$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffe12830-146b-4ace-aa76-00c674bbaa36.roa File: ffe12830-146b-4ace-aa76-00c674bbaa36.roa (raw, json) Hash identifier: +JvUCHmauOhiJgFdtjFg/YMWg91uugKQNBTFheR6v4Y= Subject key identifier: 68:27:7D:B5:82:B9:E2:BB:07:5F:18:0F:B1:80:A6:5B:05:14:44:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23D139CF254148A0F6948A97F0B6A09B24EAAD89 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffe12830-146b-4ace-aa76-00c674bbaa36.roa Signing time: Wed 20 May 2026 00:00:12 +0000 ROA not before: Wed 20 May 2026 00:00:12 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 45.72.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:d1:39:cf:25:41:48:a0:f6:94:8a:97:f0:b6:a0:9b:24:ea:ad:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:00:12 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=8124f22c91fa42141fdd6566baa8139ec24c9bfe6805fbbc3382f4cb9c5bf6bb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:27:85:bb:57:e0:f9:c0:a8:a7:d6:46:0c:0a: 3e:0f:ef:fc:35:c0:fb:dd:a6:11:27:a9:e9:6e:95: df:dc:4d:f2:c5:f0:bb:df:2e:9e:52:b9:98:e7:63: 0a:9f:74:7e:cf:07:7c:c5:49:74:61:f6:dd:44:a4: 3c:8a:d6:bf:6d:a4:15:20:cc:cd:20:93:e9:cf:2e: 39:88:99:13:fd:de:ba:a8:34:62:7a:6b:31:e1:27: 89:9f:00:36:17:42:71:73:6a:bc:1b:5e:55:08:12: 66:c9:c7:76:af:6e:25:26:60:61:24:d4:c7:ac:36: f5:b7:72:63:98:34:63:d2:6b:0c:28:6c:f2:09:52: ce:30:c4:9f:6a:f7:9a:63:ca:95:b7:4a:ee:f7:a0: 0e:ef:5d:da:43:4a:b4:2e:0d:e6:6a:31:6c:0b:e7: 7c:ad:b1:0d:c1:1e:70:44:81:20:f5:10:ae:d9:0c: ea:9f:ca:16:cf:86:11:e8:e2:9d:32:f9:64:0a:04: 5b:f7:1b:28:b3:ee:47:53:a0:0f:8b:03:64:27:18: ef:38:42:13:6a:c8:d3:27:be:aa:c1:07:98:3c:5b: 9f:b7:b8:da:a2:be:84:d9:43:eb:21:b7:88:0f:35: 4e:74:d2:4e:e6:93:fe:f6:ef:05:ba:f5:1d:7c:97: aa:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:27:7D:B5:82:B9:E2:BB:07:5F:18:0F:B1:80:A6:5B:05:14:44:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ffe12830-146b-4ace-aa76-00c674bbaa36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.72.0.0/17 Signature Algorithm: sha256WithRSAEncryption a8:ef:f1:15:5c:5a:05:19:7c:e8:fc:fa:79:13:7c:cd:a2:6d: 0f:55:ec:df:54:ec:05:eb:33:12:52:51:00:38:2b:e0:9c:56: 2c:62:16:f0:4c:07:8f:ad:36:e1:1c:3f:9e:3e:3f:f3:32:34: 25:5e:4e:34:0f:09:9d:10:f2:71:2f:21:77:8d:9a:65:94:f7: b3:8b:a9:d5:ef:85:fe:61:72:a1:71:4b:c4:1f:9d:d6:6a:0b: e4:cc:e9:a7:6e:e2:80:26:e9:37:d4:7e:ba:2d:5c:50:27:c6: f8:23:e0:a5:00:1f:73:24:27:a5:a3:6d:70:33:ac:dc:d2:dc: ee:40:ba:81:44:00:08:59:21:13:79:23:e7:ca:c4:00:39:a2: a1:ef:d9:91:3a:c7:68:e9:46:28:e5:5e:37:10:c6:50:ab:38: 90:d2:da:d6:f6:81:17:5c:91:47:0a:f3:30:3f:f2:fa:e9:96: fb:95:05:e5:22:a0:a6:37:c3:b8:b2:99:a7:06:78:7b:ce:9e: 8e:64:88:11:60:9a:c2:1e:7b:73:06:d4:c6:27:e9:5a:b0:f6: e7:02:12:33:5d:54:41:6e:64:fd:f0:4e:23:53:a7:c8:cf:90: e9:d3:a8:84:11:13:c2:5b:bc:9f:0c:b8:61:4f:6c:bc:88:07: 3c:03:e2:d5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI9E5zyVBSKD2lIqX8LagmyTqrYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAwMDEyWhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTI0ZjIyYzkxZmE0MjE0MWZkZDY1NjZiYWE4MTM5ZWMy NGM5YmZlNjgwNWZiYmMzMzgyZjRjYjljNWJmNmJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGJ4W7V+D5wKin1kYMCj4P7/w1wPvdphEnqeluld/cTfLF 8LvfLp5SuZjnYwqfdH7PB3zFSXRh9t1EpDyK1r9tpBUgzM0gk+nPLjmImRP93rqo NGJ6azHhJ4mfADYXQnFzarwbXlUIEmbJx3avbiUmYGEk1MesNvW3cmOYNGPSawwo bPIJUs4wxJ9q95pjypW3Su73oA7vXdpDSrQuDeZqMWwL53ytsQ3BHnBEgSD1EK7Z DOqfyhbPhhHo4p0y+WQKBFv3Gyiz7kdToA+LA2QnGO84QhNqyNMnvqrBB5g8W5+3 uNqivoTZQ+sht4gPNU500k7mk/727wW69R18l6p5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaCd9tYK54rsHXxgPsYCmWwUURCIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmZTEyODMwLTE0NmItNGFjZS1hYTc2LTAwYzY3NGJiYWEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBActSAAwDQYJKoZIhvcNAQELBQADggEBAKjv8RVcWgUZfOj8+nkTfM2ibQ9V 7N9U7AXrMxJSUQA4K+CcVixiFvBMB4+tNuEcP54+P/MyNCVeTjQPCZ0Q8nEvIXeN mmWU97OLqdXvhf5hcqFxS8QfndZqC+TM6adu4oAm6TfUfrotXFAnxvgj4KUAH3Mk J6WjbXAzrNzS3O5AuoFEAAhZIRN5I+fKxAA5oqHv2ZE6x2jpRijlXjcQxlCrOJDS 2tb2gRdckUcK8zA/8vrplvuVBeUioKY3w7iymacGeHvOno5kiBFgmsIee3MG1MYn 6Vqw9ucCEjNdVEFuZP3wTiNTp8jPkOnTqIQRE8JbvJ8MuGFPbLyIBzwD4tU= -----END CERTIFICATE-----Generated at Sat Jun 13 08:17:51 2026 by rpki-client