$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa File: 2c8703a1-34ff-445a-83d6-9423df90d41e.roa (raw, json) Hash identifier: in+Y9BzndHzXBkrouAUAgg8Za3iSIF9aowucE7PM85I= Subject key identifier: 78:D1:EA:1C:10:24:99:A1:B7:B4:24:71:55:05:39:CB:2A:BF:84:27 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DD92D520039A648E8F1E210D5057AE2EE415157 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa Signing time: Wed 06 May 2026 00:00:28 +0000 ROA not before: Wed 06 May 2026 00:00:28 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.0.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:d9:2d:52:00:39:a6:48:e8:f1:e2:10:d5:05:7a:e2:ee:41:51:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:00:28 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=3543e85851086b8cec78d2fc90e0961b4cf9982b7593d560acf1407cba32146e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:63:c3:b0:c2:b0:19:3f:64:6e:c7:1c:4c:01: ad:d4:f1:e0:31:e9:ae:ba:3a:ad:1f:3d:15:e9:2c: 2b:ac:35:f5:04:f1:97:69:5f:a7:a0:51:67:cd:e9: 0f:ba:df:69:ed:73:bf:16:6f:2b:8c:8e:8a:00:64: ba:80:5e:3c:ba:32:ca:90:35:06:ac:5c:cf:c4:c2: f9:bd:ba:ea:ff:30:2b:50:5f:1e:31:37:87:d8:03: 21:e1:87:f4:9d:30:76:b7:49:14:2f:94:b9:c5:13: 22:2e:12:a7:2c:ed:77:6b:1b:d5:d5:58:02:f7:f4: 75:02:72:c8:8c:61:51:8c:6b:63:3d:e6:e9:ca:70: 14:fb:9b:bf:2f:e4:5d:a7:d4:6c:88:ed:f7:e7:29: 4f:23:cd:6c:ac:be:a9:c3:d7:98:51:35:a4:f9:dc: 35:19:33:97:1f:f6:9f:31:60:47:ef:3b:d3:d8:7b: 03:ff:b6:0b:8e:c1:d8:bf:e6:7a:10:5c:73:60:c8: 42:a0:9e:b8:2f:ef:67:d2:13:d1:fb:9d:58:cb:d8: 19:6e:d8:a5:ef:51:75:44:43:94:4e:67:52:d6:f1: 28:2d:b7:d7:6b:e4:0b:93:18:ca:c7:1e:62:b9:8f: 01:d9:63:a6:82:56:5d:c5:4e:bd:53:11:fb:cc:2d: 97:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:D1:EA:1C:10:24:99:A1:B7:B4:24:71:55:05:39:CB:2A:BF:84:27 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c8703a1-34ff-445a-83d6-9423df90d41e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.0.0/22 Signature Algorithm: sha256WithRSAEncryption 77:52:53:65:5e:cc:aa:1d:5a:7e:ab:82:ba:29:e0:c7:be:5f: 01:42:1b:b4:1a:75:14:9c:f1:85:0b:32:ac:8b:3c:4e:d0:ec: a0:ef:cd:a3:9f:88:6a:4a:51:07:35:fe:6f:60:cc:47:ce:71: 95:f7:35:6e:35:ce:fb:c9:7f:7f:07:d3:7b:c8:f2:e4:93:cc: 3a:8e:2b:5a:da:e6:85:ad:b5:da:4c:d1:d6:47:af:60:70:5d: ef:48:08:b2:eb:f0:c6:ac:5f:7e:0e:04:5c:89:e8:3a:46:ba: f1:05:19:c7:97:d9:de:e8:7f:df:9a:72:84:73:3e:75:5b:bf: ab:a0:44:e7:5a:51:39:6f:19:5e:fd:97:4e:cb:e1:c6:28:26: 1a:05:fd:3a:df:2d:cd:93:77:38:18:26:bd:61:55:86:3f:71: f2:b7:fd:6e:18:9a:43:31:df:ba:6a:24:01:59:0b:85:4a:d4: 05:a4:0e:f2:bd:e7:5a:9e:ba:20:74:d6:87:c4:f1:af:1e:8e: e0:93:61:b7:2b:86:4a:02:d0:e2:be:c4:05:9a:5a:d4:79:fe: 79:5d:3f:37:7b:78:b2:a4:22:4b:89:50:c5:44:ff:86:b6:d3: f9:97:9e:f4:01:ca:7e:7f:50:8b:4a:f2:c3:e8:51:8a:02:90: a5:8a:fc:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDdktUgA5pkjo8eIQ1QV64u5BUVcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAwMDI4WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTQzZTg1ODUxMDg2YjhjZWM3OGQyZmM5MGUwOTYxYjRj Zjk5ODJiNzU5M2Q1NjBhY2YxNDA3Y2JhMzIxNDZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPY8OwwrAZP2RuxxxMAa3U8eAx6a66Oq0fPRXpLCusNfUE 8ZdpX6egUWfN6Q+632ntc78WbyuMjooAZLqAXjy6MsqQNQasXM/Ewvm9uur/MCtQ Xx4xN4fYAyHhh/SdMHa3SRQvlLnFEyIuEqcs7XdrG9XVWAL39HUCcsiMYVGMa2M9 5unKcBT7m78v5F2n1GyI7ffnKU8jzWysvqnD15hRNaT53DUZM5cf9p8xYEfvO9PY ewP/tguOwdi/5noQXHNgyEKgnrgv72fSE9H7nVjL2Blu2KXvUXVEQ5ROZ1LW8Sgt t9dr5AuTGMrHHmK5jwHZY6aCVl3FTr1TEfvMLZd9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeNHqHBAkmaG3tCRxVQU5yyq/hCcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjODcwM2ExLTM0ZmYtNDQ1YS04M2Q2LTk0MjNkZjkwZDQxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjlgAwDQYJKoZIhvcNAQELBQADggEBAHdSU2VezKodWn6rgrop4Me+XwFC G7QadRSc8YULMqyLPE7Q7KDvzaOfiGpKUQc1/m9gzEfOcZX3NW41zvvJf38H03vI 8uSTzDqOK1ra5oWttdpM0dZHr2BwXe9ICLLr8MasX34OBFyJ6DpGuvEFGceX2d7o f9+acoRzPnVbv6ugROdaUTlvGV79l07L4cYoJhoF/TrfLc2TdzgYJr1hVYY/cfK3 /W4YmkMx37pqJAFZC4VK1AWkDvK951qeuiB01ofE8a8ejuCTYbcrhkoC0OK+xAWa WtR5/nldPzd7eLKkIkuJUMVE/4a20/mXnvQByn5/UItK8sPoUYoCkKWK/KA= -----END CERTIFICATE-----Generated at Tue May 12 21:39:57 2026 by rpki-client