$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebe39619-319e-458b-b84a-3d8a21095a66.roa File: ebe39619-319e-458b-b84a-3d8a21095a66.roa (raw, json) Hash identifier: bWpuAk9dBBGbsITRFNovYzr5meukFtAfONmX17x7bNo= Subject key identifier: F7:8E:A5:CC:B4:1B:DC:DF:0F:52:D8:2B:D7:1C:C0:CD:E2:24:69:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 322D89053474660F09C94AA798CAAA7458E87D5E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebe39619-319e-458b-b84a-3d8a21095a66.roa Signing time: Wed 29 Apr 2026 00:21:12 +0000 ROA not before: Wed 29 Apr 2026 00:21:12 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.143.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:2d:89:05:34:74:66:0f:09:c9:4a:a7:98:ca:aa:74:58:e8:7d:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:21:12 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=142059332973412102bc1f26851aa98ce5906b06d3542841e4629736554435ce, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:81:ce:41:6f:b5:34:14:93:66:6b:30:1d:0e:43: ab:0f:a8:91:c0:c7:0a:90:c1:63:f8:4f:5b:b0:7f: 6e:34:94:e7:20:74:78:c3:7e:ba:82:2f:bc:ec:c8: 06:20:2f:87:cd:ff:ca:7e:5e:76:91:85:53:19:31: 27:24:b3:85:b7:fe:db:f1:47:01:2f:f7:ce:1f:d6: 54:81:fc:f6:5d:1c:5d:5e:a4:80:1e:b0:0c:60:b7: 33:ae:76:a4:ec:ed:82:f2:3a:96:25:fb:f7:91:c1: ec:12:54:a5:ab:f0:5e:7b:83:2d:ff:96:cd:d3:bd: 7a:3f:31:9c:eb:56:a2:07:54:0b:11:eb:cd:c1:e9: f8:eb:cf:c9:24:e2:c6:c5:49:72:23:9a:51:dc:a1: c4:52:3a:a3:65:f0:52:cd:5f:56:2d:15:d6:36:b3: 16:6c:31:a4:cf:38:e6:e2:49:59:52:41:96:3f:28: 8a:ed:f8:a2:f4:43:0c:d5:e2:2f:d6:c8:e1:20:31: 83:10:90:0e:d2:20:b0:d2:9a:af:c8:82:ad:b6:55: c5:97:9c:a5:ce:ab:a6:94:f5:c4:23:d7:06:8c:95: 59:7f:a7:9d:c8:c3:a4:16:bf:c5:de:fe:0f:02:44: c5:0a:80:f8:7a:47:46:c5:7a:f2:a8:23:8f:71:d0: 71:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:8E:A5:CC:B4:1B:DC:DF:0F:52:D8:2B:D7:1C:C0:CD:E2:24:69:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ebe39619-319e-458b-b84a-3d8a21095a66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.143.0/24 Signature Algorithm: sha256WithRSAEncryption 07:29:f4:d7:a1:70:69:ba:8f:98:33:ac:6f:e8:ba:10:aa:4f: 84:7b:80:85:39:ad:e2:c1:3e:0f:61:60:72:60:8d:37:e9:e3: 8e:28:10:14:4d:e5:07:e2:99:c0:ed:a6:76:53:37:8d:85:8b: 0d:29:69:c7:65:0a:86:28:1d:04:27:cf:c5:f5:25:72:c8:57: 02:8f:ed:87:f5:e6:f9:c4:ea:d4:d0:b8:4a:03:63:1f:7c:56: e2:7c:35:11:0d:dd:89:73:58:95:e8:3a:85:49:00:6d:12:c9: 79:d1:5a:14:07:71:89:14:01:c9:2c:da:8c:10:3a:af:ae:08: f4:ac:b2:29:97:d5:ed:15:31:5e:69:a7:51:b3:b7:cb:ff:c8: 83:53:58:ca:8d:79:64:0a:56:f7:95:85:9f:d3:23:21:60:25: 97:20:8b:66:dc:ab:19:5e:37:1c:66:eb:22:20:05:8d:95:79: 85:dc:6c:2e:93:f4:08:61:c1:56:f0:bb:79:e3:86:9a:07:56: a0:0d:a1:5b:06:35:ba:a0:92:4f:21:c5:93:ce:63:da:e4:2d: aa:67:db:11:83:d3:be:5a:ed:19:e6:e0:b9:08:84:f8:56:0d: 70:e4:1c:18:e8:e5:b9:55:15:0c:8d:ea:c4:c7:b2:8e:38:fa: f0:d2:80:aa -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMi2JBTR0Zg8JyUqnmMqqdFjofV4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAyMTEyWhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDIwNTkzMzI5NzM0MTIxMDJiYzFmMjY4NTFhYTk4Y2U1 OTA2YjA2ZDM1NDI4NDFlNDYyOTczNjU1NDQzNWNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCBzkFvtTQUk2ZrMB0OQ6sPqJHAxwqQwWP4T1uwf240lOcg dHjDfrqCL7zsyAYgL4fN/8p+XnaRhVMZMScks4W3/tvxRwEv984f1lSB/PZdHF1e pIAesAxgtzOudqTs7YLyOpYl+/eRwewSVKWr8F57gy3/ls3TvXo/MZzrVqIHVAsR 683B6fjrz8kk4sbFSXIjmlHcocRSOqNl8FLNX1YtFdY2sxZsMaTPOObiSVlSQZY/ KIrt+KL0QwzV4i/WyOEgMYMQkA7SILDSmq/Igq22VcWXnKXOq6aU9cQj1waMlVl/ p53Iw6QWv8Xe/g8CRMUKgPh6R0bFevKoI49x0HHBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU946lzLQb3N8PUtgr1xzAzeIkaRcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ViZTM5NjE5LTMxOWUtNDU4Yi1iODRhLTNkOGEyMTA5NWE2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTY8wDQYJKoZIhvcNAQELBQADggEBAAcp9NehcGm6j5gzrG/ouhCqT4R7 gIU5reLBPg9hYHJgjTfp444oEBRN5QfimcDtpnZTN42Fiw0pacdlCoYoHQQnz8X1 JXLIVwKP7Yf15vnE6tTQuEoDYx98VuJ8NREN3YlzWJXoOoVJAG0SyXnRWhQHcYkU Acks2owQOq+uCPSssimX1e0VMV5pp1Gzt8v/yINTWMqNeWQKVveVhZ/TIyFgJZcg i2bcqxleNxxm6yIgBY2VeYXcbC6T9AhhwVbwu3njhpoHVqANoVsGNbqgkk8hxZPO Y9rkLapn2xGD075a7Rnm4LkIhPhWDXDkHBjo5blVFQyN6sTHso44+vDSgKo= -----END CERTIFICATE-----Generated at Sun May 3 16:13:54 2026 by rpki-client