$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22ee097c-78c8-4c75-866c-6092e78e76d5.roa File: 22ee097c-78c8-4c75-866c-6092e78e76d5.roa (raw, json) Hash identifier: 3NTykmvEFk+ynjx1RE4JBLZ8YP+IzwuGX3Vz5BMer9A= Subject key identifier: 80:D9:CA:50:F9:9B:0E:E0:D0:7C:1C:53:C2:7D:88:C7:AB:36:C0:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6954AC1C6347B71D43D260D08A313DB847D3FFF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22ee097c-78c8-4c75-866c-6092e78e76d5.roa Signing time: Fri 01 May 2026 00:00:41 +0000 ROA not before: Fri 01 May 2026 00:00:41 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:54:ac:1c:63:47:b7:1d:43:d2:60:d0:8a:31:3d:b8:47:d3:ff:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:00:41 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=592f827d43cb308f22051ddfa8ce2e6035225f7e4fa4df5e5a7d61bbd9f797ff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:25:a1:3a:56:44:10:64:af:72:9c:9c:66:88: 30:dd:0c:fc:c6:03:d8:8e:19:7c:e7:86:26:d6:ec: 96:d5:b9:0a:56:d1:3e:10:b1:fb:06:72:59:52:d4: 07:2d:75:2b:67:bc:d1:d9:d1:9d:b4:1a:d0:ea:43: 08:da:87:b0:a8:f4:cf:62:6d:de:68:c1:01:48:eb: e0:18:b8:b3:1a:1d:41:83:c1:89:f2:e1:4f:0b:ed: 00:82:89:de:1b:1f:5a:41:fc:69:1d:d9:6e:1a:90: 07:86:b2:28:18:7b:6a:86:4e:a4:ad:df:49:a1:c5: de:46:a4:e0:7f:2e:a8:d5:77:8f:9f:3d:0a:72:e9: a2:61:9d:ca:85:f9:44:16:2b:51:a3:32:0b:f0:a5: 4a:35:e8:cc:5f:b1:51:e3:b4:2e:20:78:4d:9d:0e: f5:06:50:e4:4e:6d:75:f7:57:05:c3:a4:14:36:61: 57:60:0b:b0:96:f3:2e:91:a5:db:29:af:d4:9c:5f: 4a:14:db:4d:15:b8:e2:fd:2d:9d:76:e7:fb:09:bb: 45:aa:fc:f7:f9:e0:62:0e:20:7d:90:98:a3:ac:f4: 53:90:cf:54:25:56:c6:3f:b4:c3:f0:be:d9:26:35: 99:57:7e:65:e9:16:6d:c3:a0:40:a9:b0:3e:e6:4b: 87:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:D9:CA:50:F9:9B:0E:E0:D0:7C:1C:53:C2:7D:88:C7:AB:36:C0:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22ee097c-78c8-4c75-866c-6092e78e76d5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.128.0/18 Signature Algorithm: sha256WithRSAEncryption 2b:17:38:9b:57:74:c2:6d:16:87:35:97:01:08:fe:61:48:65: 83:2d:5a:b2:df:ae:81:4b:0a:8d:99:51:2b:ad:ea:b4:e5:a1: 75:fd:9a:ad:3b:43:a5:4e:97:a8:bd:7f:a6:5f:75:af:93:36: 4e:a7:b3:bc:58:77:6c:d2:25:4c:84:fa:3e:d4:a3:04:56:b3: f0:56:79:08:bc:5b:db:e2:9a:a1:d8:dd:84:62:95:63:5e:6d: e1:b8:9d:f2:2f:7e:8d:91:96:e3:51:8e:5f:65:51:dc:b6:0f: 6d:5e:91:ae:58:0b:1d:e2:d6:ac:56:b4:dc:c0:c1:9a:29:8b: 38:de:14:78:28:47:0e:5b:40:fa:43:39:31:8e:dd:94:a2:8f: d1:9b:07:27:f3:6a:7e:4f:58:12:d0:12:b2:97:5c:80:9c:f0: ef:d5:40:95:4c:f1:1b:9a:42:be:e2:82:53:7c:ac:11:fa:9e: 31:b9:bd:48:c9:4a:68:de:27:b6:9e:e5:33:49:83:37:dd:14: f5:48:57:85:41:80:e4:fe:a5:11:bd:88:7d:41:6c:7a:1a:fe: 20:a2:95:ee:84:2b:e5:01:ae:f6:50:20:f1:5d:38:73:56:16: 2e:db:65:c4:87:ac:e2:7f:25:66:cf:7b:70:ee:d3:7e:a9:1d: ac:14:e4:da -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaVSsHGNHtx1D0mDQijE9uEfT//IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAwMDQxWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTJmODI3ZDQzY2IzMDhmMjIwNTFkZGZhOGNlMmU2MDM1 MjI1ZjdlNGZhNGRmNWU1YTdkNjFiYmQ5Zjc5N2ZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5JaE6VkQQZK9ynJxmiDDdDPzGA9iOGXznhibW7JbVuQpW 0T4QsfsGcllS1ActdStnvNHZ0Z20GtDqQwjah7Co9M9ibd5owQFI6+AYuLMaHUGD wYny4U8L7QCCid4bH1pB/Gkd2W4akAeGsigYe2qGTqSt30mhxd5GpOB/LqjVd4+f PQpy6aJhncqF+UQWK1GjMgvwpUo16MxfsVHjtC4geE2dDvUGUORObXX3VwXDpBQ2 YVdgC7CW8y6Rpdspr9ScX0oU200VuOL9LZ125/sJu0Wq/Pf54GIOIH2QmKOs9FOQ z1QlVsY/tMPwvtkmNZlXfmXpFm3DoECpsD7mS4ehAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgNnKUPmbDuDQfBxTwn2Ix6s2wAIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZWUwOTdjLTc4YzgtNGM3NS04NjZjLTYwOTJlNzhlNzZkNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZjTYAwDQYJKoZIhvcNAQELBQADggEBACsXOJtXdMJtFoc1lwEI/mFIZYMt WrLfroFLCo2ZUSut6rTloXX9mq07Q6VOl6i9f6Zfda+TNk6ns7xYd2zSJUyE+j7U owRWs/BWeQi8W9vimqHY3YRilWNebeG4nfIvfo2RluNRjl9lUdy2D21eka5YCx3i 1qxWtNzAwZopizjeFHgoRw5bQPpDOTGO3ZSij9GbByfzan5PWBLQErKXXICc8O/V QJVM8RuaQr7iglN8rBH6njG5vUjJSmjeJ7ae5TNJgzfdFPVIV4VBgOT+pRG9iH1B bHoa/iCile6EK+UBrvZQIPFdOHNWFi7bZcSHrOJ/JWbPe3Du036pHawU5No= -----END CERTIFICATE-----Generated at Sun May 3 14:45:08 2026 by rpki-client