$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a64007ca-cddd-47b4-b38f-a15992ab607b.roa File: a64007ca-cddd-47b4-b38f-a15992ab607b.roa (raw, json) Hash identifier: azdhSsJeymYWGVrSj1uIIKSECFtXRyjI+nEMqVNPRCI= Subject key identifier: E9:48:80:58:80:BB:06:72:29:46:72:B3:1B:38:81:7B:07:B4:AD:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 595EEBDF4D157DADC0291153DD46525AF320A0FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a64007ca-cddd-47b4-b38f-a15992ab607b.roa Signing time: Fri 01 May 2026 00:21:02 +0000 ROA not before: Fri 01 May 2026 00:21:02 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:5e:eb:df:4d:15:7d:ad:c0:29:11:53:dd:46:52:5a:f3:20:a0:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:21:02 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=f43947fec0e709d27d4644a4fdc3cc42477e90fbb509d1189223bec47ef4fa15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:24:54:da:e3:1e:54:82:cc:24:a8:35:fe:58: 13:e4:d0:11:8c:18:33:ae:62:6f:5e:ad:87:b8:16: d6:0c:74:05:b6:e8:69:4a:10:39:a7:7b:12:eb:8c: 52:28:ee:21:48:c2:10:91:60:e5:81:ba:d1:f8:5c: a1:46:95:08:de:c1:bb:56:97:d7:4b:8f:35:2e:b0: 28:7c:e1:a6:bb:c7:ad:90:bc:bb:5f:7f:58:7f:d6: 77:c3:62:74:74:a1:45:1e:3c:56:5f:6a:20:aa:27: 33:bc:dc:96:e3:2e:52:c6:e4:94:cb:df:32:b1:be: 92:75:78:a3:92:65:33:8e:3d:d8:1b:fa:23:29:94: 2a:d0:3d:3d:49:a7:2f:06:cc:6b:b8:0c:34:f7:b9: 2b:37:04:2e:65:76:6f:3e:77:99:ba:23:b5:95:fe: 20:05:c4:e1:9d:5e:19:15:6e:91:13:a3:16:48:85: ea:c1:39:7c:3c:8d:d5:d5:a8:55:a3:0c:2c:c8:31: 5a:b8:b6:ed:13:76:00:8c:12:e2:a5:bd:ce:6f:15: 79:5c:0c:23:44:44:2f:58:3f:20:03:a4:64:04:3a: 70:97:86:24:54:3d:fb:69:df:28:31:06:71:9b:ea: 3b:cc:0d:98:fb:09:03:4b:c2:aa:c4:47:78:0b:1d: 1e:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:48:80:58:80:BB:06:72:29:46:72:B3:1B:38:81:7B:07:B4:AD:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a64007ca-cddd-47b4-b38f-a15992ab607b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.135.0/24 Signature Algorithm: sha256WithRSAEncryption 66:a0:00:67:d9:e9:73:56:89:13:23:08:bc:41:be:88:62:b0: 9a:52:bf:21:77:db:53:e0:0a:8a:5e:0e:d1:d6:d4:5f:fa:0d: be:97:3f:5a:0e:0c:9d:ce:a6:b4:61:12:d8:da:bd:66:a9:89: 1c:08:95:79:ae:66:d6:b2:a7:27:88:33:28:2b:16:a0:4a:bd: 0b:d0:44:cd:6e:f7:9b:e7:f3:29:b3:d4:90:4c:13:5f:08:d3: c8:64:29:23:fb:ed:4e:54:0e:b4:d3:b3:36:ff:93:c0:00:16: 0c:de:dd:e1:0a:04:38:19:fb:3d:57:5f:be:40:57:8e:b6:e0: f6:c6:b7:7f:43:23:da:01:4a:98:a4:ab:cd:03:e8:ac:ad:62: c2:c3:a1:a1:40:4c:51:6c:fa:c3:09:fb:70:4e:ab:39:3a:92: fb:cd:c0:cc:79:33:6f:4c:60:16:ed:0c:4d:6f:17:99:07:1e: 0b:ae:af:a2:29:50:d6:57:39:95:51:67:c7:5a:a3:b4:89:5f: d7:bb:65:79:a2:df:43:23:69:28:5e:ca:61:35:98:43:9c:3c: 01:64:1c:c4:5d:ec:4e:8c:4e:08:88:15:32:db:65:d5:34:0a: 2d:ac:01:9d:28:94:6e:93:7f:97:37:b6:d9:7d:29:b0:2d:60: 9e:be:84:4e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWV7r300Vfa3AKRFT3UZSWvMgoPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMTAyWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNDM5NDdmZWMwZTcwOWQyN2Q0NjQ0YTRmZGMzY2M0MjQ3 N2U5MGZiYjUwOWQxMTg5MjIzYmVjNDdlZjRmYTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3JFTa4x5UgswkqDX+WBPk0BGMGDOuYm9erYe4FtYMdAW2 6GlKEDmnexLrjFIo7iFIwhCRYOWButH4XKFGlQjewbtWl9dLjzUusCh84aa7x62Q vLtff1h/1nfDYnR0oUUePFZfaiCqJzO83JbjLlLG5JTL3zKxvpJ1eKOSZTOOPdgb +iMplCrQPT1Jpy8GzGu4DDT3uSs3BC5ldm8+d5m6I7WV/iAFxOGdXhkVbpEToxZI herBOXw8jdXVqFWjDCzIMVq4tu0TdgCMEuKlvc5vFXlcDCNERC9YPyADpGQEOnCX hiRUPftp3ygxBnGb6jvMDZj7CQNLwqrER3gLHR6jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6UiAWIC7BnIpRnKzGziBewe0rYswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NDAwN2NhLWNkZGQtNDdiNC1iMzhmLWExNTk5MmFiNjA3Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYcwDQYJKoZIhvcNAQELBQADggEBAGagAGfZ6XNWiRMjCLxBvohisJpS vyF321PgCopeDtHW1F/6Db6XP1oODJ3OprRhEtjavWapiRwIlXmuZtaypyeIMygr FqBKvQvQRM1u95vn8ymz1JBME18I08hkKSP77U5UDrTTszb/k8AAFgze3eEKBDgZ +z1XX75AV4624PbGt39DI9oBSpikq80D6KytYsLDoaFATFFs+sMJ+3BOqzk6kvvN wMx5M29MYBbtDE1vF5kHHguur6IpUNZXOZVRZ8dao7SJX9e7ZXmi30MjaSheymE1 mEOcPAFkHMRd7E6MTgiIFTLbZdU0Ci2sAZ0olG6Tf5c3ttl9KbAtYJ6+hE4= -----END CERTIFICATE-----Generated at Sun May 3 16:13:15 2026 by rpki-client