$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa File: 957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa (raw, json) Hash identifier: 9xEbft+Y+avNcjEoyBk6biSYgJQp2KMoHh30sMNibtQ= Subject key identifier: 9B:29:A4:EC:91:7F:CD:9A:07:00:85:5E:66:48:DD:3F:D7:66:F9:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ADEC21ACCBCBBE41922A8C80383F9721343A882 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa Signing time: Tue 05 May 2026 00:30:45 +0000 ROA not before: Tue 05 May 2026 00:30:45 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.97.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:de:c2:1a:cc:bc:bb:e4:19:22:a8:c8:03:83:f9:72:13:43:a8:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:30:45 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=4703d7364b172555464411d26e4bf4a6e7bb346a08f3f47e54ae94da5883f9e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:9a:39:ee:55:43:5b:4f:fa:16:59:a5:f4:2f: cd:f7:21:57:d9:76:1e:30:25:2f:1e:85:5b:96:23: 83:55:71:c6:5a:bf:46:ad:6c:aa:f6:7a:e9:bb:c2: 11:f3:06:e5:74:7d:7d:4e:d3:8f:25:cf:7e:73:ad: 3a:11:cc:a1:ba:2d:17:15:e2:17:b6:c3:48:33:ad: 9a:01:57:cf:8e:3d:30:12:9f:fe:e1:6d:47:ee:bd: d6:f4:4b:f4:7c:1a:0e:4b:01:37:4b:4e:61:3d:ed: f4:53:54:b8:dd:7d:a8:84:f7:34:84:a0:e0:3e:ba: ca:4f:1f:22:7b:ed:ce:f1:e8:2f:bb:0e:89:42:24: 4d:ae:29:32:47:b5:06:aa:a7:32:20:a8:7b:fd:2e: c2:5b:da:5c:3d:5b:8b:86:fc:ef:60:e9:e2:6c:9c: f3:a6:69:8d:20:8f:0b:17:04:59:7c:12:84:44:36: f0:70:30:b4:06:ff:86:8b:b3:59:6e:12:65:e7:c6: af:02:14:70:db:64:8d:91:9a:89:2b:ca:bb:6d:e9: b8:d6:5c:e1:5c:c0:85:c4:c6:c4:a1:6d:55:04:10: 34:8f:9c:dc:c7:d1:1f:47:c8:cf:77:e0:99:33:d2: 52:76:9a:cb:b2:fc:0c:9e:fc:5c:3d:d8:9f:94:6c: 6d:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:29:A4:EC:91:7F:CD:9A:07:00:85:5E:66:48:DD:3F:D7:66:F9:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/957f0a75-2fea-4fd6-ac57-1c87799dc4e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.97.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3c:05:07:5f:78:67:53:71:bf:a4:7a:77:94:3e:fb:fb:98:22: 06:a4:87:ec:f1:a0:01:cd:2f:ab:ef:6d:de:6f:83:97:e6:ed: ff:2a:98:27:13:e3:12:0d:7c:ee:03:bd:2b:6e:5c:ed:4b:52: 16:5e:17:e1:ed:ac:13:e5:29:84:91:36:f2:f3:08:ce:4e:f4: 33:13:b3:57:50:93:5c:7a:ad:f7:2f:16:65:2b:6a:35:94:a0: ec:4c:7e:a0:ca:58:a2:48:c8:9f:5f:ef:d6:a8:45:7d:d2:9b: f7:b6:9a:5b:eb:83:53:17:d4:8a:70:29:2b:0c:cf:e9:a1:49: c6:be:bd:6e:a9:ce:f6:86:fb:76:32:ca:18:10:e4:7d:95:ff: 4b:92:4c:5a:fa:58:e9:86:96:53:06:cb:66:28:d5:bf:8d:36: e5:43:11:49:18:17:f4:55:cb:2c:b8:74:40:0d:3d:eb:28:a2: 14:6f:97:d2:88:38:7c:47:11:b2:51:92:bb:3a:3f:0f:99:18: cf:cd:ff:4f:60:25:e3:ed:84:9e:de:67:5e:6c:73:ae:86:18: ee:4c:73:72:a0:cf:ed:3d:8d:02:62:9c:e6:f8:1e:1d:0f:8b: 86:27:5b:61:f0:32:fa:ef:71:dc:7b:d1:f3:50:2b:bb:e4:b1: 34:48:6a:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUat7CGsy8u+QZIqjIA4P5chNDqIIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAzMDQ1WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NzAzZDczNjRiMTcyNTU1NDY0NDExZDI2ZTRiZjRhNmU3 YmIzNDZhMDhmM2Y0N2U1NGFlOTRkYTU4ODNmOWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDomjnuVUNbT/oWWaX0L833IVfZdh4wJS8ehVuWI4NVccZa v0atbKr2eum7whHzBuV0fX1O048lz35zrToRzKG6LRcV4he2w0gzrZoBV8+OPTAS n/7hbUfuvdb0S/R8Gg5LATdLTmE97fRTVLjdfaiE9zSEoOA+uspPHyJ77c7x6C+7 DolCJE2uKTJHtQaqpzIgqHv9LsJb2lw9W4uG/O9g6eJsnPOmaY0gjwsXBFl8EoRE NvBwMLQG/4aLs1luEmXnxq8CFHDbZI2Rmokryrtt6bjWXOFcwIXExsShbVUEEDSP nNzH0R9HyM934Jkz0lJ2msuy/Aye/Fw92J+UbG15AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmymk7JF/zZoHAIVeZkjdP9dm+W0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1N2YwYTc1LTJmZWEtNGZkNi1hYzU3LTFjODc3OTlkYzRlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4YTANBgkqhkiG9w0BAQsFAAOCAQEAPAUHX3hnU3G/pHp3lD77+5giBqSH 7PGgAc0vq+9t3m+Dl+bt/yqYJxPjEg187gO9K25c7UtSFl4X4e2sE+UphJE28vMI zk70MxOzV1CTXHqt9y8WZStqNZSg7Ex+oMpYokjIn1/v1qhFfdKb97aaW+uDUxfU inApKwzP6aFJxr69bqnO9ob7djLKGBDkfZX/S5JMWvpY6YaWUwbLZijVv4025UMR SRgX9FXLLLh0QA096yiiFG+X0og4fEcRslGSuzo/D5kYz83/T2Al4+2Ent5nXmxz roYY7kxzcqDP7T2NAmKc5vgeHQ+LhidbYfAy+u9x3HvR81Aru+SxNEhq6g== -----END CERTIFICATE-----Generated at Wed May 13 00:40:37 2026 by rpki-client