$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa File: f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa (raw, json) Hash identifier: qhQZTiN3nLzhdJVpzr1+NHGLMMP/QIsggcjbcyysaUM= Subject key identifier: BD:77:2C:23:D4:FE:AE:22:99:76:BF:D9:6F:46:D5:E0:70:71:AA:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4636364C64F8B5079AB81E8BDC4F9D77D8D5B842 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa Signing time: Fri 15 May 2026 01:30:13 +0000 ROA not before: Fri 15 May 2026 01:30:13 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 119.12.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:36:36:4c:64:f8:b5:07:9a:b8:1e:8b:dc:4f:9d:77:d8:d5:b8:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:30:13 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=875c6aefeb1e78a38e7dad82e0474071c435fdd15ad9dafa5cc5f3558ee626dd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:ba:7e:e9:4a:2a:5b:5f:bf:4a:9a:eb:20:cc: 67:dd:d5:e1:a1:5e:a3:11:50:04:c2:8a:bf:b0:98: 45:82:61:a7:47:37:63:9a:3f:29:83:15:f1:72:5e: 50:dc:3b:62:99:72:d3:5a:ae:31:76:1f:8f:f3:b2: c4:e1:d3:bd:4b:ff:f2:89:f8:00:c9:46:8c:79:ce: f0:62:75:ee:ab:42:bd:f0:6a:55:8a:9d:15:e2:51: 75:e3:6e:f9:04:76:22:be:4a:28:40:ed:d2:fb:b4: 8c:8c:5f:c6:aa:9b:b1:48:b9:60:dc:c7:24:c8:48: b0:89:eb:d5:14:d8:d8:dd:95:c5:20:6f:6c:15:23: aa:7a:ba:01:bb:31:53:38:71:2f:24:50:c5:25:fb: 85:6f:36:ca:53:e3:f1:af:07:ae:37:25:50:98:51: 30:2c:12:4f:0f:41:f7:fe:16:e8:4f:53:e3:db:01: fe:62:49:f8:a0:a3:fa:88:6c:1a:cd:a7:f6:60:2e: 3e:2a:9f:7c:48:8e:c3:0e:f2:90:73:38:a1:e2:13: 1f:51:ac:06:54:27:c6:f3:56:ed:04:75:71:00:d8: 36:b2:b4:96:40:c3:66:16:85:ac:82:5b:c7:2c:88: de:f7:90:9e:bb:6b:1e:df:f3:24:1f:19:1f:76:10: 3e:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:77:2C:23:D4:FE:AE:22:99:76:BF:D9:6F:46:D5:E0:70:71:AA:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.12.96.0/21 Signature Algorithm: sha256WithRSAEncryption b0:0b:49:c3:5b:ca:15:5c:17:eb:66:66:2d:f5:81:4a:f0:97: 18:d1:88:56:3f:23:68:b2:3c:94:7b:0c:04:2b:4d:a0:db:a5: f2:73:fe:72:5e:e2:ec:b7:b7:ba:44:ff:69:23:f3:ac:1d:17: d4:55:67:a9:f8:ac:29:54:69:5d:ad:f6:58:03:86:68:8e:20: 59:a1:45:ad:d6:21:f7:c1:b4:90:ce:8b:c8:50:93:d5:57:d4: 2a:50:af:a5:51:9e:5e:bc:f0:96:3b:06:53:f0:03:ef:49:fb: 3b:71:bd:ec:9b:4a:3a:fd:ca:01:61:fe:75:29:36:e8:ec:ac: 56:af:ae:7a:b6:84:d3:a0:42:ec:80:ee:98:64:78:01:d5:40: 7f:60:da:b2:a1:de:d3:56:47:10:7e:2d:54:8b:13:47:45:ef: cb:0a:c4:80:be:cf:34:20:f8:8d:4e:e6:95:cd:b3:c0:95:31: 43:ad:0b:21:09:0a:e6:af:64:b2:6b:55:79:5a:f5:6d:72:41: 83:c4:79:13:8b:5d:b5:a4:ff:ea:10:71:0d:72:9a:0c:57:6e: db:82:8a:16:dd:71:62:31:b9:99:49:59:b4:06:64:4a:32:d0: 60:9f:1f:7a:e1:b3:8f:9d:45:e3:85:53:4e:a8:9b:67:b4:f9: db:2e:c6:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURjY2TGT4tQeauB6L3E+dd9jVuEIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDEzMDEzWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A4NzVjNmFlZmViMWU3OGEzOGU3ZGFkODJlMDQ3NDA3MWM0 MzVmZGQxNWFkOWRhZmE1Y2M1ZjM1NThlZTYyNmRkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+un7pSipbX79KmusgzGfd1eGhXqMRUATCir+wmEWCYadH N2OaPymDFfFyXlDcO2KZctNarjF2H4/zssTh071L//KJ+ADJRox5zvBide6rQr3w alWKnRXiUXXjbvkEdiK+SihA7dL7tIyMX8aqm7FIuWDcxyTISLCJ69UU2NjdlcUg b2wVI6p6ugG7MVM4cS8kUMUl+4VvNspT4/GvB643JVCYUTAsEk8PQff+FuhPU+Pb Af5iSfigo/qIbBrNp/ZgLj4qn3xIjsMO8pBzOKHiEx9RrAZUJ8bzVu0EdXEA2Day tJZAw2YWhayCW8csiN73kJ67ax7f8yQfGR92ED5xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUvXcsI9T+riKZdr/Zb0bV4HBxqnswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzNzMzZmY0LTYwYTUtNGJkZS04YTI4LTFlMGJiMjcxNjA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN3DGAwDQYJKoZIhvcNAQELBQADggEBALALScNbyhVcF+tmZi31gUrwlxjR iFY/I2iyPJR7DAQrTaDbpfJz/nJe4uy3t7pE/2kj86wdF9RVZ6n4rClUaV2t9lgD hmiOIFmhRa3WIffBtJDOi8hQk9VX1CpQr6VRnl688JY7BlPwA+9J+ztxveybSjr9 ygFh/nUpNujsrFavrnq2hNOgQuyA7phkeAHVQH9g2rKh3tNWRxB+LVSLE0dF78sK xIC+zzQg+I1O5pXNs8CVMUOtCyEJCuavZLJrVXla9W1yQYPEeROLXbWk/+oQcQ1y mgxXbtuCihbdcWIxuZlJWbQGZEoy0GCfH3rhs4+dReOFU06om2e0+dsuxvg= -----END CERTIFICATE-----Generated at Sat Jun 13 09:29:34 2026 by rpki-client