$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa File: e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa (raw, json) Hash identifier: sRtBmQCoGSBiHr8Zrjw0BZibO90QM/MrPFImzWGG/oY= Subject key identifier: 9D:02:D5:E0:83:9F:7F:B0:BA:0F:CC:79:B7:9D:48:CD:A4:0D:31:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56C71B608C33E0412A672B1B5716BFB63B9BCACE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa Signing time: Wed 29 Apr 2026 00:20:08 +0000 ROA not before: Wed 29 Apr 2026 00:20:08 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 96.0.104.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c7:1b:60:8c:33:e0:41:2a:67:2b:1b:57:16:bf:b6:3b:9b:ca:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:20:08 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=09da674d77bb5df94affb491de95bb49a72b5e1e5085d28a4ce5bf36b598b820, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:19:50:7c:94:ec:f8:01:78:fd:2a:39:9b:1e: 3a:3a:ed:9c:ea:55:0b:bd:68:04:3e:a8:cb:28:5f: 3b:35:1f:79:41:5a:00:37:92:60:1d:70:f9:42:e2: 01:6f:1f:11:b2:78:e4:b0:02:05:a9:8d:52:20:98: ed:22:17:03:07:2d:26:4d:f9:91:0c:ce:ab:cc:be: c3:87:51:af:08:a6:05:94:2b:ab:dd:67:c0:82:b9: d6:41:6e:a5:80:b1:77:87:4b:61:43:58:b9:2d:ec: d5:14:79:ff:8a:76:78:e7:e8:e4:4d:66:3c:44:c0: 2a:a0:2b:2d:12:d6:a5:37:47:3d:0a:a9:7a:54:8b: cc:25:04:63:11:88:21:dc:36:d9:51:1a:e3:d7:f5: 4f:64:ce:9e:7e:3f:b0:e2:88:f5:b7:2f:ba:3b:a0: 1d:f8:b7:36:23:91:2a:1c:c9:86:5a:92:c6:bf:fc: ce:a3:22:7f:f7:43:f2:1c:e5:56:dc:88:95:30:97: bb:3c:cb:d5:b9:d7:4f:f1:9e:2f:22:86:df:bb:18: c4:73:24:9d:72:d1:ca:a1:9c:4d:64:dd:ec:44:f8: 5f:15:f7:f9:28:6e:0b:60:22:d5:d4:19:45:22:37: 55:88:bc:c3:5a:31:88:29:57:f2:b0:46:fe:ef:5c: c8:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:02:D5:E0:83:9F:7F:B0:BA:0F:CC:79:B7:9D:48:CD:A4:0D:31:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9e9a00e-aef9-48c7-88f3-d63013d1afa8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.104.0/22 Signature Algorithm: sha256WithRSAEncryption cf:86:bf:23:4e:15:0b:7b:75:96:a9:06:2a:ee:21:2b:41:75: 38:82:90:8c:ce:58:6d:bb:15:28:7b:04:a3:3e:38:f0:d9:b1: b2:21:42:ab:2e:45:0b:4e:5a:99:16:19:3c:08:72:26:3a:84: ba:22:5a:2c:e7:74:a5:b0:f3:85:c5:7b:00:43:be:91:de:fc: a8:d7:54:5d:77:f5:1b:c0:ba:6e:0f:2a:b2:af:18:78:ba:40: 2a:69:14:fd:6d:02:05:4d:41:48:b6:72:97:3f:d4:64:0c:79: ba:4a:25:a8:5f:a1:4b:cb:36:77:c4:a4:47:f6:c0:25:28:2d: 14:1b:63:ff:82:39:0b:c5:fc:49:80:21:bd:25:18:9d:cf:3f: b8:83:c1:6d:aa:33:95:04:ae:c3:2d:73:22:22:65:23:55:fe: 47:dc:fd:25:78:14:de:ae:97:5a:59:b5:02:a9:8e:56:0b:bb: 94:97:94:cb:00:bd:e0:b5:55:d4:c3:52:77:40:5f:26:87:54: 06:0b:b1:e2:ab:a1:eb:20:31:09:5b:08:e4:dd:37:07:ac:67: c1:09:1f:16:78:86:2b:2b:8e:ed:77:2b:0e:77:75:51:d7:5b: 80:a0:50:9a:02:2b:ec:ec:34:dc:d0:fb:a6:be:e7:df:a9:de: 26:16:61:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVscbYIwz4EEqZysbVxa/tjubys4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMDA4WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWRhNjc0ZDc3YmI1ZGY5NGFmZmI0OTFkZTk1YmI0OWE3 MmI1ZTFlNTA4NWQyOGE0Y2U1YmYzNmI1OThiODIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLGVB8lOz4AXj9KjmbHjo67ZzqVQu9aAQ+qMsoXzs1H3lB WgA3kmAdcPlC4gFvHxGyeOSwAgWpjVIgmO0iFwMHLSZN+ZEMzqvMvsOHUa8IpgWU K6vdZ8CCudZBbqWAsXeHS2FDWLkt7NUUef+Kdnjn6ORNZjxEwCqgKy0S1qU3Rz0K qXpUi8wlBGMRiCHcNtlRGuPX9U9kzp5+P7DiiPW3L7o7oB34tzYjkSocyYZaksa/ /M6jIn/3Q/Ic5VbciJUwl7s8y9W510/xni8iht+7GMRzJJ1y0cqhnE1k3exE+F8V 9/kobgtgItXUGUUiN1WIvMNaMYgpV/KwRv7vXMi/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUnQLV4IOff7C6D8x5t51IzaQNMZwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5ZTlhMDBlLWFlZjktNDhjNy04OGYzLWQ2MzAxM2QxYWZhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJgAGgwDQYJKoZIhvcNAQELBQADggEBAM+GvyNOFQt7dZapBiruIStBdTiC kIzOWG27FSh7BKM+OPDZsbIhQqsuRQtOWpkWGTwIciY6hLoiWizndKWw84XFewBD vpHe/KjXVF139RvAum4PKrKvGHi6QCppFP1tAgVNQUi2cpc/1GQMebpKJahfoUvL NnfEpEf2wCUoLRQbY/+COQvF/EmAIb0lGJ3PP7iDwW2qM5UErsMtcyIiZSNV/kfc /SV4FN6ul1pZtQKpjlYLu5SXlMsAveC1VdTDUndAXyaHVAYLseKroesgMQlbCOTd NwesZ8EJHxZ4hisrju13Kw53dVHXW4CgUJoCK+zsNNzQ+6a+59+p3iYWYQ0= -----END CERTIFICATE-----Generated at Mon May 4 22:23:52 2026 by rpki-client