$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeffd414-e038-4f94-8262-5f843fa8634d.roa File: aeffd414-e038-4f94-8262-5f843fa8634d.roa (raw, json) Hash identifier: rxNjvYEumLlLTFX4oxXmuf459HgPNyQj6mcZ9WQTexk= Subject key identifier: E5:99:D3:F1:76:F8:B0:4E:98:FF:D0:33:1C:1E:39:EF:B7:AF:01:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1DE804B3F5ADACE775480F563F18B2FFB10729E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeffd414-e038-4f94-8262-5f843fa8634d.roa Signing time: Sat 16 May 2026 01:20:27 +0000 ROA not before: Sat 16 May 2026 01:20:27 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.20.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:e8:04:b3:f5:ad:ac:e7:75:48:0f:56:3f:18:b2:ff:b1:07:29:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:20:27 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=cd1786ad0c2389bdd0843fa5dfc9b735f5a58f318da28714ab617886517ad358, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:81:ad:e7:bf:8b:b5:bf:18:ee:63:ee:bf:8d: b4:78:d7:47:6d:6a:8f:b1:5a:5c:56:8c:15:5a:3f: 10:d7:9c:ba:cd:e5:87:07:45:90:19:5d:93:50:90: a8:60:9c:ee:38:4a:cd:30:21:91:cf:77:92:48:d8: 66:b5:a0:4a:0e:dd:18:c4:05:3a:90:07:e2:99:a1: 41:3e:0d:7d:af:1f:22:8d:78:93:91:67:b3:00:50: f7:34:a1:61:a8:f2:cc:dc:0e:f5:5a:04:16:73:0a: cc:1a:d2:de:83:1b:9d:ba:54:51:aa:ae:5a:70:7f: e2:d1:92:89:2d:8c:5f:a3:32:9c:2b:87:7a:a3:0d: d0:50:b5:e4:dc:30:ff:3a:26:f1:68:a0:0b:9d:90: 19:f5:32:9c:d4:ea:6d:de:4e:1c:27:63:eb:25:8e: eb:a8:4f:5f:4a:65:18:59:27:fe:9e:b7:e7:96:18: 0a:ab:ee:a1:63:a4:7b:b9:37:4f:70:4f:be:c6:81: e5:aa:5c:b5:ba:3b:b5:de:89:c2:c6:4c:86:b5:9d: c8:b7:16:24:b6:86:32:68:52:8d:3c:0c:9e:e2:87: 83:1c:17:20:f8:e1:ef:d7:b7:6a:bc:60:a2:f6:61: b6:dc:12:4b:bc:96:bc:5f:5c:55:05:79:bb:4b:f1: 94:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:99:D3:F1:76:F8:B0:4E:98:FF:D0:33:1C:1E:39:EF:B7:AF:01:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/aeffd414-e038-4f94-8262-5f843fa8634d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.20.0.0/14 Signature Algorithm: sha256WithRSAEncryption 12:60:ef:a5:3e:21:00:bf:e3:97:36:0f:d9:2c:8c:b5:81:17: f6:76:59:df:13:1b:8e:64:fb:4b:02:5b:bd:c8:7b:85:44:a2: 73:e5:44:8a:bb:f9:b8:df:99:6f:37:94:db:d0:cd:79:34:d4: 99:7b:9f:f2:05:ec:79:e7:e6:f2:30:72:1c:79:87:c5:dc:77: c4:db:76:d8:f2:64:df:8f:3d:59:1d:38:65:68:65:ba:b3:f5: 7c:40:68:49:2a:69:35:1e:b7:94:d8:f7:55:ad:51:7d:00:32: 3f:12:09:ae:91:b9:1d:30:45:46:44:a9:d6:2a:ea:be:99:b9: 08:79:1c:b7:b4:60:e1:2b:75:ed:88:2d:91:b8:96:76:8a:2d: d6:a3:fb:89:ee:d3:6b:f0:01:3e:a9:93:34:ff:85:f3:25:1c: be:8b:a1:12:e4:4a:75:0a:c4:3d:e8:51:ed:a0:8c:19:a8:3b: 77:49:4b:17:98:df:42:77:26:1d:6d:51:73:cf:68:6a:3d:87: 75:82:be:18:2f:ba:b3:ae:d3:ff:ff:41:09:1d:8b:1a:2c:52: 31:2a:48:dc:13:11:4c:24:29:53:21:d2:e3:f8:d7:a5:bd:5e: 83:fd:30:26:78:f6:bb:76:7a:14:e3:7e:ce:8b:2f:92:e2:5e: d0:ef:95:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHegEs/WtrOd1SA9WPxiy/7EHKeEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMDI3WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZDE3ODZhZDBjMjM4OWJkZDA4NDNmYTVkZmM5YjczNWY1 YTU4ZjMxOGRhMjg3MTRhYjYxNzg4NjUxN2FkMzU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsga3nv4u1vxjuY+6/jbR410dtao+xWlxWjBVaPxDXnLrN 5YcHRZAZXZNQkKhgnO44Ss0wIZHPd5JI2Ga1oEoO3RjEBTqQB+KZoUE+DX2vHyKN eJORZ7MAUPc0oWGo8szcDvVaBBZzCswa0t6DG526VFGqrlpwf+LRkoktjF+jMpwr h3qjDdBQteTcMP86JvFooAudkBn1MpzU6m3eThwnY+sljuuoT19KZRhZJ/6et+eW GAqr7qFjpHu5N09wT77GgeWqXLW6O7XeicLGTIa1nci3FiS2hjJoUo08DJ7ih4Mc FyD44e/Xt2q8YKL2YbbcEku8lrxfXFUFebtL8ZThAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5ZnT8Xb4sE6Y/9AzHB4577evAREwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlZmZkNDE0LWUwMzgtNGY5NC04MjYyLTVmODQzZmE4NjM0ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIXFDANBgkqhkiG9w0BAQsFAAOCAQEAEmDvpT4hAL/jlzYP2SyMtYEX9nZZ 3xMbjmT7SwJbvch7hUSic+VEirv5uN+ZbzeU29DNeTTUmXuf8gXseefm8jByHHmH xdx3xNt22PJk3489WR04ZWhlurP1fEBoSSppNR63lNj3Va1RfQAyPxIJrpG5HTBF RkSp1irqvpm5CHkct7Rg4St17YgtkbiWdoot1qP7ie7Ta/ABPqmTNP+F8yUcvouh EuRKdQrEPehR7aCMGag7d0lLF5jfQncmHW1Rc89oaj2HdYK+GC+6s67T//9BCR2L GixSMSpI3BMRTCQpUyHS4/jXpb1eg/0wJnj2u3Z6FON+zosvkuJe0O+Vag== -----END CERTIFICATE-----Generated at Sat Jun 13 07:06:27 2026 by rpki-client