$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa File: 4391dc68-2a33-4b79-8713-4af8518a52be.roa (raw, json) Hash identifier: WrbqLYeKgPooiwXtJARhXvx6RchYxmstWPUS4RSTBQo= Subject key identifier: 8F:F2:2C:3A:87:B8:8F:7F:B3:1E:E9:46:DC:99:35:AA:DB:22:44:67 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6520B903DBDAEBACCAE6E70B130FA042CBF9FB2D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa Signing time: Wed 20 May 2026 00:10:33 +0000 ROA not before: Wed 20 May 2026 00:10:33 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.255.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 03 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:20:b9:03:db:da:eb:ac:ca:e6:e7:0b:13:0f:a0:42:cb:f9:fb:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:10:33 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=d678e4a56f79ccd32a9c0ee838e13d89a7304924aaaf10e6f75d067b68a08e27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:7b:bf:24:90:59:4f:c1:e4:0f:b9:33:0b:b7: 75:9b:ee:39:f2:d2:31:e2:a1:79:55:29:a1:13:de: 1c:0f:22:56:b1:f7:39:4d:f7:39:48:e8:0f:7d:73: 7f:26:e0:06:59:cf:7b:01:06:40:6e:0a:fd:f7:c8: 19:22:69:36:8b:a9:11:3e:5a:94:fe:63:d4:60:ce: e3:80:c5:5e:51:34:d9:c1:cc:de:c6:33:33:07:18: bf:53:5c:e6:ff:a5:d1:f7:76:39:1f:54:43:21:cf: 2a:1c:51:a1:b0:59:a6:9e:2b:24:47:bf:3b:1f:fe: d2:29:13:2e:14:c9:b0:49:32:26:6b:ce:5c:ce:69: d1:c1:8a:de:af:6b:4c:6f:b3:84:bc:e0:d2:b8:2d: 7a:90:89:07:02:e8:6e:87:a7:a9:85:c9:89:e2:4a: f2:ff:91:45:be:bf:ba:a4:65:14:f9:ca:b7:3e:34: 9e:d0:5f:bb:c0:93:6d:95:92:a8:21:71:50:f4:92: a3:8a:87:a2:f9:49:6c:6b:d2:09:00:63:aa:7b:6f: dd:f5:04:7b:f0:d7:e5:6a:2c:e1:4d:df:12:c0:b6: 13:09:f2:8a:79:ec:48:2c:7f:71:b9:bb:f3:2b:ca: ca:89:66:cc:0c:c2:b6:83:57:41:57:02:1e:0c:5f: 57:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:F2:2C:3A:87:B8:8F:7F:B3:1E:E9:46:DC:99:35:AA:DB:22:44:67 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4391dc68-2a33-4b79-8713-4af8518a52be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.255.64.0/18 Signature Algorithm: sha256WithRSAEncryption 65:8f:bf:7c:b3:08:77:4f:66:e1:db:f9:b8:8a:8a:11:48:8e: 20:ab:fe:db:c8:c7:73:51:9e:18:26:5a:1f:1a:89:88:54:f9: 0d:79:6b:18:45:fb:e5:1a:a1:59:55:c2:aa:dc:42:34:83:57: ff:b9:98:73:9c:b8:34:1e:61:b0:40:6d:85:b2:f3:92:8d:60: a7:e5:73:5a:7f:99:8d:05:75:eb:f5:e8:a0:7c:f5:ac:18:55: 96:a3:a3:45:95:69:dd:d6:6a:6e:43:9b:30:3a:c5:c8:eb:fc: 47:5b:82:bd:3c:2d:d6:d1:a2:c6:72:49:6e:d0:1c:44:64:7e: 31:10:1e:4d:01:4c:2f:5d:a8:ca:7e:6e:d1:7d:43:a2:2d:c6: b9:ef:bc:52:8f:16:b0:fc:7e:a8:d5:3b:22:c4:8b:18:eb:15: 69:0d:a2:7e:25:38:ae:41:39:12:db:fc:03:7e:92:25:83:10: 76:f2:31:dc:0b:59:39:00:25:fb:6d:84:64:34:9a:fb:77:f0: 9d:18:79:45:88:83:04:37:0c:06:c5:2b:db:49:67:a8:68:1e: 86:23:40:52:60:c0:e6:a3:10:d0:4c:18:f0:e3:2d:38:45:a6: 2a:b9:2b:85:d2:0b:af:91:81:e8:33:17:bd:76:01:a3:ea:b1: 2a:ac:db:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZSC5A9va66zK5ucLEw+gQsv5+y0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAxMDMzWhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjc4ZTRhNTZmNzljY2QzMmE5YzBlZTgzOGUxM2Q4OWE3 MzA0OTI0YWFhZjEwZTZmNzVkMDY3YjY4YTA4ZTI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDae78kkFlPweQPuTMLt3Wb7jny0jHioXlVKaET3hwPIlax 9zlN9zlI6A99c38m4AZZz3sBBkBuCv33yBkiaTaLqRE+WpT+Y9RgzuOAxV5RNNnB zN7GMzMHGL9TXOb/pdH3djkfVEMhzyocUaGwWaaeKyRHvzsf/tIpEy4UybBJMiZr zlzOadHBit6va0xvs4S84NK4LXqQiQcC6G6Hp6mFyYniSvL/kUW+v7qkZRT5yrc+ NJ7QX7vAk22VkqghcVD0kqOKh6L5SWxr0gkAY6p7b931BHvw1+VqLOFN3xLAthMJ 8op57Egsf3G5u/MrysqJZswMwraDV0FXAh4MX1fzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj/IsOoe4j3+zHulG3Jk1qtsiRGcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOTFkYzY4LTJhMzMtNGI3OS04NzEzLTRhZjg1MThhNTJiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZM/0AwDQYJKoZIhvcNAQELBQADggEBAGWPv3yzCHdPZuHb+biKihFIjiCr /tvIx3NRnhgmWh8aiYhU+Q15axhF++UaoVlVwqrcQjSDV/+5mHOcuDQeYbBAbYWy 85KNYKflc1p/mY0Fdev16KB89awYVZajo0WVad3Wam5DmzA6xcjr/Edbgr08LdbR osZySW7QHERkfjEQHk0BTC9dqMp+btF9Q6ItxrnvvFKPFrD8fqjVOyLEixjrFWkN on4lOK5BORLb/AN+kiWDEHbyMdwLWTkAJftthGQ0mvt38J0YeUWIgwQ3DAbFK9tJ Z6hoHoYjQFJgwOajENBMGPDjLThFpiq5K4XSC6+RgegzF712AaPqsSqs220= -----END CERTIFICATE-----Generated at Mon Jun 1 16:35:14 2026 by rpki-client