$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c57d0d-e861-474b-b383-3d563f8d44e6.roa File: 28c57d0d-e861-474b-b383-3d563f8d44e6.roa (raw, json) Hash identifier: djPgJxusnu/i1uBwRC0+vcOhOh94lLF//eYcs+GLPh0= Subject key identifier: 9E:2F:31:73:A8:76:38:A3:DD:1F:41:2A:94:7A:E6:3B:11:0D:20:A4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B64F4881F0023ADCEFC87BA19E28C7B996B624A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c57d0d-e861-474b-b383-3d563f8d44e6.roa Signing time: Wed 06 May 2026 00:00:31 +0000 ROA not before: Wed 06 May 2026 00:00:31 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.96.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:64:f4:88:1f:00:23:ad:ce:fc:87:ba:19:e2:8c:7b:99:6b:62:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:31 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=c7f6d9f3fecdfdda75f266cebdbcbbff380ecec83242065cba9e33dcb731a83d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7c:04:f2:93:1d:29:c5:3c:b9:ee:cd:04:71: 7a:0c:0e:e8:68:89:2e:a8:01:ee:06:c6:8d:2a:4a: bb:22:04:55:95:e2:ca:48:8c:e3:ae:e0:6d:1b:ba: 32:38:14:11:6b:ab:29:c6:78:82:ae:4b:1f:2e:4b: 08:c3:34:f3:67:85:fd:bd:8f:83:fb:ad:87:d4:d0: cd:a4:81:cd:fb:8a:53:e0:af:76:b2:d3:ca:95:49: d2:de:2d:ec:53:1b:26:6d:fc:cc:14:f9:f2:96:10: b3:68:aa:92:b8:f0:3c:bc:b0:89:71:3a:42:20:d6: 01:3b:99:05:0c:4b:ce:d2:96:ac:18:42:8c:ac:ac: b9:b5:b3:f4:a3:63:34:7f:97:1c:8c:4e:2b:1e:9b: ca:47:93:04:4a:76:d8:51:05:a4:1b:92:29:ca:54: ad:73:ea:57:ea:a2:d2:a4:b3:c4:6c:87:82:fe:fd: 95:cf:91:0b:09:4e:4e:c7:ab:32:bb:7d:41:62:05: ba:42:b1:3d:3b:b8:0c:1c:c0:22:6e:a1:52:80:9d: 9d:d6:65:16:27:38:da:28:2d:dd:b8:bd:cb:36:11: 5a:64:48:fd:41:35:d9:51:89:ec:6b:ac:48:08:d9: 1d:50:ac:e5:39:15:75:3a:4b:42:83:c6:87:03:27: 7d:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:2F:31:73:A8:76:38:A3:DD:1F:41:2A:94:7A:E6:3B:11:0D:20:A4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c57d0d-e861-474b-b383-3d563f8d44e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.96.0/21 Signature Algorithm: sha256WithRSAEncryption b6:92:9a:2d:c3:fa:29:5d:b2:58:39:4a:11:76:23:a5:ba:06: 59:c4:96:ff:3c:e8:94:10:2b:88:10:2d:55:cd:20:cf:5b:eb: 40:91:16:a1:68:f7:85:44:ab:a7:74:0f:bb:06:5d:09:f7:78: 46:2e:d1:b4:6a:52:92:2d:82:b1:81:41:a3:e2:12:1f:b9:44: 3b:94:0c:ed:23:d1:8c:48:1a:5e:fa:7d:6d:1c:54:ab:01:01: 35:0f:1a:4c:a9:b1:3a:c5:25:bf:71:fd:5c:29:6b:32:1b:26: 46:21:50:b1:6c:95:45:67:4b:62:d0:fc:ad:02:69:d8:91:96: d5:d0:99:43:97:80:5b:f8:5a:14:3b:a1:8e:f3:75:02:14:c3: 95:64:1d:15:59:4f:a7:5a:29:33:2f:9c:d9:74:8f:cb:7e:42: 09:e8:79:ea:98:88:47:a6:8e:3c:75:d7:47:33:c6:4a:4b:b6: 8d:d2:79:f8:31:f9:45:ee:70:96:d1:44:f9:a7:4d:4a:97:2e: ac:50:69:93:6c:40:35:0c:56:f9:c7:e1:a0:7d:26:fb:0e:cd: b7:4e:6f:e5:fd:c8:eb:ea:6d:ee:96:4c:07:93:28:f0:d5:ed: 12:6e:8e:44:d0:e2:9b:72:37:ec:b6:59:0a:3d:07:c1:d2:b3: 2e:c9:a8:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe2T0iB8AI63O/Ie6GeKMe5lrYkowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAwMDMxWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2Y2ZDlmM2ZlY2RmZGRhNzVmMjY2Y2ViZGJjYmJmZjM4 MGVjZWM4MzI0MjA2NWNiYTllMzNkY2I3MzFhODNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdfATykx0pxTy57s0EcXoMDuhoiS6oAe4Gxo0qSrsiBFWV 4spIjOOu4G0bujI4FBFrqynGeIKuSx8uSwjDNPNnhf29j4P7rYfU0M2kgc37ilPg r3ay08qVSdLeLexTGyZt/MwU+fKWELNoqpK48Dy8sIlxOkIg1gE7mQUMS87SlqwY QoysrLm1s/SjYzR/lxyMTisem8pHkwRKdthRBaQbkinKVK1z6lfqotKks8Rsh4L+ /ZXPkQsJTk7HqzK7fUFiBbpCsT07uAwcwCJuoVKAnZ3WZRYnONooLd24vcs2EVpk SP1BNdlRiexrrEgI2R1QrOU5FXU6S0KDxocDJ32ZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUni8xc6h2OKPdH0EqlHrmOxENIKQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4YzU3ZDBkLWU4NjEtNDc0Yi1iMzgzLTNkNTYzZjhkNDRlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl2AwDQYJKoZIhvcNAQELBQADggEBALaSmi3D+ildslg5ShF2I6W6BlnE lv886JQQK4gQLVXNIM9b60CRFqFo94VEq6d0D7sGXQn3eEYu0bRqUpItgrGBQaPi Eh+5RDuUDO0j0YxIGl76fW0cVKsBATUPGkypsTrFJb9x/VwpazIbJkYhULFslUVn S2LQ/K0CadiRltXQmUOXgFv4WhQ7oY7zdQIUw5VkHRVZT6daKTMvnNl0j8t+Qgno eeqYiEemjjx110czxkpLto3Sefgx+UXucJbRRPmnTUqXLqxQaZNsQDUMVvnH4aB9 JvsOzbdOb+X9yOvqbe6WTAeTKPDV7RJujkTQ4ptyN+y2WQo9B8HSsy7JqNw= -----END CERTIFICATE-----Generated at Tue May 12 22:14:40 2026 by rpki-client