$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa File: 669c6dd1-8211-4cb9-b776-33c71b14ac40.roa (raw, json) Hash identifier: yWy4jRjSghjszoxSUCkAS/8KGo9QcTAiHGBKbLjf7/8= Subject key identifier: 91:2C:A7:0F:0D:5B:9E:38:0D:DD:4C:47:7D:3F:C7:35:0F:CE:45:B2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B244DC65C63D50174D2B1C710346BC892483FDA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa Signing time: Wed 06 May 2026 00:40:45 +0000 ROA not before: Wed 06 May 2026 00:40:45 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.72.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:24:4d:c6:5c:63:d5:01:74:d2:b1:c7:10:34:6b:c8:92:48:3f:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:40:45 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=24c09e6bd7d8cba45e73ae7e43036b0fc599ce81f2a33c212b9f1e27612225da, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:70:5c:52:ba:49:9d:fd:d6:8f:be:82:3f:14: 78:f8:3f:13:90:fe:37:b7:d2:b1:50:1b:30:67:fb: 4f:84:9e:ed:64:31:89:a0:4b:6c:c7:df:a3:22:a3: 53:9d:8c:1f:2d:ea:bd:d4:63:60:8e:76:41:d8:a7: 05:99:ab:37:8a:ce:6f:2a:a7:40:28:46:c5:fd:03: e8:cd:6e:3b:e0:7d:5a:94:a3:35:6c:42:ba:96:55: 61:2e:34:b3:48:05:c9:fe:5a:3e:22:01:7b:87:5b: 89:ac:d6:13:b9:18:1d:ca:c9:7a:fe:43:b9:72:9a: 8b:f9:d2:5d:8f:0d:bd:12:5f:dc:df:08:ac:48:29: 96:a4:1b:e1:02:9b:c2:84:a9:2c:68:79:57:0f:e2: e3:58:95:72:d9:28:70:24:00:1b:c3:ee:ab:20:cc: 9f:cd:b6:23:9a:1e:eb:37:d6:06:07:d1:31:b2:8a: 59:23:a2:bd:97:32:f5:9d:7c:16:55:81:92:00:0a: 85:b6:16:fd:6b:f1:60:df:cb:e1:1d:de:56:dc:b6: b3:e1:69:32:23:ec:42:5f:77:1e:73:1b:78:da:48: 70:06:77:c7:31:5c:5c:86:8d:48:09:a7:6f:7b:f4: 38:b8:ba:03:9f:13:e4:04:f6:0a:02:b2:1a:a2:bc: b4:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:2C:A7:0F:0D:5B:9E:38:0D:DD:4C:47:7D:3F:C7:35:0F:CE:45:B2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/669c6dd1-8211-4cb9-b776-33c71b14ac40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.72.0/23 Signature Algorithm: sha256WithRSAEncryption 54:8d:20:8b:93:97:83:ac:59:56:5a:b9:1c:eb:62:12:ce:e2: c0:2e:09:1d:fe:b1:d2:f7:39:d1:5f:4a:0e:a5:98:17:46:53: af:38:dc:16:f1:20:9e:2b:84:00:a5:96:be:af:ac:14:0f:af: 2c:18:ec:1a:9c:f6:f4:26:41:8c:56:d9:77:bf:3f:0d:6b:71: c5:73:08:ea:51:48:49:5f:30:d1:a9:85:59:b3:96:31:5d:70: d9:5a:7c:f0:7e:46:43:26:d2:a0:7b:7d:38:3d:9c:a7:5f:4e: 14:8b:d3:e6:d0:31:18:48:9c:79:a8:d9:c2:d0:e3:26:ec:90: b1:a4:26:6f:ae:b6:d1:64:b9:fe:f9:5c:3e:3f:6e:82:8b:43: a5:37:6a:16:af:65:f3:7e:92:71:8f:b4:4d:52:12:dc:c4:f7: 88:1a:10:ce:d5:a9:0b:52:aa:74:e1:a4:ce:6a:a3:f4:e3:6f: 10:24:fa:db:d0:6d:44:47:ce:ce:d9:df:1b:80:b2:3e:2e:a2: e3:4b:2d:bd:90:6b:a0:7d:b9:5a:a0:28:c8:ff:5a:9b:0a:8a: 8f:b2:a0:b2:7b:4f:24:d5:66:fd:ec:e1:3e:51:73:1e:64:20: 82:94:ea:44:af:81:4e:9d:05:f9:c0:e1:41:af:74:66:86:94: 93:0b:8b:e4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOyRNxlxj1QF00rHHEDRryJJIP9owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDA0MDQ1WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGMwOWU2YmQ3ZDhjYmE0NWU3M2FlN2U0MzAzNmIwZmM1 OTljZTgxZjJhMzNjMjEyYjlmMWUyNzYxMjIyNWRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUcFxSukmd/daPvoI/FHj4PxOQ/je30rFQGzBn+0+Enu1k MYmgS2zH36Mio1OdjB8t6r3UY2COdkHYpwWZqzeKzm8qp0AoRsX9A+jNbjvgfVqU ozVsQrqWVWEuNLNIBcn+Wj4iAXuHW4ms1hO5GB3KyXr+Q7lymov50l2PDb0SX9zf CKxIKZakG+ECm8KEqSxoeVcP4uNYlXLZKHAkABvD7qsgzJ/NtiOaHus31gYH0TGy ilkjor2XMvWdfBZVgZIACoW2Fv1r8WDfy+Ed3lbctrPhaTIj7EJfdx5zG3jaSHAG d8cxXFyGjUgJp2979Di4ugOfE+QE9goCshqivLSpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkSynDw1bnjgN3UxHfT/HNQ/ORbIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2OWM2ZGQxLTgyMTEtNGNiOS1iNzc2LTMzYzcxYjE0YWM0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl0gwDQYJKoZIhvcNAQELBQADggEBAFSNIIuTl4OsWVZauRzrYhLO4sAu CR3+sdL3OdFfSg6lmBdGU6843BbxIJ4rhACllr6vrBQPrywY7Bqc9vQmQYxW2Xe/ Pw1rccVzCOpRSElfMNGphVmzljFdcNlafPB+RkMm0qB7fTg9nKdfThSL0+bQMRhI nHmo2cLQ4ybskLGkJm+uttFkuf75XD4/boKLQ6U3ahavZfN+knGPtE1SEtzE94ga EM7VqQtSqnThpM5qo/TjbxAk+tvQbURHzs7Z3xuAsj4uouNLLb2Qa6B9uVqgKMj/ WpsKio+yoLJ7TyTVZv3s4T5Rcx5kIIKU6kSvgU6dBfnA4UGvdGaGlJMLi+Q= -----END CERTIFICATE-----Generated at Tue May 12 21:43:30 2026 by rpki-client