$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa File: ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa (raw, json) Hash identifier: gZ+b/12S08/LLAeds9kkBbbfT07+y050lnVRTYriD4c= Subject key identifier: B5:C0:AB:82:7E:71:77:13:A2:0A:68:9B:2B:D3:4A:E2:7A:22:BE:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70277CD2DB646656A3A49DA6EE792DB755E4272C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa Signing time: Sat 16 May 2026 01:20:06 +0000 ROA not before: Sat 16 May 2026 01:20:06 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 18 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:27:7c:d2:db:64:66:56:a3:a4:9d:a6:ee:79:2d:b7:55:e4:27:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:20:06 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=4a9a9a5651eece91145438184e002690ec7288425156ae4b3826ab298af9c60f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:53:a6:1d:04:3c:5b:e1:67:83:3b:1a:c4:c6: a7:32:2c:ba:f3:16:50:49:76:d6:ea:ad:6e:c1:d5: d1:25:4f:da:3d:c4:e3:72:b8:fe:a5:28:f4:01:e1: 0d:cd:0b:a0:7d:cf:e0:20:a5:aa:a3:d5:89:b0:95: f2:25:28:05:76:06:65:08:a7:2e:bb:f8:a8:27:5a: 49:c5:bb:40:e8:ad:00:9b:a2:fc:8d:83:0a:e8:ea: 28:d7:78:93:e4:3c:87:d1:1b:94:61:60:c0:eb:54: ff:7c:f6:43:b5:40:6c:55:c1:0f:0f:af:83:c6:6c: ae:a6:d5:52:e8:0f:1d:44:c5:c1:c8:9e:a0:71:9f: 8c:33:08:41:1f:ba:a8:b7:98:e6:de:1f:20:ed:68: e3:96:d0:d5:56:79:0d:ee:83:e0:4d:1d:31:e6:a9: 4a:77:57:27:a8:1d:33:66:37:3f:16:cd:86:6c:c3: d1:cd:ac:83:b2:b8:0f:cd:92:a9:30:b0:71:6d:f4: ef:15:0f:01:9e:ca:aa:b9:02:27:95:1b:39:bb:79: 2b:1f:ed:65:03:65:57:88:53:9c:7b:61:b4:e6:d2: 61:8e:ea:6e:7b:2e:e7:cf:ac:8e:43:e9:6d:45:3f: 07:3f:f5:06:64:7f:a1:e9:3e:5b:05:90:51:23:24: 33:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:C0:AB:82:7E:71:77:13:A2:0A:68:9B:2B:D3:4A:E2:7A:22:BE:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.82.0/24 Signature Algorithm: sha256WithRSAEncryption 41:8a:5f:a1:75:5a:b7:04:7c:07:f4:c4:53:d1:f0:c8:7c:57: c4:69:a0:fa:da:ba:c6:49:d7:61:23:ef:71:eb:6e:71:15:f8: d7:bc:21:f6:7d:37:15:e1:f7:49:a9:2a:73:71:57:1f:34:28: d0:7a:0b:6b:9e:b0:35:c6:86:d6:66:ed:54:87:05:ff:ef:77: f5:1e:55:5f:ae:0c:37:b8:95:d7:d6:ce:aa:e4:a3:0d:d6:c0: 99:1b:79:1d:44:2a:99:02:5b:72:31:87:06:97:36:34:9b:4e: a5:1c:14:27:9b:4a:2a:3b:93:ec:50:84:af:a3:c5:15:d8:15: ae:8e:06:9f:29:d0:ba:f1:18:9a:33:e4:0a:83:5f:59:21:c9: 84:b4:e4:a9:b9:62:18:90:f3:89:df:2a:ee:77:a5:1f:0b:21: 86:57:3c:05:5b:dd:cd:ae:22:87:6d:87:00:b0:81:9d:0e:90: 36:8e:cd:28:11:5f:92:ef:e9:b1:58:15:6f:3d:cc:57:99:4d: e1:5a:19:6b:5b:5b:4b:5c:81:6e:d1:d9:12:e6:02:6b:bc:41: 9e:ae:f7:d8:2d:89:a5:24:0e:db:b4:f0:f8:e6:a3:6a:f9:d0: cf:57:a2:e6:b4:97:a1:df:5e:e9:9c:66:64:a5:84:66:6d:ca: e7:49:4f:69 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcCd80ttkZlajpJ2m7nktt1XkJywwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMDA2WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YTlhOWE1NjUxZWVjZTkxMTQ1NDM4MTg0ZTAwMjY5MGVj NzI4ODQyNTE1NmFlNGIzODI2YWIyOThhZjljNjBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6U6YdBDxb4WeDOxrExqcyLLrzFlBJdtbqrW7B1dElT9o9 xONyuP6lKPQB4Q3NC6B9z+Agpaqj1YmwlfIlKAV2BmUIpy67+KgnWknFu0DorQCb ovyNgwro6ijXeJPkPIfRG5RhYMDrVP989kO1QGxVwQ8Pr4PGbK6m1VLoDx1ExcHI nqBxn4wzCEEfuqi3mObeHyDtaOOW0NVWeQ3ug+BNHTHmqUp3VyeoHTNmNz8WzYZs w9HNrIOyuA/NkqkwsHFt9O8VDwGeyqq5AieVGzm7eSsf7WUDZVeIU5x7YbTm0mGO 6m57LufPrI5D6W1FPwc/9QZkf6HpPlsFkFEjJDMbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtcCrgn5xdxOiCmibK9NK4noivnAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjZjI3NWFlLTc5MzUtNGYwYS1iNGUxLTliMGJkMDUzMmFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAosFIwDQYJKoZIhvcNAQELBQADggEBAEGKX6F1WrcEfAf0xFPR8Mh8V8Rp oPrausZJ12Ej73HrbnEV+Ne8IfZ9NxXh90mpKnNxVx80KNB6C2uesDXGhtZm7VSH Bf/vd/UeVV+uDDe4ldfWzqrkow3WwJkbeR1EKpkCW3IxhwaXNjSbTqUcFCebSio7 k+xQhK+jxRXYFa6OBp8p0LrxGJoz5AqDX1khyYS05Km5YhiQ84nfKu53pR8LIYZX PAVb3c2uIodthwCwgZ0OkDaOzSgRX5Lv6bFYFW89zFeZTeFaGWtbW0tcgW7R2RLm Amu8QZ6u99gtiaUkDtu08Pjmo2r50M9Xoua0l6HfXumcZmSlhGZtyudJT2k= -----END CERTIFICATE-----Generated at Wed Jun 17 10:09:40 2026 by rpki-client