$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3672d2f1-7991-40bd-afef-9cfaf5207b96.roa File: 3672d2f1-7991-40bd-afef-9cfaf5207b96.roa (raw, json) Hash identifier: f2ATvPN7KEkQrAyEBBJ7rLEm54izEg/cdZR0ZkUsOeA= Subject key identifier: 8B:F5:14:D7:19:CE:9A:62:06:DD:E6:C8:3E:76:68:D0:1D:49:9C:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A193AB22F30C16D4B6AB7307F38AA7A79462CBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3672d2f1-7991-40bd-afef-9cfaf5207b96.roa Signing time: Fri 01 May 2026 00:20:04 +0000 ROA not before: Fri 01 May 2026 00:20:04 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.96.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:19:3a:b2:2f:30:c1:6d:4b:6a:b7:30:7f:38:aa:7a:79:46:2c:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:20:04 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=17083ada6bb9a225205cc94b9c4be2be60d5e8a13ba6d2c35eca426c51644191, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:95:09:f8:36:72:2b:d9:e6:01:d9:32:f2:b3:86: b2:06:35:e4:c7:e3:8a:77:5e:5a:10:1e:28:32:51: d9:ba:d4:60:e5:ab:b0:35:22:6a:4a:c7:98:e0:fe: 1e:4c:b6:3d:0c:ce:e6:2a:ab:6c:db:98:46:21:2b: 1f:02:26:f7:5f:d6:77:64:91:de:07:98:49:38:d0: 04:29:99:72:09:ec:c8:f0:73:9a:5b:aa:d6:b9:26: a6:ee:5b:7d:fc:12:b3:9b:2d:44:2c:8f:c6:74:e4: 6a:87:11:5e:0a:63:36:75:07:8c:50:00:4e:13:a8: 24:47:16:1d:b4:0d:8a:d7:f5:4a:d1:31:40:86:17: 24:b6:21:ca:5b:33:4a:f9:4e:1d:f4:a6:90:52:54: 34:d1:76:94:6b:9d:92:aa:26:1d:b1:2b:43:bc:8d: 4a:37:42:70:f5:5a:35:3b:52:6e:ed:b1:a9:79:46: 40:de:4c:c6:bf:76:84:78:a0:b9:53:3c:fa:c3:ae: 07:a3:a3:52:c0:b1:b1:aa:17:50:ab:33:00:57:73: dd:64:d5:7a:62:be:ed:36:52:30:54:03:61:55:bc: 35:f8:2b:4b:62:da:c6:ce:fc:35:54:e6:5c:02:61: 9e:58:e0:b5:02:82:2c:88:dc:79:dc:73:ff:7f:17: 33:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:F5:14:D7:19:CE:9A:62:06:DD:E6:C8:3E:76:68:D0:1D:49:9C:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3672d2f1-7991-40bd-afef-9cfaf5207b96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.96.0/22 Signature Algorithm: sha256WithRSAEncryption 66:4c:fe:ab:a3:72:92:fc:4c:7e:37:b5:67:d2:ad:c0:a2:e9: 17:23:5c:0c:b2:57:86:eb:a4:72:ec:0d:d9:16:42:df:21:a9: 53:1b:6c:f1:f4:b4:0f:22:ea:87:27:a3:06:45:99:cb:9a:53: eb:1b:c8:df:22:e2:cb:d7:ee:9f:cc:b0:8d:f6:c3:15:72:1b: af:b6:a0:a2:96:3a:27:03:53:76:28:f0:d1:af:df:1d:cf:0d: 3c:7b:3b:95:c4:b8:d9:13:25:18:eb:23:1f:bf:44:13:19:43: e5:a2:3f:28:89:23:3f:55:ca:37:06:bf:39:14:5b:27:2b:b4: fb:0f:8c:1f:d3:de:61:3a:cd:80:e1:79:64:4d:2c:3f:8f:d2: f4:43:79:8a:19:31:84:b9:59:12:aa:b1:f9:24:b0:4d:72:cd: ab:31:e2:0b:f8:ff:e1:a1:24:1f:58:7a:23:fc:6a:44:2a:e6: 57:4b:e9:16:e3:d1:0c:22:62:f0:20:88:aa:6a:e9:5f:29:f6: e2:42:b9:d5:42:b6:6e:28:47:83:a5:e8:af:73:ab:a4:87:2d: 13:3c:a2:c7:f9:0f:1a:d8:64:aa:22:c5:e4:35:ff:e4:8c:9a: e3:eb:0f:bf:78:24:03:7e:21:12:78:0a:25:21:93:29:90:ad: a5:60:19:e7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOhk6si8wwW1LarcwfziqenlGLLswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMDA0WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzA4M2FkYTZiYjlhMjI1MjA1Y2M5NGI5YzRiZTJiZTYw ZDVlOGExM2JhNmQyYzM1ZWNhNDI2YzUxNjQ0MTkxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCVCfg2civZ5gHZMvKzhrIGNeTH44p3XloQHigyUdm61GDl q7A1ImpKx5jg/h5Mtj0MzuYqq2zbmEYhKx8CJvdf1ndkkd4HmEk40AQpmXIJ7Mjw c5pbqta5JqbuW338ErObLUQsj8Z05GqHEV4KYzZ1B4xQAE4TqCRHFh20DYrX9UrR MUCGFyS2IcpbM0r5Th30ppBSVDTRdpRrnZKqJh2xK0O8jUo3QnD1WjU7Um7tsal5 RkDeTMa/doR4oLlTPPrDrgejo1LAsbGqF1CrMwBXc91k1Xpivu02UjBUA2FVvDX4 K0ti2sbO/DVU5lwCYZ5Y4LUCgiyI3Hncc/9/FzNbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi/UU1xnOmmIG3ebIPnZo0B1JnCEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM2NzJkMmYxLTc5OTEtNDBiZC1hZmVmLTljZmFmNTIwN2I5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAGAwDQYJKoZIhvcNAQELBQADggEBAGZM/qujcpL8TH43tWfSrcCi6Rcj XAyyV4brpHLsDdkWQt8hqVMbbPH0tA8i6ocnowZFmcuaU+sbyN8i4svX7p/MsI32 wxVyG6+2oKKWOicDU3Yo8NGv3x3PDTx7O5XEuNkTJRjrIx+/RBMZQ+WiPyiJIz9V yjcGvzkUWycrtPsPjB/T3mE6zYDheWRNLD+P0vRDeYoZMYS5WRKqsfkksE1yzasx 4gv4/+GhJB9YeiP8akQq5ldL6Rbj0QwiYvAgiKpq6V8p9uJCudVCtm4oR4Ol6K9z q6SHLRM8osf5DxrYZKoixeQ1/+SMmuPrD794JAN+IRJ4CiUhkymQraVgGec= -----END CERTIFICATE-----Generated at Sun May 3 14:45:08 2026 by rpki-client