$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edb45c4e-a0b6-471b-a016-e9b2a212afe3.roa File: edb45c4e-a0b6-471b-a016-e9b2a212afe3.roa (raw, json) Hash identifier: T9d1kH1uNKp3v60E24cDVfoir0hM8/P9eQLboMrIMdo= Subject key identifier: FB:AF:2E:CA:96:29:0E:D5:52:FD:25:82:91:31:A7:19:1F:FF:F9:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4029A008CCDF399E8195757DC6D835DE311162CB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edb45c4e-a0b6-471b-a016-e9b2a212afe3.roa Signing time: Fri 01 May 2026 00:20:38 +0000 ROA not before: Fri 01 May 2026 00:20:38 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.82.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:29:a0:08:cc:df:39:9e:81:95:75:7d:c6:d8:35:de:31:11:62:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:20:38 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=256a1d38d68318e1da86f19deb2f698aac5ca7a00dfd2ab5e65ae232a9c7fc3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:04:03:13:f9:1e:2e:fd:95:ca:e9:8a:99:2a: b9:19:36:8b:40:b7:b1:77:d2:93:a1:4f:8e:07:bf: d5:eb:81:ca:c1:d7:3f:11:d0:34:3c:dd:8b:9d:27: 49:a6:4a:3d:d8:c6:48:15:6b:68:f3:47:f9:a5:a4: 15:b8:ec:fa:07:cc:17:db:bb:72:bc:0f:f9:cf:83: e2:fe:cd:2a:98:93:4a:35:bc:7e:19:77:ee:f0:b0: 2f:0a:8a:1a:39:b8:44:d9:8f:6e:13:fd:ab:19:ae: 3a:1b:42:a1:a8:33:6d:3a:78:97:30:f9:22:88:8d: cd:b7:44:30:d8:ab:67:47:08:07:35:7d:74:ce:cc: e6:35:1e:7b:e1:0b:ed:dc:54:da:20:10:b0:ad:11: 87:36:e3:9b:d6:14:30:40:7a:50:be:30:c0:10:f2: d8:62:57:5d:7a:d9:d5:d1:0e:aa:60:07:52:9c:40: 37:f5:5d:6d:0e:c5:8b:86:05:09:2e:f0:f8:01:3e: 18:be:69:54:32:06:89:0e:02:67:37:ce:f8:fb:5f: d0:a8:df:ae:c4:ee:4b:60:08:75:bc:ca:d7:50:b4: 87:ce:e9:c4:95:52:3e:e4:4d:6b:eb:89:9d:8e:1b: 96:3a:72:13:df:a8:17:02:67:99:c0:4d:c7:36:d4: ba:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:AF:2E:CA:96:29:0E:D5:52:FD:25:82:91:31:A7:19:1F:FF:F9:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/edb45c4e-a0b6-471b-a016-e9b2a212afe3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.82.175.0/24 Signature Algorithm: sha256WithRSAEncryption 9e:49:72:b6:ee:53:f0:a4:e7:14:fe:d4:cb:44:d7:34:72:58: 8c:d7:10:d0:32:d9:a2:c1:a0:a8:3a:93:bb:a1:e1:3f:9f:51: cd:6e:6f:c0:23:d9:d1:6a:5f:cc:5b:27:0d:24:39:cc:c4:8f: b7:8c:db:50:94:16:8c:28:2d:40:e2:b0:ce:87:53:49:36:63: ba:90:cf:e4:ca:dc:be:51:c9:b8:1a:b5:c8:a8:17:9b:1d:85: a0:0d:8e:16:5f:0b:79:39:8f:8a:0f:05:b0:be:cf:a9:32:59: 6b:c8:e4:90:c5:25:9b:66:9e:5a:df:ee:4a:78:22:de:4e:be: eb:b5:c9:89:59:cd:3c:c0:04:62:a2:10:6d:a0:5e:97:b4:74: 24:ae:4e:87:47:00:72:09:e1:3d:f5:64:7d:af:dd:91:7c:29: 71:74:56:8e:27:9d:50:9d:39:73:ba:31:e2:37:6c:ed:24:3e: a7:5e:ec:0c:6a:06:e2:28:5d:26:90:60:f5:72:15:11:49:3a: 7a:2e:80:27:e9:4a:b8:f3:c1:a7:ca:e8:2c:6a:f8:65:cd:b1: bb:9e:1e:6a:73:8d:f6:20:cb:22:2b:6d:6a:b4:6f:2c:99:2c: 8c:89:a1:29:ea:6f:b6:9d:1b:d6:10:bd:d9:7a:28:20:2a:a2: 26:90:94:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQCmgCMzfOZ6BlXV9xtg13jERYsswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMDM4WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyNTZhMWQzOGQ2ODMxOGUxZGE4NmYxOWRlYjJmNjk4YWFj NWNhN2EwMGRmZDJhYjVlNjVhZTIzMmE5YzdmYzNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClBAMT+R4u/ZXK6YqZKrkZNotAt7F30pOhT44Hv9XrgcrB 1z8R0DQ83YudJ0mmSj3YxkgVa2jzR/mlpBW47PoHzBfbu3K8D/nPg+L+zSqYk0o1 vH4Zd+7wsC8Kiho5uETZj24T/asZrjobQqGoM206eJcw+SKIjc23RDDYq2dHCAc1 fXTOzOY1HnvhC+3cVNogELCtEYc245vWFDBAelC+MMAQ8thiV1162dXRDqpgB1Kc QDf1XW0OxYuGBQku8PgBPhi+aVQyBokOAmc3zvj7X9Co367E7ktgCHW8ytdQtIfO 6cSVUj7kTWvriZ2OG5Y6chPfqBcCZ5nATcc21LqxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+68uypYpDtVS/SWCkTGnGR//+YMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VkYjQ1YzRlLWEwYjYtNDcxYi1hMDE2LWU5YjJhMjEyYWZlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjUq8wDQYJKoZIhvcNAQELBQADggEBAJ5JcrbuU/Ck5xT+1MtE1zRyWIzX ENAy2aLBoKg6k7uh4T+fUc1ub8Aj2dFqX8xbJw0kOczEj7eM21CUFowoLUDisM6H U0k2Y7qQz+TK3L5RybgatcioF5sdhaANjhZfC3k5j4oPBbC+z6kyWWvI5JDFJZtm nlrf7kp4It5Ovuu1yYlZzTzABGKiEG2gXpe0dCSuTodHAHIJ4T31ZH2v3ZF8KXF0 Vo4nnVCdOXO6MeI3bO0kPqde7AxqBuIoXSaQYPVyFRFJOnougCfpSrjzwafK6Cxq +GXNsbueHmpzjfYgyyIrbWq0byyZLIyJoSnqb7adG9YQvdl6KCAqoiaQlF8= -----END CERTIFICATE-----Generated at Sun May 3 15:25:22 2026 by rpki-client