$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa File: 8f289340-82bf-42dd-8b4e-a118719df322.roa (raw, json) Hash identifier: WAWXmpRimTejiQAaFDQ5j++LdoEGMtAt/ytrj/qq45c= Subject key identifier: 00:7C:EC:13:51:53:94:13:17:94:9A:E3:EB:A3:BC:E7:92:E5:8D:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7932555E761BDB47ED228F0D99FC1DEC4D4A3A92 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa Signing time: Wed 06 May 2026 00:40:05 +0000 ROA not before: Wed 06 May 2026 00:40:05 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:32:55:5e:76:1b:db:47:ed:22:8f:0d:99:fc:1d:ec:4d:4a:3a:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:40:05 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=09089285b6e927849b84553187b96171cec6176bcf6b26634249eeeb3f22a5b7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:8a:54:8b:dd:f2:e9:da:51:e2:e4:b5:e2:d2: ad:cf:2d:f4:a8:d3:de:9d:10:d0:f6:ca:d2:5e:b7: 06:02:b7:e0:d2:ac:63:ce:03:a0:25:40:bf:20:13: 14:67:da:b1:c2:3f:5d:4b:0c:9a:e1:0e:11:94:a7: f3:b2:68:68:59:da:cf:a6:11:5d:a7:e8:91:71:d1: 21:96:e1:b5:99:8c:59:4f:c9:0c:b7:8a:c2:f2:05: e9:75:73:ce:ee:55:e4:11:50:38:f8:40:ab:c5:17: f2:6b:d9:53:a9:91:97:63:6b:5d:db:9a:1c:26:dc: 6e:de:37:b1:3b:00:7b:0a:c7:0e:aa:ed:b7:00:53: 4b:7d:c7:39:ec:85:89:68:e6:fd:d3:26:d1:4d:04: 9e:3c:fe:d7:7f:0b:14:18:89:c3:76:62:4b:98:84: c9:c1:2b:d8:91:48:30:40:d3:ca:f4:5d:6a:b7:0d: 1b:38:2a:20:d5:af:df:7a:cc:7e:63:2f:3a:80:d0: 61:84:55:e2:62:0a:b0:dd:1a:84:2c:ba:94:23:44: fb:21:90:72:04:8d:31:b2:4f:58:26:70:b3:b2:19: a3:c0:6a:3b:18:a3:d9:59:a2:79:5b:a3:58:e8:b3: 3f:7f:9f:ce:6e:34:d2:06:24:16:c2:73:c6:66:b1: c8:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:7C:EC:13:51:53:94:13:17:94:9A:E3:EB:A3:BC:E7:92:E5:8D:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f289340-82bf-42dd-8b4e-a118719df322.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.72.0/21 Signature Algorithm: sha256WithRSAEncryption aa:8b:af:ea:d7:f9:91:23:fe:18:c1:11:95:78:6b:f6:70:5c: 88:a1:be:20:7f:ac:16:55:6d:c6:22:e0:52:34:78:d6:93:f1: 0a:55:2e:94:57:97:b4:5d:60:94:ea:1b:c3:86:bc:e7:7a:f5: 63:cc:54:67:50:14:9c:b8:4d:9c:7c:f7:c2:2d:27:80:2e:84: d4:a3:0d:82:c1:4f:e6:9f:7f:57:26:b6:69:c7:3a:78:0d:74: f8:84:30:c2:48:5a:94:82:c8:bc:de:9c:fd:21:db:a3:2f:e8: 46:32:08:d6:6c:4b:c7:34:26:df:1d:c9:ff:47:4b:e8:1f:45: af:53:39:80:c8:27:b5:ab:a3:4e:f4:f0:e4:72:c3:9b:cf:c6: 69:08:62:84:cf:c6:97:91:94:96:b7:a6:54:11:1a:07:9c:d7: 31:b7:49:a1:34:5c:8b:f4:69:c4:8f:9c:33:0c:97:a8:51:9b: 06:be:17:b7:54:35:1f:ef:c7:4b:88:c4:62:7e:ea:ea:0c:94: 53:14:c8:7d:24:7a:0b:14:b5:fa:60:39:90:e8:57:12:84:9f: 12:25:81:11:f0:fe:78:15:db:70:bc:3e:d7:74:11:46:43:e1: c5:8f:15:5b:36:a1:a6:46:ec:13:0e:c2:ec:2c:39:82:de:8d: a1:b8:bf:8a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeTJVXnYb20ftIo8Nmfwd7E1KOpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDA0MDA1WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOTA4OTI4NWI2ZTkyNzg0OWI4NDU1MzE4N2I5NjE3MWNl YzYxNzZiY2Y2YjI2NjM0MjQ5ZWVlYjNmMjJhNWI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtilSL3fLp2lHi5LXi0q3PLfSo096dEND2ytJetwYCt+DS rGPOA6AlQL8gExRn2rHCP11LDJrhDhGUp/OyaGhZ2s+mEV2n6JFx0SGW4bWZjFlP yQy3isLyBel1c87uVeQRUDj4QKvFF/Jr2VOpkZdja13bmhwm3G7eN7E7AHsKxw6q 7bcAU0t9xznshYlo5v3TJtFNBJ48/td/CxQYicN2YkuYhMnBK9iRSDBA08r0XWq3 DRs4KiDVr996zH5jLzqA0GGEVeJiCrDdGoQsupQjRPshkHIEjTGyT1gmcLOyGaPA ajsYo9lZonlbo1josz9/n85uNNIGJBbCc8ZmscgHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAHzsE1FTlBMXlJrj66O855LljY4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMjg5MzQwLTgyYmYtNDJkZC04YjRlLWExMTg3MTlkZjMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl0gwDQYJKoZIhvcNAQELBQADggEBAKqLr+rX+ZEj/hjBEZV4a/ZwXIih viB/rBZVbcYi4FI0eNaT8QpVLpRXl7RdYJTqG8OGvOd69WPMVGdQFJy4TZx898It J4AuhNSjDYLBT+aff1cmtmnHOngNdPiEMMJIWpSCyLzenP0h26Mv6EYyCNZsS8c0 Jt8dyf9HS+gfRa9TOYDIJ7Wro0708ORyw5vPxmkIYoTPxpeRlJa3plQRGgec1zG3 SaE0XIv0acSPnDMMl6hRmwa+F7dUNR/vx0uIxGJ+6uoMlFMUyH0kegsUtfpgOZDo VxKEnxIlgRHw/ngV23C8Ptd0EUZD4cWPFVs2oaZG7BMOwuwsOYLejaG4v4o= -----END CERTIFICATE-----Generated at Wed May 13 00:12:56 2026 by rpki-client