$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1164c41-d5e7-49d2-a64f-d23e9c184e2c.roa File: c1164c41-d5e7-49d2-a64f-d23e9c184e2c.roa (raw, json) Hash identifier: w5vzsQaNIe7LStooNZG5dqFpKScn6GxpSWjXHDbxhzY= Subject key identifier: CC:5F:00:7C:FD:5F:61:B0:4C:AF:76:34:D8:66:B8:C1:F1:5C:5C:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B5E49E3BC28814513317B3124B0A5230292AE4E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1164c41-d5e7-49d2-a64f-d23e9c184e2c.roa Signing time: Sun 03 May 2026 16:48:40 +0000 ROA not before: Sun 03 May 2026 16:48:40 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.238.176.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:5e:49:e3:bc:28:81:45:13:31:7b:31:24:b0:a5:23:02:92:ae:4e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 16:48:40 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=6553b52259f67bedb13263de1a2ca6d2fd6501770a3ea252e7e10f5de92088ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:c2:f8:9d:05:7d:2c:ce:36:cc:6b:97:f7:44: 3d:64:93:36:6e:fc:fa:07:94:58:7f:08:a1:27:73: 91:a3:7e:6f:e0:29:33:32:82:b2:dd:bb:64:ba:d4: 5e:21:c3:57:01:c7:9b:72:68:4c:5f:0b:a1:fe:4a: dc:2f:61:af:4a:c4:53:f4:9f:13:7c:65:e3:40:59: 53:4f:9b:25:ce:0c:76:0a:15:71:0a:49:bb:c8:69: 22:d5:9d:6d:0b:a3:de:57:fe:8f:c0:0c:f4:ce:ed: fa:a0:e0:d5:83:98:9d:76:28:b6:b0:cb:1e:f8:6e: 01:a3:e8:83:d2:de:68:24:fb:01:7a:4e:82:0b:b4: 42:75:c7:70:7c:13:ca:30:ae:c0:aa:99:67:6a:f1: bd:e8:78:e8:eb:6d:f6:23:1a:f3:f5:46:b6:99:54: ea:4c:85:6f:67:d7:70:60:4f:39:87:8e:14:25:0f: 2a:6c:0b:62:c6:28:c3:26:f0:de:e2:fe:12:51:52: 08:2e:c2:c5:d2:da:ab:e2:ea:42:0d:b3:6c:8e:60: d9:ee:98:ba:c4:56:57:01:53:73:77:17:24:6a:fe: 9e:c7:b9:87:32:73:1a:33:2e:5b:df:2d:f7:a6:94: ff:0b:13:2a:95:94:b3:58:16:c9:0b:df:1e:31:46: 0f:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:5F:00:7C:FD:5F:61:B0:4C:AF:76:34:D8:66:B8:C1:F1:5C:5C:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1164c41-d5e7-49d2-a64f-d23e9c184e2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.238.176.0/24 Signature Algorithm: sha256WithRSAEncryption c7:11:96:bc:a2:b0:54:63:c4:81:34:c3:5c:32:ee:bd:b6:c2: 1e:7e:e4:96:ac:2c:90:55:5a:a3:53:95:d3:0f:6e:f1:8d:35: d8:d8:a0:50:04:eb:a8:e4:eb:ba:d6:d3:a1:b9:d3:09:47:77: 31:1e:2c:cf:8b:e1:9a:95:e2:95:57:61:e3:f2:67:f1:87:69: 17:24:22:db:63:0e:7f:94:d5:d3:17:f9:70:62:02:c4:1d:5a: d2:f7:04:3a:21:89:b3:8a:f8:83:b9:c3:32:e9:9d:8d:d2:8f: 69:a3:b5:25:ff:df:72:2f:12:03:28:e8:35:77:a8:d9:1c:3e: 75:2c:0c:93:5e:62:8f:09:4d:ea:8f:18:4a:88:00:6a:a6:b1: b3:a6:7b:49:fc:39:a6:00:a7:21:f1:a0:42:50:f9:da:58:3c: a2:ad:04:2c:53:fa:71:18:4f:94:62:78:3e:c4:a0:79:64:ba: 18:c3:87:2a:3d:b2:8e:de:94:5d:56:3a:0f:18:46:ee:47:cd: e9:68:9f:99:b2:dd:cd:5b:12:a3:dc:ea:21:d0:5d:f7:78:be: d3:da:e1:19:7d:67:eb:ec:59:fd:2b:93:0a:78:35:97:95:eb: f8:ac:ee:f4:78:78:59:49:ba:58:96:e7:40:eb:0c:f8:68:d3: 97:36:3f:b7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC15J47wogUUTMXsxJLClIwKSrk4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAzMTY0ODQwWhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NTUzYjUyMjU5ZjY3YmVkYjEzMjYzZGUxYTJjYTZkMmZk NjUwMTc3MGEzZWEyNTJlN2UxMGY1ZGU5MjA4OGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWwvidBX0szjbMa5f3RD1kkzZu/PoHlFh/CKEnc5Gjfm/g KTMygrLdu2S61F4hw1cBx5tyaExfC6H+StwvYa9KxFP0nxN8ZeNAWVNPmyXODHYK FXEKSbvIaSLVnW0Lo95X/o/ADPTO7fqg4NWDmJ12KLawyx74bgGj6IPS3mgk+wF6 ToILtEJ1x3B8E8owrsCqmWdq8b3oeOjrbfYjGvP1RraZVOpMhW9n13BgTzmHjhQl DypsC2LGKMMm8N7i/hJRUgguwsXS2qvi6kINs2yOYNnumLrEVlcBU3N3FyRq/p7H uYcycxozLlvfLfemlP8LEyqVlLNYFskL3x4xRg+xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzF8AfP1fYbBMr3Y02Ga4wfFcXFUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxMTY0YzQxLWQ1ZTctNDlkMi1hNjRmLWQyM2U5YzE4NGUyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX7rAwDQYJKoZIhvcNAQELBQADggEBAMcRlryisFRjxIE0w1wy7r22wh5+ 5JasLJBVWqNTldMPbvGNNdjYoFAE66jk67rW06G50wlHdzEeLM+L4ZqV4pVXYePy Z/GHaRckIttjDn+U1dMX+XBiAsQdWtL3BDohibOK+IO5wzLpnY3Sj2mjtSX/33Iv EgMo6DV3qNkcPnUsDJNeYo8JTeqPGEqIAGqmsbOme0n8OaYApyHxoEJQ+dpYPKKt BCxT+nEYT5RieD7EoHlkuhjDhyo9so7elF1WOg8YRu5Hzelon5my3c1bEqPc6iHQ Xfd4vtPa4Rl9Z+vsWf0rkwp4NZeV6/is7vR4eFlJuliW50DrDPho05c2P7c= -----END CERTIFICATE-----Generated at Mon May 4 22:59:10 2026 by rpki-client