$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a954652-ffae-4df0-b410-814bccdedfa0.roa File: 1a954652-ffae-4df0-b410-814bccdedfa0.roa (raw, json) Hash identifier: IoyWqG8CGTzkMdF+UGJUHmrbn6m+A2Exam60Zz9SBw0= Subject key identifier: 4F:BD:23:43:93:17:12:19:6E:13:D8:29:7A:31:56:73:D6:39:62:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 31801475555474E837DD1FA2C9A749DEA5A3203D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a954652-ffae-4df0-b410-814bccdedfa0.roa Signing time: Tue 05 May 2026 00:21:14 +0000 ROA not before: Tue 05 May 2026 00:21:14 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 136.18.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:80:14:75:55:54:74:e8:37:dd:1f:a2:c9:a7:49:de:a5:a3:20:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:21:14 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=120d517c15f3d70664f7edf7ff394b3ba743a185364d9c9a9c758ae38c46b27d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:4f:16:03:ee:d7:17:6f:e0:39:9b:ec:16:c3: cd:79:17:e2:b9:32:af:e8:e0:41:18:2d:98:96:c3: a3:b8:a9:23:e7:81:04:4f:d0:af:cf:df:98:9a:6b: 68:45:80:a1:70:a8:54:9d:f9:4d:e5:03:ae:65:7b: eb:2d:d8:d2:11:41:66:16:77:75:c3:fe:0c:28:3c: 04:5a:ba:8a:da:04:9c:f0:b0:15:1a:f7:4b:9b:bc: e6:fd:e3:ac:4f:cb:13:cd:f7:fa:16:f2:3c:a9:b7: b3:eb:b3:6d:f9:29:6e:38:39:c4:48:07:b3:db:f7: 71:54:f1:9e:f1:9d:81:43:d7:d8:b8:07:3c:0e:8d: 38:e4:81:96:e3:09:c8:c8:a7:f8:2b:72:76:27:60: 08:d3:6d:b4:86:47:d5:7d:28:09:33:5e:29:2d:a6: df:cb:e3:f2:04:56:61:19:55:d9:2a:b0:8b:10:29: ce:19:5f:72:e4:05:b6:55:27:a9:e4:65:e7:d5:4b: 45:44:ea:bf:27:c2:17:a1:f0:dc:03:fa:c2:58:51: 48:bb:96:79:dd:9c:ba:58:cb:bd:d5:3a:1b:40:d2: ea:5e:22:94:b8:ba:c5:ba:7d:49:9d:b6:07:5a:3f: 73:9e:d7:92:42:72:5f:8c:b0:9b:f1:38:a4:4f:38: 75:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:BD:23:43:93:17:12:19:6E:13:D8:29:7A:31:56:73:D6:39:62:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1a954652-ffae-4df0-b410-814bccdedfa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.33.0/24 Signature Algorithm: sha256WithRSAEncryption 86:de:d8:93:c4:cb:34:dd:f6:e4:dd:7b:d4:db:e7:37:64:39: 7a:69:64:c4:d9:07:5e:f5:22:34:a3:b2:4e:02:14:9c:6e:bf: 83:cc:47:73:55:54:01:de:11:4b:5e:23:da:4d:01:30:e5:3e: 78:e3:e6:a3:72:e2:ee:88:c3:89:06:65:bb:3d:1c:72:16:e5: a0:ed:1f:05:96:fe:ce:5f:c5:1f:ec:92:8d:37:09:fd:e9:01: c4:cb:50:e4:6b:c2:85:2a:5f:c4:e1:31:76:64:fb:ad:6d:95: b3:ae:8b:7b:3b:48:f6:8c:9b:a9:77:94:f6:65:09:44:6c:08: 04:db:eb:30:3f:2b:67:cc:4d:2c:1a:44:10:5a:2d:86:4f:38: a3:cb:c9:66:d7:16:77:26:b9:49:2d:ff:35:fe:c6:d9:b0:88: 5f:9d:7a:9b:a9:27:b9:66:cb:3b:24:d5:23:46:87:ef:ba:10: c6:ae:a5:00:97:8c:4a:5f:0b:aa:78:67:8b:72:cd:df:ca:3e: 78:9a:f6:28:a1:08:e9:3f:18:04:39:a8:f6:cb:b0:fb:bf:c3: 70:3f:2b:1d:d6:82:45:a6:03:9a:91:bb:b8:0f:47:9e:51:72: 1e:ba:cf:14:df:34:58:bc:1c:b1:10:1e:69:c2:8e:b1:2f:79: c9:b3:0d:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMYAUdVVUdOg33R+iyadJ3qWjID0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAyMTE0WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AxMjBkNTE3YzE1ZjNkNzA2NjRmN2VkZjdmZjM5NGIzYmE3 NDNhMTg1MzY0ZDljOWE5Yzc1OGFlMzhjNDZiMjdkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwTxYD7tcXb+A5m+wWw815F+K5Mq/o4EEYLZiWw6O4qSPn gQRP0K/P35iaa2hFgKFwqFSd+U3lA65le+st2NIRQWYWd3XD/gwoPARauoraBJzw sBUa90ubvOb946xPyxPN9/oW8jypt7Prs235KW44OcRIB7Pb93FU8Z7xnYFD19i4 BzwOjTjkgZbjCcjIp/grcnYnYAjTbbSGR9V9KAkzXiktpt/L4/IEVmEZVdkqsIsQ Kc4ZX3LkBbZVJ6nkZefVS0VE6r8nwheh8NwD+sJYUUi7lnndnLpYy73VOhtA0upe IpS4usW6fUmdtgdaP3Oe15JCcl+MsJvxOKRPOHX5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUT70jQ5MXEhluE9gpejFWc9Y5Yi8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhOTU0NjUyLWZmYWUtNGRmMC1iNDEwLTgxNGJjY2RlZGZhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEiEwDQYJKoZIhvcNAQELBQADggEBAIbe2JPEyzTd9uTde9Tb5zdkOXpp ZMTZB171IjSjsk4CFJxuv4PMR3NVVAHeEUteI9pNATDlPnjj5qNy4u6Iw4kGZbs9 HHIW5aDtHwWW/s5fxR/sko03Cf3pAcTLUORrwoUqX8ThMXZk+61tlbOui3s7SPaM m6l3lPZlCURsCATb6zA/K2fMTSwaRBBaLYZPOKPLyWbXFncmuUkt/zX+xtmwiF+d epupJ7lmyzsk1SNGh++6EMaupQCXjEpfC6p4Z4tyzd/KPnia9iihCOk/GAQ5qPbL sPu/w3A/Kx3WgkWmA5qRu7gPR55Rch66zxTfNFi8HLEQHmnCjrEvecmzDVw= -----END CERTIFICATE-----Generated at Wed May 13 00:40:11 2026 by rpki-client