$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa File: d5a67cf4-10e5-4819-91b3-5293d070d97e.roa (raw, json) Hash identifier: 3X582YgXdBmjQE9pjVXUtbsKvjXWgGA7lzUCLEeyzzI= Subject key identifier: 26:44:D3:2A:FC:5E:10:C6:38:EB:F3:94:F5:F8:6A:B5:C9:3A:9B:43 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36E6277987D9EEFAAB120BA0759B04988AC406FE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa Signing time: Wed 20 May 2026 00:30:14 +0000 ROA not before: Wed 20 May 2026 00:30:14 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:e6:27:79:87:d9:ee:fa:ab:12:0b:a0:75:9b:04:98:8a:c4:06:fe Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:30:14 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=36bde091ad864b32cc146e1540195693e41f7f307cccb03a3ef7aba12324fe4a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:26:9c:ea:69:bf:4c:d9:36:06:6e:07:b8:81: fb:f7:63:8e:32:ed:e9:07:3d:6e:20:02:d1:9c:56: 63:70:29:3e:5a:7f:c7:02:57:e1:fc:4a:1e:e5:4a: 63:ab:77:c4:61:b2:92:af:a5:20:1b:85:27:49:b1: 49:fc:69:8d:2a:2b:ac:aa:fb:c2:b7:11:c6:5a:94: cf:c6:52:dc:f8:23:44:50:d4:83:d9:98:b7:d9:a1: 10:d6:ce:f4:9f:e1:52:fc:0b:d7:f2:66:2d:89:c0: 3d:de:3f:67:97:36:4f:48:5d:fe:02:b4:96:2a:30: 65:c2:5d:8e:0a:f0:20:cc:11:c5:c2:9f:70:3e:56: e1:7b:53:14:b0:d1:c2:dd:ad:b9:4a:6a:6d:84:9a: 51:43:00:2d:8a:02:7a:ca:4d:96:fa:4c:e9:47:2e: 01:f1:f0:c0:be:2f:82:c4:6d:7b:7d:d1:ff:c1:c5: 25:7b:b0:a3:ee:3f:20:eb:c8:54:cc:c4:5f:7d:53: ca:72:fb:63:80:ee:bc:26:b4:9a:ed:6e:c1:40:3a: de:de:6a:dc:7f:9d:b8:2c:b7:d7:ef:bf:90:d8:66: 5e:8a:64:b2:94:fe:92:fa:75:81:e9:67:4f:27:5c: 5b:8d:da:2d:2c:7a:c5:7d:5e:2c:51:fb:13:b1:e1: b8:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:44:D3:2A:FC:5E:10:C6:38:EB:F3:94:F5:F8:6A:B5:C9:3A:9B:43 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d5a67cf4-10e5-4819-91b3-5293d070d97e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.128.0/17 Signature Algorithm: sha256WithRSAEncryption 55:49:2a:4b:7e:0a:4a:9e:a6:43:61:08:9e:c5:68:d3:10:fc: d0:95:cb:3e:14:2a:3b:18:2b:9b:ae:27:34:0f:16:8b:ff:6a: 6b:f3:de:40:b5:51:65:f5:b3:af:52:64:43:f6:b9:40:1d:c2: 6b:27:e0:2b:e3:b6:fc:23:30:78:21:11:72:98:06:13:d0:6c: f4:cf:24:99:94:4f:0b:cc:ba:01:16:5a:8e:00:90:70:33:e2: b6:97:bf:16:40:49:8f:b0:ca:11:48:50:5a:fd:99:65:ca:3b: 3e:c9:34:fc:01:59:50:30:6b:48:16:4d:59:28:c0:ea:b1:ca: 7b:80:99:25:89:bc:cb:b3:32:81:c9:43:16:74:88:1a:c8:2b: f1:de:dd:30:74:07:01:3e:a2:8f:6e:31:f8:8b:e0:ed:1c:ce: 8b:2a:52:17:53:89:97:9a:52:ed:9b:9e:64:f5:6d:96:0b:a6: 64:ad:53:a0:43:ec:d4:67:cb:9f:b0:18:49:84:69:bb:b8:4b: 99:4e:61:6f:ab:15:dc:78:f0:c9:ae:6c:a0:a7:10:cc:0a:e1: 7b:e6:9e:1b:fc:97:7f:c4:1a:88:9c:bd:1a:55:92:a5:93:5d: 74:b2:09:36:9c:ea:a8:5b:7a:dc:32:71:e5:26:fb:2c:4e:2f: 14:83:c2:1e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNuYneYfZ7vqrEgugdZsEmIrEBv4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAzMDE0WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNmJkZTA5MWFkODY0YjMyY2MxNDZlMTU0MDE5NTY5M2U0 MWY3ZjMwN2NjY2IwM2EzZWY3YWJhMTIzMjRmZTRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVJpzqab9M2TYGbge4gfv3Y44y7ekHPW4gAtGcVmNwKT5a f8cCV+H8Sh7lSmOrd8RhspKvpSAbhSdJsUn8aY0qK6yq+8K3EcZalM/GUtz4I0RQ 1IPZmLfZoRDWzvSf4VL8C9fyZi2JwD3eP2eXNk9IXf4CtJYqMGXCXY4K8CDMEcXC n3A+VuF7UxSw0cLdrblKam2EmlFDAC2KAnrKTZb6TOlHLgHx8MC+L4LEbXt90f/B xSV7sKPuPyDryFTMxF99U8py+2OA7rwmtJrtbsFAOt7eatx/nbgst9fvv5DYZl6K ZLKU/pL6dYHpZ08nXFuN2i0sesV9XixR+xOx4bghAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJkTTKvxeEMY46/OU9fhqtck6m0MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q1YTY3Y2Y0LTEwZTUtNDgxOS05MWIzLTUyOTNkMDcwZDk3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcjNoAwDQYJKoZIhvcNAQELBQADggEBAFVJKkt+CkqepkNhCJ7FaNMQ/NCV yz4UKjsYK5uuJzQPFov/amvz3kC1UWX1s69SZEP2uUAdwmsn4CvjtvwjMHghEXKY BhPQbPTPJJmUTwvMugEWWo4AkHAz4raXvxZASY+wyhFIUFr9mWXKOz7JNPwBWVAw a0gWTVkowOqxynuAmSWJvMuzMoHJQxZ0iBrIK/He3TB0BwE+oo9uMfiL4O0czosq UhdTiZeaUu2bnmT1bZYLpmStU6BD7NRny5+wGEmEabu4S5lOYW+rFdx48MmubKCn EMwK4Xvmnhv8l3/EGoicvRpVkqWTXXSyCTac6qhbetwyceUm+yxOLxSDwh4= -----END CERTIFICATE-----Generated at Sat Jun 13 08:17:49 2026 by rpki-client