$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57e08645-7dfb-43a6-b7c9-7571e55f663f.roa File: 57e08645-7dfb-43a6-b7c9-7571e55f663f.roa (raw, json) Hash identifier: QzBavBXGfzUtT4SdARsYI56oogh37BU7p55Yqyag6Q4= Subject key identifier: 58:2B:3D:75:78:63:E9:63:D2:3C:58:08:E4:30:7B:43:72:13:61:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D0A6CBBCCB11DBC26091EF69B6541334617D57F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57e08645-7dfb-43a6-b7c9-7571e55f663f.roa Signing time: Fri 01 May 2026 00:50:06 +0000 ROA not before: Fri 01 May 2026 00:50:06 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.238.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:0a:6c:bb:cc:b1:1d:bc:26:09:1e:f6:9b:65:41:33:46:17:d5:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:50:06 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=23c839357fbacebc43ea7d0edc52ef07bde5f2b98f57da17ae98e63a0fda2a30, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:7d:43:6c:19:18:43:71:4c:9e:6e:7a:c3:fa: 3a:b3:c6:c9:91:0a:7b:18:bb:c5:04:80:7f:c8:ed: 6f:d5:9d:06:0c:46:13:f8:fa:9e:57:da:8b:d3:93: f9:52:82:89:36:fa:86:c0:7c:77:c8:76:c4:68:6c: 56:34:37:84:5f:5f:c7:e7:48:59:e4:6d:32:86:27: b9:95:c2:b4:b3:0e:95:2f:a7:1c:d2:50:0e:91:fc: 61:9a:29:9e:f0:1c:06:bd:8e:88:bb:9d:82:7e:bb: 42:94:3f:ad:69:43:e2:b6:7b:97:9f:67:6c:40:85: ee:09:36:5f:c1:21:09:93:7a:1b:16:c8:ca:2d:55: 9b:8f:da:84:a1:f8:96:3f:59:e2:7f:98:f9:4a:f0: ee:74:92:cc:b9:21:24:45:37:ab:0f:c6:73:d3:b9: 4a:86:9e:59:b1:3b:a4:ef:08:0e:97:02:f2:22:10: 5d:6a:b3:ff:a6:c2:4e:56:ac:69:25:10:81:0e:e1: 5f:e0:5d:9b:15:9b:82:f6:f6:42:bb:45:96:fa:07: ce:d3:d2:e9:0d:50:5f:af:15:7f:7b:d5:32:47:74: 08:33:5b:e5:84:62:f2:6f:0b:be:5d:4d:f4:0e:c9: 28:56:91:2e:5b:d1:f8:67:70:38:b3:80:9a:c4:b2: 4d:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 58:2B:3D:75:78:63:E9:63:D2:3C:58:08:E4:30:7B:43:72:13:61:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57e08645-7dfb-43a6-b7c9-7571e55f663f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.238.0/24 Signature Algorithm: sha256WithRSAEncryption aa:f9:36:97:dd:d7:4e:4a:54:b9:82:a0:83:c6:62:40:3e:a5: a7:c0:75:3d:86:b4:90:f8:71:01:ff:87:54:12:36:9a:57:be: b5:e5:ef:c7:e3:da:f3:06:54:3d:c3:f9:86:47:7a:e3:0c:8f: fa:96:d5:46:3f:03:44:f6:0e:fc:89:ae:1a:77:7b:c1:45:3b: c5:3b:a8:2b:73:83:0b:66:4b:2a:da:1d:0f:68:b4:ef:e0:b7: b2:f7:c2:ce:0c:38:d0:1d:04:5d:72:7d:ae:93:a1:9c:e6:eb: 33:4a:af:b7:8a:fe:84:06:78:f0:42:d9:09:4d:c0:61:a5:e0: f8:b6:46:f0:ad:99:21:67:3f:49:25:95:d0:66:97:ae:0e:c4: cf:47:cd:af:b9:1f:a8:6f:0d:b6:17:90:e9:f6:97:2f:f1:4e: 9b:a1:25:f6:71:0a:89:61:0f:3a:2a:44:ec:b3:45:a1:3c:fb: 1b:0f:63:47:14:e0:dc:95:b4:ed:9b:21:2b:7d:4e:a3:40:c0: c8:03:78:13:35:90:1a:b0:fc:5f:1f:03:b2:a0:9e:77:bb:d5: 5f:ca:2c:42:39:17:75:fe:71:05:03:80:9a:12:a8:a2:da:00: 40:b5:72:f4:9a:2d:bd:5b:50:82:6d:56:39:25:05:cc:d8:c4: cd:51:73:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHQpsu8yxHbwmCR72m2VBM0YX1X8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA1MDA2WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyM2M4MzkzNTdmYmFjZWJjNDNlYTdkMGVkYzUyZWYwN2Jk ZTVmMmI5OGY1N2RhMTdhZTk4ZTYzYTBmZGEyYTMwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqfUNsGRhDcUyebnrD+jqzxsmRCnsYu8UEgH/I7W/VnQYM RhP4+p5X2ovTk/lSgok2+obAfHfIdsRobFY0N4RfX8fnSFnkbTKGJ7mVwrSzDpUv pxzSUA6R/GGaKZ7wHAa9joi7nYJ+u0KUP61pQ+K2e5efZ2xAhe4JNl/BIQmTehsW yMotVZuP2oSh+JY/WeJ/mPlK8O50ksy5ISRFN6sPxnPTuUqGnlmxO6TvCA6XAvIi EF1qs/+mwk5WrGklEIEO4V/gXZsVm4L29kK7RZb6B87T0ukNUF+vFX971TJHdAgz W+WEYvJvC75dTfQOyShWkS5b0fhncDizgJrEsk0PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWCs9dXhj6WPSPFgI5DB7Q3ITYTIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3ZTA4NjQ1LTdkZmItNDNhNi1iN2M5LTc1NzFlNTVmNjYzZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTe4wDQYJKoZIhvcNAQELBQADggEBAKr5Npfd105KVLmCoIPGYkA+pafA dT2GtJD4cQH/h1QSNppXvrXl78fj2vMGVD3D+YZHeuMMj/qW1UY/A0T2DvyJrhp3 e8FFO8U7qCtzgwtmSyraHQ9otO/gt7L3ws4MONAdBF1yfa6ToZzm6zNKr7eK/oQG ePBC2QlNwGGl4Pi2RvCtmSFnP0klldBml64OxM9Hza+5H6hvDbYXkOn2ly/xTpuh JfZxColhDzoqROyzRaE8+xsPY0cU4NyVtO2bISt9TqNAwMgDeBM1kBqw/F8fA7Kg nne71V/KLEI5F3X+cQUDgJoSqKLaAEC1cvSaLb1bUIJtVjklBczYxM1Rc04= -----END CERTIFICATE-----Generated at Sun May 3 15:28:19 2026 by rpki-client