$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa File: e968971f-95ed-4299-906a-f72c00ea6e69.roa (raw, json) Hash identifier: pjifCqghdNuSkv+tgs9K8j/UbW/Y/OZcJyaiwNKTkbg= Subject key identifier: 0C:35:53:08:CC:0A:A8:48:78:9C:BA:0A:E5:99:3E:E5:40:21:A5:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A5B2EC9CCB8B5256FB27F23C59A7A22EA6A9717 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa Signing time: Wed 20 May 2026 00:31:06 +0000 ROA not before: Wed 20 May 2026 00:31:06 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:5b:2e:c9:cc:b8:b5:25:6f:b2:7f:23:c5:9a:7a:22:ea:6a:97:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:31:06 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=1dbb2052a95acea2434dffb1b857a68b750a9a0d9cece97b1e1991cec4d6b769, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:cd:d4:83:ba:f7:f3:75:2c:eb:aa:ea:eb:8d: a4:f5:a0:9c:18:85:28:d3:08:69:0f:6e:b7:07:84: 5b:33:9a:ba:20:5c:aa:2e:36:76:11:63:8b:83:76: bd:de:4a:ed:c4:27:00:1e:61:d3:8d:83:e4:72:cd: af:8f:7b:04:96:7c:da:18:66:e0:1a:59:02:05:2f: 8d:05:85:aa:c4:e9:58:42:f5:b2:aa:87:fb:df:3c: 79:36:05:c4:f5:27:77:9b:ba:28:b3:e5:3e:ce:bc: 43:a7:fa:24:4d:29:e1:3b:79:5f:32:9e:da:80:f2: 9b:43:7a:31:6e:11:d3:8d:a2:c8:1f:97:42:20:7e: cf:da:12:b4:9f:16:f3:e8:99:1e:9e:69:14:02:bf: 1b:d5:81:41:a0:c1:b3:44:99:df:c7:14:a3:ae:80: 36:2d:f8:6a:d2:29:8b:b2:2d:c3:a4:22:ab:06:02: 28:ea:0e:6d:e9:25:f2:0d:a5:cf:9f:f1:cd:7f:66: 78:33:32:b7:8a:cd:a7:82:42:db:65:45:fd:06:b9: 7e:32:cd:29:20:e0:a3:a4:04:c8:59:f8:ef:90:ab: 8d:2f:eb:5b:af:ca:27:b0:d0:fc:02:d8:92:d3:49: 5d:8e:04:9c:8d:fe:dc:2c:5f:55:28:65:8b:b7:2f: e2:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:35:53:08:CC:0A:A8:48:78:9C:BA:0A:E5:99:3E:E5:40:21:A5:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.64.0/18 Signature Algorithm: sha256WithRSAEncryption 56:e4:d9:f6:88:7d:7e:72:70:ce:6b:b3:47:75:ab:21:c8:53: d4:58:48:68:e4:55:53:42:e7:bc:c6:e3:46:e4:dd:ac:be:4f: 89:6c:64:2c:2c:6d:96:c6:37:05:f6:44:e5:28:72:6f:0f:70: 85:c6:69:47:2b:3d:87:b3:ce:aa:ca:c2:bb:c3:5a:ff:be:c6: cc:82:c8:48:cb:96:31:a2:a1:5a:20:25:23:ec:a7:e4:5c:e0: 37:d4:1c:c3:e9:38:e6:2b:a2:62:cc:21:e7:23:7b:1d:dc:4e: 32:41:d6:6a:d2:fd:90:52:8e:32:55:e8:45:95:3c:dc:70:64: 1f:2c:71:72:32:dd:86:53:05:28:a9:6d:73:83:4b:97:77:5a: 3d:cb:5b:33:b0:39:ab:18:96:0d:39:16:b4:4c:bd:07:8a:99: df:07:cf:73:6b:1a:cd:64:52:cc:b5:df:e6:92:f3:13:6b:83: 91:e2:6a:0c:ee:0c:f9:1d:cc:43:81:54:5c:01:82:4b:32:0a: 49:65:b4:68:9d:05:dd:22:e8:d2:6f:3c:84:45:f6:48:14:24: b7:65:df:bc:8e:cb:c8:b8:b9:e9:43:0f:ce:3d:b6:43:a6:fc: 53:0b:2f:e6:2f:9d:bb:e9:7b:0a:48:76:22:e0:ec:b1:50:04: 6d:cc:93:81 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUelsuycy4tSVvsn8jxZp6IupqlxcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAzMTA2WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZGJiMjA1MmE5NWFjZWEyNDM0ZGZmYjFiODU3YTY4Yjc1 MGE5YTBkOWNlY2U5N2IxZTE5OTFjZWM0ZDZiNzY5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/zdSDuvfzdSzrqurrjaT1oJwYhSjTCGkPbrcHhFszmrog XKouNnYRY4uDdr3eSu3EJwAeYdONg+Ryza+PewSWfNoYZuAaWQIFL40FharE6VhC 9bKqh/vfPHk2BcT1J3ebuiiz5T7OvEOn+iRNKeE7eV8yntqA8ptDejFuEdONosgf l0Igfs/aErSfFvPomR6eaRQCvxvVgUGgwbNEmd/HFKOugDYt+GrSKYuyLcOkIqsG AijqDm3pJfINpc+f8c1/ZngzMreKzaeCQttlRf0GuX4yzSkg4KOkBMhZ+O+Qq40v 61uvyiew0PwC2JLTSV2OBJyN/twsX1UoZYu3L+IvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDDVTCMwKqEh4nLoK5Zk+5UAhpbQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5Njg5NzFmLTk1ZWQtNDI5OS05MDZhLWY3MmMwMGVhNmU2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5EAwDQYJKoZIhvcNAQELBQADggEBAFbk2faIfX5ycM5rs0d1qyHIU9RY SGjkVVNC57zG40bk3ay+T4lsZCwsbZbGNwX2ROUocm8PcIXGaUcrPYezzqrKwrvD Wv++xsyCyEjLljGioVogJSPsp+Rc4DfUHMPpOOYromLMIecjex3cTjJB1mrS/ZBS jjJV6EWVPNxwZB8scXIy3YZTBSipbXODS5d3Wj3LWzOwOasYlg05FrRMvQeKmd8H z3NrGs1kUsy13+aS8xNrg5HiagzuDPkdzEOBVFwBgksyCklltGidBd0i6NJvPIRF 9kgUJLdl37yOy8i4uelDD849tkOm/FMLL+YvnbvpewpIdiLg7LFQBG3Mk4E= -----END CERTIFICATE-----Generated at Sat Jun 13 13:48:33 2026 by rpki-client