$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3bf681b-1a54-482b-8a5f-bea7301895e3.roa File: a3bf681b-1a54-482b-8a5f-bea7301895e3.roa (raw, json) Hash identifier: o2TUTnm8nzgUsb7BDeTq+JFNFgDckLmCgKBkJLoyEpA= Subject key identifier: C7:11:22:24:57:15:37:B3:14:8E:55:37:08:D7:CB:85:ED:54:35:0E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40DFF2C53E886DCD421769F2CF958BB5362022A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3bf681b-1a54-482b-8a5f-bea7301895e3.roa Signing time: Sun 03 May 2026 16:50:16 +0000 ROA not before: Sun 03 May 2026 16:50:16 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.238.209.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:df:f2:c5:3e:88:6d:cd:42:17:69:f2:cf:95:8b:b5:36:20:22:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 16:50:16 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=085803744af4fda39d003c2b68c6677e0f920ac37821be34b5c0186e7dcf2876, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:40:ec:1d:93:0a:af:80:ba:ff:a1:21:d5:b8: 07:53:df:48:55:6a:fb:bc:41:4f:bd:60:9f:3f:4b: ac:93:76:c8:c0:b9:9e:47:53:38:7d:27:1d:d0:fd: 3e:29:81:94:f9:71:32:2e:61:69:b8:70:60:4c:ae: 70:16:96:2a:ce:3b:b9:b1:30:e4:e2:f0:c1:a1:a5: 2a:0f:26:01:8b:66:03:96:42:d5:11:3d:76:bb:31: 36:5b:9a:71:ea:f2:fd:8e:78:f0:ec:8e:d2:ab:b7: b1:0f:e1:32:e5:bd:c5:30:ec:70:6a:20:61:72:bf: 56:9d:a1:e1:53:03:e6:00:72:c3:88:7e:d0:36:e4: 8e:ff:6d:67:03:18:03:af:38:06:4b:31:e5:be:48: 85:a1:11:9c:dd:f8:20:b0:7d:77:4d:d9:64:50:7f: 95:5e:f3:79:08:2d:99:f2:52:95:a8:c8:f8:d4:39: 2a:5f:42:58:9a:d8:4c:c3:7f:9f:3d:ed:98:a2:25: e9:fc:29:61:ec:34:8a:05:ee:ad:dc:90:ae:4f:de: bc:17:8d:85:aa:fb:01:d6:19:06:d2:94:ac:2e:ac: 29:fc:77:ce:3c:24:9f:fb:ea:28:1b:8d:14:b5:4f: 04:8f:01:a5:2d:a3:09:6f:1c:89:d6:db:86:11:3b: d9:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:11:22:24:57:15:37:B3:14:8E:55:37:08:D7:CB:85:ED:54:35:0E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3bf681b-1a54-482b-8a5f-bea7301895e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.238.209.0/24 Signature Algorithm: sha256WithRSAEncryption 71:b3:5c:a2:02:87:d0:a1:2c:3d:7c:2d:dc:a7:f9:8a:3a:b0: 6d:62:86:1d:62:43:b8:b9:6c:cb:c9:6f:07:8b:d9:6d:33:f0: 9c:c2:f2:3e:59:3e:26:ac:68:09:2a:ab:5d:f5:10:03:05:29: f9:fd:29:d8:37:56:f2:96:ec:3f:dc:d0:bf:6e:45:93:55:45: 91:89:0c:5e:a6:9b:2f:91:4c:e9:a2:0c:c7:75:8b:4d:03:bb: fd:e8:e4:a4:eb:9d:24:9e:3a:fc:7e:c4:7b:cb:97:f8:2f:1a: 95:96:71:85:9d:14:c6:0f:d2:36:41:8a:48:70:93:6b:08:50: fe:f1:b4:8a:a8:95:2d:23:ec:00:f7:4f:af:90:86:d4:3d:cf: bd:02:5e:cf:26:62:8a:3e:e7:e2:28:c0:83:d1:46:e7:ab:19: 90:70:ae:43:07:c4:66:fb:61:55:a6:d6:71:5c:31:fc:a2:61: 29:4c:4f:43:49:0c:d5:6d:fc:d8:31:ec:63:a1:b6:b8:f0:6c: db:d3:77:f0:6b:af:1b:02:42:ef:27:83:4c:36:63:68:f1:97: 36:b4:36:03:f7:c2:d6:ed:d1:63:d5:58:48:0f:b5:75:29:f9: 0f:e8:31:02:c6:28:fc:33:2c:1e:95:ab:e6:23:ba:a7:f8:9a: 01:89:d4:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQN/yxT6Ibc1CF2nyz5WLtTYgIqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAzMTY1MDE2WhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0AwODU4MDM3NDRhZjRmZGEzOWQwMDNjMmI2OGM2Njc3ZTBm OTIwYWMzNzgyMWJlMzRiNWMwMTg2ZTdkY2YyODc2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUQOwdkwqvgLr/oSHVuAdT30hVavu8QU+9YJ8/S6yTdsjA uZ5HUzh9Jx3Q/T4pgZT5cTIuYWm4cGBMrnAWlirOO7mxMOTi8MGhpSoPJgGLZgOW QtURPXa7MTZbmnHq8v2OePDsjtKrt7EP4TLlvcUw7HBqIGFyv1adoeFTA+YAcsOI ftA25I7/bWcDGAOvOAZLMeW+SIWhEZzd+CCwfXdN2WRQf5Ve83kILZnyUpWoyPjU OSpfQlia2EzDf5897ZiiJen8KWHsNIoF7q3ckK5P3rwXjYWq+wHWGQbSlKwurCn8 d848JJ/76igbjRS1TwSPAaUtowlvHInW24YRO9lzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxxEiJFcVN7MUjlU3CNfLhe1UNQ4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzYmY2ODFiLTFhNTQtNDgyYi04YTVmLWJlYTczMDE4OTVlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX7tEwDQYJKoZIhvcNAQELBQADggEBAHGzXKICh9ChLD18Ldyn+Yo6sG1i hh1iQ7i5bMvJbweL2W0z8JzC8j5ZPiasaAkqq131EAMFKfn9Kdg3VvKW7D/c0L9u RZNVRZGJDF6mmy+RTOmiDMd1i00Du/3o5KTrnSSeOvx+xHvLl/gvGpWWcYWdFMYP 0jZBikhwk2sIUP7xtIqolS0j7AD3T6+QhtQ9z70CXs8mYoo+5+IowIPRRuerGZBw rkMHxGb7YVWm1nFcMfyiYSlMT0NJDNVt/Ngx7GOhtrjwbNvTd/BrrxsCQu8ng0w2 Y2jxlza0NgP3wtbt0WPVWEgPtXUp+Q/oMQLGKPwzLB6Vq+Yjuqf4mgGJ1AQ= -----END CERTIFICATE-----Generated at Mon May 4 21:37:04 2026 by rpki-client