$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa File: 18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa (raw, json) Hash identifier: VfVSm1MQAcrLOLj9FIaYa600ny6FRnbigIx617tbfWg= Subject key identifier: 12:A3:15:98:A7:BE:C4:35:5B:F0:7C:D6:BA:79:09:DE:97:F3:B5:FE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 551742EBB54709CD0B04395AD1E2675CBC79A161 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa Signing time: Tue 05 May 2026 00:41:08 +0000 ROA not before: Tue 05 May 2026 00:41:08 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 55:17:42:eb:b5:47:09:cd:0b:04:39:5a:d1:e2:67:5c:bc:79:a1:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:41:08 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=baaa97c72907d0322ddd9842644800e35adb69e88d3b93add5398865f7976227, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:1a:cc:4c:9b:83:fc:84:f9:00:c2:d6:b4:88: 0e:d2:1a:16:5a:f5:63:ec:72:de:1e:d1:58:e8:1b: 3c:ef:fc:1d:9f:ef:51:eb:07:ec:20:8d:7e:95:1c: 3c:dd:02:80:d1:25:1f:09:9d:73:81:d0:d0:4e:0f: ab:6b:c2:8f:1a:d2:8d:81:11:e4:21:f4:a3:29:38: 20:23:9a:ff:25:44:a9:75:88:ea:2c:02:22:3d:33: 6d:9b:81:02:b3:79:d8:50:67:53:01:c1:ae:56:fe: da:af:2f:93:91:fa:b9:d7:b6:47:1f:63:c2:64:a6: 0c:12:bc:fc:b2:1a:58:01:b9:f0:f8:80:81:a3:5f: d4:13:69:8d:7d:ff:0f:08:4c:17:e7:5f:42:e2:61: 8f:28:16:fd:e7:b3:d9:33:99:6b:ea:06:06:ef:0f: c0:53:52:c9:6a:d9:33:0b:7c:d8:58:12:0c:e6:78: 04:bc:70:7e:98:1d:5d:2d:bc:4e:33:66:41:06:ce: 85:60:94:5e:e6:ab:66:ea:c2:f9:13:ef:44:ff:f0: 89:7b:1e:75:46:06:af:d6:da:9d:fb:70:01:15:73: ef:88:91:ff:f0:88:5e:67:41:a4:ff:84:6d:b3:ab: ef:71:90:c8:58:bb:c4:2c:73:ea:37:25:3c:14:3e: 93:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:A3:15:98:A7:BE:C4:35:5B:F0:7C:D6:BA:79:09:DE:97:F3:B5:FE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18e20a74-bdc3-4bcf-9338-15e54b26aae0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2b:b6:fe:7d:58:84:fd:d9:d8:75:c3:2e:71:3a:cc:05:ce:6b: 94:bb:1f:ad:b8:30:a4:39:35:5b:aa:e0:6d:26:ba:c4:54:ef: 3c:9e:c0:b0:62:17:df:65:e5:21:6f:48:2e:06:14:f3:59:13: b4:3f:3d:66:94:b7:2d:10:da:b4:49:cd:01:f9:31:94:f9:ae: 82:98:b2:b5:23:39:c2:b1:71:e4:4e:07:43:bf:6a:ae:a2:cd: a3:e9:3e:d2:f6:3f:af:6d:ad:bc:7a:62:ae:9f:f0:3b:96:fc: 83:2b:a5:b9:66:9e:55:48:68:94:92:6a:3e:fb:ea:13:1b:3d: 2a:8d:0f:c0:7a:34:0e:56:3e:22:22:c6:68:1c:66:34:3c:de: 9a:3e:ef:46:27:9f:80:3b:9e:6c:68:34:a0:7c:83:dd:3d:74: 87:7b:24:44:76:1f:d4:cf:de:27:29:40:89:cc:c3:27:e1:27: a4:63:66:fa:79:94:d7:94:ef:8b:ac:7e:e8:b4:df:f2:34:2d: d2:17:c5:f3:a7:2d:ff:d7:d6:8b:27:bf:48:49:92:d8:ae:61: c6:1b:16:70:aa:5f:cb:13:73:2b:33:4d:34:db:5f:f0:9e:92: 0e:c6:2f:e9:65:c3:72:88:91:db:f2:d3:c8:2e:b1:a7:e1:dd: fc:e5:8e:f9 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVRdC67VHCc0LBDla0eJnXLx5oWEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MTA4WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWFhOTdjNzI5MDdkMDMyMmRkZDk4NDI2NDQ4MDBlMzVh ZGI2OWU4OGQzYjkzYWRkNTM5ODg2NWY3OTc2MjI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3GsxMm4P8hPkAwta0iA7SGhZa9WPsct4e0VjoGzzv/B2f 71HrB+wgjX6VHDzdAoDRJR8JnXOB0NBOD6trwo8a0o2BEeQh9KMpOCAjmv8lRKl1 iOosAiI9M22bgQKzedhQZ1MBwa5W/tqvL5OR+rnXtkcfY8JkpgwSvPyyGlgBufD4 gIGjX9QTaY19/w8ITBfnX0LiYY8oFv3ns9kzmWvqBgbvD8BTUslq2TMLfNhYEgzm eAS8cH6YHV0tvE4zZkEGzoVglF7mq2bqwvkT70T/8Il7HnVGBq/W2p37cAEVc++I kf/wiF5nQaT/hG2zq+9xkMhYu8Qsc+o3JTwUPpMVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEqMVmKe+xDVb8HzWunkJ3pfztf4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4ZTIwYTc0LWJkYzMtNGJjZi05MzM4LTE1ZTU0YjI2YWFlMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQDDANBgkqhkiG9w0BAQsFAAOCAQEAK7b+fViE/dnYdcMucTrMBc5rlLsf rbgwpDk1W6rgbSa6xFTvPJ7AsGIX32XlIW9ILgYU81kTtD89ZpS3LRDatEnNAfkx lPmugpiytSM5wrFx5E4HQ79qrqLNo+k+0vY/r22tvHpirp/wO5b8gyuluWaeVUho lJJqPvvqExs9Ko0PwHo0DlY+IiLGaBxmNDzemj7vRiefgDuebGg0oHyD3T10h3sk RHYf1M/eJylAiczDJ+EnpGNm+nmU15Tvi6x+6LTf8jQt0hfF86ct/9fWiye/SEmS 2K5hxhsWcKpfyxNzKzNNNNtf8J6SDsYv6WXDcoiR2/LTyC6xp+Hd/OWO+Q== -----END CERTIFICATE-----Generated at Tue May 12 21:58:17 2026 by rpki-client