$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f29adbc5-b5cd-46c1-8740-37db8845b968.roa File: f29adbc5-b5cd-46c1-8740-37db8845b968.roa (raw, json) Hash identifier: zjUx/I8IV7IIdeZ71rfVxP3E5hNnGLgjTjqoOkj49F0= Subject key identifier: 34:3B:66:38:56:8F:23:A1:C4:63:2B:5F:B4:5E:5F:8D:B3:E8:34:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D6458198899C627791AAD8E73870927D8B7E239 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f29adbc5-b5cd-46c1-8740-37db8845b968.roa Signing time: Fri 01 May 2026 00:41:30 +0000 ROA not before: Fri 01 May 2026 00:41:30 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 67.220.240.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:64:58:19:88:99:c6:27:79:1a:ad:8e:73:87:09:27:d8:b7:e2:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:41:30 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=0c56165af6a693dd8a7db1dbd6eb5a7fd390438a4c626a60b09672fcb4cae40f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:60:5a:a3:8c:5c:2f:e8:68:be:0c:cf:bc:c1: b1:f1:c7:06:21:a6:d8:2d:29:1d:ff:b9:df:af:14: 57:e9:9a:ff:dd:8c:a0:73:d2:37:ea:93:0e:ce:4c: 32:ea:8d:ca:65:4e:22:0b:76:2e:26:09:27:a6:40: ed:c3:ab:3e:46:61:9b:a0:c2:58:4d:39:3f:86:94: 3e:64:4a:95:c8:0f:30:d9:99:e8:b5:28:e1:31:ba: 60:98:b1:dd:30:f2:43:66:84:4a:3e:91:8a:34:4a: 67:62:ff:76:68:86:df:f9:ce:b0:ae:0e:04:b5:0c: 1b:2c:16:5c:64:f3:b0:54:d3:d2:7e:03:bb:19:c0: 0c:75:e7:f0:50:be:16:d3:11:27:5d:80:f8:2a:cf: b6:3c:18:9a:29:bf:df:f1:6c:9e:c3:83:f8:1c:b9: 72:94:ed:b8:81:cd:2b:72:30:14:37:14:88:b5:71: a9:7e:dc:0d:40:95:77:9a:fb:b3:69:90:cc:eb:a5: d8:c8:90:c0:21:4f:03:5d:5b:8e:02:88:1e:31:e0: 94:e2:ff:46:11:a1:35:82:a1:6f:a7:3c:2a:e2:4a: 62:f4:9b:26:06:d2:1a:09:30:62:9c:33:bd:2a:80: e9:59:b9:38:97:a7:07:bc:4e:6d:20:aa:4f:c6:a6: 7b:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:3B:66:38:56:8F:23:A1:C4:63:2B:5F:B4:5E:5F:8D:B3:E8:34:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f29adbc5-b5cd-46c1-8740-37db8845b968.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 67.220.240.0/20 Signature Algorithm: sha256WithRSAEncryption 6e:63:20:9d:3d:34:e5:af:c0:47:69:7a:40:ad:66:48:d5:d7: 7b:79:ee:9c:19:c2:20:71:c7:e0:e2:ce:20:95:7e:c5:11:58: 1e:77:ab:ad:01:fe:30:2f:b6:51:0d:c7:b8:81:4c:da:cd:5d: f3:eb:eb:b6:b8:75:f6:3e:8f:fa:c6:86:c4:5c:bb:cb:7d:46: e0:bd:68:01:d3:19:77:0a:8f:9e:c4:88:24:d9:af:12:9c:d9: c7:d1:09:44:ac:c7:9d:fc:cc:ec:21:6a:4b:a2:27:4b:91:f0: 3c:24:fa:12:af:a4:d8:5d:98:20:40:bc:0c:92:fb:15:6a:d6: b1:cf:e0:ef:d2:76:7f:0a:21:12:41:f0:30:07:41:dc:64:76: 24:7f:a6:8e:c9:79:75:2a:9a:b2:be:7c:82:7a:55:83:0c:7f: 1c:7c:6e:27:15:8d:49:dd:18:05:d2:ea:5e:cd:ef:15:78:d6: 31:07:bd:36:24:98:c0:c5:e6:23:cf:f2:77:31:7f:6c:72:02: 29:88:57:6f:fc:41:99:f5:6f:56:90:10:98:d0:40:ec:fa:34: 06:73:70:4f:b0:4a:6c:c1:56:20:fc:d0:ce:92:ec:04:bc:16: 8b:b8:bb:a7:b2:1e:8b:10:6b:fc:3d:f7:1d:fb:64:37:7d:eb: 4a:bb:79:50 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTWRYGYiZxid5Gq2Oc4cJJ9i34jkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA0MTMwWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwYzU2MTY1YWY2YTY5M2RkOGE3ZGIxZGJkNmViNWE3ZmQz OTA0MzhhNGM2MjZhNjBiMDk2NzJmY2I0Y2FlNDBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoYFqjjFwv6Gi+DM+8wbHxxwYhptgtKR3/ud+vFFfpmv/d jKBz0jfqkw7OTDLqjcplTiILdi4mCSemQO3Dqz5GYZugwlhNOT+GlD5kSpXIDzDZ mei1KOExumCYsd0w8kNmhEo+kYo0Smdi/3Zoht/5zrCuDgS1DBssFlxk87BU09J+ A7sZwAx15/BQvhbTESddgPgqz7Y8GJopv9/xbJ7Dg/gcuXKU7biBzStyMBQ3FIi1 cal+3A1AlXea+7NpkMzrpdjIkMAhTwNdW44CiB4x4JTi/0YRoTWCoW+nPCriSmL0 myYG0hoJMGKcM70qgOlZuTiXpwe8Tm0gqk/GpntVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNDtmOFaPI6HEYytftF5fjbPoNJgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyOWFkYmM1LWI1Y2QtNDZjMS04NzQwLTM3ZGI4ODQ1Yjk2OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARD3PAwDQYJKoZIhvcNAQELBQADggEBAG5jIJ09NOWvwEdpekCtZkjV13t5 7pwZwiBxx+DiziCVfsURWB53q60B/jAvtlENx7iBTNrNXfPr67a4dfY+j/rGhsRc u8t9RuC9aAHTGXcKj57EiCTZrxKc2cfRCUSsx538zOwhakuiJ0uR8Dwk+hKvpNhd mCBAvAyS+xVq1rHP4O/Sdn8KIRJB8DAHQdxkdiR/po7JeXUqmrK+fIJ6VYMMfxx8 bicVjUndGAXS6l7N7xV41jEHvTYkmMDF5iPP8ncxf2xyAimIV2/8QZn1b1aQEJjQ QOz6NAZzcE+wSmzBViD80M6S7AS8Fou4u6eyHosQa/w99x37ZDd960q7eVA= -----END CERTIFICATE-----Generated at Sun May 3 16:13:30 2026 by rpki-client