$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa File: d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa (raw, json) Hash identifier: OJWM82nwlnCLluVsYNUS+QP1OjEzkA7Fiu3F+5sFM0Y= Subject key identifier: 0B:11:3D:47:32:D4:5A:4B:3C:49:79:F0:C2:C5:72:03:32:2F:56:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7344C614C174F07D163F72E2F0B199924919BEB7 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa Signing time: Tue 12 May 2026 01:20:54 +0000 ROA not before: Tue 12 May 2026 01:20:54 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:44:c6:14:c1:74:f0:7d:16:3f:72:e2:f0:b1:99:92:49:19:be:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:20:54 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=d19506711a6246c7805f11c8eb1f7e56478bf7df350f00d13c289bbad4b182d9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:b9:2e:a1:86:96:eb:fb:e4:68:fa:d8:e2:38: de:2e:f5:fc:83:8c:36:1f:d5:cb:6a:63:2f:c2:8e: 6b:d4:f9:75:a2:75:49:8d:95:55:b0:73:ca:ad:61: f0:dd:bd:af:09:ec:dd:fa:c2:38:b9:2e:9e:43:32: b1:9d:9f:f3:08:c3:57:7d:82:0f:aa:06:dc:66:79: 52:82:a3:bf:de:31:95:93:98:20:17:53:be:fb:c8: 7c:d1:15:17:70:9e:2e:a9:24:b5:53:dd:95:99:ac: df:1b:fa:54:c9:ad:2c:97:7a:b8:74:a5:d8:53:6a: 56:b8:27:57:ac:bd:72:8d:76:7e:fc:ff:84:93:35: e3:0f:f8:6c:e1:ae:a1:a1:cc:b0:89:16:22:3e:76: de:90:b5:e0:70:7c:2c:fa:1c:df:c9:9c:83:90:5f: 95:24:59:f2:ac:9f:da:28:4b:11:1d:ba:63:4e:50: 7b:0d:8f:eb:5b:6e:bf:ae:d4:f3:1c:61:f0:23:8f: f2:b9:53:7e:61:19:d8:ad:02:27:a8:99:94:98:f4: 49:38:40:60:26:ff:c8:90:e8:8b:eb:1b:f2:40:cc: cb:1f:51:90:ee:bf:53:3f:a0:d1:ff:28:28:a5:af: 86:74:ff:e0:15:7e:c8:bd:4a:87:60:61:ae:42:63: 28:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:11:3D:47:32:D4:5A:4B:3C:49:79:F0:C2:C5:72:03:32:2F:56:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d43a58c1-65d8-408a-9da2-aac1d5d7a248.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.128.0/18 Signature Algorithm: sha256WithRSAEncryption 91:3e:96:b8:cd:b4:47:06:0b:75:ca:3a:a1:c7:4e:7e:95:e8: e4:0f:4c:1f:2f:44:85:7e:20:4c:05:c8:bd:34:d3:5f:ad:34: d0:7b:af:fa:49:cd:2d:46:f6:96:ff:bc:4c:e6:1a:e7:20:6a: 63:c5:0c:a7:50:72:eb:a3:4c:f9:d8:b9:2b:76:40:32:6a:96: fd:08:13:c5:4d:07:24:11:68:aa:1e:e7:dd:2c:73:f7:6c:56: 4b:c9:83:4a:7e:43:3b:25:4e:2e:bc:4a:90:0a:a6:33:0d:f3: 75:da:24:cf:e5:79:fd:91:3f:ac:36:25:ed:94:40:60:e0:6e: 27:33:27:4b:01:28:64:34:8b:47:0c:f7:73:52:17:7e:25:cd: ee:e2:cf:09:1b:85:5a:36:ed:56:3c:9a:76:31:f9:22:1a:31: bf:51:9b:23:10:2b:9c:fd:f3:b4:a6:8a:17:44:d2:9a:d7:dd: aa:34:02:fe:ca:88:9f:c4:03:23:e8:0b:79:bc:e7:2a:5b:50: 91:d5:45:78:6d:99:24:20:a1:18:99:73:3a:45:0a:19:8a:4f: 3a:4c:41:4a:97:40:7f:bd:d2:86:44:03:71:75:88:c8:70:d9: 39:c3:72:89:d9:fc:75:27:06:e6:da:dc:8e:4f:5f:c1:76:b3: 62:cd:3d:04 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc0TGFMF08H0WP3Li8LGZkkkZvrcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEyMDU0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkMTk1MDY3MTFhNjI0NmM3ODA1ZjExYzhlYjFmN2U1NjQ3 OGJmN2RmMzUwZjAwZDEzYzI4OWJiYWQ0YjE4MmQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKuS6hhpbr++Ro+tjiON4u9fyDjDYf1ctqYy/CjmvU+XWi dUmNlVWwc8qtYfDdva8J7N36wji5Lp5DMrGdn/MIw1d9gg+qBtxmeVKCo7/eMZWT mCAXU777yHzRFRdwni6pJLVT3ZWZrN8b+lTJrSyXerh0pdhTala4J1esvXKNdn78 /4STNeMP+GzhrqGhzLCJFiI+dt6QteBwfCz6HN/JnIOQX5UkWfKsn9ooSxEdumNO UHsNj+tbbr+u1PMcYfAjj/K5U35hGditAieomZSY9Ek4QGAm/8iQ6IvrG/JAzMsf UZDuv1M/oNH/KCilr4Z0/+AVfsi9SodgYa5CYyg7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCxE9RzLUWks8SXnwwsVyAzIvVmkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0M2E1OGMxLTY1ZDgtNDA4YS05ZGEyLWFhYzFkNWQ3YTI0OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjl4AwDQYJKoZIhvcNAQELBQADggEBAJE+lrjNtEcGC3XKOqHHTn6V6OQP TB8vRIV+IEwFyL0001+tNNB7r/pJzS1G9pb/vEzmGucgamPFDKdQcuujTPnYuSt2 QDJqlv0IE8VNByQRaKoe590sc/dsVkvJg0p+QzslTi68SpAKpjMN83XaJM/lef2R P6w2Je2UQGDgbiczJ0sBKGQ0i0cM93NSF34lze7izwkbhVo27VY8mnYx+SIaMb9R myMQK5z987SmihdE0prX3ao0Av7KiJ/EAyPoC3m85ypbUJHVRXhtmSQgoRiZczpF ChmKTzpMQUqXQH+90oZEA3F1iMhw2TnDconZ/HUnBuba3I5PX8F2s2LNPQQ= -----END CERTIFICATE-----Generated at Wed May 13 08:16:52 2026 by rpki-client