$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa File: 533f99b1-b818-4380-8b49-b128210a3f25.roa (raw, json) Hash identifier: UU72G2F8CTPtTMwbrN6iXaInDLjSHdquRvZj/b2BijE= Subject key identifier: 28:F0:06:C6:A1:9C:80:51:07:EB:ED:53:95:BC:EF:AE:2F:F8:7C:81 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CD8ECF47E59E2DD8B42782EA92E63466640C4F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa Signing time: Wed 29 Apr 2026 00:00:10 +0000 ROA not before: Wed 29 Apr 2026 00:00:10 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 207.221.0.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:d8:ec:f4:7e:59:e2:dd:8b:42:78:2e:a9:2e:63:46:66:40:c4:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:10 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=13a5598e99149e6e6bbf375b9f8610ec3b20b15db253b134f88ec54ce9a190ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1e:6a:17:26:98:fa:c8:64:34:b5:97:ca:2e: c0:79:6b:c1:23:23:03:05:81:7d:c2:ff:de:9a:f5: 38:8a:4a:6f:57:30:8f:72:be:af:3b:8b:e1:91:3e: c2:57:11:8b:e7:a0:91:03:a5:be:3e:02:18:06:d7: 6e:c9:e7:c4:f0:f2:29:f4:f3:0e:e5:a9:81:b9:8f: 7d:69:5d:b5:5a:2d:93:34:58:b3:04:a5:06:1c:c5: 35:51:9c:6f:ad:2a:f4:43:e9:f7:ab:0d:3a:98:63: 42:52:ef:7e:29:92:78:b0:25:f0:dd:8c:1c:e6:af: ba:0b:9a:74:ea:28:64:16:18:bf:b9:6d:a6:dd:3b: f6:a0:9c:7b:17:8a:3e:b9:18:ed:d8:f7:14:ec:76: c7:28:04:b5:f6:49:84:92:7a:c1:41:27:50:22:07: bf:0f:6e:b4:e4:41:91:f7:6c:f8:8e:76:c0:91:95: 1c:f2:3e:d7:c4:0c:f6:95:7d:10:eb:b0:0b:eb:2b: 96:5a:84:7a:e5:45:91:13:43:ee:18:36:7d:95:f0: 0d:1f:24:e1:df:aa:e7:ab:fd:65:c5:36:03:26:75: ff:7f:ef:5a:df:fd:fa:83:a9:87:6a:46:d3:04:76: 0e:31:64:95:df:31:df:c1:b1:77:ad:64:31:68:52: a7:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:F0:06:C6:A1:9C:80:51:07:EB:ED:53:95:BC:EF:AE:2F:F8:7C:81 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/533f99b1-b818-4380-8b49-b128210a3f25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.221.0.0/19 Signature Algorithm: sha256WithRSAEncryption c5:fd:55:96:ee:d9:e8:b9:5e:78:56:c1:23:f4:83:c6:2e:da: 72:a6:5d:f8:e0:41:9f:61:71:c1:24:8f:2e:f7:20:dd:54:59: 9d:9b:a9:f7:d4:33:01:67:a5:3f:05:b2:d1:d1:78:20:bd:4b: 54:6e:47:52:3d:f1:21:1b:17:54:a9:0b:7e:b2:0e:23:b2:1e: 53:c6:a9:54:a2:1d:a3:d6:bf:5c:31:a2:14:b7:9c:f1:74:4d: c2:9d:43:4b:5b:3e:42:91:4d:e2:1c:2f:1f:b5:d4:00:fa:39: dd:d2:22:02:ca:7f:65:54:92:38:74:1c:83:8c:9f:64:6f:e5: 4d:fe:96:d8:3c:6d:87:e9:5f:36:7d:f8:ce:c1:b7:83:58:d5: 6b:df:37:d8:8f:ec:16:f8:30:fd:52:ac:60:3f:f4:92:b9:a2: d4:e0:d0:f2:3c:96:eb:b6:f0:ee:fb:62:54:3f:54:60:41:df: 84:23:90:74:65:22:5d:25:00:12:3d:d0:8e:06:a2:85:22:15: 4a:a9:ae:cc:1c:23:cb:27:f9:4e:23:19:45:60:70:cf:41:dc: bc:f1:9d:dd:91:70:d4:64:1d:ad:2c:e6:7f:9c:49:46:89:9b: e7:56:c5:4b:1f:a9:6f:0e:6a:75:df:0e:e8:7e:c5:14:86:2d: 43:4a:39:35 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULNjs9H5Z4t2LQnguqS5jRmZAxPkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMDEwWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxM2E1NTk4ZTk5MTQ5ZTZlNmJiZjM3NWI5Zjg2MTBlYzNi MjBiMTVkYjI1M2IxMzRmODhlYzU0Y2U5YTE5MGVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5HmoXJpj6yGQ0tZfKLsB5a8EjIwMFgX3C/96a9TiKSm9X MI9yvq87i+GRPsJXEYvnoJEDpb4+AhgG127J58Tw8in08w7lqYG5j31pXbVaLZM0 WLMEpQYcxTVRnG+tKvRD6ferDTqYY0JS734pkniwJfDdjBzmr7oLmnTqKGQWGL+5 babdO/agnHsXij65GO3Y9xTsdscoBLX2SYSSesFBJ1AiB78PbrTkQZH3bPiOdsCR lRzyPtfEDPaVfRDrsAvrK5ZahHrlRZETQ+4YNn2V8A0fJOHfquer/WXFNgMmdf9/ 71rf/fqDqYdqRtMEdg4xZJXfMd/BsXetZDFoUqdTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKPAGxqGcgFEH6+1Tlbzvri/4fIEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzM2Y5OWIxLWI4MTgtNDM4MC04YjQ5LWIxMjgyMTBhM2YyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXP3QAwDQYJKoZIhvcNAQELBQADggEBAMX9VZbu2ei5XnhWwSP0g8Yu2nKm XfjgQZ9hccEkjy73IN1UWZ2bqffUMwFnpT8FstHReCC9S1RuR1I98SEbF1SpC36y DiOyHlPGqVSiHaPWv1wxohS3nPF0TcKdQ0tbPkKRTeIcLx+11AD6Od3SIgLKf2VU kjh0HIOMn2Rv5U3+ltg8bYfpXzZ9+M7Bt4NY1WvfN9iP7Bb4MP1SrGA/9JK5otTg 0PI8luu28O77YlQ/VGBB34QjkHRlIl0lABI90I4GooUiFUqprswcI8sn+U4jGUVg cM9B3Lzxnd2RcNRkHa0s5n+cSUaJm+dWxUsfqW8OanXfDuh+xRSGLUNKOTU= -----END CERTIFICATE-----Generated at Sun May 3 15:28:09 2026 by rpki-client