$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa File: dc633947-b61c-41cb-9d60-602b871ef0ec.roa (raw, json) Hash identifier: 4bK9yLCX6qREbIuBH1076roIYgSRt9vuTOMljQCj3f8= Subject key identifier: 09:8C:8A:C0:CC:66:25:42:39:50:0F:9C:B2:79:F4:0C:33:46:3E:A1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 081D9965695A53E51F60A5E15FDC1226307220AB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa Signing time: Sun 17 May 2026 00:40:06 +0000 ROA not before: Sun 17 May 2026 00:40:06 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.2.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:1d:99:65:69:5a:53:e5:1f:60:a5:e1:5f:dc:12:26:30:72:20:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:40:06 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=44ece6e1d918616b48871820ba9c84b4582408a8c0814bb6bec26e719df27dea, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:4d:98:44:bc:0b:fe:1d:8c:8e:f2:04:a7:30: e1:1b:d4:9d:8b:f2:df:3a:05:4c:70:77:82:4b:42: 7d:0b:0b:b9:7a:b3:ae:f5:c4:7a:ed:86:30:02:a7: 3a:32:aa:ce:ea:b6:5a:52:0d:7a:ad:c2:68:a3:4a: c0:bc:e2:eb:65:cb:4b:9f:66:4a:62:dd:ac:6e:e4: d6:5a:06:c9:02:9b:42:09:2e:66:aa:95:5f:c8:c7: c3:12:79:1f:68:bf:c4:68:75:95:6c:ec:05:86:66: 79:df:41:0f:e6:94:90:48:05:a6:48:0a:18:b2:d5: fd:a5:1a:8c:2f:c8:97:ff:3b:cb:bd:c0:f2:4c:0a: 82:fc:9f:67:82:a8:b3:c6:c7:55:70:28:39:24:64: 57:3e:44:ab:63:75:31:cc:6e:e4:7c:5a:ee:68:40: 5e:89:fc:00:68:fa:2d:b8:46:47:2d:3a:95:6b:7e: 49:a1:6c:ad:ad:1e:97:42:e3:1b:70:36:d9:99:c3: 03:49:e7:b0:c0:eb:1b:98:42:ed:9a:e3:92:ce:bf: 2d:a0:1b:a4:a4:fc:3e:6a:2c:83:39:ed:4e:d7:5b: c3:38:a1:05:ee:a2:ea:d6:3c:1f:81:1c:05:d9:d3: ce:63:0e:9f:e4:77:e9:b8:af:c8:df:74:70:f4:60: e4:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:8C:8A:C0:CC:66:25:42:39:50:0F:9C:B2:79:F4:0C:33:46:3E:A1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.2.16.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:7e:d7:d0:55:c3:ac:88:28:f8:90:a9:9c:dd:60:fd:46:58: 4b:b5:08:70:7e:4d:6e:d9:74:bd:49:fe:fe:04:43:8c:29:7d: 2e:36:63:ea:2c:7a:f6:c5:3e:82:2a:b4:be:a2:3d:96:4a:16: 9c:e6:05:51:32:96:42:2c:f9:ac:3a:1d:bf:8e:13:df:19:1a: 7d:eb:57:83:98:0b:d1:b3:c5:1b:73:e2:67:b7:cd:7b:f7:89: 78:c4:17:69:e3:1b:4d:5d:e7:7e:cf:d2:09:e8:75:e9:7d:54: 97:1c:9e:88:e6:c9:39:12:6c:50:1a:43:72:d0:4c:a9:87:2b: de:de:c1:6d:4b:ae:bf:3f:84:9a:30:82:db:9b:9a:f3:93:19: 7d:73:c5:59:cd:41:40:78:78:8b:1b:18:18:89:5d:c4:f8:9f: c3:d2:d4:f9:bd:47:93:65:34:bb:ce:0a:f0:77:ba:8c:ec:15: 84:6b:4e:6a:5b:89:40:21:c0:00:89:2c:f7:17:6f:c8:17:1e: 87:18:3a:5d:5c:e1:b9:08:1c:bf:bb:50:97:91:8d:5c:93:c9: 9f:54:06:6a:bf:9b:d0:33:90:7d:74:09:30:cc:2c:d0:03:b9: a9:c2:5f:8d:d3:46:28:a6:da:ea:f7:97:41:d3:2b:4c:b9:f9: 02:d4:1b:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCB2ZZWlaU+UfYKXhX9wSJjByIKswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA0MDA2WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGVjZTZlMWQ5MTg2MTZiNDg4NzE4MjBiYTljODRiNDU4 MjQwOGE4YzA4MTRiYjZiZWMyNmU3MTlkZjI3ZGVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNTZhEvAv+HYyO8gSnMOEb1J2L8t86BUxwd4JLQn0LC7l6 s671xHrthjACpzoyqs7qtlpSDXqtwmijSsC84utly0ufZkpi3axu5NZaBskCm0IJ LmaqlV/Ix8MSeR9ov8RodZVs7AWGZnnfQQ/mlJBIBaZIChiy1f2lGowvyJf/O8u9 wPJMCoL8n2eCqLPGx1VwKDkkZFc+RKtjdTHMbuR8Wu5oQF6J/ABo+i24RkctOpVr fkmhbK2tHpdC4xtwNtmZwwNJ57DA6xuYQu2a45LOvy2gG6Sk/D5qLIM57U7XW8M4 oQXuourWPB+BHAXZ085jDp/kd+m4r8jfdHD0YOShAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCYyKwMxmJUI5UA+csnn0DDNGPqEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjNjMzOTQ3LWI2MWMtNDFjYi05ZDYwLTYwMmI4NzFlZjBlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFBAhAwDQYJKoZIhvcNAQELBQADggEBAE5+19BVw6yIKPiQqZzdYP1GWEu1 CHB+TW7ZdL1J/v4EQ4wpfS42Y+osevbFPoIqtL6iPZZKFpzmBVEylkIs+aw6Hb+O E98ZGn3rV4OYC9GzxRtz4me3zXv3iXjEF2njG01d537P0gnodel9VJccnojmyTkS bFAaQ3LQTKmHK97ewW1Lrr8/hJowgtubmvOTGX1zxVnNQUB4eIsbGBiJXcT4n8PS 1Pm9R5NlNLvOCvB3uozsFYRrTmpbiUAhwACJLPcXb8gXHocYOl1c4bkIHL+7UJeR jVyTyZ9UBmq/m9AzkH10CTDMLNADuanCX43TRiim2ur3l0HTK0y5+QLUG5k= -----END CERTIFICATE-----Generated at Sat Jun 13 07:09:36 2026 by rpki-client