$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa File: 18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa (raw, json) Hash identifier: 9OktNE9C5OTFzfnD3sykTg6LEdERdpnvwxC2ohzwVe4= Subject key identifier: 61:DE:89:B3:CB:8B:9E:4A:E8:93:4C:71:D7:3D:F7:80:BA:30:F1:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 119C8E048BA46114CD417A55AFB632C99EEE4B03 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa Signing time: Tue 05 May 2026 00:10:43 +0000 ROA not before: Tue 05 May 2026 00:10:43 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:9c:8e:04:8b:a4:61:14:cd:41:7a:55:af:b6:32:c9:9e:ee:4b:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:10:43 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=da0a46f8506de934054155ec0099f070000eb921943bf15a8f81c59c153c284e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:07:2b:a6:cf:55:cd:36:7a:c4:9e:ec:19:f1: a4:85:23:c6:d6:24:3a:0b:81:b2:a0:37:49:82:06: 83:a0:79:b7:8e:5e:5f:c7:9c:71:5a:e9:ae:e8:8d: 1d:f1:c5:63:cf:3c:5e:61:32:81:fc:4c:5e:e6:70: 32:57:9d:bc:a2:ff:f3:bd:91:c6:2a:2c:28:75:47: c2:7e:c9:33:86:95:12:25:e6:15:08:56:96:96:cb: e1:05:d3:af:96:c0:6a:61:b0:c5:68:b0:d5:0a:2b: 63:cd:a3:fd:19:a1:61:07:48:79:d0:2c:8c:89:63: 13:7e:94:f5:6f:69:14:78:81:e2:39:6a:7f:e4:55: 08:e7:9c:9f:a6:a0:da:a1:e3:9e:14:39:bc:9d:cc: ac:6a:1d:ca:82:f9:37:c1:74:7a:ca:5c:8b:b4:da: c6:7a:76:46:8a:aa:dc:a4:6a:27:ff:2f:1b:c8:0d: 9a:bd:22:63:5d:75:b6:56:8e:b0:b8:f1:8a:54:04: ff:9a:24:ef:f6:74:fb:23:b2:48:5c:eb:38:a1:9e: 78:c8:84:ff:2d:04:0b:27:74:3e:6c:90:b6:87:f9: a0:ca:89:f9:16:8f:9e:de:a8:46:0e:ae:56:fa:cc: 80:f9:54:1c:e6:bc:68:c2:d9:11:35:69:77:6b:bc: 3d:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DE:89:B3:CB:8B:9E:4A:E8:93:4C:71:D7:3D:F7:80:BA:30:F1:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18a602e8-2bc6-42f9-be5d-6d763a3ca04e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/24 Signature Algorithm: sha256WithRSAEncryption 35:b3:a5:9c:36:c8:d1:b0:04:a9:ae:b8:ac:0d:ea:91:d4:c0: 77:31:2f:68:8d:5d:ea:4d:6e:cb:e0:e5:84:11:45:47:d8:a8: e7:b0:c5:21:cc:b0:06:21:98:60:9d:a3:f5:b2:cd:dc:1b:e7: 05:95:43:f4:36:79:30:59:1c:0c:eb:95:89:59:fc:46:87:38: e2:a2:e2:6a:2b:cf:70:d3:28:2a:3d:b0:60:19:ee:9f:e3:52: bd:c6:e3:ba:d8:d0:11:cf:ac:89:c3:5b:db:96:c0:c2:5c:59: 5e:ba:dc:80:f1:d4:e7:65:d1:92:17:90:16:89:8b:e3:ec:36: 06:de:13:f7:b4:3e:1b:2a:9b:d2:31:74:bd:39:c1:3d:50:68: 67:72:95:55:bc:7f:6b:f2:c5:66:5c:41:09:b3:86:a0:d4:af: b2:40:64:70:29:f2:34:24:51:ca:c6:ae:af:37:57:cb:21:47: f6:be:37:f1:6c:55:2d:67:08:1f:f5:32:44:af:e7:d4:3d:a4: 3d:5b:5d:e9:dc:60:fb:8b:c9:68:a1:c8:d8:0d:cb:b6:8e:b9: bb:47:08:6d:40:d3:9c:ce:39:e3:ef:e0:dd:db:04:1b:0d:16: 88:b2:8b:25:f9:d6:b5:d2:cb:b6:4b:45:bd:f6:b3:d0:ee:c2: 3a:df:26:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEZyOBIukYRTNQXpVr7YyyZ7uSwMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAxMDQzWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTBhNDZmODUwNmRlOTM0MDU0MTU1ZWMwMDk5ZjA3MDAw MGViOTIxOTQzYmYxNWE4ZjgxYzU5YzE1M2MyODRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrByumz1XNNnrEnuwZ8aSFI8bWJDoLgbKgN0mCBoOgebeO Xl/HnHFa6a7ojR3xxWPPPF5hMoH8TF7mcDJXnbyi//O9kcYqLCh1R8J+yTOGlRIl 5hUIVpaWy+EF06+WwGphsMVosNUKK2PNo/0ZoWEHSHnQLIyJYxN+lPVvaRR4geI5 an/kVQjnnJ+moNqh454UObydzKxqHcqC+TfBdHrKXIu02sZ6dkaKqtykaif/LxvI DZq9ImNddbZWjrC48YpUBP+aJO/2dPsjskhc6zihnnjIhP8tBAsndD5skLaH+aDK ifkWj57eqEYOrlb6zID5VBzmvGjC2RE1aXdrvD2rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYd6Js8uLnkrok0xx1z33gLow8XswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4YTYwMmU4LTJiYzYtNDJmOS1iZTVkLTZkNzYzYTNjYTA0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEv4wDQYJKoZIhvcNAQELBQADggEBADWzpZw2yNGwBKmuuKwN6pHUwHcx L2iNXepNbsvg5YQRRUfYqOewxSHMsAYhmGCdo/Wyzdwb5wWVQ/Q2eTBZHAzrlYlZ /EaHOOKi4morz3DTKCo9sGAZ7p/jUr3G47rY0BHPrInDW9uWwMJcWV663IDx1Odl 0ZIXkBaJi+PsNgbeE/e0Phsqm9IxdL05wT1QaGdylVW8f2vyxWZcQQmzhqDUr7JA ZHAp8jQkUcrGrq83V8shR/a+N/FsVS1nCB/1MkSv59Q9pD1bXencYPuLyWihyNgN y7aOubtHCG1A05zOOePv4N3bBBsNFoiyiyX51rXSy7ZLRb32s9DuwjrfJvg= -----END CERTIFICATE-----Generated at Wed May 13 02:22:57 2026 by rpki-client