$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa File: 9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa (raw, json) Hash identifier: 8Ab+K/+1v72B4GbDp97ADRKQQLXU1pdJLZcgdxm5mGE= Subject key identifier: 00:B8:07:FD:A8:B9:83:02:AB:20:C0:7A:75:52:A9:1F:DC:4A:23:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DE3ACAC6D0BB46C6C8ADD5104F17027BC400820 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa Signing time: Wed 29 Apr 2026 00:00:08 +0000 ROA not before: Wed 29 Apr 2026 00:00:08 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 138.90.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:e3:ac:ac:6d:0b:b4:6c:6c:8a:dd:51:04:f1:70:27:bc:40:08:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:00:08 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=02e348340ff0663d77e208881cc80ee41b5eb75516932d7558fac4219a049873, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:4c:e8:48:01:ec:45:41:04:4f:ca:06:b7:62: 54:db:ea:db:51:2d:96:d5:02:eb:bb:8d:ee:00:d9: 1f:99:7c:20:e1:09:d9:a7:16:d7:61:fa:3e:be:1f: f0:bc:2f:b4:2f:ca:4c:04:6d:14:14:24:73:b8:98: c2:1a:23:7d:42:3b:fa:7c:71:5c:61:17:e6:67:6b: 0b:de:48:a0:b8:69:57:9b:d3:0e:4c:c8:0d:0c:ab: 32:9e:9e:d5:91:3f:cc:dd:be:cd:c8:5d:e1:50:fc: a6:21:49:c6:a3:34:8e:d5:e0:56:d1:0f:2c:6e:3f: f4:bf:1a:e2:29:52:18:e9:42:b0:23:14:49:97:16: 68:ff:63:94:64:32:89:06:78:02:bd:20:b5:eb:85: 5f:d5:3b:6b:f1:0f:ea:6f:22:da:6d:5a:76:a1:6f: c6:f9:3b:4f:e8:d6:cc:ff:41:39:99:d1:dd:55:8d: 65:e2:92:29:d2:5b:80:4e:84:55:61:8d:01:51:40: 77:e8:e1:b6:3a:93:3a:15:17:73:c3:c3:88:8d:57: 4d:4b:69:87:b1:fe:83:85:1d:0c:38:75:33:24:9d: 33:61:23:80:60:03:26:49:f0:50:68:9d:65:55:c0: 12:9f:bf:78:29:48:d5:e9:c6:52:fd:57:8f:35:b8: fd:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:B8:07:FD:A8:B9:83:02:AB:20:C0:7A:75:52:A9:1F:DC:4A:23:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ffa0a55-65ab-4aba-af4c-8b8ce167f61a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 138.90.0.0/16 Signature Algorithm: sha256WithRSAEncryption 57:70:85:a6:06:ac:88:7c:11:5f:0c:fb:87:bc:70:85:d9:a5: 08:ae:eb:c8:5e:68:42:7b:2c:a8:62:b8:48:4b:b7:51:be:db: 34:10:bf:f0:d7:cb:d7:3e:0d:0a:eb:d6:1f:55:b9:f2:1c:78: 81:a5:41:91:75:e0:24:95:5c:1b:89:d1:26:57:57:be:1b:9f: 4f:e7:3a:9a:32:88:ec:1c:fd:8f:4d:fe:9a:6d:2f:b6:9d:fc: 4f:24:cc:2b:93:f5:0a:15:27:ef:f9:3b:d7:63:15:ee:48:39: 43:20:40:02:cd:2a:b3:38:26:98:cf:67:b5:c1:34:37:3e:09: 64:4e:21:90:b8:c6:1c:30:3c:94:23:d7:96:02:85:37:48:98: cb:89:81:09:58:cc:fc:d3:96:ac:97:36:22:ec:57:ed:c6:b5: f0:51:84:63:ac:e1:5b:4e:04:04:99:6c:3e:6e:cc:4d:41:97: 3c:70:d6:8d:4c:68:38:77:4d:b7:e7:bc:90:8a:8d:dc:ef:d7: 36:d6:09:59:44:e7:56:34:e7:4a:0b:0b:03:45:25:a9:9a:5f: 25:b5:94:0f:03:c8:2c:51:94:6c:7e:75:a8:b2:88:b7:75:fe: d2:94:b8:d3:87:93:a8:22:e7:2e:8f:07:5b:d1:23:f2:4a:fa: 3a:b8:e5:89 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXeOsrG0LtGxsit1RBPFwJ7xACCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAwMDA4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMmUzNDgzNDBmZjA2NjNkNzdlMjA4ODgxY2M4MGVlNDFi NWViNzU1MTY5MzJkNzU1OGZhYzQyMTlhMDQ5ODczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUTOhIAexFQQRPyga3YlTb6ttRLZbVAuu7je4A2R+ZfCDh CdmnFtdh+j6+H/C8L7QvykwEbRQUJHO4mMIaI31CO/p8cVxhF+ZnawveSKC4aVeb 0w5MyA0MqzKentWRP8zdvs3IXeFQ/KYhScajNI7V4FbRDyxuP/S/GuIpUhjpQrAj FEmXFmj/Y5RkMokGeAK9ILXrhV/VO2vxD+pvItptWnahb8b5O0/o1sz/QTmZ0d1V jWXikinSW4BOhFVhjQFRQHfo4bY6kzoVF3PDw4iNV01LaYex/oOFHQw4dTMknTNh I4BgAyZJ8FBonWVVwBKfv3gpSNXpxlL9V481uP0vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUALgH/ai5gwKrIMB6dVKpH9xKI7owHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlmZmEwYTU1LTY1YWItNGFiYS1hZjRjLThiOGNlMTY3ZjYxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCKWjANBgkqhkiG9w0BAQsFAAOCAQEAV3CFpgasiHwRXwz7h7xwhdmlCK7r yF5oQnssqGK4SEu3Ub7bNBC/8NfL1z4NCuvWH1W58hx4gaVBkXXgJJVcG4nRJldX vhufT+c6mjKI7Bz9j03+mm0vtp38TyTMK5P1ChUn7/k712MV7kg5QyBAAs0qszgm mM9ntcE0Nz4JZE4hkLjGHDA8lCPXlgKFN0iYy4mBCVjM/NOWrJc2IuxX7ca18FGE Y6zhW04EBJlsPm7MTUGXPHDWjUxoOHdNt+e8kIqN3O/XNtYJWUTnVjTnSgsLA0Ul qZpfJbWUDwPILFGUbH51qLKIt3X+0pS404eTqCLnLo8HW9Ej8kr6OrjliQ== -----END CERTIFICATE-----Generated at Sun May 3 17:03:41 2026 by rpki-client