$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa File: f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa (raw, json) Hash identifier: 8ljjrEvHXlWWv9CompQpfs2YQ6loig7K0E+Dba23W+c= Subject key identifier: 91:23:63:A0:80:66:8C:15:EA:4A:AD:E1:C7:16:DE:75:2E:1A:1D:F9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1148715339A9DEB4C66F06B8A2896C17495BEE50 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa Signing time: Wed 20 May 2026 00:21:57 +0000 ROA not before: Wed 20 May 2026 00:21:57 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.180.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:48:71:53:39:a9:de:b4:c6:6f:06:b8:a2:89:6c:17:49:5b:ee:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:21:57 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=5db6a7bf55d8fe77cd211c097a0ef36ce8045e8d74b743374aa45c6083211b81, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:e0:8c:77:1d:36:37:ab:c6:8f:17:2a:2a:ee: f0:b4:0c:bb:51:e5:02:c9:66:71:6c:89:d9:e5:7f: 83:cf:ad:8a:8f:76:db:59:4c:b4:3a:e2:d9:7f:b7: 54:96:81:73:fc:93:14:10:72:a3:fc:d9:07:34:0d: fb:2f:28:37:cd:26:fa:7a:e0:47:ce:0b:1e:a7:42: f7:ed:93:55:d2:1a:95:85:8e:ea:8e:be:0c:21:86: fb:d4:ec:20:38:e6:db:70:f3:de:9e:87:07:2e:1d: 75:a9:eb:f0:7c:8c:53:2a:16:ce:32:c0:53:95:46: b5:66:28:6d:17:e0:d9:c4:bf:a0:24:47:74:51:b2: 0c:3c:4e:61:4e:e0:cd:a6:1b:e3:ed:81:6e:fe:4e: 2a:22:1c:84:c4:73:b8:53:52:9f:b5:fa:de:fb:36: 8d:5b:cf:3b:60:c2:dd:59:1c:2b:30:e0:b8:4c:bf: f7:f2:2b:d5:a6:4a:d5:05:a8:87:1e:92:aa:18:01: 45:d0:47:70:d0:56:b1:8c:ec:6a:ec:45:c4:db:d6: ea:c8:5a:6e:e4:22:8a:9f:98:2b:b4:89:e9:3d:7f: 57:60:71:7c:7a:4a:31:b4:bc:cd:90:1c:94:31:00: 31:1d:14:4e:44:0f:40:b6:35:1d:8f:1b:b3:fe:7f: 01:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:23:63:A0:80:66:8C:15:EA:4A:AD:E1:C7:16:DE:75:2E:1A:1D:F9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 83:7f:fc:5e:4e:df:99:43:ed:aa:f3:51:fc:5f:ef:17:98:b6: 3e:be:90:1b:fd:72:e1:63:26:ed:40:ad:ef:e2:91:0e:a4:79: 8d:c2:cc:76:35:83:e3:29:fc:2b:12:b1:e8:00:a5:17:9e:f9: 16:3b:4e:9a:6d:a2:e5:92:1d:21:b1:c8:cc:b8:89:b3:d4:fb: ae:1e:e7:05:b4:5a:ca:a3:cd:80:25:b0:44:9e:fb:5c:1b:67: 10:75:bc:d1:51:b0:f1:9b:83:3e:07:52:50:04:18:21:86:d0: 51:9d:48:c3:11:f8:4d:e7:2c:df:30:b6:2d:ef:31:62:e8:c8: 9c:2e:0f:8b:a7:4d:25:d5:8c:04:61:f5:10:c2:3d:05:15:f2: 96:55:de:f1:2a:33:f8:c1:d7:62:b0:54:56:13:e9:b9:d5:85: b7:82:4b:9a:60:c4:5c:24:fb:b6:74:80:57:df:df:b0:07:78: b1:32:a2:1c:6e:44:08:ab:ca:ae:42:56:79:b9:3f:6c:e3:f7: c5:05:ab:58:94:29:49:ce:86:49:00:1e:03:b5:9a:e0:d2:89: 43:da:59:61:fd:29:ff:c0:69:16:22:98:87:83:96:88:a7:9a: 08:d5:28:e5:2e:c9:ce:a3:cd:1a:4a:4c:46:cc:c5:62:08:4c: ad:45:94:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEUhxUzmp3rTGbwa4oolsF0lb7lAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAyMTU3WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZGI2YTdiZjU1ZDhmZTc3Y2QyMTFjMDk3YTBlZjM2Y2U4 MDQ1ZThkNzRiNzQzMzc0YWE0NWM2MDgzMjExYjgxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCx4Ix3HTY3q8aPFyoq7vC0DLtR5QLJZnFsidnlf4PPrYqP dttZTLQ64tl/t1SWgXP8kxQQcqP82Qc0DfsvKDfNJvp64EfOCx6nQvftk1XSGpWF juqOvgwhhvvU7CA45ttw896ehwcuHXWp6/B8jFMqFs4ywFOVRrVmKG0X4NnEv6Ak R3RRsgw8TmFO4M2mG+PtgW7+TioiHITEc7hTUp+1+t77No1bzztgwt1ZHCsw4LhM v/fyK9WmStUFqIcekqoYAUXQR3DQVrGM7GrsRcTb1urIWm7kIoqfmCu0iek9f1dg cXx6SjG0vM2QHJQxADEdFE5ED0C2NR2PG7P+fwElAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUkSNjoIBmjBXqSq3hxxbedS4aHfkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMTI1ZTMxLWVkOTctNGUzMS04OWU5LWQ0YWYwMGU1YjMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEotDANBgkqhkiG9w0BAQsFAAOCAQEAg3/8Xk7fmUPtqvNR/F/vF5i2Pr6Q G/1y4WMm7UCt7+KRDqR5jcLMdjWD4yn8KxKx6AClF575FjtOmm2i5ZIdIbHIzLiJ s9T7rh7nBbRayqPNgCWwRJ77XBtnEHW80VGw8ZuDPgdSUAQYIYbQUZ1IwxH4Tecs 3zC2Le8xYujInC4Pi6dNJdWMBGH1EMI9BRXyllXe8Soz+MHXYrBUVhPpudWFt4JL mmDEXCT7tnSAV9/fsAd4sTKiHG5ECKvKrkJWebk/bOP3xQWrWJQpSc6GSQAeA7Wa 4NKJQ9pZYf0p/8BpFiKYh4OWiKeaCNUo5S7JzqPNGkpMRszFYghMrUWUmA== -----END CERTIFICATE-----Generated at Sat Jun 13 05:45:47 2026 by rpki-client