$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e13db33d-b492-48c9-a7e4-aa878a359fe3.roa File: e13db33d-b492-48c9-a7e4-aa878a359fe3.roa (raw, json) Hash identifier: HrAQQWfAzEAFvlnv/0/fJQWNNIkCtOwCSu+Az+4iDOo= Subject key identifier: EC:BC:4A:96:5E:A6:D4:B4:E3:F0:9E:C7:6F:95:49:00:DC:C5:C2:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4A9A6CF063D98D0AAE43724A4770477CB70ACF73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e13db33d-b492-48c9-a7e4-aa878a359fe3.roa Signing time: Tue 28 Apr 2026 00:00:36 +0000 ROA not before: Tue 28 Apr 2026 00:00:36 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:9a:6c:f0:63:d9:8d:0a:ae:43:72:4a:47:70:47:7c:b7:0a:cf:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:00:36 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=ee4cdb960ab45ef2118e6ba290f254af281b1c7438429d44c04cda9c01511d04, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:59:31:e8:e2:4e:22:b3:43:87:06:43:25:5b: 23:fa:b6:33:ab:54:6b:c2:c6:b7:8a:55:2b:9b:4d: 39:4e:d1:5f:4e:45:5b:fc:0a:a8:7c:bb:2e:52:b4: 94:66:dd:01:be:44:76:c9:5d:c0:31:bc:21:51:58: 6d:7b:36:e5:5b:5a:1b:71:59:a6:04:76:41:c2:0f: 3e:53:01:6b:5e:d1:cf:c0:29:17:df:1d:1f:05:82: 17:e6:ad:83:ba:50:38:6a:a8:7e:4c:bb:2f:d1:8e: 51:11:22:d9:64:59:70:1c:3a:29:86:da:12:7a:57: 13:85:72:57:52:f8:c9:9b:36:f5:2c:f0:a9:59:47: 3d:c4:73:83:cf:52:80:62:bd:ab:f2:a5:31:b8:38: 0a:87:58:58:ab:ef:92:ae:ad:eb:16:7d:47:a2:14: 7f:cd:8d:9f:f5:02:b6:5f:24:1d:27:f9:2f:4c:af: 90:2c:38:d0:e4:a0:9f:ef:ac:c3:72:da:56:8f:de: 83:1f:b1:a0:67:3e:b1:e7:e3:55:58:08:7f:ee:ef: b0:0c:55:f1:ef:50:57:a6:c5:86:fb:57:bf:b7:1c: e9:67:3c:da:3f:65:e0:6b:c4:eb:c8:b0:39:a4:04: 8f:d0:2f:21:dc:53:4b:b0:cf:e7:c8:94:94:ae:b7: 20:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:BC:4A:96:5E:A6:D4:B4:E3:F0:9E:C7:6F:95:49:00:DC:C5:C2:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e13db33d-b492-48c9-a7e4-aa878a359fe3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.120.0/22 Signature Algorithm: sha256WithRSAEncryption 3b:5c:05:67:f7:20:90:53:21:97:ac:b8:83:6a:0e:b1:3d:3d: c5:79:5b:bc:d8:d0:3e:36:28:e5:af:33:77:15:50:17:29:8f: 63:03:84:60:79:fa:4a:4f:09:91:68:20:8a:46:24:3d:c5:50: d6:da:48:a6:bc:af:85:a7:9b:ce:da:d2:3e:19:60:e8:9f:03: 17:2e:c0:56:e6:c6:29:40:f5:15:a9:63:47:c9:a6:f5:e7:b7: 25:5d:6a:0a:5f:93:71:52:9c:1e:e6:bf:6c:b4:32:f6:a6:ed: 48:15:ed:4c:1b:94:b5:a4:23:08:cb:8e:b5:90:90:c4:3c:4b: 0d:65:9e:a0:4b:be:a2:09:ba:d7:3e:8e:92:ad:bb:d3:e5:1d: e7:6b:85:fb:c0:fc:22:0e:d5:98:80:9f:5d:d3:01:f4:b1:fe: a0:4a:41:24:e1:3a:d8:fe:91:13:67:69:97:fc:ca:78:1f:47: 7e:51:18:6a:e6:44:56:de:6b:8a:8f:f9:b1:c0:51:df:82:65: f9:c0:df:8c:6d:c3:9d:3d:75:a3:73:f6:1b:c3:fe:f0:19:62: e8:70:7b:aa:42:3f:ab:79:9c:8e:6a:66:99:46:57:d8:dc:89: 44:a2:d0:1e:36:0e:77:e4:44:b4:bd:ca:04:0c:83:ce:15:8e: aa:c0:c1:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSpps8GPZjQquQ3JKR3BHfLcKz3MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAwMDM2WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTRjZGI5NjBhYjQ1ZWYyMTE4ZTZiYTI5MGYyNTRhZjI4 MWIxYzc0Mzg0MjlkNDRjMDRjZGE5YzAxNTExZDA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDIWTHo4k4is0OHBkMlWyP6tjOrVGvCxreKVSubTTlO0V9O RVv8Cqh8uy5StJRm3QG+RHbJXcAxvCFRWG17NuVbWhtxWaYEdkHCDz5TAWte0c/A KRffHR8FghfmrYO6UDhqqH5Muy/RjlERItlkWXAcOimG2hJ6VxOFcldS+MmbNvUs 8KlZRz3Ec4PPUoBivavypTG4OAqHWFir75KuresWfUeiFH/NjZ/1ArZfJB0n+S9M r5AsONDkoJ/vrMNy2laP3oMfsaBnPrHn41VYCH/u77AMVfHvUFemxYb7V7+3HOln PNo/ZeBrxOvIsDmkBI/QLyHcU0uwz+fIlJSutyBBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7LxKll6m1LTj8J7Hb5VJANzFwgowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxM2RiMzNkLWI0OTItNDhjOS1hN2U0LWFhODc4YTM1OWZlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX/ngwDQYJKoZIhvcNAQELBQADggEBADtcBWf3IJBTIZesuINqDrE9PcV5 W7zY0D42KOWvM3cVUBcpj2MDhGB5+kpPCZFoIIpGJD3FUNbaSKa8r4Wnm87a0j4Z YOifAxcuwFbmxilA9RWpY0fJpvXntyVdagpfk3FSnB7mv2y0Mvam7UgV7UwblLWk IwjLjrWQkMQ8Sw1lnqBLvqIJutc+jpKtu9PlHedrhfvA/CIO1ZiAn13TAfSx/qBK QSThOtj+kRNnaZf8yngfR35RGGrmRFbea4qP+bHAUd+CZfnA34xtw509daNz9hvD /vAZYuhwe6pCP6t5nI5qZplGV9jciUSi0B42DnfkRLS9ygQMg84VjqrAwWY= -----END CERTIFICATE-----Generated at Mon May 4 21:37:53 2026 by rpki-client