$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd040691-6f04-4613-a81f-f5417500cc0b.roa File: cd040691-6f04-4613-a81f-f5417500cc0b.roa (raw, json) Hash identifier: kS6+8dda2hsx/7c8Nf9N4KeVE10wM0C+NBloghBwS78= Subject key identifier: DF:C2:7A:B7:19:5F:60:FC:B1:11:F1:CB:61:96:2E:FB:CE:7C:D7:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09523D402CBABABFD908E03D1316B93FBCA69C3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd040691-6f04-4613-a81f-f5417500cc0b.roa Signing time: Sat 16 May 2026 02:00:03 +0000 ROA not before: Sat 16 May 2026 02:00:03 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.128.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:52:3d:40:2c:ba:ba:bf:d9:08:e0:3d:13:16:b9:3f:bc:a6:9c:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 02:00:03 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=48cd944d562b9f5de847a6defce1445045f7ef1fc9672b2ef7f601b9c06bc0e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:0e:67:8d:9d:4b:0e:29:2e:d5:d3:1b:3d:31: ce:e7:d0:29:2e:4e:28:c3:01:05:34:f4:d0:2e:e5: 74:46:36:e4:93:b7:ec:c2:c0:4a:9f:12:f0:18:f1: 71:f4:57:9d:76:ca:09:b7:0c:78:b0:c6:1a:f0:dc: 00:06:3c:c7:0c:1d:d7:a4:a0:e5:d3:c9:f1:ac:d3: 4f:34:32:46:d9:d8:55:df:c9:6a:73:0e:0d:2e:d8: b7:e4:34:3d:ee:2c:3e:bb:8d:f7:ce:f5:9f:f6:df: 33:73:2b:ad:19:b6:aa:b0:24:04:5d:56:5d:7c:83: cd:bb:35:1c:ac:0b:dd:4c:2b:19:3d:43:bc:21:32: 4f:2e:cb:f4:af:65:fc:67:f4:51:6b:f3:56:6b:2e: bf:54:98:5e:84:c1:d7:18:97:19:ca:30:d2:3b:7f: 52:cc:97:03:2b:9d:22:03:fe:de:25:70:de:40:ad: aa:d0:46:7b:56:c9:e7:fd:0d:72:87:d9:a0:22:2f: c3:b2:eb:d3:e6:6f:ed:c8:b4:e6:44:5d:a3:f8:3d: bd:73:be:93:29:52:a4:83:ad:62:b5:f5:8b:6a:d2: d6:21:19:dc:60:61:df:3d:6e:25:83:b7:4f:11:08: 6b:88:ef:8c:66:ea:26:39:a9:0e:d9:d4:81:7b:05: 12:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:C2:7A:B7:19:5F:60:FC:B1:11:F1:CB:61:96:2E:FB:CE:7C:D7:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cd040691-6f04-4613-a81f-f5417500cc0b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.128.0.0/16 Signature Algorithm: sha256WithRSAEncryption b4:76:2d:e0:dd:d4:9c:d6:14:18:5a:d4:16:10:b2:d4:3a:e7: d4:95:c4:aa:41:81:89:c6:9d:d1:28:cb:83:5f:3e:be:c0:84: e6:a9:80:cf:f0:df:fb:14:27:a6:44:fe:38:02:47:0a:3c:6f: 89:ac:58:63:46:62:d1:d9:bb:33:c0:80:68:0c:1d:5f:f2:a3: 16:05:69:cf:e3:f4:d4:31:5b:e8:a6:6d:bc:9f:17:61:eb:16: 57:26:80:52:45:3b:97:9c:2f:3d:83:9a:91:14:37:9f:64:b6: 5f:d4:45:42:65:8f:30:bf:9a:df:c3:31:e6:92:15:65:e2:bf: f2:8d:51:54:7f:bb:64:03:d7:e3:d0:35:f0:fd:6f:fe:36:f5: c3:8f:32:c0:e9:19:07:6b:d9:25:0b:ad:41:07:75:c2:77:66: be:43:26:ef:05:99:ba:85:ab:97:28:5d:c3:86:5a:2c:db:8b: 75:98:30:44:fb:4d:18:ec:b2:d5:61:e2:04:ab:a8:68:8b:fb: 76:b5:34:fe:56:e2:cd:73:94:e1:f6:5f:85:26:f3:82:c0:e3: 43:d4:65:24:7d:f9:9b:00:98:c4:b0:f5:47:68:77:42:5e:7e: 63:6c:db:a7:f5:73:17:81:c4:0c:b9:7c:5b:ae:fe:9c:43:06: 04:80:26:0a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCVI9QCy6ur/ZCOA9Exa5P7ymnD8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDIwMDAzWhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0OGNkOTQ0ZDU2MmI5ZjVkZTg0N2E2ZGVmY2UxNDQ1MDQ1 ZjdlZjFmYzk2NzJiMmVmN2Y2MDFiOWMwNmJjMGU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnDmeNnUsOKS7V0xs9Mc7n0CkuTijDAQU09NAu5XRGNuST t+zCwEqfEvAY8XH0V512ygm3DHiwxhrw3AAGPMcMHdekoOXTyfGs0080MkbZ2FXf yWpzDg0u2LfkND3uLD67jffO9Z/23zNzK60ZtqqwJARdVl18g827NRysC91MKxk9 Q7whMk8uy/SvZfxn9FFr81ZrLr9UmF6EwdcYlxnKMNI7f1LMlwMrnSID/t4lcN5A rarQRntWyef9DXKH2aAiL8Oy69Pmb+3ItOZEXaP4Pb1zvpMpUqSDrWK19Ytq0tYh GdxgYd89biWDt08RCGuI74xm6iY5qQ7Z1IF7BRIdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU38J6txlfYPyxEfHLYZYu+8581yowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkMDQwNjkxLTZmMDQtNDYxMy1hODFmLWY1NDE3NTAwY2MwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4gDANBgkqhkiG9w0BAQsFAAOCAQEAtHYt4N3UnNYUGFrUFhCy1Drn1JXE qkGBicad0SjLg18+vsCE5qmAz/Df+xQnpkT+OAJHCjxviaxYY0Zi0dm7M8CAaAwd X/KjFgVpz+P01DFb6KZtvJ8XYesWVyaAUkU7l5wvPYOakRQ3n2S2X9RFQmWPML+a 38Mx5pIVZeK/8o1RVH+7ZAPX49A18P1v/jb1w48ywOkZB2vZJQutQQd1wndmvkMm 7wWZuoWrlyhdw4ZaLNuLdZgwRPtNGOyy1WHiBKuoaIv7drU0/lbizXOU4fZfhSbz gsDjQ9RlJH35mwCYxLD1R2h3Ql5+Y2zbp/VzF4HEDLl8W67+nEMGBIAmCg== -----END CERTIFICATE-----Generated at Sat Jun 13 14:43:05 2026 by rpki-client