$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa File: aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa (raw, json) Hash identifier: vYOg+pDurolJ1Pobc+Y27Yk2l0grax1AEZqk8hSG5cI= Subject key identifier: A5:EC:F9:60:57:8C:6A:F9:22:F3:F3:04:DD:D6:D6:A6:B2:DE:55:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3376B22E777255AEB11BDC24FDB255AAE6D0C721 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa Signing time: Sun 17 May 2026 00:30:43 +0000 ROA not before: Sun 17 May 2026 00:30:43 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 220.157.68.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:76:b2:2e:77:72:55:ae:b1:1b:dc:24:fd:b2:55:aa:e6:d0:c7:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:30:43 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=2f557624bbec40f10fcb6cab7c376caf2190db22db3f04687bedfb9c3cc3e7a0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:8b:15:e8:cf:04:2a:9d:34:54:94:94:50:30: 4c:d0:5c:2d:ff:a5:d1:f3:cf:06:ff:11:dc:b3:c4: a3:24:d4:36:05:a8:bf:8c:01:d8:ef:a1:bc:21:c4: 44:35:f2:11:6d:39:e4:8c:ef:6c:55:94:21:98:3d: ac:5d:de:d6:c3:0c:af:62:35:7b:57:8c:c8:ea:6d: 23:b1:7c:8d:4f:9b:45:f2:7f:b5:9d:38:0c:02:bb: 8d:78:bc:56:33:6f:90:13:a3:e4:9b:02:01:44:e1: a4:ee:e0:27:5d:76:f8:1c:18:e7:e1:64:84:9b:d9: 7b:b4:b3:4a:29:db:01:14:a2:13:56:00:b9:e4:01: cc:f6:5d:29:d4:28:f2:86:5c:37:4a:a4:cb:62:c5: 27:0f:37:62:29:15:54:6d:dd:89:3e:4c:d8:f7:fe: 1d:97:7d:8b:c4:17:f5:1c:d0:09:02:b9:dd:2e:5c: c8:f3:99:4d:42:45:4a:6d:34:37:bb:6e:3f:97:08: 04:36:33:52:61:4c:6d:b8:f7:1e:7b:ca:db:97:a2: d6:e8:96:40:41:c2:cc:6e:2b:6a:6b:d7:30:33:5a: d5:8c:e6:60:8e:a4:4f:b7:67:3d:d1:4a:dc:df:90: a1:09:3f:c4:63:d6:9f:24:39:57:8d:b7:49:16:75: 9e:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:EC:F9:60:57:8C:6A:F9:22:F3:F3:04:DD:D6:D6:A6:B2:DE:55:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aa4af829-84cb-4727-ac8a-65d4d774c7f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.68.0/23 Signature Algorithm: sha256WithRSAEncryption 79:7d:cb:7c:85:36:d3:f9:de:01:fc:7c:08:96:f0:cf:51:ce: 01:5a:d1:1b:6c:2f:a8:ba:f0:1f:68:eb:94:ff:af:68:5d:70: 56:44:8a:40:30:d7:23:32:0a:5d:a4:d6:23:5f:78:8b:c2:12: 41:6b:fd:9f:31:1a:d1:95:31:21:52:e0:d0:91:a3:92:49:36: 0a:4b:f3:18:e1:cd:a3:77:4b:47:2f:c8:25:33:e4:77:cf:cf: 8f:7d:7c:4e:bc:be:1b:de:40:ee:8a:d4:2e:76:35:c1:be:93: 56:42:e8:13:29:10:cd:3a:c9:60:5a:a7:d5:97:bd:06:71:7a: 99:8f:3a:02:62:98:c6:9e:e8:c9:2f:57:a5:b6:ea:73:89:ef: e7:c1:cd:50:a6:a6:e4:d2:23:67:18:cb:7c:c0:4d:6f:2c:9c: d3:31:03:d6:f2:9a:d4:ed:38:e2:a3:06:ec:1c:07:3b:79:9a: 4c:7e:d0:6f:be:fe:87:78:16:0a:82:a4:12:ad:f1:1b:7a:6b: d3:49:04:ad:48:88:9a:76:99:cc:e9:bf:cb:da:e1:6b:e1:00: bb:52:f2:06:c5:eb:4b:47:57:ae:c7:e0:c4:9a:4f:e6:2b:f5: 6e:63:f5:b5:16:7a:c4:cb:17:40:5b:ab:c5:73:cb:db:c2:dc: a3:0d:87:e9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUM3ayLndyVa6xG9wk/bJVqubQxyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAzMDQzWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZjU1NzYyNGJiZWM0MGYxMGZjYjZjYWI3YzM3NmNhZjIx OTBkYjIyZGIzZjA0Njg3YmVkZmI5YzNjYzNlN2EwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtixXozwQqnTRUlJRQMEzQXC3/pdHzzwb/EdyzxKMk1DYF qL+MAdjvobwhxEQ18hFtOeSM72xVlCGYPaxd3tbDDK9iNXtXjMjqbSOxfI1Pm0Xy f7WdOAwCu414vFYzb5ATo+SbAgFE4aTu4CdddvgcGOfhZISb2Xu0s0op2wEUohNW ALnkAcz2XSnUKPKGXDdKpMtixScPN2IpFVRt3Yk+TNj3/h2XfYvEF/Uc0AkCud0u XMjzmU1CRUptNDe7bj+XCAQ2M1JhTG249x57ytuXotbolkBBwsxuK2pr1zAzWtWM 5mCOpE+3Zz3RStzfkKEJP8Rj1p8kOVeNt0kWdZ4xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpez5YFeMavki8/ME3dbWprLeVfEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FhNGFmODI5LTg0Y2ItNDcyNy1hYzhhLTY1ZDRkNzc0YzdmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnUQwDQYJKoZIhvcNAQELBQADggEBAHl9y3yFNtP53gH8fAiW8M9RzgFa 0RtsL6i68B9o65T/r2hdcFZEikAw1yMyCl2k1iNfeIvCEkFr/Z8xGtGVMSFS4NCR o5JJNgpL8xjhzaN3S0cvyCUz5HfPz499fE68vhveQO6K1C52NcG+k1ZC6BMpEM06 yWBap9WXvQZxepmPOgJimMae6MkvV6W26nOJ7+fBzVCmpuTSI2cYy3zATW8snNMx A9bymtTtOOKjBuwcBzt5mkx+0G++/od4FgqCpBKt8Rt6a9NJBK1IiJp2mczpv8va 4WvhALtS8gbF60tHV67H4MSaT+Yr9W5j9bUWesTLF0Bbq8Vzy9vC3KMNh+k= -----END CERTIFICATE-----Generated at Sat Jun 13 08:18:10 2026 by rpki-client