$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c3c467-0357-412c-8f21-70113f26e16c.roa File: b2c3c467-0357-412c-8f21-70113f26e16c.roa (raw, json) Hash identifier: 7MXQfuvOXxWeCyJTbzABVw0vyxS/C61S+Lc8vfcbHl0= Subject key identifier: 1E:59:ED:07:36:6F:7D:EB:32:14:F9:98:1B:20:8C:7F:D0:5A:BB:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30EC9CE5E1A3D6336DFD44DB0B76E246F71CAA6B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c3c467-0357-412c-8f21-70113f26e16c.roa Signing time: Wed 20 May 2026 00:10:35 +0000 ROA not before: Wed 20 May 2026 00:10:35 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.172.176.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:ec:9c:e5:e1:a3:d6:33:6d:fd:44:db:0b:76:e2:46:f7:1c:aa:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:35 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=be802b39a664f06a44279a6bb369b193f5e83ec739119436119fcb58ea5693fd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:23:90:c1:63:2c:e9:7f:12:57:36:e3:0b: dc:e5:4e:52:70:2e:1b:c8:46:22:cc:07:7a:39:fd: 8f:42:24:d3:a7:61:45:9a:54:cf:37:1b:08:8d:2a: a0:70:b6:35:40:df:21:0b:27:81:68:34:59:8e:09: 57:9d:30:59:ac:c0:23:fb:f3:1d:12:74:31:c9:62: a2:35:2f:74:2c:b5:d5:f7:b5:02:b8:70:27:eb:53: 6e:2d:fd:16:7a:04:51:7a:ac:28:ea:c2:fa:d2:df: 25:7e:b6:4a:cb:33:17:6f:71:bb:99:1b:d8:36:51: 8a:d2:12:c1:12:f8:6a:03:02:e4:32:49:3c:7d:6e: ad:cd:ea:f4:64:5e:bd:ea:98:f2:22:27:1a:63:9a: b0:b8:3d:9a:3d:99:fc:3d:9c:2f:0f:52:3d:84:d7: 48:e9:22:db:ba:9d:8a:fd:a6:bf:fb:bf:2d:5a:a9: 13:97:a3:6e:30:b1:2a:b5:b2:ad:08:7d:f0:de:fa: ab:ac:8f:1a:d6:ad:13:4f:cb:bd:bb:32:77:7e:f8: 8c:5e:3b:b7:b1:46:9e:e0:b7:48:ed:65:b9:ec:ec: 52:d8:43:8c:f3:9a:93:86:f3:7f:a6:cd:1d:79:ca: ea:e0:9b:88:65:ec:88:3f:b8:15:4d:9a:94:27:70: 06:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:59:ED:07:36:6F:7D:EB:32:14:F9:98:1B:20:8C:7F:D0:5A:BB:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b2c3c467-0357-412c-8f21-70113f26e16c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.172.176.0/22 Signature Algorithm: sha256WithRSAEncryption 8e:19:3d:9b:65:63:00:33:d1:39:45:e7:21:3e:d9:cd:b9:a6: 06:19:a6:73:7a:6d:48:d8:63:19:11:aa:97:1b:82:7e:18:b3: cd:dd:fa:9b:6d:f5:82:83:b5:50:35:96:2b:a4:e7:22:14:0d: 26:7a:5a:a8:24:67:a4:46:27:53:9b:ee:54:e8:88:b3:38:33: 70:55:9c:6a:5c:7c:aa:0f:84:e2:53:97:57:7c:c0:db:5a:46: cd:f6:6a:95:f0:32:6d:a6:5d:cc:1f:80:ab:9c:8e:d6:dd:4e: a2:c6:26:07:e0:d1:6a:1f:cf:7f:84:1f:7d:c4:5f:a1:2c:79: 25:74:5a:5f:ba:03:bb:07:24:85:43:67:cb:ae:3c:2b:22:3b: fa:82:6a:15:04:a3:d6:85:94:ce:70:b4:a6:97:e1:31:90:5e: 05:0b:7f:23:58:09:ce:44:10:44:84:53:82:ba:76:7c:29:c4: 9b:75:c8:55:41:93:e3:34:de:1e:9d:b7:96:0d:a9:88:9d:83: 7f:5a:78:b9:31:c7:96:59:b7:67:76:10:05:8d:b3:84:0b:99: 8d:21:b7:6d:82:da:b9:8c:a4:41:58:d3:8e:cb:29:01:f3:44: 4d:f5:eb:13:9c:9a:bd:4d:05:f8:dc:20:84:df:fa:6c:77:c3: d2:17:8b:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMOyc5eGj1jNt/UTbC3biRvccqmswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAxMDM1WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZTgwMmIzOWE2NjRmMDZhNDQyNzlhNmJiMzY5YjE5M2Y1 ZTgzZWM3MzkxMTk0MzYxMTlmY2I1OGVhNTY5M2ZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzlCOQwWMs6X8SVzbjC9zlTlJwLhvIRiLMB3o5/Y9CJNOn YUWaVM83GwiNKqBwtjVA3yELJ4FoNFmOCVedMFmswCP78x0SdDHJYqI1L3QstdX3 tQK4cCfrU24t/RZ6BFF6rCjqwvrS3yV+tkrLMxdvcbuZG9g2UYrSEsES+GoDAuQy STx9bq3N6vRkXr3qmPIiJxpjmrC4PZo9mfw9nC8PUj2E10jpItu6nYr9pr/7vy1a qROXo24wsSq1sq0IffDe+qusjxrWrRNPy727Mnd++IxeO7exRp7gt0jtZbns7FLY Q4zzmpOG83+mzR15yurgm4hl7Ig/uBVNmpQncAaxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHlntBzZvfesyFPmYGyCMf9Bau1EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyYzNjNDY3LTAzNTctNDEyYy04ZjIxLTcwMTEzZjI2ZTE2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALNrLAwDQYJKoZIhvcNAQELBQADggEBAI4ZPZtlYwAz0TlF5yE+2c25pgYZ pnN6bUjYYxkRqpcbgn4Ys83d+ptt9YKDtVA1liuk5yIUDSZ6WqgkZ6RGJ1Ob7lTo iLM4M3BVnGpcfKoPhOJTl1d8wNtaRs32apXwMm2mXcwfgKucjtbdTqLGJgfg0Wof z3+EH33EX6EseSV0Wl+6A7sHJIVDZ8uuPCsiO/qCahUEo9aFlM5wtKaX4TGQXgUL fyNYCc5EEESEU4K6dnwpxJt1yFVBk+M03h6dt5YNqYidg39aeLkxx5ZZt2d2EAWN s4QLmY0ht22C2rmMpEFY047LKQHzRE316xOcmr1NBfjcIITf+mx3w9IXi/c= -----END CERTIFICATE-----Generated at Sat Jun 13 12:58:07 2026 by rpki-client