$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7b7179f-6a8b-4412-abd7-2b97144eb1bb.roa File: a7b7179f-6a8b-4412-abd7-2b97144eb1bb.roa (raw, json) Hash identifier: I/AHetUrkFXAnVVo8I9q2JQRfd3FNeq5xWHK80FuSHw= Subject key identifier: D1:2C:BC:65:75:82:A6:E9:D8:E2:1D:ED:A5:4F:8C:D3:14:36:14:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 654B457F255BB21FF16D3C029BBF51CF771C7409 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7b7179f-6a8b-4412-abd7-2b97144eb1bb.roa Signing time: Wed 06 May 2026 00:21:31 +0000 ROA not before: Wed 06 May 2026 00:21:31 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.144.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:4b:45:7f:25:5b:b2:1f:f1:6d:3c:02:9b:bf:51:cf:77:1c:74:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:21:31 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=c777306b5025a621abb6ffcf34d7fb161b964ef2c4521686431a5a92c55048eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:12:57:fa:c6:39:c6:35:77:eb:86:e5:2d:ce: 83:0b:24:3a:84:30:ed:84:d2:55:65:cd:5f:a5:4a: 49:08:f7:a2:10:55:c3:c3:79:66:7b:0b:2a:c7:6d: 25:9b:67:88:f6:81:05:5d:e7:e0:00:04:ae:8d:4e: d6:6b:92:12:65:4f:67:e8:66:63:ba:73:2c:1b:8e: af:36:2c:b6:84:8e:1e:0b:c4:d2:f9:cb:6b:ea:b2: d4:c7:67:b4:c4:8c:3e:e1:e3:32:42:8c:0d:b6:44: fc:2f:cc:09:71:e4:a1:81:54:9c:a1:47:8b:b0:7d: 59:a7:8b:16:1d:b3:b1:41:4b:45:7b:b7:eb:e2:97: 62:61:d1:ac:9b:13:fe:ee:01:aa:22:e7:77:28:b5: 71:01:68:28:8a:a7:66:a7:a9:9c:ec:c0:c5:e7:69: a4:7d:0c:f5:f5:39:5e:69:38:38:91:c0:0d:b1:0f: bd:c9:b9:7c:51:6b:f9:1f:66:49:a6:ff:7a:bb:d6: 97:b7:9f:ed:c7:bf:dc:6c:47:51:bc:89:c2:a6:4d: 88:0d:0d:81:fb:ef:3a:94:2b:93:a1:43:40:3a:f3: c6:8f:c0:88:43:ff:dd:8a:95:9e:80:b6:74:e9:56: 01:34:29:28:c8:b8:45:2b:7b:27:df:e7:eb:8a:65: dc:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:2C:BC:65:75:82:A6:E9:D8:E2:1D:ED:A5:4F:8C:D3:14:36:14:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7b7179f-6a8b-4412-abd7-2b97144eb1bb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.144.0/21 Signature Algorithm: sha256WithRSAEncryption c3:ad:01:6b:25:9f:6b:13:65:6a:8f:9d:40:b1:17:84:69:df: 97:eb:11:5d:96:09:6f:b1:79:e4:8e:82:b7:d3:62:4a:78:de: b7:80:22:f6:ae:32:36:19:1d:bf:88:f0:5a:1c:f9:3a:3d:ad: 68:d1:32:37:7c:94:e1:dc:4b:81:64:7e:68:e5:1d:74:f5:7e: 60:69:3b:55:14:7a:7e:39:9c:19:c2:21:37:65:1a:ee:c4:13: 52:5f:40:27:05:2b:34:27:7f:04:d8:18:e5:f9:e7:e3:ac:9e: 07:df:cb:34:62:ac:5f:9d:8f:f3:be:c8:33:89:c9:95:c9:90: f9:94:2d:12:fc:ca:7a:1c:a0:f2:21:6a:a9:5f:46:28:c2:b0: e5:9d:2c:8c:e8:d6:73:8b:8c:c5:50:0b:41:1f:e2:f4:04:3d: f8:ea:59:17:d6:0b:64:54:51:20:86:54:c8:ee:82:44:29:c7: d1:37:05:20:0c:0d:58:86:94:86:34:bc:ad:01:e2:03:c1:72: 8a:ec:ba:f8:fe:d4:18:b5:39:65:ba:8c:57:ef:fd:0c:e2:09: 83:09:13:18:23:6f:04:19:89:2b:8f:11:61:d3:71:dc:95:44: 9e:d6:9d:32:c5:d1:19:94:dc:46:12:4f:5f:de:c3:4a:38:db: 95:19:ab:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZUtFfyVbsh/xbTwCm79Rz3ccdAkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMTMxWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjNzc3MzA2YjUwMjVhNjIxYWJiNmZmY2YzNGQ3ZmIxNjFi OTY0ZWYyYzQ1MjE2ODY0MzFhNWE5MmM1NTA0OGViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWElf6xjnGNXfrhuUtzoMLJDqEMO2E0lVlzV+lSkkI96IQ VcPDeWZ7CyrHbSWbZ4j2gQVd5+AABK6NTtZrkhJlT2foZmO6cywbjq82LLaEjh4L xNL5y2vqstTHZ7TEjD7h4zJCjA22RPwvzAlx5KGBVJyhR4uwfVmnixYds7FBS0V7 t+vil2Jh0aybE/7uAaoi53cotXEBaCiKp2anqZzswMXnaaR9DPX1OV5pODiRwA2x D73JuXxRa/kfZkmm/3q71pe3n+3Hv9xsR1G8icKmTYgNDYH77zqUK5OhQ0A688aP wIhD/92KlZ6AtnTpVgE0KSjIuEUreyff5+uKZdxlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0Sy8ZXWCpunY4h3tpU+M0xQ2FJcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3YjcxNzlmLTZhOGItNDQxMi1hYmQ3LTJiOTcxNDRlYjFiYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl5AwDQYJKoZIhvcNAQELBQADggEBAMOtAWsln2sTZWqPnUCxF4Rp35fr EV2WCW+xeeSOgrfTYkp43reAIvauMjYZHb+I8Foc+To9rWjRMjd8lOHcS4Fkfmjl HXT1fmBpO1UUen45nBnCITdlGu7EE1JfQCcFKzQnfwTYGOX55+OsngffyzRirF+d j/O+yDOJyZXJkPmULRL8ynocoPIhaqlfRijCsOWdLIzo1nOLjMVQC0Ef4vQEPfjq WRfWC2RUUSCGVMjugkQpx9E3BSAMDViGlIY0vK0B4gPBcorsuvj+1Bi1OWW6jFfv /QziCYMJExgjbwQZiSuPEWHTcdyVRJ7WnTLF0RmU3EYST1/ew0o425UZq/k= -----END CERTIFICATE-----Generated at Tue May 12 21:43:19 2026 by rpki-client