$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7561a700-0da6-4f4d-9e3e-96a010c7cb91.roa File: 7561a700-0da6-4f4d-9e3e-96a010c7cb91.roa (raw, json) Hash identifier: yOu+Ir7RRz4lUasezQXXi+Xqwh03W8ALvtjXxDeAz20= Subject key identifier: F6:E4:0C:81:81:1B:7A:50:C9:BD:79:BF:FC:28:D7:61:8C:C0:3F:95 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E2278AC756D07D456AACE25211671388398A983 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7561a700-0da6-4f4d-9e3e-96a010c7cb91.roa Signing time: Wed 06 May 2026 00:20:40 +0000 ROA not before: Wed 06 May 2026 00:20:40 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:22:78:ac:75:6d:07:d4:56:aa:ce:25:21:16:71:38:83:98:a9:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:20:40 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=855a9577b0177060b17ebc1db8cc2503718f1a547b03d9b9a84d80918c9d6537, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:1d:12:3a:c0:f3:92:4f:ee:03:27:1b:7d:e2: 21:b1:aa:b9:92:08:08:fe:2e:8d:0c:dc:8d:05:b3: 96:e3:96:36:f1:80:e2:0e:21:66:d3:f0:cd:b7:77: 9f:46:05:a0:66:a7:ae:da:05:11:ea:c4:5f:c0:d3: 36:e6:94:7f:66:39:6a:20:43:94:d1:5e:f3:c6:17: 53:88:da:6b:19:c3:3f:7e:5e:10:a8:ea:1d:a6:df: 91:dd:74:df:07:4d:52:13:39:0a:45:c5:b0:cb:71: 38:a3:99:92:cc:10:a0:2d:22:9f:91:ed:fe:84:23: 4a:30:24:4f:70:a8:01:ac:5b:64:2d:81:0c:bc:5e: 80:c7:20:98:3b:6f:bf:12:9f:ad:01:ae:f9:e5:0f: 94:cd:c1:0f:ed:86:e4:23:48:ff:db:1b:ed:be:30: c9:7e:b8:46:d3:35:51:6f:c9:bd:5a:6e:ac:35:99: cf:50:1b:59:c0:8c:28:7d:a3:12:47:61:03:aa:79: 64:17:d2:8b:ab:24:5d:60:84:a6:d6:68:01:b4:e2: f8:93:13:42:aa:f0:bb:17:d0:18:0e:ae:8c:ba:f4: 27:60:82:01:57:32:c3:42:c8:c6:26:0e:8d:64:56: b5:89:26:cf:b3:4f:96:db:2a:d9:cf:39:9b:01:88: ec:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:E4:0C:81:81:1B:7A:50:C9:BD:79:BF:FC:28:D7:61:8C:C0:3F:95 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7561a700-0da6-4f4d-9e3e-96a010c7cb91.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.18.0/24 Signature Algorithm: sha256WithRSAEncryption 76:b9:4b:86:e0:44:b5:a4:68:ec:75:43:68:88:2b:3f:fe:83: db:3f:f0:b8:3c:d7:48:a2:56:00:ee:b3:40:c3:c2:7a:a4:02: 46:1c:3d:65:4e:a4:99:10:8c:84:37:7d:28:ff:83:7f:62:c3: de:c4:c7:98:59:c9:23:1e:59:4a:dd:a9:71:e0:ca:18:95:df: a3:86:48:05:88:b6:23:b9:e9:a4:7e:33:03:5b:ff:91:0b:67: 50:26:90:97:b2:57:a0:33:31:bf:26:2b:99:64:77:f6:0a:6f: db:fa:c9:52:95:da:e3:10:32:af:1e:43:e0:61:f6:60:c1:54: b4:77:87:a4:5e:74:72:02:cc:10:6b:10:d8:50:ab:d3:37:1c: 38:bd:9f:84:40:b0:5a:d6:98:5d:4c:c2:2e:fb:ed:64:a0:b0: d7:65:65:a9:bf:7d:53:d9:66:27:53:aa:92:b6:e7:53:9e:35: e9:07:2c:c0:29:00:bc:7a:8e:bd:a2:dd:64:e0:77:7a:e7:e2: ea:aa:72:b3:76:4d:89:8e:5d:0c:68:2d:f4:d7:81:83:af:5b: e4:b7:8c:2f:ab:9d:f9:d9:25:ae:e3:e6:14:d4:75:65:a9:8c: 57:67:5e:f8:fe:25:e2:10:65:71:28:dd:c7:fb:47:1a:59:11: bd:da:9a:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTiJ4rHVtB9RWqs4lIRZxOIOYqYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMDQwWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTVhOTU3N2IwMTc3MDYwYjE3ZWJjMWRiOGNjMjUwMzcx OGYxYTU0N2IwM2Q5YjlhODRkODA5MThjOWQ2NTM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/HRI6wPOST+4DJxt94iGxqrmSCAj+Lo0M3I0Fs5bjljbx gOIOIWbT8M23d59GBaBmp67aBRHqxF/A0zbmlH9mOWogQ5TRXvPGF1OI2msZwz9+ XhCo6h2m35HddN8HTVITOQpFxbDLcTijmZLMEKAtIp+R7f6EI0owJE9wqAGsW2Qt gQy8XoDHIJg7b78Sn60BrvnlD5TNwQ/thuQjSP/bG+2+MMl+uEbTNVFvyb1abqw1 mc9QG1nAjCh9oxJHYQOqeWQX0ourJF1ghKbWaAG04viTE0Kq8LsX0BgOroy69Cdg ggFXMsNCyMYmDo1kVrWJJs+zT5bbKtnPOZsBiOwNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU9uQMgYEbelDJvXm//CjXYYzAP5UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc1NjFhNzAwLTBkYTYtNGY0ZC05ZTNlLTk2YTAxMGM3Y2I5MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjlhIwDQYJKoZIhvcNAQELBQADggEBAHa5S4bgRLWkaOx1Q2iIKz/+g9s/ 8Lg810iiVgDus0DDwnqkAkYcPWVOpJkQjIQ3fSj/g39iw97Ex5hZySMeWUrdqXHg yhiV36OGSAWItiO56aR+MwNb/5ELZ1AmkJeyV6AzMb8mK5lkd/YKb9v6yVKV2uMQ Mq8eQ+Bh9mDBVLR3h6RedHICzBBrENhQq9M3HDi9n4RAsFrWmF1Mwi777WSgsNdl Zam/fVPZZidTqpK251OeNekHLMApALx6jr2i3WTgd3rn4uqqcrN2TYmOXQxoLfTX gYOvW+S3jC+rnfnZJa7j5hTUdWWpjFdnXvj+JeIQZXEo3cf7RxpZEb3amm0= -----END CERTIFICATE-----Generated at Wed May 13 00:56:37 2026 by rpki-client