$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa File: dfeccc68-b535-451a-9cc7-983817c87adf.roa (raw, json) Hash identifier: IBK4aw0btwgjV6R2b7FJ/7TaozKilYycvLHAkHRC6Xw= Subject key identifier: B6:85:27:C4:B1:6D:9C:DC:40:99:27:9C:B4:0E:D9:C0:79:E1:1C:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F6EC8BE50F75B072E59CC9B3113209E01AF535C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa Signing time: Sat 16 May 2026 01:20:29 +0000 ROA not before: Sat 16 May 2026 01:20:29 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.174.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:6e:c8:be:50:f7:5b:07:2e:59:cc:9b:31:13:20:9e:01:af:53:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 01:20:29 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=d44dbcdaaa2556eedc587657de490bb06078c117f8e585d487e66425cc921a46, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:39:f6:87:37:9f:6b:cb:cf:8e:91:3e:ab:4e: 0c:73:04:39:16:b5:94:bd:8a:5f:1b:4f:eb:a6:21: 14:b4:23:a0:a5:c2:eb:43:b3:e6:07:38:03:72:73: d0:02:6a:c4:73:ba:3c:fc:be:13:b9:e2:43:67:91: 14:92:71:0b:6e:96:33:10:75:d4:4a:0c:43:1c:c5: 86:02:63:63:62:b5:ca:e8:ec:81:2d:73:bd:87:3f: de:33:3c:a0:f6:40:5c:ec:b1:0b:a3:59:d4:da:ca: 50:a2:45:3e:a2:46:a5:c9:d4:3d:f8:e0:4b:62:91: 3d:f7:9d:29:45:97:76:34:5d:62:79:52:73:c9:e0: cc:44:17:a2:49:38:cf:35:06:7f:71:2e:9f:4c:61: 8e:ef:90:25:b9:2d:08:49:d3:54:96:04:ff:f7:27: 18:f8:28:86:a1:27:24:1c:e0:ca:68:16:c0:7b:e7: 5b:b5:ed:47:d4:a6:ee:a0:b1:cd:7f:67:34:b4:5f: af:84:7c:1e:6b:b1:a9:3c:b5:4d:c1:b4:69:ec:2a: 34:7f:08:34:e0:0b:54:98:31:f1:39:56:ca:8e:1d: 1e:db:26:76:be:2c:3f:18:03:74:d0:63:55:a3:50: 50:7d:03:15:47:81:b7:a7:f1:1c:72:67:21:40:9b: 29:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:85:27:C4:B1:6D:9C:DC:40:99:27:9C:B4:0E:D9:C0:79:E1:1C:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.174.0.0/15 Signature Algorithm: sha256WithRSAEncryption 10:d1:e5:8c:a3:6a:f6:df:4a:31:a8:ca:59:c7:9b:a3:3c:98: 3b:de:4e:66:b9:d2:75:5b:df:62:80:83:62:4a:cf:cc:57:02: 93:75:bb:88:aa:58:34:3d:f4:f8:e0:25:27:a9:68:48:75:98: 1f:bd:3a:a6:71:9b:53:bd:8e:70:6c:72:35:3d:3d:07:3f:c2: 11:64:df:58:4a:5f:1c:0c:41:9e:a6:c7:dc:53:47:32:57:ac: 5c:9c:5a:5d:e9:74:aa:03:3f:1a:0f:de:57:c3:4c:95:32:2f: 74:b7:44:70:cc:5c:7b:9c:65:76:83:b2:3a:73:dd:66:45:0d: b6:bf:82:a6:01:f4:c8:f7:17:68:2e:67:47:ee:10:17:d3:8f: 2c:ef:59:e3:bf:bc:cc:85:b0:a8:35:ba:fd:12:19:8d:cb:7f: 26:8b:e4:13:02:92:c8:d5:54:36:6e:84:2e:ce:b9:b3:df:91: 5c:4e:e0:30:6f:ff:d8:10:f1:03:4b:b5:f9:3a:62:72:20:52: 3b:45:67:d3:1d:3d:5c:a8:a6:bc:86:2b:04:16:f6:34:6e:f9: db:66:18:b5:f6:c5:14:fc:9f:79:3b:58:d7:d0:ba:a7:43:05: 6e:cf:f3:3e:ee:e4:63:f2:cd:ae:04:53:e2:1d:1b:77:17:ba: 83:aa:82:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUD27IvlD3WwcuWcybMRMgngGvU1wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDEyMDI5WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNDRkYmNkYWFhMjU1NmVlZGM1ODc2NTdkZTQ5MGJiMDYw NzhjMTE3ZjhlNTg1ZDQ4N2U2NjQyNWNjOTIxYTQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDaOfaHN59ry8+OkT6rTgxzBDkWtZS9il8bT+umIRS0I6Cl wutDs+YHOANyc9ACasRzujz8vhO54kNnkRSScQtuljMQddRKDEMcxYYCY2Nitcro 7IEtc72HP94zPKD2QFzssQujWdTaylCiRT6iRqXJ1D344EtikT33nSlFl3Y0XWJ5 UnPJ4MxEF6JJOM81Bn9xLp9MYY7vkCW5LQhJ01SWBP/3Jxj4KIahJyQc4MpoFsB7 51u17UfUpu6gsc1/ZzS0X6+EfB5rsak8tU3BtGnsKjR/CDTgC1SYMfE5VsqOHR7b Jna+LD8YA3TQY1WjUFB9AxVHgben8RxyZyFAmykPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtoUnxLFtnNxAmSectA7ZwHnhHL4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZWNjYzY4LWI1MzUtNDUxYS05Y2M3LTk4MzgxN2M4N2FkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEorjANBgkqhkiG9w0BAQsFAAOCAQEAENHljKNq9t9KMajKWcebozyYO95O ZrnSdVvfYoCDYkrPzFcCk3W7iKpYND30+OAlJ6loSHWYH706pnGbU72OcGxyNT09 Bz/CEWTfWEpfHAxBnqbH3FNHMlesXJxaXel0qgM/Gg/eV8NMlTIvdLdEcMxce5xl doOyOnPdZkUNtr+CpgH0yPcXaC5nR+4QF9OPLO9Z47+8zIWwqDW6/RIZjct/Jovk EwKSyNVUNm6ELs65s9+RXE7gMG//2BDxA0u1+TpiciBSO0Vn0x09XKimvIYrBBb2 NG7522YYtfbFFPyfeTtY19C6p0MFbs/zPu7kY/LNrgRT4h0bdxe6g6qCmg== -----END CERTIFICATE-----Generated at Sat Jun 13 05:48:52 2026 by rpki-client