$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa File: f98e5b39-9271-4700-b6e2-c2328787d9f6.roa (raw, json) Hash identifier: SEf03Q8ErfRfAadUXVedgwXsk4fFirhvXGHpWb0NFDc= Subject key identifier: 53:A4:A4:6F:5E:E3:2A:FD:B8:2F:E5:DD:42:10:4D:45:C0:FA:82:01 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09A00F16E99DBA7367547665574032D583A2D71E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa Signing time: Wed 20 May 2026 00:21:16 +0000 ROA not before: Wed 20 May 2026 00:21:16 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 151.148.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 07 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:a0:0f:16:e9:9d:ba:73:67:54:76:65:57:40:32:d5:83:a2:d7:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:21:16 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=166a55fcbe4a4e1895f268d9d717095e6000185acd22b37d290d1e905357296f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:1b:77:c5:52:5e:df:14:f1:c0:1e:85:d8:36: 24:3f:7a:f8:ef:d3:2f:0c:20:b9:ea:bf:d7:49:ad: b3:40:4b:f2:98:ff:4a:88:ec:45:ea:b9:cc:af:f9: 22:73:da:7b:8d:4c:dd:38:fc:35:15:3a:a2:f4:8d: 3f:8b:d8:ce:fa:74:f8:d7:71:98:40:67:37:06:fc: 9e:f6:fd:38:6a:52:8f:73:f8:2f:25:d1:1c:b0:3d: a9:73:81:3b:c9:12:55:24:6e:d6:5e:03:b5:72:28: 87:79:ec:9c:c4:0b:28:51:6d:c5:ec:f7:03:e5:f2: 20:13:ac:f0:3f:3c:0a:ed:0b:20:ba:b3:ab:a0:01: a2:3f:50:49:c9:07:d4:77:1a:98:6d:84:a6:bd:dc: b4:ee:fd:28:45:f0:0b:7e:5f:d4:07:ac:e6:aa:9e: 30:15:1f:bf:74:de:80:56:8a:6d:b1:3d:bc:27:c0: 0c:bc:95:88:07:62:d2:b3:09:54:17:de:73:89:ca: c8:91:a4:f1:26:af:21:6e:71:9e:66:8b:13:50:95: ea:4d:c8:51:10:12:57:67:41:b3:f2:44:9b:ac:5a: 03:5c:86:6d:8b:f9:f7:07:30:47:b3:1d:15:b0:fb: 74:6f:a6:0e:11:7a:dc:05:ec:6f:16:7b:00:71:f9: 38:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:A4:A4:6F:5E:E3:2A:FD:B8:2F:E5:DD:42:10:4D:45:C0:FA:82:01 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98e5b39-9271-4700-b6e2-c2328787d9f6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 151.148.64.0/18 Signature Algorithm: sha256WithRSAEncryption 40:00:6e:b6:d6:bb:40:4d:71:40:2c:fd:49:a0:22:24:12:c7: 3c:21:c8:c3:83:13:2a:84:b6:f9:55:83:67:53:dc:95:19:39: 02:53:20:b0:81:ee:56:2a:dc:f7:75:8e:9b:a1:82:13:c0:dd: 41:6a:45:be:55:de:77:0a:51:37:df:de:9f:55:dd:0c:03:2c: 3a:30:4b:eb:a2:28:62:e0:3a:e2:ad:d7:37:ac:4d:ac:35:ce: 40:85:ea:ba:6f:a4:e0:4d:98:2a:8e:2a:1b:7c:8a:d7:99:b8: 26:99:4a:9b:24:c7:8b:5f:8d:15:e3:e5:a7:5b:16:81:70:6e: 1c:36:08:34:10:f7:8d:b4:cb:af:bb:55:8b:e9:58:4e:31:96: 8c:1b:c4:81:dc:71:51:33:29:e2:0a:4c:9b:1a:8b:e5:32:b1: 73:93:72:b8:e7:74:d1:32:a8:ca:20:48:39:b2:ff:29:d2:2b: 31:ac:55:39:c9:a0:06:2b:2d:66:76:ba:84:2c:45:c4:cd:ed: e7:fe:5a:88:be:49:ca:a3:3c:e4:21:57:9b:c8:3b:05:df:be: dc:7b:fb:df:1c:d9:8b:51:6e:56:6b:c0:a8:bc:61:db:d7:67: 4b:88:21:a6:55:87:3b:8a:59:af:ef:f3:bd:97:23:20:b6:46: 7e:3b:6d:18 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCaAPFumdunNnVHZlV0Ay1YOi1x4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAyMTE2WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNjZhNTVmY2JlNGE0ZTE4OTVmMjY4ZDlkNzE3MDk1ZTYw MDAxODVhY2QyMmIzN2QyOTBkMWU5MDUzNTcyOTZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWG3fFUl7fFPHAHoXYNiQ/evjv0y8MILnqv9dJrbNAS/KY /0qI7EXqucyv+SJz2nuNTN04/DUVOqL0jT+L2M76dPjXcZhAZzcG/J72/ThqUo9z +C8l0RywPalzgTvJElUkbtZeA7VyKId57JzECyhRbcXs9wPl8iATrPA/PArtCyC6 s6ugAaI/UEnJB9R3GphthKa93LTu/ShF8At+X9QHrOaqnjAVH7903oBWim2xPbwn wAy8lYgHYtKzCVQX3nOJysiRpPEmryFucZ5mixNQlepNyFEQEldnQbPyRJusWgNc hm2L+fcHMEezHRWw+3Rvpg4RetwF7G8WewBx+TipAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUU6Skb17jKv24L+XdQhBNRcD6ggEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OGU1YjM5LTkyNzEtNDcwMC1iNmUyLWMyMzI4Nzg3ZDlmNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaXlEAwDQYJKoZIhvcNAQELBQADggEBAEAAbrbWu0BNcUAs/UmgIiQSxzwh yMODEyqEtvlVg2dT3JUZOQJTILCB7lYq3Pd1jpuhghPA3UFqRb5V3ncKUTff3p9V 3QwDLDowS+uiKGLgOuKt1zesTaw1zkCF6rpvpOBNmCqOKht8iteZuCaZSpskx4tf jRXj5adbFoFwbhw2CDQQ9420y6+7VYvpWE4xlowbxIHccVEzKeIKTJsai+UysXOT crjndNEyqMogSDmy/ynSKzGsVTnJoAYrLWZ2uoQsRcTN7ef+Woi+ScqjPOQhV5vI OwXfvtx7+98c2YtRblZrwKi8YdvXZ0uIIaZVhzuKWa/v872XIyC2Rn47bRg= -----END CERTIFICATE-----Generated at Fri Jun 5 21:33:46 2026 by rpki-client