$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a94972a-5622-44f7-85a8-f166881512cb.roa File: 6a94972a-5622-44f7-85a8-f166881512cb.roa (raw, json) Hash identifier: w8JWzVy81oP8hOiaG7bXmYvPgs6t7f71LFVNVvnLNxQ= Subject key identifier: 2B:59:8F:DA:3B:61:2C:B4:7E:10:E7:5F:10:4E:A6:E5:35:5E:1A:8B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F63E7CAC39A8EDD64BDB9674A7302B5C45340D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a94972a-5622-44f7-85a8-f166881512cb.roa Signing time: Sun 08 Feb 2026 00:10:32 +0000 ROA not before: Sun 08 Feb 2026 00:10:32 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.134.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:63:e7:ca:c3:9a:8e:dd:64:bd:b9:67:4a:73:02:b5:c4:53:40:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:32 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=eb0374986ccc83e7cc329995249aa63df9d30fbb98db6d98d0c0ff2126ceb979, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:bc:a3:2d:a5:6e:ba:f3:79:f6:05:f4:19:88: e1:a1:23:9f:59:3f:97:a2:d7:f4:9a:1c:9c:48:15: a5:92:2f:e7:ff:c8:fb:5e:67:0c:d7:fc:91:93:bb: 99:2e:48:98:38:d6:fe:22:f4:fe:82:22:ef:47:74: 6e:c1:02:fa:ed:41:b4:0e:83:94:29:aa:5a:b5:81: 76:9d:c1:76:df:66:bb:7b:c6:d8:a5:00:3f:e8:93: 5e:83:bf:a1:f4:e2:1d:c3:08:94:f3:b3:8a:6b:c1: be:c8:11:a6:a4:f5:98:04:c1:a4:d3:0b:99:d1:f3: ce:07:80:d7:0d:fb:14:1f:4a:0f:e2:68:75:34:c5: 36:1d:f4:08:2f:cd:3b:87:82:dd:f3:2f:ba:10:63: a1:36:92:83:c7:6e:f2:ff:f2:c8:38:2d:c8:5c:82: 8e:99:5a:c5:19:bf:03:d0:2f:22:0e:f8:5c:49:53: 1b:67:32:b2:3e:9f:9f:5c:e4:82:58:70:8b:7e:23: ee:f3:60:2c:ca:0e:62:7e:68:a3:5b:d1:bf:6a:ba: f8:75:5d:d6:d6:18:81:3d:8e:50:57:e9:aa:76:13: a7:c8:8f:90:f8:42:da:91:fa:6f:33:74:16:4f:57: 2d:97:f3:c0:9f:57:ac:c5:52:f1:e2:03:95:e5:60: b6:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:59:8F:DA:3B:61:2C:B4:7E:10:E7:5F:10:4E:A6:E5:35:5E:1A:8B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a94972a-5622-44f7-85a8-f166881512cb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.134.0/24 Signature Algorithm: sha256WithRSAEncryption 5c:c2:71:bb:8e:31:b3:f9:8e:0a:7e:41:78:af:a4:0e:5f:00: 88:b8:33:db:79:6e:d9:b3:fa:66:b4:01:97:63:15:27:c3:7d: 2d:dc:7b:34:50:03:52:c5:3c:3f:a6:61:29:2b:c4:0d:00:30: 97:76:9a:a4:88:61:60:b1:ee:ed:a6:e3:fe:22:cc:77:7a:ac: 42:b9:f2:cf:2c:84:a3:42:a6:a1:63:24:fc:4c:ad:3b:c4:12: de:da:be:e2:db:c1:8f:04:f7:ae:4b:4a:04:95:ef:f3:3d:48: ac:61:6d:87:6f:2f:f2:f8:74:7c:c9:53:b7:69:d3:fa:c2:86: 2a:4b:9f:77:cc:f6:07:9e:09:64:7b:da:19:28:75:fb:77:31: cc:82:0d:39:7d:71:cf:72:29:b2:10:2f:86:fa:a5:ee:a0:a9: bb:77:69:3f:30:3d:e1:8e:75:db:77:fd:2d:af:ce:d1:1d:30: d6:51:8b:76:88:6a:64:1a:d4:ca:a9:d2:50:e9:fc:3c:70:e5: f3:0c:bd:79:03:49:5b:8b:1d:fa:25:a8:5d:be:28:86:1a:2d: 51:60:3b:f2:af:a9:f7:c1:b5:c3:90:94:b4:e1:e4:fb:de:4b: a4:19:77:55:77:7e:d8:d6:f5:e2:a6:c3:bc:35:e5:ec:3f:da: 5d:2b:d8:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUX2PnysOajt1kvblnSnMCtcRTQNYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDMyWhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYjAzNzQ5ODZjY2M4M2U3Y2MzMjk5OTUyNDlhYTYzZGY5 ZDMwZmJiOThkYjZkOThkMGMwZmYyMTI2Y2ViOTc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkvKMtpW6683n2BfQZiOGhI59ZP5ei1/SaHJxIFaWSL+f/ yPteZwzX/JGTu5kuSJg41v4i9P6CIu9HdG7BAvrtQbQOg5Qpqlq1gXadwXbfZrt7 xtilAD/ok16Dv6H04h3DCJTzs4prwb7IEaak9ZgEwaTTC5nR884HgNcN+xQfSg/i aHU0xTYd9AgvzTuHgt3zL7oQY6E2koPHbvL/8sg4Lchcgo6ZWsUZvwPQLyIO+FxJ UxtnMrI+n59c5IJYcIt+I+7zYCzKDmJ+aKNb0b9quvh1XdbWGIE9jlBX6ap2E6fI j5D4QtqR+m8zdBZPVy2X88CfV6zFUvHiA5XlYLaDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUK1mP2jthLLR+EOdfEE6m5TVeGoswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhOTQ5NzJhLTU2MjItNDRmNy04NWE4LWYxNjY4ODE1MTJjYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYYwDQYJKoZIhvcNAQELBQADggEBAFzCcbuOMbP5jgp+QXivpA5fAIi4 M9t5btmz+ma0AZdjFSfDfS3cezRQA1LFPD+mYSkrxA0AMJd2mqSIYWCx7u2m4/4i zHd6rEK58s8shKNCpqFjJPxMrTvEEt7avuLbwY8E965LSgSV7/M9SKxhbYdvL/L4 dHzJU7dp0/rChipLn3fM9geeCWR72hkodft3McyCDTl9cc9yKbIQL4b6pe6gqbt3 aT8wPeGOddt3/S2vztEdMNZRi3aIamQa1Mqp0lDp/Dxw5fMMvXkDSVuLHfolqF2+ KIYaLVFgO/KvqffBtcOQlLTh5PveS6QZd1V3ftjW9eKmw7w15ew/2l0r2GU= -----END CERTIFICATE-----Generated at Sun Mar 1 23:15:58 2026 by rpki-client