$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddfc757-7acf-4f35-9789-c0e414f4126c.roa File: fddfc757-7acf-4f35-9789-c0e414f4126c.roa (raw, json) Hash identifier: ZKpW7nj0U9WN9GcXvpPMictYVjWGu2GX6DzXkNqUF3E= Subject key identifier: B9:98:13:09:61:72:4A:78:21:1D:AC:EE:87:97:4A:2C:53:F9:33:F1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 633AC28FE92112B24B26BF329C481C117EF952 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddfc757-7acf-4f35-9789-c0e414f4126c.roa Signing time: Wed 29 Apr 2026 00:50:10 +0000 ROA not before: Wed 29 Apr 2026 00:50:10 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.247.224.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:3a:c2:8f:e9:21:12:b2:4b:26:bf:32:9c:48:1c:11:7e:f9:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:50:10 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=801febd40bb5ce2398dc2da3e20b59d2cfa848a209964e1dfc482052c09ebf27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:b1:ac:f3:39:6e:e1:21:bb:10:e1:d2:54:5a: 17:0b:50:c7:2e:30:4b:14:75:eb:e3:ba:b4:06:48: a1:99:fc:15:7a:15:f8:11:31:76:55:c1:a7:63:d8: 24:0f:fc:8f:3d:8d:8e:3d:09:e2:a2:e4:c8:0a:ff: 36:23:37:9b:e6:2a:b8:84:cf:27:a4:7b:63:b2:34: 7f:85:7a:5a:f2:9f:c4:ae:21:0d:4c:3e:41:0e:64: c4:23:07:b6:19:25:b9:a5:fe:0a:33:c7:e9:fe:88: f6:40:a8:a8:d0:ae:ab:cb:84:99:74:46:a1:ce:4c: 83:99:36:9b:a4:ae:db:c8:c3:d9:b8:7b:c9:97:e4: 23:98:50:18:83:b7:90:b8:38:28:f6:4e:b6:74:f3: c2:e1:83:27:f7:b2:b5:0b:c5:2d:de:08:0d:9e:96: fc:40:a2:87:cc:bf:34:99:72:ea:3e:d4:7b:33:98: 5d:41:a2:07:80:80:0c:cb:1a:8c:e0:0f:6d:40:34: c4:4c:3a:49:d4:e8:ff:17:40:dd:7d:a3:a5:c7:d0: d5:f9:ee:34:90:88:20:8e:a5:9e:83:50:47:d1:2f: 4c:aa:a3:b8:44:c7:da:f9:04:83:49:3c:82:05:a9: a2:f7:e3:be:8e:a0:5c:22:5a:38:78:7a:f7:83:5b: 80:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:98:13:09:61:72:4A:78:21:1D:AC:EE:87:97:4A:2C:53:F9:33:F1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fddfc757-7acf-4f35-9789-c0e414f4126c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.247.224.0/19 Signature Algorithm: sha256WithRSAEncryption d4:6a:5f:09:de:8a:38:50:3e:9f:df:8d:84:d7:3d:68:a6:46: e7:cf:23:40:e5:30:af:76:54:06:f1:90:6e:0b:6e:d9:d7:54: fd:15:78:b3:b2:c1:5e:ca:ca:8a:10:b4:4c:92:d9:af:fd:ae: be:00:2f:08:5c:0f:36:af:bb:e0:3c:ba:2f:f6:15:1d:16:c2: b2:91:f1:c6:10:65:00:8f:5f:5a:53:da:66:16:6e:c2:81:6c: c3:2e:86:84:ed:53:98:4f:a6:da:70:cc:bc:76:36:c9:36:95: 97:40:bf:44:90:54:af:28:46:97:53:b4:09:82:92:98:08:e1: c9:76:c5:44:31:58:6e:f7:3e:ef:2d:b3:b3:57:66:38:2a:b7: c9:01:24:86:cc:c7:72:6b:ae:ff:cf:b5:75:f1:20:d2:65:4d: d7:93:24:4b:d2:55:98:af:dd:9c:7e:81:7f:1f:ee:89:c0:97: c1:e3:0d:0e:a1:c0:8b:43:e6:1d:e6:55:7b:01:2f:8c:6b:6e: ee:0e:a8:56:c1:21:cc:ef:29:a9:f5:e1:97:60:41:b0:67:47: a4:80:97:3e:f6:2b:9a:7c:66:6d:32:58:25:32:8d:98:79:93: 88:63:93:02:ab:07:6d:0c:26:5d:ea:ac:85:68:d9:17:e8:6c: a2:16:dd:71 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITYzrCj+khErJLJr8ynEgcEX75UjANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjA0MjkwMDUwMTBaFw0yNjA3MjgyMzU5NTla MHoxSTBHBgNVBAUTQDgwMWZlYmQ0MGJiNWNlMjM5OGRjMmRhM2UyMGI1OWQyY2Zh ODQ4YTIwOTk2NGUxZGZjNDgyMDUyYzA5ZWJmMjcxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBANixrPM5buEhuxDh0lRaFwtQxy4wSxR16+O6tAZIoZn8FXoV +BExdlXBp2PYJA/8jz2Njj0J4qLkyAr/NiM3m+YquITPJ6R7Y7I0f4V6WvKfxK4h DUw+QQ5kxCMHthkluaX+CjPH6f6I9kCoqNCuq8uEmXRGoc5Mg5k2m6Su28jD2bh7 yZfkI5hQGIO3kLg4KPZOtnTzwuGDJ/eytQvFLd4IDZ6W/ECih8y/NJly6j7UezOY XUGiB4CADMsajOAPbUA0xEw6SdTo/xdA3X2jpcfQ1fnuNJCIII6lnoNQR9EvTKqj uETH2vkEg0k8ggWpovfjvo6gXCJaOHh694NbgM0CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBS5mBMJYXJKeCEdrO6Hl0osU/kz8TAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvZmRkZmM3NTctN2FjZi00ZjM1LTk3ODktYzBlNDE0ZjQxMjZjLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBUD34DANBgkqhkiG9w0BAQsFAAOCAQEA1GpfCd6KOFA+n9+NhNc9aKZG588j QOUwr3ZUBvGQbgtu2ddU/RV4s7LBXsrKihC0TJLZr/2uvgAvCFwPNq+74Dy6L/YV HRbCspHxxhBlAI9fWlPaZhZuwoFswy6GhO1TmE+m2nDMvHY2yTaVl0C/RJBUryhG l1O0CYKSmAjhyXbFRDFYbvc+7y2zs1dmOCq3yQEkhszHcmuu/8+1dfEg0mVN15Mk S9JVmK/dnH6Bfx/uicCXweMNDqHAi0PmHeZVewEvjGtu7g6oVsEhzO8pqfXhl2BB sGdHpICXPvYrmnxmbTJYJTKNmHmTiGOTAqsHbQwmXeqshWjZF+hsohbdcQ== -----END CERTIFICATE-----Generated at Mon May 4 21:38:47 2026 by rpki-client