$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef251cf4-ade4-418e-b4fb-7951801e00bc.roa File: ef251cf4-ade4-418e-b4fb-7951801e00bc.roa (raw, json) Hash identifier: ygEBFG/aMliPwzQDqZJ0uruzg3PYfwcjZFLDaxX1r/I= Subject key identifier: 07:F2:E3:F1:82:B5:25:F2:70:F6:B9:A8:22:F9:75:EA:9F:BF:BE:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BB87D9E50EF9D3014892E5E8CEAB94E2A35288B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef251cf4-ade4-418e-b4fb-7951801e00bc.roa Signing time: Fri 15 May 2026 00:51:07 +0000 ROA not before: Fri 15 May 2026 00:51:07 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.218.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:b8:7d:9e:50:ef:9d:30:14:89:2e:5e:8c:ea:b9:4e:2a:35:28:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:51:07 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=4de1d5260827e43efa2e05bcd16c3affff1051e9d8c33450d73430065a200536, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:78:83:90:16:70:46:dc:43:da:7c:9e:f4:5f: 0b:00:68:44:73:12:9d:7e:f6:7f:40:f8:8e:0a:af: c9:c5:7f:3e:a0:6e:ae:80:50:26:20:44:57:db:1f: 9f:e3:58:86:17:a5:bd:6d:d5:94:4b:e0:17:4d:82: aa:ac:4f:38:4d:f7:7d:2a:10:b2:5f:6a:d6:9b:88: 84:88:b4:6c:80:65:34:6f:3e:c8:2b:4e:8b:0a:0b: 4c:2e:60:10:2c:d4:93:de:13:50:a5:d7:0b:29:1d: ab:f1:e5:ef:c6:f5:e1:21:8d:dd:fa:60:2a:84:d4: c9:b3:66:4e:ce:14:ba:2e:9d:01:84:fd:3d:42:24: 86:80:48:3c:a1:97:10:83:0b:4c:b1:80:76:17:55: 30:82:a7:4c:a6:b0:bc:03:19:d3:88:77:61:4a:97: 3b:2c:1d:f9:cf:d1:5c:d7:6a:e9:8e:48:a1:f3:b0: 35:7b:53:7e:05:e5:c1:d0:13:24:92:c6:57:28:16: 90:58:bd:8d:61:dc:d7:70:49:0a:01:10:ed:1b:0f: b1:1f:fc:eb:de:0f:63:21:b8:31:7e:f9:c7:06:07: 97:ba:b0:22:9e:46:dd:a5:4f:f4:ed:ac:a5:c5:f0: 23:6e:34:91:1e:00:93:6d:65:00:7c:2b:f7:4d:c4: cd:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:F2:E3:F1:82:B5:25:F2:70:F6:B9:A8:22:F9:75:EA:9F:BF:BE:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ef251cf4-ade4-418e-b4fb-7951801e00bc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.218.0/23 Signature Algorithm: sha256WithRSAEncryption 21:b4:b0:ab:62:01:87:0a:7c:be:50:09:3b:97:29:b4:46:cd: 75:b0:1a:68:d8:fc:65:11:86:a9:72:1e:57:35:5d:24:10:e5: 38:25:ea:c4:db:85:9a:cd:d3:0a:14:99:ed:ed:e1:46:22:a4: c0:9c:37:38:a0:07:b6:c5:f5:f3:45:2e:ae:55:75:3b:fb:7d: ad:10:5a:1a:51:65:de:57:38:09:99:e3:e9:c9:07:4a:fc:bb: 84:22:5e:1f:44:42:8d:70:73:51:4a:63:94:4d:76:13:6f:75: 22:e0:1f:5a:67:a8:3b:dc:49:c0:e4:82:99:20:3b:2f:a7:5c: eb:e7:9b:83:ba:f0:a2:b8:f2:8e:83:97:bc:43:25:6e:70:b2: 35:43:c4:9a:ea:9a:49:d3:19:89:fe:13:2b:e1:5b:98:d8:66: 11:21:cf:b9:13:65:df:a5:3c:74:e8:f9:a6:51:ee:f5:58:d8: d0:b1:af:50:e8:b3:87:05:41:50:ee:fc:65:4d:5b:d8:b3:42: c1:7e:c9:e2:16:ad:ec:78:c9:f8:3c:61:a8:a8:d7:5b:30:f4: ff:2a:ec:2a:b3:71:99:6b:b5:c9:cf:1c:b6:ef:d7:61:4b:76: 71:f2:de:d4:30:6a:dc:ba:25:b4:7e:dc:67:94:a2:26:eb:a6: 57:0c:28:97 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK7h9nlDvnTAUiS5ejOq5Tio1KIswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDA1MTA3WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZGUxZDUyNjA4MjdlNDNlZmEyZTA1YmNkMTZjM2FmZmZm MTA1MWU5ZDhjMzM0NTBkNzM0MzAwNjVhMjAwNTM2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPeIOQFnBG3EPafJ70XwsAaERzEp1+9n9A+I4Kr8nFfz6g bq6AUCYgRFfbH5/jWIYXpb1t1ZRL4BdNgqqsTzhN930qELJfatabiISItGyAZTRv PsgrTosKC0wuYBAs1JPeE1Cl1wspHavx5e/G9eEhjd36YCqE1MmzZk7OFLounQGE /T1CJIaASDyhlxCDC0yxgHYXVTCCp0ymsLwDGdOId2FKlzssHfnP0VzXaumOSKHz sDV7U34F5cHQEySSxlcoFpBYvY1h3NdwSQoBEO0bD7Ef/OveD2MhuDF++ccGB5e6 sCKeRt2lT/TtrKXF8CNuNJEeAJNtZQB8K/dNxM3DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB/Lj8YK1JfJw9rmoIvl16p+/vvIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VmMjUxY2Y0LWFkZTQtNDE4ZS1iNGZiLTc5NTE4MDFlMDBiYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHM7NowDQYJKoZIhvcNAQELBQADggEBACG0sKtiAYcKfL5QCTuXKbRGzXWw GmjY/GURhqlyHlc1XSQQ5Tgl6sTbhZrN0woUme3t4UYipMCcNzigB7bF9fNFLq5V dTv7fa0QWhpRZd5XOAmZ4+nJB0r8u4QiXh9EQo1wc1FKY5RNdhNvdSLgH1pnqDvc ScDkgpkgOy+nXOvnm4O68KK48o6Dl7xDJW5wsjVDxJrqmknTGYn+EyvhW5jYZhEh z7kTZd+lPHTo+aZR7vVY2NCxr1Dos4cFQVDu/GVNW9izQsF+yeIWrex4yfg8Yaio 11sw9P8q7CqzcZlrtcnPHLbv12FLdnHy3tQwaty6JbR+3GeUoibrplcMKJc= -----END CERTIFICATE-----Generated at Sat Jun 13 07:06:10 2026 by rpki-client