$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb56cb92-b2af-486c-8e14-550871fce8cf.roa File: cb56cb92-b2af-486c-8e14-550871fce8cf.roa (raw, json) Hash identifier: QSp85xYHXOWDd6mpwgDTolVS7LtwNr3pnGJURdde/k4= Subject key identifier: 06:AD:0F:66:A1:A2:0C:CD:6E:78:0F:DE:09:8C:38:25:23:00:74:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3F3B4CD2DE4C38BA21FB5D6378D6DFD9850182C7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb56cb92-b2af-486c-8e14-550871fce8cf.roa Signing time: Wed 20 May 2026 00:10:34 +0000 ROA not before: Wed 20 May 2026 00:10:34 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.131.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:3b:4c:d2:de:4c:38:ba:21:fb:5d:63:78:d6:df:d9:85:01:82:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:34 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=abfef9fd80aca629a02d284dc11e7409630eb7a6eb0ab8341b9886a45be17294, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:a5:6b:f0:73:88:0c:b8:cf:4c:00:f8:08:db: e1:78:7c:cc:00:83:16:1f:f9:90:54:f7:ac:ad:79: b3:22:86:ec:49:95:2f:84:42:16:2b:60:a7:bf:e4: 6a:08:ed:b1:d7:4e:5d:f3:7f:80:fc:c5:47:f6:69: 7f:bd:1c:f9:dc:02:74:a5:e8:83:bd:61:0e:8b:d6: dc:05:91:aa:88:9a:9c:02:f2:af:9a:e9:f2:f7:9c: a8:70:a6:7c:62:b8:e5:15:c3:aa:0a:e2:e4:2a:65: 63:88:de:0f:eb:fd:59:4a:9f:15:3e:9e:49:9b:f3: cd:eb:94:0b:dd:e1:e0:63:ad:cb:c5:8f:c4:e5:49: 96:ca:07:93:36:dc:d5:f5:42:af:44:29:28:03:0a: 4a:8c:7b:2a:91:cd:09:fb:39:67:06:08:f5:e0:66: 28:54:51:1d:e0:56:0f:c9:f6:e4:37:0f:b3:d6:d1: 94:f1:eb:2c:fb:d2:a0:f0:e0:22:c9:ed:d6:32:b4: dd:98:1b:e3:9c:90:72:c5:f7:c4:cd:a8:1e:78:c8: f8:78:1b:4e:d8:9c:0f:fe:aa:69:35:65:f6:37:c6: 19:d5:e7:91:87:a2:28:2f:82:e6:eb:e9:d9:be:6f: 52:8c:54:b1:a0:04:e6:2f:eb:b6:9e:ef:81:18:76: c6:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:AD:0F:66:A1:A2:0C:CD:6E:78:0F:DE:09:8C:38:25:23:00:74:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cb56cb92-b2af-486c-8e14-550871fce8cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.131.192.0/18 Signature Algorithm: sha256WithRSAEncryption 12:28:5b:1d:99:5a:63:80:c4:7e:3e:eb:fe:7e:7f:08:02:2b: 35:3d:2f:89:4a:44:62:02:d2:16:7a:05:76:e8:b6:dd:5b:d8: 92:1b:86:16:2e:d3:23:5d:a7:a3:1c:72:de:96:bf:61:3a:85: c9:5a:2a:0b:ef:0a:d0:41:5a:c5:9d:98:b5:e4:4e:4a:b7:31: 87:ff:70:e8:1a:7b:c3:cd:1a:b4:da:8a:a1:e8:79:db:18:3a: 94:62:a3:8e:15:da:2b:f7:eb:ad:b6:50:c3:fb:e3:2c:a2:cf: 8e:f6:fa:62:2b:34:6a:87:4c:34:02:97:47:19:3e:8e:80:ef: 35:af:88:17:0f:c9:ba:bd:e1:8f:01:2b:dd:eb:95:71:e0:6d: 18:de:c7:ef:c6:7b:8a:9f:81:49:3a:ec:cc:cb:a7:6a:ae:71: 4b:9f:45:c8:2b:78:52:2c:75:ed:59:64:01:55:e5:ea:e2:60: 94:8e:84:bb:de:18:7e:3a:4c:d1:e0:7e:a1:5b:81:65:1d:50: 4d:08:6c:73:55:a3:cc:a1:b3:cb:44:04:db:c9:ed:af:1b:ea: 85:37:4c:7e:52:22:78:4b:01:1d:49:f2:3e:be:73:51:a4:2e: 46:e0:a2:b2:18:7c:54:bc:4d:da:e5:e2:9b:89:00:2a:e3:14: 1c:28:27:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPztM0t5MOLoh+11jeNbf2YUBgscwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAxMDM0WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmZlZjlmZDgwYWNhNjI5YTAyZDI4NGRjMTFlNzQwOTYz MGViN2E2ZWIwYWI4MzQxYjk4ODZhNDViZTE3Mjk0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6pWvwc4gMuM9MAPgI2+F4fMwAgxYf+ZBU96ytebMihuxJ lS+EQhYrYKe/5GoI7bHXTl3zf4D8xUf2aX+9HPncAnSl6IO9YQ6L1twFkaqImpwC 8q+a6fL3nKhwpnxiuOUVw6oK4uQqZWOI3g/r/VlKnxU+nkmb883rlAvd4eBjrcvF j8TlSZbKB5M23NX1Qq9EKSgDCkqMeyqRzQn7OWcGCPXgZihUUR3gVg/J9uQ3D7PW 0ZTx6yz70qDw4CLJ7dYytN2YG+OckHLF98TNqB54yPh4G07YnA/+qmk1ZfY3xhnV 55GHoigvgubr6dm+b1KMVLGgBOYv67ae74EYdsZHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBq0PZqGiDM1ueA/eCYw4JSMAdAAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NiNTZjYjkyLWIyYWYtNDg2Yy04ZTE0LTU1MDg3MWZjZThjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZGg8AwDQYJKoZIhvcNAQELBQADggEBABIoWx2ZWmOAxH4+6/5+fwgCKzU9 L4lKRGIC0hZ6BXbott1b2JIbhhYu0yNdp6Mcct6Wv2E6hclaKgvvCtBBWsWdmLXk Tkq3MYf/cOgae8PNGrTaiqHoedsYOpRio44V2iv36622UMP74yyiz472+mIrNGqH TDQCl0cZPo6A7zWviBcPybq94Y8BK93rlXHgbRjex+/Ge4qfgUk67MzLp2qucUuf RcgreFIsde1ZZAFV5eriYJSOhLveGH46TNHgfqFbgWUdUE0IbHNVo8yhs8tEBNvJ 7a8b6oU3TH5SInhLAR1J8j6+c1GkLkbgorIYfFS8Tdrl4puJACrjFBwoJ1c= -----END CERTIFICATE-----Generated at Wed Jun 17 10:11:59 2026 by rpki-client