$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa File: 09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa (raw, json) Hash identifier: +vsXPj4mHkygSeX9oh74aZn3HoLJx3F3HEsllv/d37E= Subject key identifier: 7E:1A:17:D4:0B:D2:91:D4:90:F9:4C:47:0D:04:E1:F4:43:9D:F5:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 144B942480301BB45C820F9E15B0A6B9FD620977 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa Signing time: Fri 01 May 2026 00:31:11 +0000 ROA not before: Fri 01 May 2026 00:31:11 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4b:94:24:80:30:1b:b4:5c:82:0f:9e:15:b0:a6:b9:fd:62:09:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:31:11 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=63b322f0f50090868baeb79372a700a275b7a0c0c536f8edb80be1b154f4a1ec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:c2:67:5f:27:5b:dd:12:aa:39:44:4f:92:9a: b7:b5:c5:b9:a9:4b:fa:67:4b:c0:ff:ef:6c:88:9d: 28:b6:ca:bd:56:60:89:6b:e6:b4:8f:63:29:e2:d5: a9:df:d8:71:ac:68:1b:14:cf:fb:1f:f7:72:e7:e9: ba:e8:1d:cc:81:39:1a:9a:99:22:ee:72:0d:e1:e9: 48:d1:04:90:91:f9:ae:cc:87:d6:11:ed:d8:11:e5: b3:da:5d:cc:a9:aa:70:7a:56:3c:25:8e:23:d7:a1: bf:ee:04:58:a3:63:92:48:bb:6b:83:13:00:6d:cf: 79:b3:f5:61:01:c9:a0:27:06:46:b6:25:a8:e2:81: 5c:f7:89:a6:ef:b8:71:13:c6:5a:4d:63:1d:ec:d5: c2:10:4c:b4:62:2f:b9:d7:93:d6:6c:29:5b:07:3c: 06:e3:f2:37:36:73:45:3a:36:97:4d:00:dc:69:21: 3a:a3:a4:b9:2d:ee:7e:d8:1a:e5:96:f0:9c:0f:e0: 77:d9:a3:2d:05:7e:41:a4:66:78:ec:4b:f0:11:1d: a1:5c:16:c5:ae:2f:58:13:97:d5:f3:7d:66:b6:8a: 3f:c3:51:76:58:ef:a7:70:fa:cc:39:b2:16:0a:6a: 15:fd:c3:d3:16:cb:c1:8c:13:a0:d4:09:99:ac:c3: 69:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:1A:17:D4:0B:D2:91:D4:90:F9:4C:47:0D:04:E1:F4:43:9D:F5:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/09ed608e-d07c-4cf2-90b2-d4c73733a9f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.12.0/22 Signature Algorithm: sha256WithRSAEncryption 99:dc:00:05:56:95:85:f3:e0:ce:1e:3a:71:d2:ff:4b:d5:dc: 86:ac:b6:bb:00:44:de:f4:ff:62:d5:04:df:44:da:cc:1e:87: ca:70:53:f1:07:c1:4e:c1:16:c6:e8:50:cb:43:e8:c3:f9:31: 41:51:ed:1b:0b:54:a8:e2:1b:51:1c:ee:e8:b8:fa:6e:76:8a: f3:3c:bf:94:67:f5:7c:d9:55:31:15:d5:32:66:8a:b1:a6:a0: 4c:0d:7f:98:1a:9f:73:03:14:e4:f5:7b:a4:7d:d2:8c:2b:42: 00:94:29:97:82:2b:5c:60:e6:e2:c7:62:eb:5f:84:e9:d9:b2: b8:57:48:30:be:9e:d9:f5:d3:5c:63:ae:3b:f9:11:45:9d:43: f1:04:30:90:12:04:05:3d:aa:cd:8b:74:ad:01:a7:70:63:86: 9f:df:84:85:84:f3:33:12:c0:c0:5a:b6:06:7e:fd:18:0a:39: 0f:98:05:63:64:77:b9:e4:5a:75:09:26:78:b3:77:4d:31:f9: 5b:76:b5:18:56:85:49:d4:dd:08:6a:b8:b2:56:5b:30:ff:e2: 0d:7b:c9:f5:1a:b0:8e:ab:93:8e:40:15:ec:1b:e6:12:3b:0d: 6f:9b:24:05:ec:c3:e2:2c:81:67:97:d8:05:cb:1a:34:13:55: 2a:6a:94:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFEuUJIAwG7Rcgg+eFbCmuf1iCXcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMTExWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2M2IzMjJmMGY1MDA5MDg2OGJhZWI3OTM3MmE3MDBhMjc1 YjdhMGMwYzUzNmY4ZWRiODBiZTFiMTU0ZjRhMWVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRwmdfJ1vdEqo5RE+Smre1xbmpS/pnS8D/72yInSi2yr1W YIlr5rSPYyni1anf2HGsaBsUz/sf93Ln6broHcyBORqamSLucg3h6UjRBJCR+a7M h9YR7dgR5bPaXcypqnB6VjwljiPXob/uBFijY5JIu2uDEwBtz3mz9WEByaAnBka2 JajigVz3iabvuHETxlpNYx3s1cIQTLRiL7nXk9ZsKVsHPAbj8jc2c0U6NpdNANxp ITqjpLkt7n7YGuWW8JwP4HfZoy0FfkGkZnjsS/ARHaFcFsWuL1gTl9XzfWa2ij/D UXZY76dw+sw5shYKahX9w9MWy8GME6DUCZmsw2nlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfhoX1AvSkdSQ+UxHDQTh9EOd9VwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA5ZWQ2MDhlLWQwN2MtNGNmMi05MGIyLWQ0YzczNzMzYTlmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAAwwDQYJKoZIhvcNAQELBQADggEBAJncAAVWlYXz4M4eOnHS/0vV3Ias trsARN70/2LVBN9E2sweh8pwU/EHwU7BFsboUMtD6MP5MUFR7RsLVKjiG1Ec7ui4 +m52ivM8v5Rn9XzZVTEV1TJmirGmoEwNf5gan3MDFOT1e6R90owrQgCUKZeCK1xg 5uLHYutfhOnZsrhXSDC+ntn101xjrjv5EUWdQ/EEMJASBAU9qs2LdK0Bp3Bjhp/f hIWE8zMSwMBatgZ+/RgKOQ+YBWNkd7nkWnUJJnizd00x+Vt2tRhWhUnU3QhquLJW WzD/4g17yfUasI6rk45AFewb5hI7DW+bJAXsw+IsgWeX2AXLGjQTVSpqlG4= -----END CERTIFICATE-----Generated at Mon May 4 21:37:36 2026 by rpki-client