$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa File: da395588-d89b-4035-b834-7552c1e5a259.roa (raw, json) Hash identifier: xZQJYzqsd5XW2QUPsQc0d/1/L0kiYfv2E3TCWkza1OI= Subject key identifier: 39:BF:11:86:0C:78:FD:63:CC:8E:5D:A8:D9:BF:6D:CD:CB:F5:5A:2A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4715FF8E34BDF033DE324F41603F6A7D29A9624B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa Signing time: Wed 20 May 2026 00:11:04 +0000 ROA not before: Wed 20 May 2026 00:11:04 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 8987 IP address blocks: 76.223.168.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:15:ff:8e:34:bd:f0:33:de:32:4f:41:60:3f:6a:7d:29:a9:62:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:11:04 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=359dccb6ba92994b62aec99d3cbe64ba9f6e083f33f285b7501b0623947d48d4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:bf:07:5e:38:4a:b6:72:bd:33:3c:cf:6b:f8: 4d:ec:b8:76:15:26:a2:6f:ff:a8:5b:5e:51:5f:83: 1f:fd:d8:c2:31:61:b3:dd:9f:ad:ae:71:3f:d5:f7: be:e9:ab:c0:41:5d:60:6b:2e:a6:6e:82:05:9e:dd: c8:f3:c8:2a:34:1b:db:a3:57:e6:06:0a:84:48:f0: 96:bb:44:02:cf:49:18:fa:d8:58:56:66:6b:75:44: a6:84:05:19:5b:99:8e:03:01:0f:f5:24:8c:ef:bd: 49:3f:1b:85:34:25:b9:7d:09:47:d9:01:dc:6d:cc: 7b:4f:9f:9a:45:fb:b3:95:5e:42:36:93:f1:63:5a: 1a:ae:aa:e1:50:b4:8a:bd:2c:28:f2:b3:0d:37:a3: 78:c1:2b:ca:a5:54:4b:e1:ba:9c:bd:b9:ea:97:81: cf:ba:bd:51:16:08:b3:f4:6c:78:68:02:f3:4f:d8: bc:fb:0c:6b:4f:53:85:77:ac:07:e1:bc:3e:60:82: 41:64:48:43:ad:87:59:7e:15:1c:dc:15:7a:e4:f5: 27:86:b1:e2:50:1d:0a:7f:f7:0b:cd:af:ef:1a:4b: 68:90:7a:d1:55:38:94:bd:f2:fa:10:cd:1b:8e:bc: b1:cf:c8:bc:26:c3:ea:65:e2:80:bd:83:ca:33:81: d6:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:BF:11:86:0C:78:FD:63:CC:8E:5D:A8:D9:BF:6D:CD:CB:F5:5A:2A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da395588-d89b-4035-b834-7552c1e5a259.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.168.0/24 Signature Algorithm: sha256WithRSAEncryption 26:5b:e9:36:ed:e0:88:db:d0:2f:94:c1:ab:89:c9:e8:3b:da: ef:53:81:8d:98:b7:58:3a:b3:23:6a:a5:b8:fd:b0:9a:ab:d7: c5:99:00:c8:bb:6f:28:38:95:7a:74:55:aa:46:15:85:6b:dc: e5:26:47:1f:96:f0:4d:03:6d:02:d7:92:47:a8:cf:e4:e0:39: 2c:66:ca:82:65:46:da:53:5e:47:4b:f8:c4:fd:f5:37:4e:70: e5:55:91:d0:e3:e5:27:77:86:ec:1f:ec:e0:fa:67:c0:6d:3d: 0e:5f:d9:97:e9:7d:8f:ac:8d:be:5a:e1:7f:d7:ed:6c:3c:55: 9c:9c:ea:92:8b:53:6f:3b:ac:ff:3f:a8:fc:c4:92:6b:c2:3b: 59:cb:d4:b6:82:33:31:c6:22:7e:dc:16:77:97:3e:77:ee:54: 05:9b:37:d8:6b:cd:bd:65:b6:df:92:41:ae:35:e7:54:6c:b4: da:4d:a8:dc:e8:39:df:94:41:a3:8a:0c:30:29:b7:11:f5:b0: 8e:60:35:c6:6f:c6:af:19:d8:f6:fd:b0:60:9b:00:f0:b6:b3: 6d:72:80:98:e9:db:c2:50:b1:03:bd:d6:95:7f:80:b0:11:80: ce:30:4d:70:5b:cb:ab:55:a6:ad:01:4b:e9:ac:db:b4:b3:0a: 4f:3d:86:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURxX/jjS98DPeMk9BYD9qfSmpYkswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAxMTA0WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTlkY2NiNmJhOTI5OTRiNjJhZWM5OWQzY2JlNjRiYTlm NmUwODNmMzNmMjg1Yjc1MDFiMDYyMzk0N2Q0OGQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGvwdeOEq2cr0zPM9r+E3suHYVJqJv/6hbXlFfgx/92MIx YbPdn62ucT/V977pq8BBXWBrLqZuggWe3cjzyCo0G9ujV+YGCoRI8Ja7RALPSRj6 2FhWZmt1RKaEBRlbmY4DAQ/1JIzvvUk/G4U0Jbl9CUfZAdxtzHtPn5pF+7OVXkI2 k/FjWhququFQtIq9LCjysw03o3jBK8qlVEvhupy9ueqXgc+6vVEWCLP0bHhoAvNP 2Lz7DGtPU4V3rAfhvD5ggkFkSEOth1l+FRzcFXrk9SeGseJQHQp/9wvNr+8aS2iQ etFVOJS98voQzRuOvLHPyLwmw+pl4oC9g8ozgdbBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOb8Rhgx4/WPMjl2o2b9tzcv1WiowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhMzk1NTg4LWQ4OWItNDAzNS1iODM0LTc1NTJjMWU1YTI1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36gwDQYJKoZIhvcNAQELBQADggEBACZb6Tbt4Ijb0C+UwauJyeg72u9T gY2Yt1g6syNqpbj9sJqr18WZAMi7byg4lXp0VapGFYVr3OUmRx+W8E0DbQLXkkeo z+TgOSxmyoJlRtpTXkdL+MT99TdOcOVVkdDj5Sd3huwf7OD6Z8BtPQ5f2ZfpfY+s jb5a4X/X7Ww8VZyc6pKLU287rP8/qPzEkmvCO1nL1LaCMzHGIn7cFneXPnfuVAWb N9hrzb1ltt+SQa4151RstNpNqNzoOd+UQaOKDDAptxH1sI5gNcZvxq8Z2Pb9sGCb APC2s21ygJjp28JQsQO91pV/gLARgM4wTXBby6tVpq0BS+ms27SzCk89hjQ= -----END CERTIFICATE-----Generated at Sat Jun 6 11:51:48 2026 by rpki-client