$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa File: aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa (raw, json) Hash identifier: fKeeZh4k3EEz6JjkyVl1JFaT/q+oEnP4KRJv1stgVy8= Subject key identifier: 69:CC:34:F6:86:F9:3B:1D:16:66:FA:CB:7B:9E:39:D5:CB:DE:DA:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4808A1D136AA5AABFB95EB1B3BBDD8DD9298298F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa Signing time: Sun 17 May 2026 00:11:00 +0000 ROA not before: Sun 17 May 2026 00:11:00 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 20.142.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:08:a1:d1:36:aa:5a:ab:fb:95:eb:1b:3b:bd:d8:dd:92:98:29:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:11:00 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=950894e8d1808ee9f29d3c03f0b2a799945b3187305adb39f397859f717cbfa1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:3b:89:59:cf:00:e4:50:58:a1:65:5e:8e:1c: ec:85:86:e7:70:06:00:1f:3e:17:47:44:70:f1:19: e0:4c:7f:fa:7f:64:18:76:43:1d:18:0d:bf:3c:0f: d0:b6:81:e1:db:f4:75:c0:4d:33:90:22:6b:b6:a9: c8:a0:aa:85:ee:c7:ee:09:72:fb:0c:0e:20:0e:5f: fc:87:d4:e2:87:2b:f8:c7:49:9a:cb:b0:74:00:4f: 5c:47:e1:86:02:9e:a6:7d:7d:77:a6:e0:c2:2b:a4: 6f:0d:a0:16:ba:a7:00:db:ee:f1:e1:aa:59:94:c0: 3c:3a:c1:b1:35:28:63:e6:3d:33:8f:fc:08:33:a9: e7:0c:1c:b7:6f:03:4e:3e:f1:c0:0d:99:36:fd:dc: 37:d7:fd:14:3a:93:1c:6c:22:0a:4d:ad:5c:55:58: 51:dc:08:09:c7:c9:ba:15:f5:41:b9:2d:4b:47:79: 71:a3:8c:8d:8c:5d:72:78:1e:a9:92:69:05:86:f3: cb:83:d0:b7:e8:1c:ed:20:63:50:74:09:03:4d:3a: 23:24:78:21:90:07:7a:87:e0:fa:0f:ea:50:8f:54: 93:8d:b7:3e:d0:3d:50:6f:45:ec:17:7f:da:87:20: 3b:18:2f:e2:8d:a5:50:e6:47:de:b6:e1:ca:c1:a6: 33:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:CC:34:F6:86:F9:3B:1D:16:66:FA:CB:7B:9E:39:D5:CB:DE:DA:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aed87e62-0f65-4b7b-a176-a1522c6e3d19.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 20.142.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:c3:62:c7:d3:13:56:25:a3:93:80:76:08:8a:2f:28:e9:f9: 04:3c:0d:c3:e7:75:5d:34:21:64:0f:ce:1c:87:eb:0c:a5:75: 8e:fd:53:b3:68:c1:4b:70:80:cb:30:5f:0e:ba:b3:08:9f:d8: 52:70:7f:03:76:7e:c0:48:24:c7:81:99:e8:3c:c9:f9:31:b4: be:8b:11:47:2c:cd:f9:00:67:ee:e8:c1:03:11:14:a1:02:12: d7:2b:74:31:05:e3:83:82:75:b1:33:b4:d5:2c:f6:2e:ab:6e: ff:00:60:7f:96:ee:8a:bc:e1:d8:fe:93:07:76:38:2e:35:b9: 73:9c:7c:5f:00:e4:56:89:d4:2f:36:86:66:7c:c8:08:ab:3b: 67:fc:55:6e:37:61:b0:39:81:d5:b1:27:3e:a6:c6:62:99:04: e2:b3:37:ca:97:b5:27:90:e0:24:b1:2d:ad:a2:69:c5:b9:cf: 46:e4:f9:7d:2f:a0:84:80:1b:64:3b:07:35:ab:bb:57:68:f7: 12:d6:a1:72:7a:f1:f3:5c:57:7e:78:8a:ee:95:45:a2:e9:b0: fc:30:e2:56:7f:fe:00:85:f3:b4:90:54:0e:aa:e8:e5:c4:6a: d9:dc:c5:32:54:0f:c9:cd:21:bd:71:32:b5:da:03:f0:43:90: e1:e6:3a:58 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSAih0TaqWqv7lesbO73Y3ZKYKY8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAxMTAwWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTA4OTRlOGQxODA4ZWU5ZjI5ZDNjMDNmMGIyYTc5OTk0 NWIzMTg3MzA1YWRiMzlmMzk3ODU5ZjcxN2NiZmExMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5O4lZzwDkUFihZV6OHOyFhudwBgAfPhdHRHDxGeBMf/p/ ZBh2Qx0YDb88D9C2geHb9HXATTOQImu2qcigqoXux+4JcvsMDiAOX/yH1OKHK/jH SZrLsHQAT1xH4YYCnqZ9fXem4MIrpG8NoBa6pwDb7vHhqlmUwDw6wbE1KGPmPTOP /AgzqecMHLdvA04+8cANmTb93DfX/RQ6kxxsIgpNrVxVWFHcCAnHyboV9UG5LUtH eXGjjI2MXXJ4HqmSaQWG88uD0LfoHO0gY1B0CQNNOiMkeCGQB3qH4PoP6lCPVJON tz7QPVBvRewXf9qHIDsYL+KNpVDmR9624crBpjOjAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUacw09ob5Ox0WZvrLe5451cve2rUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZDg3ZTYyLTBmNjUtNGI3Yi1hMTc2LWExNTIyYzZlM2QxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAUjjANBgkqhkiG9w0BAQsFAAOCAQEA0MNix9MTViWjk4B2CIovKOn5BDwN w+d1XTQhZA/OHIfrDKV1jv1Ts2jBS3CAyzBfDrqzCJ/YUnB/A3Z+wEgkx4GZ6DzJ +TG0vosRRyzN+QBn7ujBAxEUoQIS1yt0MQXjg4J1sTO01Sz2Lqtu/wBgf5buirzh 2P6TB3Y4LjW5c5x8XwDkVonULzaGZnzICKs7Z/xVbjdhsDmB1bEnPqbGYpkE4rM3 ype1J5DgJLEtraJpxbnPRuT5fS+ghIAbZDsHNau7V2j3Etahcnrx81xXfniK7pVF oumw/DDiVn/+AIXztJBUDqro5cRq2dzFMlQPyc0hvXEytdoD8EOQ4eY6WA== -----END CERTIFICATE-----Generated at Sat Jun 13 05:52:09 2026 by rpki-client