$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa File: f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa (raw, json) Hash identifier: W9c6m9Dl0WT3D7xXTE7aSEleWntNBnjwliEBNr/n3L8= Subject key identifier: E9:E9:A2:D1:38:C5:FC:DA:BD:43:84:55:F4:42:DC:DF:CB:6A:26:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E3A7D346E22AF3613D714044B21F385BF163D41 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa Signing time: Sun 17 May 2026 00:10:12 +0000 ROA not before: Sun 17 May 2026 00:10:12 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.36.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:3a:7d:34:6e:22:af:36:13:d7:14:04:4b:21:f3:85:bf:16:3d:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:10:12 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=e52629713520ddd54e82096e4a71fc398334a899a0fa35963899ce4dfa6d5c3a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:71:f9:1d:4d:ee:93:c3:4e:70:0d:61:26:36: 63:f7:76:5a:3c:e4:a4:f0:05:e3:04:75:cc:e7:8c: 8c:91:d4:b0:fc:99:bd:d5:46:3a:31:17:a5:03:cb: 18:d7:7f:74:44:56:63:fa:fa:44:a3:24:7d:39:7a: da:fe:b3:52:ec:61:8d:d8:db:fc:8b:f4:64:7e:53: 16:8a:33:c8:3c:b1:7e:2e:9c:95:c9:a7:af:81:4c: e2:80:54:57:86:54:b3:e3:8f:c6:bc:1f:81:41:81: 32:cc:51:c1:9d:0b:28:87:6e:68:1d:2f:db:b7:a2: 4a:b3:f2:22:5d:3b:7f:ec:21:74:6a:ce:d9:5a:67: 67:13:a7:00:2e:73:45:a5:22:f4:78:ae:64:56:d0: 35:67:61:7b:eb:22:a6:79:db:22:73:3e:54:7f:aa: 26:dd:58:1c:3b:8c:2f:62:d6:6f:0b:c8:ac:e6:0d: 09:b7:5c:09:0c:28:e3:c1:22:b0:35:16:86:6c:d8: 5a:d1:06:7f:d7:0f:b6:99:4c:4d:0a:48:54:5d:02: e7:d1:25:69:7f:6e:72:90:9c:ca:c3:05:cb:3c:ec: c6:d5:6d:61:ea:9f:cc:3c:1d:5b:be:78:05:d2:31: 3b:52:12:fd:f6:d5:e1:73:56:38:bf:eb:a6:3e:62: 0b:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:E9:A2:D1:38:C5:FC:DA:BD:43:84:55:F4:42:DC:DF:CB:6A:26:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a6e2e2-64ef-45e6-b6a8-9a5830ee2ade.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.36.0.0/16 Signature Algorithm: sha256WithRSAEncryption 10:33:20:ba:2a:56:3a:90:3e:fd:2e:8b:6b:d3:9f:1f:de:6b: 91:1f:e0:f2:e8:d9:38:c1:d6:4f:4e:4c:52:5b:7d:72:64:06: 59:5b:32:fd:4c:06:43:1b:dc:3f:88:b8:1a:2d:06:98:2a:e9: 4e:13:e8:34:31:83:89:9c:1e:24:0b:05:6e:39:a4:95:58:02: 8a:7e:1a:ca:e9:d4:5e:5a:5b:b9:16:7e:8b:41:33:33:f3:00: f8:1c:16:d0:4d:6f:35:8c:a7:63:1c:c6:ad:6f:ce:59:c0:aa: c1:83:89:a7:c1:68:ac:a0:73:3e:e3:f1:67:9e:c6:75:b6:46: c0:46:3f:c1:05:d1:d0:8c:63:e5:05:09:86:0d:06:68:72:15: ba:44:34:c5:ec:3f:a2:7d:36:a7:a8:a0:19:53:50:43:5a:ef: 6b:66:f9:4c:94:ac:0d:59:01:9d:f6:b7:98:b8:58:03:71:32: 51:4d:5d:b3:75:b8:35:55:e2:dc:ae:47:6a:bf:f7:ad:d5:1f: b4:c9:1c:6e:67:4b:e6:46:33:2a:9b:56:e6:6d:24:5a:c9:8c: 5d:23:e0:1a:3b:25:68:f1:83:7c:29:b5:1a:05:ac:ad:d6:ee: 1d:83:de:a5:32:35:05:66:44:97:34:2c:4c:3c:51:4c:c1:57: 70:56:49:01 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDjp9NG4irzYT1xQESyHzhb8WPUEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAxMDEyWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTI2Mjk3MTM1MjBkZGQ1NGU4MjA5NmU0YTcxZmMzOTgz MzRhODk5YTBmYTM1OTYzODk5Y2U0ZGZhNmQ1YzNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUcfkdTe6Tw05wDWEmNmP3dlo85KTwBeMEdcznjIyR1LD8 mb3VRjoxF6UDyxjXf3REVmP6+kSjJH05etr+s1LsYY3Y2/yL9GR+UxaKM8g8sX4u nJXJp6+BTOKAVFeGVLPjj8a8H4FBgTLMUcGdCyiHbmgdL9u3okqz8iJdO3/sIXRq ztlaZ2cTpwAuc0WlIvR4rmRW0DVnYXvrIqZ52yJzPlR/qibdWBw7jC9i1m8LyKzm DQm3XAkMKOPBIrA1FoZs2FrRBn/XD7aZTE0KSFRdAufRJWl/bnKQnMrDBcs87MbV bWHqn8w8HVu+eAXSMTtSEv321eFzVji/66Y+Ygt/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6emi0TjF/Nq9Q4RV9ELc38tqJiIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwYTZlMmUyLTY0ZWYtNDVlNi1iNmE4LTlhNTgzMGVlMmFkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjJDANBgkqhkiG9w0BAQsFAAOCAQEAEDMguipWOpA+/S6La9OfH95rkR/g 8ujZOMHWT05MUlt9cmQGWVsy/UwGQxvcP4i4Gi0GmCrpThPoNDGDiZweJAsFbjmk lVgCin4ayunUXlpbuRZ+i0EzM/MA+BwW0E1vNYynYxzGrW/OWcCqwYOJp8ForKBz PuPxZ57GdbZGwEY/wQXR0Ixj5QUJhg0GaHIVukQ0xew/on02p6igGVNQQ1rva2b5 TJSsDVkBnfa3mLhYA3EyUU1ds3W4NVXi3K5Har/3rdUftMkcbmdL5kYzKptW5m0k WsmMXSPgGjslaPGDfCm1GgWsrdbuHYPepTI1BWZElzQsTDxRTMFXcFZJAQ== -----END CERTIFICATE-----Generated at Sat Jun 13 05:45:47 2026 by rpki-client