$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa File: c59f8dc7-041e-43d0-86e8-47f290f42602.roa (raw, json) Hash identifier: 1hBQ7e1lpFBiBepOZRftniSIHjI7uVocISmYzrfgNGs= Subject key identifier: 8E:16:F8:5B:E2:22:94:3A:64:A2:16:A0:04:C7:07:FA:0D:02:7D:11 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3BC2B94267B928A1228B50A478C62C265AA8B694 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa Signing time: Fri 01 May 2026 00:41:30 +0000 ROA not before: Fri 01 May 2026 00:41:30 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:c2:b9:42:67:b9:28:a1:22:8b:50:a4:78:c6:2c:26:5a:a8:b6:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:41:30 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=91f2198fcb49c6a73d4b05abe46b4ede716dd4a9fca788e15d48681daa3401e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:5c:60:0f:9a:af:76:9c:03:53:09:b7:a5:88: 1e:5b:cc:ac:e0:e5:c9:61:4b:ac:b3:27:5a:18:fa: b4:3a:5b:e4:fd:73:2e:e7:2d:cf:0b:54:e6:2a:0f: f8:c4:38:1e:d8:8f:ae:75:d6:e3:c0:4d:49:af:60: 06:0d:70:a8:73:88:7d:46:3a:4c:b6:f7:c1:4a:83: 85:42:2b:46:11:67:11:da:a5:d5:dd:44:e7:9a:b3: 5d:60:6a:0d:1f:07:7c:be:10:9d:ce:2e:26:6d:4b: f2:6c:8e:e8:72:2a:3e:c5:5d:df:d3:a3:a0:4d:eb: 16:c9:a2:06:45:12:65:75:53:f8:6d:32:25:e7:2e: 20:3d:88:9f:08:c5:3e:af:3f:8a:44:20:52:e7:d0: cb:6c:bd:e7:81:c7:f7:55:92:1d:5d:a5:a7:b8:d7: 5d:75:f5:9e:35:bd:16:c4:73:1d:82:8f:80:b3:ce: 11:7e:8f:d3:18:45:2e:94:0d:3b:11:c1:e2:4d:12: 44:a2:12:66:87:e4:c2:93:9d:7c:61:e2:63:4c:c8: 17:1d:1d:5a:4a:20:11:0b:f8:32:76:b7:82:bc:9d: 56:2a:6a:d1:9d:0c:77:20:9f:58:09:a6:f0:e8:37: 85:4e:8b:1e:11:b2:22:77:c8:c2:eb:6f:da:fb:97: 6c:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:16:F8:5B:E2:22:94:3A:64:A2:16:A0:04:C7:07:FA:0D:02:7D:11 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c59f8dc7-041e-43d0-86e8-47f290f42602.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.0.0/17 Signature Algorithm: sha256WithRSAEncryption 52:46:b6:4e:0a:e6:20:42:ea:84:de:f2:89:62:52:61:86:96: a1:0b:e6:50:d5:41:81:af:c3:d4:47:cf:2b:eb:3d:77:62:05: 3e:5a:f4:45:e9:78:a3:2b:24:77:da:96:90:2e:8e:6f:46:97: f2:9d:a1:5c:ad:96:22:55:df:98:6e:65:71:95:57:14:30:80: 64:37:f9:41:97:63:23:b4:d8:66:4f:33:af:05:df:c9:60:1a: ce:13:60:7a:bc:bc:b3:17:f1:d7:d9:b1:38:d4:02:04:b6:46: 6e:5b:c8:af:4a:e6:10:70:17:dc:cb:f4:84:3f:3c:46:c6:9b: 1f:f2:a6:59:b8:88:19:28:3b:56:a2:99:81:d1:1b:76:09:5b: 39:57:bd:00:e4:3b:d5:25:e4:ee:74:0b:59:89:fc:79:74:8d: 9d:0f:24:20:11:a2:66:24:82:8e:42:5a:f0:69:c3:11:b5:e3: 88:7e:5d:d5:be:ed:9d:67:d6:fd:df:26:ce:9a:55:a0:98:0e: 76:1d:30:e6:c9:0c:59:e7:69:44:b5:9b:77:cb:0a:14:6e:d0: f9:a8:a2:a2:64:d9:17:d8:c5:52:96:2b:87:5d:de:57:87:27: f9:d8:28:a8:76:bc:c8:fa:d1:11:89:35:cc:eb:d0:b9:17:b5: 7e:a1:59:c5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUO8K5Qme5KKEii1CkeMYsJlqotpQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA0MTMwWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWYyMTk4ZmNiNDljNmE3M2Q0YjA1YWJlNDZiNGVkZTcx NmRkNGE5ZmNhNzg4ZTE1ZDQ4NjgxZGFhMzQwMWUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvXGAPmq92nANTCbeliB5bzKzg5clhS6yzJ1oY+rQ6W+T9 cy7nLc8LVOYqD/jEOB7Yj6511uPATUmvYAYNcKhziH1GOky298FKg4VCK0YRZxHa pdXdROeas11gag0fB3y+EJ3OLiZtS/JsjuhyKj7FXd/To6BN6xbJogZFEmV1U/ht MiXnLiA9iJ8IxT6vP4pEIFLn0MtsveeBx/dVkh1dpae411119Z41vRbEcx2Cj4Cz zhF+j9MYRS6UDTsRweJNEkSiEmaH5MKTnXxh4mNMyBcdHVpKIBEL+DJ2t4K8nVYq atGdDHcgn1gJpvDoN4VOix4RsiJ3yMLrb9r7l2yZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjhb4W+IilDpkohagBMcH+g0CfREwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OWY4ZGM3LTA0MWUtNDNkMC04NmU4LTQ3ZjI5MGY0MjYwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjUgAwDQYJKoZIhvcNAQELBQADggEBAFJGtk4K5iBC6oTe8oliUmGGlqEL 5lDVQYGvw9RHzyvrPXdiBT5a9EXpeKMrJHfalpAujm9Gl/KdoVytliJV35huZXGV VxQwgGQ3+UGXYyO02GZPM68F38lgGs4TYHq8vLMX8dfZsTjUAgS2Rm5byK9K5hBw F9zL9IQ/PEbGmx/yplm4iBkoO1aimYHRG3YJWzlXvQDkO9Ul5O50C1mJ/Hl0jZ0P JCARomYkgo5CWvBpwxG144h+XdW+7Z1n1v3fJs6aVaCYDnYdMObJDFnnaUS1m3fL ChRu0PmooqJk2RfYxVKWK4dd3leHJ/nYKKh2vMj60RGJNczr0LkXtX6hWcU= -----END CERTIFICATE-----Generated at Sun May 3 16:15:20 2026 by rpki-client