$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa File: 4b686aa2-54bd-4401-b362-571c7282451f.roa (raw, json) Hash identifier: EXG2cGQOJpXcKIuMoHwa4QmUqfQqzePHZqmTYjvW3mM= Subject key identifier: 12:2C:EE:21:12:6F:E0:1C:FE:D4:85:93:2B:2A:A1:C5:3B:2E:71:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 09E125CA12D6FB515D0F942BCB50FF5F64F8EBF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa Signing time: Fri 01 May 2026 00:00:09 +0000 ROA not before: Fri 01 May 2026 00:00:09 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.78.192.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:e1:25:ca:12:d6:fb:51:5d:0f:94:2b:cb:50:ff:5f:64:f8:eb:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:00:09 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=aff1ddec8c235e4e06229bab140a9a76c79a4608b630086a1ad21b7a6b30bff1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3a:bf:14:02:20:e8:8e:ac:6d:c7:c1:6f:de: 6a:2e:07:54:03:a7:bf:53:c0:36:72:83:18:20:4f: 3b:72:e6:eb:33:b8:fb:4a:c5:a8:f8:d7:35:66:9c: fa:65:ae:bd:55:6b:28:81:01:89:13:4a:f0:c4:37: 71:7d:2c:f0:15:f3:13:26:65:5e:b3:8d:75:2c:1b: 62:55:20:55:18:95:44:19:fc:83:f3:a3:8f:b5:3e: d1:7e:12:71:30:e8:1d:33:dd:48:ba:fc:c1:90:8c: b3:f7:a9:11:29:09:5c:bb:86:3d:11:61:7c:cf:ce: bf:24:52:e1:49:df:e3:09:51:aa:dd:50:39:19:e9: 86:80:29:06:ea:bb:a4:aa:1e:5d:06:2f:42:fe:b1: d2:e2:c9:ab:56:67:0c:8e:a0:4a:95:a9:5e:d6:b7: 89:f1:6a:ac:e3:1a:56:b7:11:9a:55:bb:c0:28:42: 93:f4:f6:93:70:eb:5a:96:4e:41:f4:5c:03:62:cd: 7b:61:3f:02:f8:27:4b:72:70:4f:76:be:f0:25:12: 05:41:af:43:c8:9c:ad:81:59:df:44:f7:f6:47:fe: 96:88:88:d1:3f:d9:3f:d6:bb:4e:f7:9f:b0:c4:16: 3e:f4:d5:4d:4d:a9:c7:68:78:27:ad:8f:59:dc:a0: a5:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:2C:EE:21:12:6F:E0:1C:FE:D4:85:93:2B:2A:A1:C5:3B:2E:71:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4b686aa2-54bd-4401-b362-571c7282451f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.78.192.0/22 Signature Algorithm: sha256WithRSAEncryption 08:ff:c2:33:a3:c6:36:cd:71:05:23:b2:5d:4e:14:75:f5:fa: 7d:99:9c:b8:38:57:ec:b2:5f:b2:f6:bb:03:21:9d:98:56:82: 84:a3:a1:72:6d:b8:80:80:e0:45:6b:fb:21:78:cc:04:9c:2d: 1a:70:e2:90:8d:53:6a:55:02:a7:f9:b1:86:e4:4d:5e:68:a3: fd:64:95:b8:82:91:28:4a:0d:4a:12:cc:ce:6f:de:94:5d:c3: 1c:c8:14:67:b3:e2:77:e3:bf:f9:43:8f:74:c0:fa:86:05:45: c0:1d:8d:50:6e:a0:a8:44:68:aa:04:f6:a8:b6:b5:8d:25:13: 4a:07:84:1f:4b:ae:ad:b5:8c:5f:34:f1:e1:9f:62:78:4e:d1: a8:f5:44:3c:00:62:65:aa:6f:81:1c:6c:04:c7:70:d8:b4:0f: be:e4:39:6d:b0:c4:53:94:ab:e6:a5:3c:51:4d:e2:1e:ff:ed: 7b:2c:78:b0:9f:94:c5:39:a9:4f:0e:17:7a:63:65:93:86:c9: 70:4b:94:80:e4:97:15:68:65:fd:38:6e:b1:fd:22:c3:76:f8: 52:b1:ff:55:37:d2:0f:e6:34:1b:36:07:66:cb:9a:a3:d6:f5: 86:e3:0b:02:2c:03:e2:bf:b3:1d:bd:c7:09:8f:1e:f3:be:a9: df:a7:7b:fd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCeElyhLW+1FdD5Qry1D/X2T46/MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAwMDA5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZmYxZGRlYzhjMjM1ZTRlMDYyMjliYWIxNDBhOWE3NmM3 OWE0NjA4YjYzMDA4NmExYWQyMWI3YTZiMzBiZmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqOr8UAiDojqxtx8Fv3mouB1QDp79TwDZygxggTzty5usz uPtKxaj41zVmnPplrr1VayiBAYkTSvDEN3F9LPAV8xMmZV6zjXUsG2JVIFUYlUQZ /IPzo4+1PtF+EnEw6B0z3Ui6/MGQjLP3qREpCVy7hj0RYXzPzr8kUuFJ3+MJUard UDkZ6YaAKQbqu6SqHl0GL0L+sdLiyatWZwyOoEqVqV7Wt4nxaqzjGla3EZpVu8Ao QpP09pNw61qWTkH0XANizXthPwL4J0tycE92vvAlEgVBr0PInK2BWd9E9/ZH/paI iNE/2T/Wu073n7DEFj701U1NqcdoeCetj1ncoKV9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEizuIRJv4Bz+1IWTKyqhxTsucdcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRiNjg2YWEyLTU0YmQtNDQwMS1iMzYyLTU3MWM3MjgyNDUxZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjTsAwDQYJKoZIhvcNAQELBQADggEBAAj/wjOjxjbNcQUjsl1OFHX1+n2Z nLg4V+yyX7L2uwMhnZhWgoSjoXJtuICA4EVr+yF4zAScLRpw4pCNU2pVAqf5sYbk TV5oo/1klbiCkShKDUoSzM5v3pRdwxzIFGez4nfjv/lDj3TA+oYFRcAdjVBuoKhE aKoE9qi2tY0lE0oHhB9Lrq21jF808eGfYnhO0aj1RDwAYmWqb4EcbATHcNi0D77k OW2wxFOUq+alPFFN4h7/7XsseLCflMU5qU8OF3pjZZOGyXBLlIDklxVoZf04brH9 IsN2+FKx/1U30g/mNBs2B2bLmqPW9YbjCwIsA+K/sx29xwmPHvO+qd+ne/0= -----END CERTIFICATE-----Generated at Sun May 3 14:47:41 2026 by rpki-client