$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa File: b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa (raw, json) Hash identifier: xlYYDN2378invQXl4PpDBqTTLF8v0AZQ7e66hVpG6Xw= Subject key identifier: 0E:26:67:A1:B3:54:0C:9C:02:08:94:1F:1D:4C:05:FC:F6:4A:73:4F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4CCF841CB564B0D809664C916250CEF1FA7067EB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa Signing time: Sat 16 May 2026 01:01:40 +0000 ROA not before: Sat 16 May 2026 01:01:40 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.21.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:cf:84:1c:b5:64:b0:d8:09:66:4c:91:62:50:ce:f1:fa:70:67:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:01:40 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=e08ff998a87944271ab66c3a8716d23e99211e2394151e0b6ccb3fcc08f4790d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:02:d0:e1:60:9d:1b:ad:28:d2:39:ec:98:0d: b8:e3:2f:d3:5a:92:7c:96:b2:66:c8:f3:07:d0:da: 2c:dd:c0:32:3d:4a:21:fb:58:db:2f:c9:8b:77:42: c6:d0:1e:9c:e6:91:8f:85:fc:63:ab:b1:85:2d:77: e8:34:04:e2:b3:2b:b0:19:b5:0b:74:d7:29:19:0f: 06:45:01:ac:eb:07:23:ac:a8:11:1e:17:94:6f:09: 2c:1a:6a:9b:9c:bd:11:80:77:77:9b:88:51:a4:b6: 40:96:02:9c:dc:8d:14:a7:0d:16:c6:17:09:e5:5c: 66:c6:cc:84:d4:43:39:96:0e:bc:02:4e:e4:77:dd: 7b:fe:1b:50:b0:1d:07:ab:ad:0d:8e:35:88:a2:5a: 88:9e:b1:20:bb:16:c7:15:2d:09:5b:f8:67:d7:a5: 65:8e:63:65:f3:71:b5:e1:fc:17:ec:bd:0f:30:86: 3e:1e:c3:12:1b:ef:70:2c:fa:17:d0:af:26:a7:1b: 60:8a:ba:27:ee:28:3a:0e:4d:16:d4:7d:d1:29:49: e9:cc:76:79:41:59:a9:c6:41:46:8c:5c:d8:cb:6c: 92:01:c5:59:67:1c:55:c9:7a:8c:0a:71:9f:d8:8c: 4f:de:de:b7:9b:e2:81:83:1c:ba:2c:54:b3:a3:c3: 79:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:26:67:A1:B3:54:0C:9C:02:08:94:1F:1D:4C:05:FC:F6:4A:73:4F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b131daf1-b7a0-4cfc-895e-57ca8f2fcc6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.21.48.0/20 Signature Algorithm: sha256WithRSAEncryption 1d:8f:b6:a7:49:72:e8:e4:5e:3d:c9:da:fc:9c:dc:52:75:ae: ae:96:90:1c:83:72:30:cb:2b:c8:b9:a4:19:3e:01:d6:a4:5b: 65:59:34:ea:61:d4:59:be:6b:11:4d:43:8d:fc:d8:9f:97:56: c0:c1:4e:52:e2:75:45:5e:1c:02:53:6a:0b:56:8f:c0:12:66: da:ab:f0:60:36:bc:8b:44:b1:8a:08:cf:4f:ac:f1:7d:42:f8: f4:08:ee:f2:50:73:ed:af:81:c7:3f:01:93:0b:3e:66:49:b4: 7f:57:26:64:f5:20:bf:96:3b:5a:fa:e8:6b:73:82:02:73:28: da:09:76:c9:d5:24:53:23:7f:2d:89:64:47:94:79:5e:84:c1: ea:8e:00:9a:b9:28:ce:73:07:0f:31:bc:06:18:c2:24:e0:be: 7d:cb:ef:10:b1:c9:29:0b:b2:4a:8e:48:3d:53:bc:0d:bf:dd: 29:f0:5c:b9:31:60:31:d6:dd:da:9e:57:25:59:8c:ad:40:a1: 74:6a:0d:66:2f:33:11:55:0e:59:8e:6e:30:c2:05:a1:e9:af: a7:05:7d:96:8a:21:5f:c1:e1:12:73:f2:ca:ce:85:35:2c:9d: 50:45:f9:12:4d:4c:ce:fe:6d:72:bd:9e:67:c9:c6:d2:66:9d: 57:70:bf:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTM+EHLVksNgJZkyRYlDO8fpwZ+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEwMTQwWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMDhmZjk5OGE4Nzk0NDI3MWFiNjZjM2E4NzE2ZDIzZTk5 MjExZTIzOTQxNTFlMGI2Y2NiM2ZjYzA4ZjQ3OTBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDZAtDhYJ0brSjSOeyYDbjjL9NaknyWsmbI8wfQ2izdwDI9 SiH7WNsvyYt3QsbQHpzmkY+F/GOrsYUtd+g0BOKzK7AZtQt01ykZDwZFAazrByOs qBEeF5RvCSwaapucvRGAd3ebiFGktkCWApzcjRSnDRbGFwnlXGbGzITUQzmWDrwC TuR33Xv+G1CwHQerrQ2ONYiiWoiesSC7FscVLQlb+GfXpWWOY2XzcbXh/BfsvQ8w hj4ewxIb73As+hfQryanG2CKuifuKDoOTRbUfdEpSenMdnlBWanGQUaMXNjLbJIB xVlnHFXJeowKcZ/YjE/e3reb4oGDHLosVLOjw3k9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDiZnobNUDJwCCJQfHUwF/PZKc08wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxMzFkYWYxLWI3YTAtNGNmYy04OTVlLTU3Y2E4ZjJmY2M2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQXFTAwDQYJKoZIhvcNAQELBQADggEBAB2PtqdJcujkXj3J2vyc3FJ1rq6W kByDcjDLK8i5pBk+AdakW2VZNOph1Fm+axFNQ4382J+XVsDBTlLidUVeHAJTagtW j8ASZtqr8GA2vItEsYoIz0+s8X1C+PQI7vJQc+2vgcc/AZMLPmZJtH9XJmT1IL+W O1r66GtzggJzKNoJdsnVJFMjfy2JZEeUeV6EweqOAJq5KM5zBw8xvAYYwiTgvn3L 7xCxySkLskqOSD1TvA2/3SnwXLkxYDHW3dqeVyVZjK1AoXRqDWYvMxFVDlmObjDC BaHpr6cFfZaKIV/B4RJz8srOhTUsnVBF+RJNTM7+bXK9nmfJxtJmnVdwv/0= -----END CERTIFICATE-----Generated at Wed Jun 17 09:14:10 2026 by rpki-client