$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebb8b2c6-e910-45f8-815f-53a36c636115.roa File: ebb8b2c6-e910-45f8-815f-53a36c636115.roa (raw, json) Hash identifier: bbxGn3cuprfX+Ca+iv+DME8LFmM0vyVpMGKhaIAbGoM= Subject key identifier: ED:DB:37:41:02:89:EA:AF:30:87:FE:6B:3F:B8:9A:04:D4:E0:76:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 551E8FD805E3BEAD72A816E822A52E4C371257EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebb8b2c6-e910-45f8-815f-53a36c636115.roa Signing time: Wed 29 Apr 2026 00:40:07 +0000 ROA not before: Wed 29 Apr 2026 00:40:07 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 57.88.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:1e:8f:d8:05:e3:be:ad:72:a8:16:e8:22:a5:2e:4c:37:12:57:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:40:07 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=8fc309d9986e6c805490652875c41cc3b1d33e72e417fa8724899ca5700c2fe1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c7:5e:de:95:bb:84:a4:f2:fb:6e:3e:fc:de: 88:f7:92:f3:05:c7:0f:d2:43:9f:05:35:f5:07:ac: 09:9c:03:5c:1a:4e:5f:24:3e:0b:2f:ba:24:8e:1a: 4f:6f:cc:00:5a:29:80:8f:ea:0d:9a:e6:74:bc:31: 74:65:80:53:a2:3c:62:87:d7:87:8e:e7:3e:1c:3b: a8:c3:20:0f:8e:9b:a0:59:20:cb:99:33:34:b0:fa: b5:64:4c:ad:22:45:c1:79:81:f1:8e:91:2d:f4:1c: da:2f:4d:ac:f4:59:e4:7d:cf:59:b0:b2:17:44:27: 1b:06:b5:0e:1f:c4:00:91:22:dd:86:15:d4:bc:51: 7f:43:55:27:78:b3:95:4c:81:21:91:16:db:48:7d: d8:84:40:76:67:c6:29:91:d2:99:25:99:38:48:84: 6b:2c:40:08:d5:89:89:b1:4e:f5:36:d9:59:15:10: c7:40:f5:30:3b:aa:ee:21:75:46:50:0e:bb:08:80: 20:5e:a0:40:70:4b:d1:5e:ed:30:ef:25:df:ef:ef: 16:76:c6:b8:6c:87:c2:9c:10:03:b8:00:50:c2:e7: 40:9e:1a:e1:96:67:f1:e1:b5:40:4f:22:bf:39:dc: ba:f2:a7:27:44:2a:c0:35:82:f6:12:7f:65:cc:66: 8d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: ED:DB:37:41:02:89:EA:AF:30:87:FE:6B:3F:B8:9A:04:D4:E0:76:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebb8b2c6-e910-45f8-815f-53a36c636115.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.88.0.0/16 Signature Algorithm: sha256WithRSAEncryption 70:de:b1:ec:fd:c5:8f:b9:92:eb:c5:98:72:01:99:8b:1e:46: 38:83:11:8f:82:f4:18:c7:34:4b:27:da:85:3b:6c:27:72:aa: 6f:1b:d6:99:ed:41:92:b3:2e:83:90:0e:3a:c2:d9:e4:c0:86: d7:7b:2c:a9:6e:c8:73:85:18:da:49:1e:82:3a:5e:1b:59:41: 4e:40:2c:63:71:ec:76:47:39:ce:73:c3:59:01:26:01:1a:05: ae:9e:58:2d:0d:30:2a:74:16:14:28:06:ea:bd:ad:a4:f6:73: 82:08:8f:52:30:30:44:f0:67:5d:45:1c:90:86:13:92:e4:76: 6a:7a:7a:81:c8:ae:bc:5c:d8:24:4a:56:dc:a9:c4:0c:76:2b: 2f:63:18:87:93:05:03:77:e8:0c:b8:9c:aa:33:59:24:a3:12: bd:8c:8c:07:a4:37:a7:78:c7:20:ef:fc:b8:b7:08:4c:48:f7: ce:ea:1c:25:05:78:ab:d8:70:84:e0:c9:b8:4a:ef:6b:40:d7: 21:51:9d:4e:cc:30:89:2d:47:d0:d0:25:84:bc:88:a7:0a:9b: e2:b1:03:f6:f5:91:83:33:f8:ee:5e:4b:00:fa:ae:e0:d7:fc: a3:0e:a3:32:3f:e0:0c:8d:3e:39:8f:1a:b0:61:68:b8:7b:f6: e3:d9:b6:8a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVR6P2AXjvq1yqBboIqUuTDcSV+wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDA0MDA3WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmMzMDlkOTk4NmU2YzgwNTQ5MDY1Mjg3NWM0MWNjM2Ix ZDMzZTcyZTQxN2ZhODcyNDg5OWNhNTcwMGMyZmUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCax17elbuEpPL7bj783oj3kvMFxw/SQ58FNfUHrAmcA1wa Tl8kPgsvuiSOGk9vzABaKYCP6g2a5nS8MXRlgFOiPGKH14eO5z4cO6jDIA+Om6BZ IMuZMzSw+rVkTK0iRcF5gfGOkS30HNovTaz0WeR9z1mwshdEJxsGtQ4fxACRIt2G FdS8UX9DVSd4s5VMgSGRFttIfdiEQHZnximR0pklmThIhGssQAjViYmxTvU22VkV EMdA9TA7qu4hdUZQDrsIgCBeoEBwS9Fe7TDvJd/v7xZ2xrhsh8KcEAO4AFDC50Ce GuGWZ/HhtUBPIr853LrypydEKsA1gvYSf2XMZo25AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7ds3QQKJ6q8wh/5rP7iaBNTgdh4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViYjhiMmM2LWU5MTAtNDVmOC04MTVmLTUzYTM2YzYzNjExNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5WDANBgkqhkiG9w0BAQsFAAOCAQEAcN6x7P3Fj7mS68WYcgGZix5GOIMR j4L0GMc0SyfahTtsJ3KqbxvWme1BkrMug5AOOsLZ5MCG13ssqW7Ic4UY2kkegjpe G1lBTkAsY3Hsdkc5znPDWQEmARoFrp5YLQ0wKnQWFCgG6r2tpPZzggiPUjAwRPBn XUUckIYTkuR2anp6gciuvFzYJEpW3KnEDHYrL2MYh5MFA3foDLicqjNZJKMSvYyM B6Q3p3jHIO/8uLcITEj3zuocJQV4q9hwhODJuErva0DXIVGdTswwiS1H0NAlhLyI pwqb4rED9vWRgzP47l5LAPqu4Nf8ow6jMj/gDI0+OY8asGFouHv249m2ig== -----END CERTIFICATE-----Generated at Sun May 3 14:48:35 2026 by rpki-client