$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa File: 0ab4bbb2-995f-426a-b772-87c418889125.roa (raw, json) Hash identifier: KdOqmJp3QiV5oMs4RIXkULUnZEH08Z/o1Yr60JcZ+NU= Subject key identifier: 28:67:49:02:F6:1A:14:64:AF:1E:F4:E7:33:89:1F:7A:7B:F8:5D:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 555C042853BB018176474C2C26EE1CECB38672 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa Signing time: Fri 01 May 2026 00:51:05 +0000 ROA not before: Fri 01 May 2026 00:51:05 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:5c:04:28:53:bb:01:81:76:47:4c:2c:26:ee:1c:ec:b3:86:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:51:05 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=6dec623948f9b520cdc4624776a8f8df488d859fbeb5bfd6e6894d0dbe37b911, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:25:74:30:ae:a6:1e:aa:25:e1:31:a3:c2:4b: e7:8f:85:cf:ae:68:51:ed:21:aa:db:73:e6:c7:c6: 91:b5:f1:ec:6a:3b:41:a5:f3:de:30:d5:16:33:37: 00:2c:f4:ed:64:5d:7c:ff:f4:75:b8:96:0d:cb:b4: 21:b4:7f:cf:e2:fe:99:eb:e4:73:6f:bb:8c:88:d5: ee:88:f9:0a:0a:8f:a9:b0:d9:fc:5c:f5:f4:dd:07: 2f:f9:6a:be:d5:79:05:8b:bc:79:45:2c:b2:c4:4b: 47:ab:a8:09:6c:73:b3:8d:cf:52:02:6b:08:bc:8c: 29:41:47:03:76:b9:7c:61:6a:0e:f5:b1:a0:c5:d2: a1:b9:9f:10:4e:6c:fd:41:fa:1c:1b:84:ee:11:1a: ac:9c:33:7c:37:e7:19:c2:cc:03:30:8b:e0:17:b3: 1a:f8:7c:5b:59:7f:8d:7e:fe:73:dd:83:38:87:5a: a5:a8:93:27:3b:6c:8a:15:99:1c:6b:a0:cb:f2:35: 17:32:f2:39:40:9f:64:90:ae:02:33:4b:7d:bf:8d: 8c:01:c2:e8:e4:80:d1:a8:46:82:90:66:bb:ad:e6: 0b:9a:b3:f4:ef:61:c7:aa:d5:f8:71:10:e2:fd:da: 81:40:a8:10:44:1e:00:17:29:f0:83:65:c1:11:49: 0b:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:67:49:02:F6:1A:14:64:AF:1E:F4:E7:33:89:1F:7A:7B:F8:5D:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ab4bbb2-995f-426a-b772-87c418889125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.239.0/24 Signature Algorithm: sha256WithRSAEncryption 99:84:4b:ad:be:51:be:0d:d2:29:35:0c:42:29:b8:3f:eb:50: 0e:d5:a4:2e:98:72:8f:5a:e0:fd:ee:c4:53:fb:25:49:9c:d5: a8:73:7c:5d:d8:f8:4c:c2:d2:9d:7b:d5:84:71:7a:a4:3f:e2: 1e:74:ea:64:11:58:e6:c1:6f:65:86:80:8c:0d:43:ca:a5:53: 05:b3:33:f7:08:3e:d2:4a:00:8b:d7:bf:4f:02:f4:25:56:ed: 0f:7f:53:61:b1:a8:20:e0:03:12:af:1e:9c:5d:a5:8f:c9:3f: a4:5a:6a:8d:ed:e3:bc:b0:9a:98:68:33:1b:7c:d9:61:1c:24: 00:c9:7e:5b:51:88:e4:d0:10:d3:36:5f:45:45:df:a8:4d:f0: 3c:38:30:9b:2f:01:b8:df:7f:18:79:a6:28:23:f8:56:0e:be: 72:ae:8e:96:22:e8:3a:7f:2a:61:e0:53:d2:5b:c0:ba:3d:93: 51:b5:6f:6a:8b:31:5b:a7:15:6e:e2:3f:59:b3:d1:ab:58:f9: 1f:26:a8:2d:d1:1e:14:7f:db:3f:d0:54:97:97:14:01:7c:a9: e2:b1:78:56:7b:5e:c6:11:e1:ff:a8:da:ac:ca:61:70:4e:34: 26:df:77:2c:ac:ea:04:80:2c:54:af:cc:c6:ce:3d:fd:0f:29: 77:25:88:17 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITVVwEKFO7AYF2R0wsJu4c7LOGcjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjA1MDEwMDUxMDVaFw0yNjA3MzAyMzU5NTla MHoxSTBHBgNVBAUTQDZkZWM2MjM5NDhmOWI1MjBjZGM0NjI0Nzc2YThmOGRmNDg4 ZDg1OWZiZWI1YmZkNmU2ODk0ZDBkYmUzN2I5MTExLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALgldDCuph6qJeExo8JL54+Fz65oUe0hqttz5sfGkbXx7Go7 QaXz3jDVFjM3ACz07WRdfP/0dbiWDcu0IbR/z+L+mevkc2+7jIjV7oj5CgqPqbDZ /Fz19N0HL/lqvtV5BYu8eUUsssRLR6uoCWxzs43PUgJrCLyMKUFHA3a5fGFqDvWx oMXSobmfEE5s/UH6HBuE7hEarJwzfDfnGcLMAzCL4BezGvh8W1l/jX7+c92DOIda paiTJztsihWZHGugy/I1FzLyOUCfZJCuAjNLfb+NjAHC6OSA0ahGgpBmu63mC5qz 9O9hx6rV+HEQ4v3agUCoEEQeABcp8INlwRFJC9UCAwEAAaOCArEwggKtMB0GA1Ud DgQWBBQoZ0kC9hoUZK8e9OcziR96e/hd1DAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMGFiNGJiYjItOTk1Zi00MjZhLWI3NzItODdjNDE4ODg5MTI1LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEAGNN7zANBgkqhkiG9w0BAQsFAAOCAQEAmYRLrb5Rvg3SKTUMQim4P+tQDtWk Lphyj1rg/e7EU/slSZzVqHN8Xdj4TMLSnXvVhHF6pD/iHnTqZBFY5sFvZYaAjA1D yqVTBbMz9wg+0koAi9e/TwL0JVbtD39TYbGoIOADEq8enF2lj8k/pFpqje3jvLCa mGgzG3zZYRwkAMl+W1GI5NAQ0zZfRUXfqE3wPDgwmy8BuN9/GHmmKCP4Vg6+cq6O liLoOn8qYeBT0lvAuj2TUbVvaosxW6cVbuI/WbPRq1j5HyaoLdEeFH/bP9BUl5cU AXyp4rF4VntexhHh/6jarMphcE40Jt93LKzqBIAsVK/Mxs49/Q8pdyWIFw== -----END CERTIFICATE-----Generated at Sun May 3 14:46:42 2026 by rpki-client