$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa File: 386f74be-c953-4ed6-808b-5f23e8a0a6de.roa (raw, json) Hash identifier: eveYD/EWZbMvzT9LcR3S/td+VMcNNtAH2zVrIevU9oU= Subject key identifier: CE:71:16:E0:7A:C2:1F:9E:60:D3:D8:81:9C:A8:E4:DE:C9:E1:B3:2B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76FB619FFB9D6F5776B7856414BABE669713C764 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa Signing time: Fri 01 May 2026 00:50:07 +0000 ROA not before: Fri 01 May 2026 00:50:07 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 172.103.40.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:fb:61:9f:fb:9d:6f:57:76:b7:85:64:14:ba:be:66:97:13:c7:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:50:07 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=ed89e8aa017ee89bda2cd05e2ed461f7032fb594a105195431478d0bfb93007d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:c0:4d:02:cb:e4:2d:ed:44:7f:b0:a6:ac:e3: b3:f9:52:5e:ba:63:8d:f6:e6:c3:4e:e3:0d:9e:84: 63:8a:1c:37:f0:2d:e6:9f:d4:3e:c8:40:08:1c:d5: 9c:44:d8:7d:ad:10:14:b0:c8:ed:ac:0a:72:ae:2b: 5c:6f:14:c3:13:a8:8c:b7:32:f3:e3:74:03:af:d8: d8:b2:e0:8e:3e:4f:95:47:9f:0d:4b:29:72:aa:44: 1b:16:b9:35:a1:74:4c:43:af:87:81:1c:6e:cd:af: 62:4e:69:4b:99:81:5b:d7:41:a9:b1:ce:e9:19:45: 34:58:22:8a:bf:b9:e9:6b:8a:27:3d:be:90:d5:ee: 89:f5:68:8c:2c:74:5b:a0:a9:9d:fe:b9:d7:93:dd: 90:95:53:b2:03:45:30:0d:c9:fc:9e:4a:f3:4b:32: 5e:3a:84:d4:69:c3:f2:bc:9e:dd:cc:bf:b3:99:7c: 50:33:44:65:14:0d:33:11:4e:4f:b6:9b:e4:6a:c4: 4c:cb:80:6f:a0:e5:85:8c:74:5b:ba:29:53:f9:07: 6f:b7:3a:b6:2b:c4:58:3e:64:82:39:d5:fe:36:11: 60:c0:99:b4:48:d3:39:25:d4:d0:e7:b5:31:44:c7: fc:7c:79:28:b4:d2:b8:9d:b2:1b:b1:53:f0:ac:f2: 63:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:71:16:E0:7A:C2:1F:9E:60:D3:D8:81:9C:A8:E4:DE:C9:E1:B3:2B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/386f74be-c953-4ed6-808b-5f23e8a0a6de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 172.103.40.0/21 Signature Algorithm: sha256WithRSAEncryption af:83:71:63:f3:2b:79:3d:9d:f0:6c:8e:6e:9a:d6:25:ae:2f: 2f:bd:c5:86:47:cf:d5:cf:7d:8a:79:0b:6e:95:13:01:d0:bf: fa:bb:e5:2c:32:ca:08:1e:a4:9f:13:3a:96:11:b7:98:1d:aa: 15:3c:bf:3e:50:72:e5:2e:4b:55:df:25:3b:b8:68:b7:9d:03: 7b:54:b3:fe:78:78:bd:dd:73:d3:fd:0f:ad:ad:03:78:1b:d0: b9:81:f8:b5:1b:98:e3:17:ae:3a:6b:8d:2d:5d:a7:34:7d:cd: 77:23:e4:c4:80:bf:7d:9a:63:cc:33:96:37:34:74:6b:07:cd: d9:49:47:24:d4:16:e0:41:05:eb:07:03:62:e8:0d:ba:fd:31: 76:59:08:96:c7:1f:28:bd:09:24:28:6a:b3:cb:2e:5c:61:10: f8:77:7c:45:62:d3:c5:cf:9b:bf:05:1a:99:13:91:75:8c:0c: 96:91:b8:39:48:ce:38:8e:47:75:8c:9a:e4:68:90:a3:08:64: c3:b9:ab:cd:5d:eb:fa:39:5e:be:33:73:89:c0:bc:b9:2a:6c: 6d:0e:bb:ea:18:8a:e1:79:36:16:f2:32:02:34:68:60:2e:d1: 02:36:06:fb:ec:55:00:c0:6c:75:9e:6f:32:e2:d0:b0:44:81: f5:63:a9:c9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdvthn/udb1d2t4VkFLq+ZpcTx2QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA1MDA3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDg5ZThhYTAxN2VlODliZGEyY2QwNWUyZWQ0NjFmNzAz MmZiNTk0YTEwNTE5NTQzMTQ3OGQwYmZiOTMwMDdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrwE0Cy+Qt7UR/sKas47P5Ul66Y4325sNO4w2ehGOKHDfw Leaf1D7IQAgc1ZxE2H2tEBSwyO2sCnKuK1xvFMMTqIy3MvPjdAOv2Niy4I4+T5VH nw1LKXKqRBsWuTWhdExDr4eBHG7Nr2JOaUuZgVvXQamxzukZRTRYIoq/uelriic9 vpDV7on1aIwsdFugqZ3+udeT3ZCVU7IDRTANyfyeSvNLMl46hNRpw/K8nt3Mv7OZ fFAzRGUUDTMRTk+2m+RqxEzLgG+g5YWMdFu6KVP5B2+3OrYrxFg+ZII51f42EWDA mbRI0zkl1NDntTFEx/x8eSi00ridshuxU/Cs8mPDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUznEW4HrCH55g09iBnKjk3snhsyswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4NmY3NGJlLWM5NTMtNGVkNi04MDhiLTVmMjNlOGEwYTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAOsZygwDQYJKoZIhvcNAQELBQADggEBAK+DcWPzK3k9nfBsjm6a1iWuLy+9 xYZHz9XPfYp5C26VEwHQv/q75SwyyggepJ8TOpYRt5gdqhU8vz5QcuUuS1XfJTu4 aLedA3tUs/54eL3dc9P9D62tA3gb0LmB+LUbmOMXrjprjS1dpzR9zXcj5MSAv32a Y8wzljc0dGsHzdlJRyTUFuBBBesHA2LoDbr9MXZZCJbHHyi9CSQoarPLLlxhEPh3 fEVi08XPm78FGpkTkXWMDJaRuDlIzjiOR3WMmuRokKMIZMO5q81d6/o5Xr4zc4nA vLkqbG0Ou+oYiuF5NhbyMgI0aGAu0QI2BvvsVQDAbHWebzLi0LBEgfVjqck= -----END CERTIFICATE-----Generated at Sun May 3 14:46:20 2026 by rpki-client