$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c1564a-03d7-493a-959b-6e79233e689b.roa File: f2c1564a-03d7-493a-959b-6e79233e689b.roa (raw, json) Hash identifier: pjj+qdktUapAj4Y+qdKAuPIWzDFjq4/mUvqCLYtLCyQ= Subject key identifier: EF:F1:BD:30:60:2E:66:FE:F5:E9:2A:97:2C:10:A9:D3:0C:BD:9D:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EC9EA7DBF28E01A9A9CC4A54273ADD20EB74C32 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c1564a-03d7-493a-959b-6e79233e689b.roa Signing time: Wed 06 May 2026 00:20:44 +0000 ROA not before: Wed 06 May 2026 00:20:44 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c9:ea:7d:bf:28:e0:1a:9a:9c:c4:a5:42:73:ad:d2:0e:b7:4c:32 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:20:44 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=7cb12712ee1f955c6259b519293f25b6aa1ccd86a96b6ebbfaa07d707a57b8d8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:85:26:aa:ad:e7:54:f7:a8:d5:79:1e:4e:ff: 69:f0:f7:a1:7a:35:0e:c4:22:3a:cc:f6:22:01:05: f7:1f:a1:0a:39:5d:ec:76:bf:ac:cb:29:31:77:4f: c6:ca:37:74:a7:ef:36:ae:cd:cc:a8:dd:b7:b0:40: 2c:c8:ad:35:85:60:94:76:9e:5f:3a:fe:97:56:d4: 12:54:dc:36:bc:5f:b9:d8:ab:80:bd:d3:71:3d:53: 63:4e:4e:c9:67:8a:5e:a6:8b:d1:57:58:fc:15:62: be:fb:e9:51:ef:34:ab:cb:a1:29:b3:22:84:6f:64: 86:5c:8a:d1:12:1b:b4:ed:8c:c9:9c:fc:0c:b3:0e: 39:90:1e:c9:31:f1:38:b8:fd:5b:c4:24:7d:49:5a: 87:74:c8:4b:d8:30:a1:92:58:aa:15:db:cb:cf:c1: d0:5b:68:03:08:3a:6c:a4:e2:5a:d8:72:16:e8:33: a5:7a:76:44:37:f9:30:17:eb:5a:84:3b:b8:9e:fb: 98:87:95:77:b2:fb:f9:1d:d1:c7:0e:12:91:3f:f4: 96:36:93:e5:b0:dc:49:74:6e:7e:8b:29:d8:fb:c0: 50:3d:98:26:53:65:56:7e:e7:96:88:4d:59:25:c6: d5:ae:ce:70:67:ec:fa:2f:6a:8c:fb:9a:74:af:46: 09:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EF:F1:BD:30:60:2E:66:FE:F5:E9:2A:97:2C:10:A9:D3:0C:BD:9D:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c1564a-03d7-493a-959b-6e79233e689b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.72.0/21 Signature Algorithm: sha256WithRSAEncryption 28:cd:0a:f7:09:be:3a:3d:6d:f7:62:e4:89:ca:94:ce:b2:5a: 32:73:31:d4:7b:79:3c:47:44:df:c1:08:86:f7:80:5c:83:c4: a0:62:4e:f4:5a:36:e1:6c:51:49:5f:97:72:b5:a3:94:9c:b8: 8c:40:2d:5e:5b:e0:c0:d0:87:1f:52:ea:d2:3d:50:4d:2e:3b: db:32:af:a2:63:d4:0f:11:ec:bd:2b:63:4b:5c:94:0c:bf:f0: e6:e5:ca:cf:37:24:1d:c6:24:7b:90:2e:32:33:2b:ae:55:8d: 9a:07:8f:f0:ca:e2:c7:d9:d4:7e:be:ca:e8:78:94:3b:c1:1f: 3b:fd:98:4f:31:1c:75:57:2f:a1:41:d5:e8:a4:fe:35:8f:7d: 50:57:88:a1:d0:fa:70:4a:3e:77:43:11:d7:b6:a9:7e:e5:7b: cd:7a:23:ea:e0:6b:f0:37:f2:c3:36:b4:13:72:40:f7:fd:43: 32:1c:bc:9b:40:b0:d9:dd:13:e1:05:82:57:d5:20:c2:b9:af: 87:be:81:ff:f7:83:7a:d1:80:7f:c0:0b:30:45:8d:8c:45:2e: 43:7f:23:71:2f:98:89:e3:6c:88:cd:d9:4b:55:7d:68:22:21: b3:b1:ed:07:dd:d0:bc:cd:49:92:13:fb:43:77:d3:02:f7:72: ee:ad:6b:90 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPsnqfb8o4BqanMSlQnOt0g63TDIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMDQ0WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3Y2IxMjcxMmVlMWY5NTVjNjI1OWI1MTkyOTNmMjViNmFh MWNjZDg2YTk2YjZlYmJmYWEwN2Q3MDdhNTdiOGQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfhSaqredU96jVeR5O/2nw96F6NQ7EIjrM9iIBBfcfoQo5 Xex2v6zLKTF3T8bKN3Sn7zauzcyo3bewQCzIrTWFYJR2nl86/pdW1BJU3Da8X7nY q4C903E9U2NOTslnil6mi9FXWPwVYr776VHvNKvLoSmzIoRvZIZcitESG7TtjMmc /AyzDjmQHskx8Ti4/VvEJH1JWod0yEvYMKGSWKoV28vPwdBbaAMIOmyk4lrYchbo M6V6dkQ3+TAX61qEO7ie+5iHlXey+/kd0ccOEpE/9JY2k+Ww3El0bn6LKdj7wFA9 mCZTZVZ+55aITVklxtWuznBn7Povaoz7mnSvRgkBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7/G9MGAuZv716SqXLBCp0wy9ne0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYzE1NjRhLTAzZDctNDkzYS05NTliLTZlNzkyMzNlNjg5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlkgwDQYJKoZIhvcNAQELBQADggEBACjNCvcJvjo9bfdi5InKlM6yWjJz MdR7eTxHRN/BCIb3gFyDxKBiTvRaNuFsUUlfl3K1o5ScuIxALV5b4MDQhx9S6tI9 UE0uO9syr6Jj1A8R7L0rY0tclAy/8Oblys83JB3GJHuQLjIzK65VjZoHj/DK4sfZ 1H6+yuh4lDvBHzv9mE8xHHVXL6FB1eik/jWPfVBXiKHQ+nBKPndDEde2qX7le816 I+rga/A38sM2tBNyQPf9QzIcvJtAsNndE+EFglfVIMK5r4e+gf/3g3rRgH/ACzBF jYxFLkN/I3EvmInjbIjN2UtVfWgiIbOx7Qfd0LzNSZIT+0N30wL3cu6ta5A= -----END CERTIFICATE-----Generated at Sat Jun 13 05:51:42 2026 by rpki-client