$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99e414b3-ac11-4ebb-8b76-7f49891d7779.roa File: 99e414b3-ac11-4ebb-8b76-7f49891d7779.roa (raw, json) Hash identifier: wh80yjqS5EKTjE7jKTeTix3JpbLNvcDz3qd6vdZpOlw= Subject key identifier: C9:17:33:C6:75:05:2D:10:92:DF:AB:55:7F:2B:D5:C2:5C:DB:2D:EC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FA5C16097957745C4FBDD3C833C75C3C57F99F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99e414b3-ac11-4ebb-8b76-7f49891d7779.roa Signing time: Sun 17 May 2026 00:51:06 +0000 ROA not before: Sun 17 May 2026 00:51:06 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 157.123.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:a5:c1:60:97:95:77:45:c4:fb:dd:3c:83:3c:75:c3:c5:7f:99:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:51:06 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=b38b8e50f21ceb520fa7bd2f51f50a6f4e1833ff6105ab9dc8d6de77c2553d62, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:43:37:8e:f3:41:d8:bd:72:eb:a4:02:19:3f: 41:c7:45:9c:2e:c9:27:ac:76:5f:43:3d:1b:5d:66: bc:3e:a0:4b:76:cc:3d:6a:2a:41:a1:ca:7e:e6:c3: d7:bb:d3:12:dc:90:04:0b:3e:68:b0:d6:a0:f1:18: 5a:a4:70:2b:f0:be:34:22:fb:6d:cd:2c:1f:7d:74: 41:d0:8b:22:15:16:0b:99:df:49:22:39:b0:32:a9: 57:77:78:81:a4:01:f3:c4:5d:17:05:c1:5f:ff:b1: 53:aa:49:93:72:91:3d:ee:95:91:b5:be:26:da:1d: e7:23:8c:8b:20:79:b8:9c:cf:d3:82:d1:1d:60:c0: 13:03:9f:86:55:66:07:fa:a9:6b:b6:66:4a:62:ba: 6f:45:ef:44:ff:11:cd:20:ef:e7:23:3b:e6:e9:f8: e9:0f:55:a4:ca:e9:18:cc:99:dd:68:e3:d6:14:74: 1d:f9:a9:05:92:8f:2d:03:e0:53:ef:5d:a9:0d:ee: 9f:bb:ef:06:45:84:43:62:44:df:4c:d1:fa:13:f8: 01:cc:3f:98:1f:64:f8:de:34:fd:74:a4:a3:f5:0e: f0:fc:ac:b6:63:33:a3:95:0a:2b:67:63:95:85:c5: df:be:53:f3:1a:b4:f4:ed:8e:d7:e8:da:f4:3f:1b: 94:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:17:33:C6:75:05:2D:10:92:DF:AB:55:7F:2B:D5:C2:5C:DB:2D:EC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99e414b3-ac11-4ebb-8b76-7f49891d7779.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.123.0.0/16 Signature Algorithm: sha256WithRSAEncryption 27:67:96:7f:99:69:04:f6:7e:91:4c:35:c6:1e:3f:92:56:f1: 98:0b:7c:79:c0:49:3a:e5:25:ba:7d:63:c7:8f:ac:57:81:8e: 83:2e:54:62:fc:29:45:1c:29:c6:79:e4:38:c2:27:97:26:39: f1:59:ea:56:5d:ce:c0:78:13:82:d2:57:fc:90:bd:0a:18:ba: cd:7c:0e:fc:31:26:2e:00:be:6c:df:b2:e7:db:a2:28:2a:18: 71:5e:d1:96:69:6c:84:25:f0:dc:7f:96:2b:c4:68:b7:f8:5a: 52:3b:9b:5c:bb:de:35:4c:f9:33:13:c4:a0:f6:60:06:68:d4: 08:3d:94:6a:8d:0a:f5:45:69:83:b2:89:da:06:b5:d9:df:f2: 52:d5:d0:da:22:9d:d5:b1:46:12:27:d0:ce:a1:16:c2:f0:c4: ec:3f:ec:0a:5b:55:e8:db:82:9c:69:bd:a6:fb:30:e6:fb:7e: 90:3f:9a:84:71:4b:3c:b0:bf:80:11:57:65:90:bf:00:44:b1: 5a:43:7c:4b:8d:a7:01:f7:82:0f:89:b3:3a:00:ed:8b:23:f3: 54:0e:af:1d:21:66:22:02:9d:4a:a9:4b:f8:4e:cc:ca:d5:40: c2:37:37:70:c1:15:56:ae:da:35:29:86:3c:15:cb:60:4c:5d: 79:5b:8a:70 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT6XBYJeVd0XE+908gzx1w8V/mfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDA1MTA2WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMzhiOGU1MGYyMWNlYjUyMGZhN2JkMmY1MWY1MGE2ZjRl MTgzM2ZmNjEwNWFiOWRjOGQ2ZGU3N2MyNTUzZDYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdQzeO80HYvXLrpAIZP0HHRZwuySesdl9DPRtdZrw+oEt2 zD1qKkGhyn7mw9e70xLckAQLPmiw1qDxGFqkcCvwvjQi+23NLB99dEHQiyIVFguZ 30kiObAyqVd3eIGkAfPEXRcFwV//sVOqSZNykT3ulZG1vibaHecjjIsgebicz9OC 0R1gwBMDn4ZVZgf6qWu2Zkpium9F70T/Ec0g7+cjO+bp+OkPVaTK6RjMmd1o49YU dB35qQWSjy0D4FPvXakN7p+77wZFhENiRN9M0foT+AHMP5gfZPjeNP10pKP1DvD8 rLZjM6OVCitnY5WFxd++U/MatPTtjtfo2vQ/G5Q3AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyRczxnUFLRCS36tVfyvVwlzbLewwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5ZTQxNGIzLWFjMTEtNGViYi04Yjc2LTdmNDk4OTFkNzc3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCdezANBgkqhkiG9w0BAQsFAAOCAQEAJ2eWf5lpBPZ+kUw1xh4/klbxmAt8 ecBJOuUlun1jx4+sV4GOgy5UYvwpRRwpxnnkOMInlyY58VnqVl3OwHgTgtJX/JC9 Chi6zXwO/DEmLgC+bN+y59uiKCoYcV7RlmlshCXw3H+WK8Rot/haUjubXLveNUz5 MxPEoPZgBmjUCD2Uao0K9UVpg7KJ2ga12d/yUtXQ2iKd1bFGEifQzqEWwvDE7D/s CltV6NuCnGm9pvsw5vt+kD+ahHFLPLC/gBFXZZC/AESxWkN8S42nAfeCD4mzOgDt iyPzVA6vHSFmIgKdSqlL+E7MytVAwjc3cMEVVq7aNSmGPBXLYExdeVuKcA== -----END CERTIFICATE-----Generated at Sat Jun 13 05:50:45 2026 by rpki-client