$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef29466-00b2-4064-829f-9e52620573d7.roa File: 2ef29466-00b2-4064-829f-9e52620573d7.roa (raw, json) Hash identifier: VXf9OkJ9AvKt/OwozOu1hUhlGcTnuqMsA9w4tLhKDD0= Subject key identifier: 04:C2:4D:0B:8A:5D:37:90:30:2D:44:03:EE:BA:70:57:89:1A:AE:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30F29BE165862ED438874EB74A6C45AEA548C112 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef29466-00b2-4064-829f-9e52620573d7.roa Signing time: Fri 01 May 2026 00:31:11 +0000 ROA not before: Fri 01 May 2026 00:31:11 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.12.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:f2:9b:e1:65:86:2e:d4:38:87:4e:b7:4a:6c:45:ae:a5:48:c1:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:31:11 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=957a2f568869a39cc9daaa50e5f8624af5d7ea672619e7b30c9b2734d6faed77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:5c:d4:76:b9:9c:7f:3a:6d:17:98:75:5d:40: df:5a:28:ec:d1:ae:14:3b:8e:21:91:fd:b6:e3:8c: 5a:96:e3:9e:0b:80:6f:4a:8c:01:2f:38:13:2f:f4: b5:17:11:63:0e:b8:17:b2:9c:9b:f5:fa:61:0e:2e: c6:83:5b:45:46:a4:98:f1:3b:a1:8d:de:9f:3e:ab: 4d:74:b0:02:fd:95:49:16:88:12:b7:12:dc:9c:12: e1:2b:3b:68:3c:43:cc:cd:57:e5:ac:db:8a:e8:9e: 81:51:56:9f:b2:cd:8a:1d:0d:ca:08:6d:a7:7d:dd: 83:9d:ce:92:c9:24:2e:a9:50:b0:55:78:32:80:fb: 14:d8:ff:ff:b1:68:47:52:44:ee:2d:9e:90:a3:6f: ed:d3:90:97:ea:7d:bf:58:49:60:31:13:6a:7a:48: 21:22:36:51:fc:a1:00:66:e3:e6:03:ab:29:4d:27: 83:ba:08:6a:71:92:e6:c1:7f:25:7d:7b:2f:46:55: c3:cc:de:ab:4c:8f:f0:7e:22:44:c2:4f:79:29:ff: 4c:fc:5f:ab:e9:3f:2e:3d:fe:94:be:0d:22:3a:8d: 82:80:c5:32:76:88:ab:a0:09:a4:67:fa:87:91:b8: 2f:b9:f2:89:b4:13:3c:80:56:29:ef:22:c3:71:a6: d6:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:C2:4D:0B:8A:5D:37:90:30:2D:44:03:EE:BA:70:57:89:1A:AE:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2ef29466-00b2-4064-829f-9e52620573d7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.12.0/22 Signature Algorithm: sha256WithRSAEncryption 19:99:15:8e:eb:78:b4:1a:43:3a:e5:9d:bc:a0:cd:0a:39:65: be:b5:83:3f:e3:c7:74:cb:0e:db:17:4f:6b:72:1f:76:de:73: 2e:29:c1:ae:c2:d9:c3:69:bb:7b:c3:80:b3:77:99:53:f0:bf: 03:17:90:df:11:f4:2e:13:13:a1:df:06:4e:c1:c5:fa:21:fa: b3:2c:de:08:c1:b5:97:c3:ee:c5:a9:58:1f:0a:a4:97:d1:22: 14:fd:d9:3d:fe:ae:f4:ce:3f:69:05:67:bd:2e:fa:6e:17:0b: 7d:f5:2e:f6:85:dd:f9:3c:7e:8b:b1:e1:99:14:07:03:ef:39: fc:c7:86:f0:58:f6:18:29:dd:2b:cd:b6:7f:3e:6c:d8:04:e8: 3b:2c:cf:2b:8f:c4:7e:2a:22:51:65:14:fb:6d:c6:fb:71:49: 6d:41:5a:65:73:4c:f6:ba:33:69:16:2a:7f:7c:ae:f5:5a:85: 1c:61:cc:1a:72:fd:ff:a6:b7:5b:a8:f1:30:38:b0:a5:6c:1f: c7:25:a9:d3:a2:29:f3:02:ca:b0:d9:f3:fb:3a:23:b0:1f:16: b4:a9:09:c5:cd:8c:1e:ea:08:ac:c7:79:0e:9a:a6:9e:f4:81: 89:01:d7:43:4c:83:37:d9:34:e8:54:0a:00:17:c8:5a:3a:22: 65:fb:62:48 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMPKb4WWGLtQ4h063SmxFrqVIwRIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMTExWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NTdhMmY1Njg4NjlhMzljYzlkYWFhNTBlNWY4NjI0YWY1 ZDdlYTY3MjYxOWU3YjMwYzliMjczNGQ2ZmFlZDc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCoXNR2uZx/Om0XmHVdQN9aKOzRrhQ7jiGR/bbjjFqW454L gG9KjAEvOBMv9LUXEWMOuBeynJv1+mEOLsaDW0VGpJjxO6GN3p8+q010sAL9lUkW iBK3EtycEuErO2g8Q8zNV+Ws24ronoFRVp+yzYodDcoIbad93YOdzpLJJC6pULBV eDKA+xTY//+xaEdSRO4tnpCjb+3TkJfqfb9YSWAxE2p6SCEiNlH8oQBm4+YDqylN J4O6CGpxkubBfyV9ey9GVcPM3qtMj/B+IkTCT3kp/0z8X6vpPy49/pS+DSI6jYKA xTJ2iKugCaRn+oeRuC+58om0EzyAVinvIsNxptbtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBMJNC4pdN5AwLUQD7rpwV4karpgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJlZjI5NDY2LTAwYjItNDA2NC04MjlmLTllNTI2MjA1NzNkNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAAwwDQYJKoZIhvcNAQELBQADggEBABmZFY7reLQaQzrlnbygzQo5Zb61 gz/jx3TLDtsXT2tyH3becy4pwa7C2cNpu3vDgLN3mVPwvwMXkN8R9C4TE6HfBk7B xfoh+rMs3gjBtZfD7sWpWB8KpJfRIhT92T3+rvTOP2kFZ70u+m4XC331LvaF3fk8 foux4ZkUBwPvOfzHhvBY9hgp3SvNtn8+bNgE6DsszyuPxH4qIlFlFPttxvtxSW1B WmVzTPa6M2kWKn98rvVahRxhzBpy/f+mt1uo8TA4sKVsH8clqdOiKfMCyrDZ8/s6 I7AfFrSpCcXNjB7qCKzHeQ6app70gYkB10NMgzfZNOhUCgAXyFo6ImX7Ykg= -----END CERTIFICATE-----Generated at Sun May 3 14:45:49 2026 by rpki-client