7a:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:E9:05:00:46:1B:2C:1C:5E:29:35:05:B2:CD:B9:15:34:BC:81:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a86ce653-a267-4a99-b0c5-99b2a3c45792.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.0.0/19 Signature Algorithm: sha256WithRSAEncryption b0:7e:63:ea:27:54:3f:b1:e9:89:bf:27:ca:4a:78:05:e0:bc: 03:5a:35:69:31:d5:a4:96:44:e2:fc:4d:b3:af:1b:7a:9a:5e: 6b:0f:54:4e:6b:42:10:8f:96:e7:66:aa:63:b5:f9:f7:b5:e2: 12:81:10:be:77:a9:5f:a7:24:41:01:c4:a2:c2:a9:7c:bd:6a: e2:35:a4:f0:21:b3:9a:be:63:b1:2d:e5:8b:16:b5:eb:07:92: a2:af:21:12:5d:81:ae:a2:6f:4c:d8:43:8d:86:64:60:9e:3b: a0:f2:35:12:fe:a7:a4:52:5c:a5:ce:8d:6b:c9:9d:85:af:b0: 7a:bf:ed:61:6f:61:1a:8a:66:e2:db:f1:79:51:20:5d:b8:39: 99:4a:df:3d:88:2c:52:66:62:ed:9b:de:f4:65:c5:c9:cd:eb: cd:9d:e7:10:40:2b:84:cf:97:de:83:f4:57:7c:30:a9:53:70: b7:9d:2b:6a:e6:d7:6e:10:7d:b4:64:b1:56:1c:e1:75:ce:30: c2:bf:5f:97:e8:a4:e3:bf:ae:a7:d9:56:f8:f4:6b:5d:15:37: 00:b8:58:bb:61:f3:6b:06:13:53:c9:d7:a1:08:f3:cd:a6:43: 66:83:bf:ea:21:85:8c:c0:1d:94:b1:6a:71:e1:0c:1e:1c:bf: 3f:39:68:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMSJBGaO2/pdncRuXVVTAEwLNG7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEwMTI0WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzA0N2FjM2U3MDQ1NTgxYjBlYzgyYTYxYjJkMTQxMDFj ZjFmNjI2NWY4NmQzYTAxNDM2ODA5ZGE5OGE5YzBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtKjSWkcfhb79bT7Z21ddODil1/oIiRUMQi7+1Q6ngHDaG fI0NDdJp6rNWq/CjDCjU9AsekCFqEUQVOnFWrmecmq2zPXtOCh11DJTmPaIW+ODk XMBvKxMDnOmxRuEPAcI+C0UCIqPzP78Mknfn0w4KT+HwCPNzs9f4PLXEM3bAAPat 3CHXWAyaHyKfLBY6WidMYlmRPBSAi87NgbMIQqvxS4uk42KOM2r+SKhUtbvRLkBL upQiRYkkjmZljuflOeEWZknYy3je0CyIso6Lgdy0Y7celdzoRuhdJt7JK+P/4Uct 09F+u1ppJE5Z3FHE/yW1uRM7As4WjIV5mIyJ23phAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUuukFAEYbLBxeKTUFss25FTS8gVgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E4NmNlNjUzLWEyNjctNGE5OS1iMGM1LTk5YjJhM2M0NTc5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXFQAwDQYJKoZIhvcNAQELBQADggEBALB+Y+onVD+x6Ym/J8pKeAXgvANa NWkx1aSWROL8TbOvG3qaXmsPVE5rQhCPludmqmO1+fe14hKBEL53qV+nJEEBxKLC qXy9auI1pPAhs5q+Y7Et5YsWtesHkqKvIRJdga6ib0zYQ42GZGCeO6DyNRL+p6RS XKXOjWvJnYWvsHq/7WFvYRqKZuLb8XlRIF24OZlK3z2ILFJmYu2b3vRlxcnN682d 5xBAK4TPl96D9Fd8MKlTcLedK2rm124QfbRksVYc4XXOMMK/X5fopOO/rqfZVvj0 a10VNwC4WLth82sGE1PJ16EI882mQ2aDv+ohhYzAHZSxanHhDB4cvz85aM4= -----END CERTIFICATE-----Generated at Sat Jun 13 07:10:36 2026 by rpki-client