$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa File: 3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa (raw, json) Hash identifier: MM5pp9Lk8AkCAQ2W0cL8fnZEDUuLLKq4zMXPzgFgHjE= Subject key identifier: DC:74:73:2F:E5:62:77:EF:E6:C7:F0:FF:0A:8C:D8:3D:EB:E1:90:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6E6AB255112389CB0F7A0194809D21B95B1C4506 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa Signing time: Wed 29 Apr 2026 00:00:43 +0000 ROA not before: Wed 29 Apr 2026 00:00:43 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.186.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:6a:b2:55:11:23:89:cb:0f:7a:01:94:80:9d:21:b9:5b:1c:45:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:43 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=5519bea7b3688d81ea78f196fb05aeb5f8706d53e5f3c0cb5576aa915bd257d3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:97:1e:f0:01:c1:c6:41:ab:91:cc:62:81:96: 14:ed:40:f8:57:b6:bf:06:85:ba:07:d9:88:9c:50: 83:cf:73:e4:ad:7f:1f:87:d8:4c:f6:1d:b1:77:fd: da:a7:9d:91:18:3a:92:32:58:ee:bb:39:b0:ff:cb: fe:ec:0e:e6:c6:ad:5b:ba:75:a9:f8:58:8f:ef:ee: 7a:8c:4c:6d:47:b1:12:33:c3:9a:8a:88:ab:b7:14: 39:e0:e3:4b:e8:55:a5:5c:55:5a:06:2a:a8:87:15: 24:0b:6b:99:fa:28:33:1a:3e:0b:dc:7e:5a:98:d9: 30:83:a1:87:60:29:20:79:80:1b:84:85:54:6f:50: eb:77:b0:b8:28:92:70:79:62:f8:ab:bc:22:df:47: 0c:12:37:cd:be:bf:86:bf:ff:ef:d5:f8:bf:40:3b: 36:ce:26:a6:7c:38:af:f2:b7:3a:a7:8e:e2:6f:84: b1:3d:c6:13:e3:15:60:8d:d7:7b:4a:09:5f:77:2e: 19:1a:32:b0:fe:cd:19:89:2f:4f:23:fa:38:c6:47: 7d:9e:41:48:24:e1:f0:c0:52:db:18:c6:a6:64:97: 09:c1:87:7d:7c:d1:dc:90:08:1c:87:d7:1c:a7:8d: a7:f5:2f:9d:9a:b6:03:2d:f4:6c:60:e2:ed:cc:4a: d0:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:74:73:2F:E5:62:77:EF:E6:C7:F0:FF:0A:8C:D8:3D:EB:E1:90:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3533c782-4a8e-4b05-b23e-e3741e9fb02c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.186.0/24 Signature Algorithm: sha256WithRSAEncryption 8a:fa:77:2d:26:9a:b6:34:8d:bb:46:59:73:04:d6:52:a5:47: 9c:9e:aa:80:33:5d:4e:a0:f2:64:2d:10:a7:79:74:61:6c:f2: 2c:45:27:93:60:ff:84:3b:da:14:47:e9:8c:3a:51:19:1e:e7: 1a:e6:22:9a:88:92:7c:92:c9:a1:9a:d5:8b:80:2d:c6:da:e0: 74:b1:47:1c:3d:79:f9:ca:7e:da:07:fa:a9:e7:09:4c:81:37: 46:e7:af:bf:e5:c9:18:55:76:58:18:78:e1:d2:49:b6:b7:65: b4:ed:3e:46:17:9c:22:d9:ec:d1:a7:e9:35:b5:e0:58:02:70: 34:8c:3d:9d:1f:d0:98:a6:2b:14:c6:99:02:f1:1a:4d:56:16: 5d:40:fe:24:74:60:c9:02:2d:a6:4a:e2:a0:f4:02:27:0c:9d: 5f:e0:6b:4e:4d:21:89:c0:63:1b:3b:88:59:bf:52:bf:f0:06: b5:52:33:3d:25:77:7a:f0:98:80:ab:7d:3c:90:db:4e:55:fb: 08:e7:1b:f9:ce:df:ac:80:88:52:cb:81:f6:72:ef:43:6d:4b: b3:0f:92:68:7e:3f:41:8f:9b:f5:27:49:27:35:06:ae:e2:b3: fb:dd:3c:e2:f2:29:fa:f6:5f:ae:fe:c3:a8:cf:30:a3:7c:35: c5:45:6c:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbmqyVREjicsPegGUgJ0huVscRQYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMDQzWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NTE5YmVhN2IzNjg4ZDgxZWE3OGYxOTZmYjA1YWViNWY4 NzA2ZDUzZTVmM2MwY2I1NTc2YWE5MTViZDI1N2QzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzlx7wAcHGQauRzGKBlhTtQPhXtr8GhboH2YicUIPPc+St fx+H2Ez2HbF3/dqnnZEYOpIyWO67ObD/y/7sDubGrVu6dan4WI/v7nqMTG1HsRIz w5qKiKu3FDng40voVaVcVVoGKqiHFSQLa5n6KDMaPgvcflqY2TCDoYdgKSB5gBuE hVRvUOt3sLgoknB5YvirvCLfRwwSN82+v4a//+/V+L9AOzbOJqZ8OK/ytzqnjuJv hLE9xhPjFWCN13tKCV93LhkaMrD+zRmJL08j+jjGR32eQUgk4fDAUtsYxqZklwnB h3180dyQCByH1xynjaf1L52atgMt9Gxg4u3MStCtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3HRzL+Vid+/mx/D/CozYPevhkEEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MzNjNzgyLTRhOGUtNGIwNS1iMjNlLWUzNzQxZTlmYjAyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTbowDQYJKoZIhvcNAQELBQADggEBAIr6dy0mmrY0jbtGWXME1lKlR5ye qoAzXU6g8mQtEKd5dGFs8ixFJ5Ng/4Q72hRH6Yw6URke5xrmIpqIknySyaGa1YuA Lcba4HSxRxw9efnKftoH+qnnCUyBN0bnr7/lyRhVdlgYeOHSSba3ZbTtPkYXnCLZ 7NGn6TW14FgCcDSMPZ0f0JimKxTGmQLxGk1WFl1A/iR0YMkCLaZK4qD0AicMnV/g a05NIYnAYxs7iFm/Ur/wBrVSMz0ld3rwmICrfTyQ205V+wjnG/nO36yAiFLLgfZy 70NtS7MPkmh+P0GPm/UnSSc1Bq7is/vdPOLyKfr2X67+w6jPMKN8NcVFbGI= -----END CERTIFICATE-----Generated at Sun May 3 14:45:07 2026 by rpki-client