$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa File: 8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa (raw, json) Hash identifier: JtQds7EMtrBIq4dH9drBbQKYLe2JzRniBKp0/bIx344= Subject key identifier: 2D:93:93:25:08:B3:08:D9:37:79:00:61:8D:F6:88:77:CA:6C:FC:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66BC3F5F4DA0F0A2E90FDFC2943BC28A46908369 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa Signing time: Wed 06 May 2026 00:20:46 +0000 ROA not before: Wed 06 May 2026 00:20:46 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.156.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:bc:3f:5f:4d:a0:f0:a2:e9:0f:df:c2:94:3b:c2:8a:46:90:83:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:20:46 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=bcbd56f063b7bc8d9fef0daf90873db750e0ad9dda18c6e66ff1ee2b7c47b0e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:10:bd:8a:61:d3:b2:aa:57:37:fa:fb:42:cd: ff:f8:21:14:34:a9:77:a4:f4:c3:d0:5d:1b:fc:f3: 2e:24:ca:d7:cb:96:65:9f:1e:f7:09:cd:97:f6:73: 17:1f:61:66:c4:61:c8:c1:f1:b1:a8:23:07:02:6e: 04:3c:9b:04:df:04:62:b8:37:a6:b5:95:25:b8:7a: e5:13:2b:4c:69:ed:98:92:26:ff:67:8d:15:42:01: ba:d4:ee:6e:66:e7:26:5d:8e:83:72:89:32:12:ef: 6c:69:74:e2:4d:70:cc:60:f1:82:de:c7:98:25:de: b5:b2:07:4c:e2:74:0a:ef:e2:ea:70:22:e0:41:59: f2:e9:41:0e:f8:4d:fa:be:4a:c9:50:6c:94:e8:c3: 53:9c:a7:ab:cd:93:2a:e2:4e:4c:49:68:f5:3b:ae: 48:d5:4e:d0:98:6a:89:6e:f2:37:fa:43:61:ec:8f: 40:40:a3:b3:5a:18:d1:27:22:a8:3f:e6:04:fc:b4: 5f:da:b4:c5:5c:ec:37:47:79:27:57:54:fe:f9:eb: e3:17:f1:32:82:d3:51:80:b5:44:b8:2c:da:c2:31: 1c:0e:f1:c0:d5:ef:91:cf:54:c2:37:e6:90:a8:4f: 62:59:a5:26:ca:67:19:02:73:9c:85:7d:87:1a:f9: 0c:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2D:93:93:25:08:B3:08:D9:37:79:00:61:8D:F6:88:77:CA:6C:FC:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8756ab5a-c0b9-47e7-85b9-11c7e70d38d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.156.0/23 Signature Algorithm: sha256WithRSAEncryption 30:6f:9b:76:20:03:cc:26:7b:12:32:77:de:46:bc:35:bd:6b: 6f:37:31:e5:d8:d4:aa:e1:f2:55:a2:6a:f2:a2:45:05:0b:98: b8:22:33:a9:6d:01:c9:67:57:b9:d6:68:59:95:53:ed:ed:3b: 5f:f9:a9:42:11:b6:08:56:54:c8:4c:2b:c4:f1:80:ae:d1:53: f2:d8:58:41:76:62:97:f5:10:bc:5f:d7:32:70:66:20:49:41: 9f:b0:4a:b8:2e:07:b1:ab:0d:0a:a1:27:36:a9:eb:89:fe:fb: af:89:2c:12:ef:45:7d:00:06:8b:76:d0:ff:bb:f0:b8:ae:89: da:55:f3:86:69:18:2c:67:96:e6:6b:44:90:64:7f:ee:8d:92: 8a:b3:99:c7:bc:8d:77:b0:af:0c:6e:a9:33:d8:bf:c9:34:20: f5:ab:cf:b6:7e:85:09:22:6c:a9:44:dc:b5:70:3c:b7:c9:47: 9e:58:f5:9c:b3:02:77:0e:31:b2:b6:02:91:57:c6:69:22:7c: d8:64:63:7c:a6:8e:13:3f:89:6e:84:16:1c:1f:0d:84:95:dc: aa:f8:71:e2:de:42:76:ad:e8:9d:2d:22:f3:b0:49:e2:7b:9a: 2c:46:68:2f:94:66:cc:25:f6:18:f5:a3:14:1c:d8:54:04:c1: b5:0d:a3:d8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZrw/X02g8KLpD9/ClDvCikaQg2kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMDQ2WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiY2JkNTZmMDYzYjdiYzhkOWZlZjBkYWY5MDg3M2RiNzUw ZTBhZDlkZGExOGM2ZTY2ZmYxZWUyYjdjNDdiMGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDEL2KYdOyqlc3+vtCzf/4IRQ0qXek9MPQXRv88y4kytfL lmWfHvcJzZf2cxcfYWbEYcjB8bGoIwcCbgQ8mwTfBGK4N6a1lSW4euUTK0xp7ZiS Jv9njRVCAbrU7m5m5yZdjoNyiTIS72xpdOJNcMxg8YLex5gl3rWyB0zidArv4upw IuBBWfLpQQ74Tfq+SslQbJTow1Ocp6vNkyriTkxJaPU7rkjVTtCYaolu8jf6Q2Hs j0BAo7NaGNEnIqg/5gT8tF/atMVc7DdHeSdXVP756+MX8TKC01GAtUS4LNrCMRwO 8cDV75HPVMI35pCoT2JZpSbKZxkCc5yFfYca+QzHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQULZOTJQizCNk3eQBhjfaId8ps/AAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg3NTZhYjVhLWMwYjktNDdlNy04NWI5LTExYzdlNzBkMzhkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl5wwDQYJKoZIhvcNAQELBQADggEBADBvm3YgA8wmexIyd95GvDW9a283 MeXY1Krh8lWiavKiRQULmLgiM6ltAclnV7nWaFmVU+3tO1/5qUIRtghWVMhMK8Tx gK7RU/LYWEF2Ypf1ELxf1zJwZiBJQZ+wSrguB7GrDQqhJzap64n++6+JLBLvRX0A Bot20P+78LiuidpV84ZpGCxnluZrRJBkf+6Nkoqzmce8jXewrwxuqTPYv8k0IPWr z7Z+hQkibKlE3LVwPLfJR55Y9ZyzAncOMbK2ApFXxmkifNhkY3ymjhM/iW6EFhwf DYSV3Kr4ceLeQnat6J0tIvOwSeJ7mixGaC+UZswl9hj1oxQc2FQEwbUNo9g= -----END CERTIFICATE-----Generated at Tue May 12 21:55:06 2026 by rpki-client