$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b98b69-7f66-4d9f-8e71-de57834cc877.roa File: 86b98b69-7f66-4d9f-8e71-de57834cc877.roa (raw, json) Hash identifier: aDV8Vc1V37CgVgct1iajX2XrgtaqdEdn7pwx0NyHOhI= Subject key identifier: D0:18:10:86:63:7C:D9:9A:79:AA:F2:B4:47:DC:A6:06:91:2D:A9:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 488291EA2A53D08DFA3701CAE4FBA12F8A057C30 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b98b69-7f66-4d9f-8e71-de57834cc877.roa Signing time: Fri 01 May 2026 00:30:09 +0000 ROA not before: Fri 01 May 2026 00:30:09 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.87.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:82:91:ea:2a:53:d0:8d:fa:37:01:ca:e4:fb:a1:2f:8a:05:7c:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:30:09 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=76a05019cff2b727e61210a2f072f6cd1e2cf700cbb92983cccd936eaaa7916e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:36:bd:eb:af:fe:a8:bb:bf:67:8a:c1:df:6f: 8c:99:24:29:a2:84:94:bf:18:78:f0:8f:2f:8a:70: ef:2c:82:20:13:f3:89:b6:f4:22:49:f1:75:d3:00: 44:06:27:37:12:60:65:19:27:2e:63:49:b8:90:fa: 3d:3a:a5:47:12:f9:ba:10:cd:07:fb:bc:00:66:95: 4a:e4:b0:24:b8:eb:28:f7:13:21:2f:d8:c1:03:19: 26:dc:b9:aa:5e:e8:9a:88:a0:2b:43:0e:91:43:99: bc:0b:20:42:b7:12:01:03:86:bf:e2:de:c5:0f:46: e9:e8:cc:e3:13:cf:b2:05:1d:c2:ce:f6:cd:0c:3f: 77:56:08:2e:a2:62:18:77:4e:a5:fe:3f:e5:c3:c3: 29:52:d8:59:05:34:cd:a0:99:dd:80:7e:ee:2a:17: 50:86:b5:54:99:09:09:e2:3c:03:8e:a1:28:cb:9f: 0f:ce:df:5c:21:ad:a9:66:94:0f:00:01:45:50:0a: a9:00:e3:97:ab:ec:66:73:45:27:28:2f:7e:92:4f: b4:d3:04:32:63:02:9f:2d:5c:f1:2d:6f:be:1f:f7: 34:22:f0:ce:c1:c6:b8:25:79:91:7e:75:e0:53:bb: cb:5f:92:39:6f:c3:42:66:13:d3:91:7f:ee:e9:c7: c3:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D0:18:10:86:63:7C:D9:9A:79:AA:F2:B4:47:DC:A6:06:91:2D:A9:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/86b98b69-7f66-4d9f-8e71-de57834cc877.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.87.0/24 Signature Algorithm: sha256WithRSAEncryption 55:16:3c:78:32:05:06:de:0e:b5:ee:9c:44:a5:c1:d1:a9:d2: 33:97:3a:d8:65:66:66:da:e8:08:da:fb:0a:7c:d8:c0:0f:3a: 81:f1:80:da:10:24:1a:26:3a:f9:d9:04:36:4a:a3:66:90:fc: 00:55:f5:76:71:b4:4a:f6:83:22:8a:a8:7e:c7:08:3e:e4:da: 53:81:29:05:97:a6:88:7e:a0:21:9a:7f:59:85:ef:7c:ab:96: 55:e3:ea:59:a7:ff:8f:41:4f:e7:ea:73:59:cf:33:3b:92:f3: de:7c:ac:53:85:b7:ab:9a:1a:9b:db:36:4b:a6:9f:4b:d2:21: a3:73:8e:0f:02:dd:01:70:17:b3:f3:b2:dc:2f:ef:74:61:19: fe:7d:03:cb:8e:46:c5:47:11:4a:2d:0c:6d:b5:4c:67:93:1b: a5:a6:72:1a:6b:ce:e1:f6:9b:66:9f:7f:02:04:2e:93:40:87: 4d:37:7f:d8:e7:69:5a:b1:15:7d:15:d7:53:b4:b2:33:d5:fa: 9e:99:0b:66:0c:cc:ab:56:d7:c7:b1:b1:7a:7e:ba:d7:3a:d3: cb:f0:a7:48:6d:c3:1e:65:59:91:f9:17:bd:1e:ed:c6:a9:41: 28:4f:fb:3a:ef:b0:0c:76:da:90:7b:8b:a2:ff:09:92:53:0d: 4e:60:04:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSIKR6ipT0I36NwHK5PuhL4oFfDAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMDA5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmEwNTAxOWNmZjJiNzI3ZTYxMjEwYTJmMDcyZjZjZDFl MmNmNzAwY2JiOTI5ODNjY2NkOTM2ZWFhYTc5MTZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChNr3rr/6ou79nisHfb4yZJCmihJS/GHjwjy+KcO8sgiAT 84m29CJJ8XXTAEQGJzcSYGUZJy5jSbiQ+j06pUcS+boQzQf7vABmlUrksCS46yj3 EyEv2MEDGSbcuape6JqIoCtDDpFDmbwLIEK3EgEDhr/i3sUPRunozOMTz7IFHcLO 9s0MP3dWCC6iYhh3TqX+P+XDwylS2FkFNM2gmd2Afu4qF1CGtVSZCQniPAOOoSjL nw/O31whralmlA8AAUVQCqkA45er7GZzRScoL36ST7TTBDJjAp8tXPEtb74f9zQi 8M7BxrgleZF+deBTu8tfkjlvw0JmE9ORf+7px8MNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0BgQhmN82Zp5qvK0R9ymBpEtqW8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg2Yjk4YjY5LTdmNjYtNGQ5Zi04ZTcxLWRlNTc4MzRjYzg3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/FcwDQYJKoZIhvcNAQELBQADggEBAFUWPHgyBQbeDrXunESlwdGp0jOX OthlZmba6Aja+wp82MAPOoHxgNoQJBomOvnZBDZKo2aQ/ABV9XZxtEr2gyKKqH7H CD7k2lOBKQWXpoh+oCGaf1mF73yrllXj6lmn/49BT+fqc1nPMzuS8958rFOFt6ua GpvbNkumn0vSIaNzjg8C3QFwF7Pzstwv73RhGf59A8uORsVHEUotDG21TGeTG6Wm chprzuH2m2affwIELpNAh003f9jnaVqxFX0V11O0sjPV+p6ZC2YMzKtW18exsXp+ utc608vwp0htwx5lWZH5F70e7capQShP+zrvsAx22pB7i6L/CZJTDU5gBI0= -----END CERTIFICATE-----Generated at Tue May 12 21:42:43 2026 by rpki-client