$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcddbf1e-022e-430f-aca7-a70f4ae3a8d2.roa File: fcddbf1e-022e-430f-aca7-a70f4ae3a8d2.roa (raw, json) Hash identifier: JXkhkyGKBbgi6Gxz/80s3CFvYm1mBq08uZYlOi4oHyQ= Subject key identifier: 7E:E3:BE:37:BA:6B:35:A8:55:E0:89:61:CD:3F:53:3F:55:BF:E2:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 669D90949AF6D6F24F7BFF7E44602916018DACC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcddbf1e-022e-430f-aca7-a70f4ae3a8d2.roa Signing time: Wed 29 Apr 2026 00:00:40 +0000 ROA not before: Wed 29 Apr 2026 00:00:40 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.142.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 18 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:9d:90:94:9a:f6:d6:f2:4f:7b:ff:7e:44:60:29:16:01:8d:ac:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:40 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=25922ec08237051333635a7d8c586cd71a415eb0f4316c84e15841d1c1b14cc5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:84:f9:37:65:9b:a1:98:7a:1f:66:1f:4b:8b: c3:2d:bc:18:a2:0c:95:dc:5c:46:ec:4d:63:94:07: 3c:9a:4b:37:10:cb:bb:0d:9e:3c:59:fe:62:07:90: 97:f4:84:81:9d:42:45:fc:27:9c:45:4b:de:04:7b: b0:f1:6f:98:b9:07:12:92:5d:31:08:5d:ba:26:fb: 1b:66:ef:b5:3a:4b:f7:56:9f:32:79:cc:93:79:e3: 43:00:5c:f5:52:a8:bb:f4:92:d9:05:62:c0:39:6c: 2f:25:b4:3d:a0:74:b2:ee:4d:09:02:5f:b0:98:38: 1f:93:79:c4:5a:1c:cc:59:41:a2:e6:34:6a:4c:25: 0a:02:32:e3:1c:a9:8c:fa:18:09:e8:69:c6:b4:ba: 25:ed:f6:e9:59:6f:17:80:fa:29:f7:d6:a3:9f:04: 05:9a:dd:d8:dd:00:07:99:09:b5:a7:1b:b2:32:fd: 53:36:e8:36:49:f7:09:b7:9a:30:e7:17:e9:ad:dd: b5:6e:28:fc:75:a9:8d:b8:52:20:26:19:16:3a:92: c9:8d:08:6b:fc:d4:bc:2f:ad:19:03:97:b5:36:15: b2:f1:09:ee:9d:8d:fe:4d:63:99:7d:fb:f0:96:8d: 6b:35:5d:35:d9:a2:d3:76:ec:ad:80:9a:7d:85:b4: ca:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:E3:BE:37:BA:6B:35:A8:55:E0:89:61:CD:3F:53:3F:55:BF:E2:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcddbf1e-022e-430f-aca7-a70f4ae3a8d2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.142.0/24 Signature Algorithm: sha256WithRSAEncryption 7d:f7:9a:b4:a8:96:e4:b3:eb:f9:ba:24:8b:2b:28:3f:82:75: e3:8f:65:bd:52:9b:c1:47:e2:be:4d:49:2b:61:c7:12:02:9d: 7c:09:2a:d7:7f:97:03:ec:d8:c1:a0:91:94:e3:10:cb:52:19: 33:97:b7:79:76:87:88:75:65:3a:5f:aa:9b:fc:41:7e:58:be: a0:b4:7e:f7:12:8d:0a:65:66:d7:d1:44:49:24:fa:41:68:9f: 60:e9:a5:87:3b:8d:27:4d:b5:3c:7e:35:8b:e0:6a:07:af:b9: 02:c5:95:2c:29:fa:d7:e2:68:53:b2:23:23:38:d8:58:d0:9b: 17:53:2e:97:72:dc:fb:44:98:c8:e7:d7:0b:2f:7f:91:ae:3a: 8b:ef:86:f4:3c:2d:7f:46:9f:fa:b3:2b:af:34:a6:84:c5:cc: 4a:af:63:2d:44:15:5f:9c:48:e5:3d:a8:a9:c9:f9:37:48:63: 02:49:78:ac:bf:08:f4:bf:1f:39:26:61:1a:6a:d8:0a:a3:4f: 5f:49:1a:cb:d7:9f:14:a7:d5:74:31:96:7f:f2:6b:a7:8c:db: 9b:1b:c4:9b:2e:2f:68:15:34:97:37:81:f6:56:a5:94:54:ac: 97:fe:8a:98:2c:45:e7:fc:a7:cd:2e:87:33:ca:d8:af:a9:cc: db:5a:fe:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZp2QlJr21vJPe/9+RGApFgGNrMQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMDQwWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTkyMmVjMDgyMzcwNTEzMzM2MzVhN2Q4YzU4NmNkNzFh NDE1ZWIwZjQzMTZjODRlMTU4NDFkMWMxYjE0Y2M1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdhPk3ZZuhmHofZh9Li8MtvBiiDJXcXEbsTWOUBzyaSzcQ y7sNnjxZ/mIHkJf0hIGdQkX8J5xFS94Ee7Dxb5i5BxKSXTEIXbom+xtm77U6S/dW nzJ5zJN540MAXPVSqLv0ktkFYsA5bC8ltD2gdLLuTQkCX7CYOB+TecRaHMxZQaLm NGpMJQoCMuMcqYz6GAnoaca0uiXt9ulZbxeA+in31qOfBAWa3djdAAeZCbWnG7Iy /VM26DZJ9wm3mjDnF+mt3bVuKPx1qY24UiAmGRY6ksmNCGv81LwvrRkDl7U2FbLx Ce6djf5NY5l9+/CWjWs1XTXZotN27K2Amn2FtMpdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfuO+N7prNahV4IlhzT9TP1W/4kswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjZGRiZjFlLTAyMmUtNDMwZi1hY2E3LWE3MGY0YWUzYThkMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTY4wDQYJKoZIhvcNAQELBQADggEBAH33mrSoluSz6/m6JIsrKD+CdeOP Zb1Sm8FH4r5NSSthxxICnXwJKtd/lwPs2MGgkZTjEMtSGTOXt3l2h4h1ZTpfqpv8 QX5YvqC0fvcSjQplZtfRREkk+kFon2DppYc7jSdNtTx+NYvgagevuQLFlSwp+tfi aFOyIyM42FjQmxdTLpdy3PtEmMjn1wsvf5GuOovvhvQ8LX9Gn/qzK680poTFzEqv Yy1EFV+cSOU9qKnJ+TdIYwJJeKy/CPS/HzkmYRpq2AqjT19JGsvXnxSn1XQxln/y a6eM25sbxJsuL2gVNJc3gfZWpZRUrJf+ipgsRef8p80uhzPK2K+pzNta/h0= -----END CERTIFICATE-----Generated at Sun May 17 05:02:37 2026 by rpki-client