$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c2684b-c1bd-4785-a1c4-390897be3c8d.roa File: 28c2684b-c1bd-4785-a1c4-390897be3c8d.roa (raw, json) Hash identifier: vHm2MHGz0YmeuZYpaLgkjTV9DUe2Mqfhj2ed3nIK9i4= Subject key identifier: 22:44:C3:95:5F:2C:CD:C7:2B:6A:CA:CE:FF:1D:1B:A7:8C:69:EA:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 738E4C713387322FF9D5F11FF60B85719CBCC8FB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c2684b-c1bd-4785-a1c4-390897be3c8d.roa Signing time: Mon 04 May 2026 01:20:49 +0000 ROA not before: Mon 04 May 2026 01:20:49 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.208.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:8e:4c:71:33:87:32:2f:f9:d5:f1:1f:f6:0b:85:71:9c:bc:c8:fb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:20:49 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=bab85444b29b9344fa08a6cf37c37f0bb4c2e5f3f3f6c5d362453582c8e1a33d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:cc:0e:75:eb:18:76:8c:46:e6:83:04:bf:70: 3c:40:62:e6:03:96:98:25:01:f1:45:5d:36:60:4e: 64:43:64:a4:82:e3:29:80:65:65:6b:e2:a7:0e:6f: e6:e9:8f:70:6e:22:5e:39:64:af:4a:c6:26:70:23: 6c:b5:76:69:94:c2:60:b2:d6:80:1b:2f:9a:5e:a7: 8f:56:4b:bb:27:a5:57:26:93:f6:40:dc:77:0e:6b: 7f:68:a2:9d:b8:ea:06:99:f9:f7:75:70:a4:0b:e1: 87:62:5e:bb:f2:4f:68:07:00:a5:82:c5:41:62:80: 64:69:60:bd:c5:7e:26:dc:90:43:c8:6a:a3:4b:69: 7d:e5:ca:de:6f:c6:a0:9c:cb:bf:90:cf:80:5b:a4: f7:2b:6a:c9:a7:45:23:2a:98:7a:df:5a:de:f0:b1: b4:61:db:5f:20:3a:1a:88:4d:f2:9e:0c:fd:2c:1c: e6:b6:ac:c7:69:6f:38:8f:9c:d0:7c:01:ff:1c:7b: 19:a5:5a:4f:11:a8:74:3c:67:63:06:10:eb:49:44: fc:44:26:0a:6e:c5:df:9b:34:f0:9c:bc:6f:ce:a3: bd:11:39:0f:98:3f:01:f6:b5:04:29:1c:dd:66:5e: 50:30:19:d0:0b:e5:62:29:c4:3d:a1:74:1c:aa:15: 4e:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:44:C3:95:5F:2C:CD:C7:2B:6A:CA:CE:FF:1D:1B:A7:8C:69:EA:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/28c2684b-c1bd-4785-a1c4-390897be3c8d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.208.0/20 Signature Algorithm: sha256WithRSAEncryption b7:d5:db:a5:e8:6c:ef:76:3b:0a:27:02:02:04:75:c3:2f:82: bd:12:f9:20:2b:d2:e8:6b:a0:b6:db:0d:5e:c4:2a:41:ab:d5: 4f:f8:50:17:b2:aa:7f:bd:b7:b0:2d:ed:23:dd:e7:76:85:df: 12:58:cc:f9:e8:3f:b8:87:a7:0c:bd:40:95:8d:65:05:9d:43: 8e:05:64:0f:e6:5c:05:8d:0e:06:14:7f:15:86:f9:bd:20:a6: 0b:4e:a8:28:d2:db:5c:57:7a:f9:14:26:d1:0b:64:1e:8b:44: 3f:7d:21:ae:5e:07:12:29:79:38:19:07:fd:e0:48:70:f1:d6: 23:f0:4f:0e:5b:1d:4a:9f:60:66:c5:e0:89:d2:d2:74:f4:2a: a7:8e:fb:e9:b5:e0:7a:0f:38:c0:7c:15:ad:63:a7:1b:bb:0b: db:67:07:d8:a4:98:fd:26:7d:6b:81:9f:57:87:a8:7d:d4:e9: 95:9f:f1:ea:ef:00:ed:b3:8a:99:a3:00:96:de:88:64:09:66: 5d:50:ae:d5:7a:62:d0:ae:3d:75:3d:1b:c1:8f:06:04:a0:08: dd:b0:50:54:35:d5:31:c1:ff:97:78:38:aa:6b:3e:d8:5e:92: eb:ae:35:8a:71:20:8b:26:79:06:d7:6f:5c:d0:03:c6:62:ad: d7:d5:4a:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc45McTOHMi/51fEf9guFcZy8yPswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEyMDQ5WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYWI4NTQ0NGIyOWI5MzQ0ZmEwOGE2Y2YzN2MzN2YwYmI0 YzJlNWYzZjNmNmM1ZDM2MjQ1MzU4MmM4ZTFhMzNkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGzA516xh2jEbmgwS/cDxAYuYDlpglAfFFXTZgTmRDZKSC 4ymAZWVr4qcOb+bpj3BuIl45ZK9KxiZwI2y1dmmUwmCy1oAbL5pep49WS7snpVcm k/ZA3HcOa39oop246gaZ+fd1cKQL4YdiXrvyT2gHAKWCxUFigGRpYL3FfibckEPI aqNLaX3lyt5vxqCcy7+Qz4BbpPcrasmnRSMqmHrfWt7wsbRh218gOhqITfKeDP0s HOa2rMdpbziPnNB8Af8cexmlWk8RqHQ8Z2MGEOtJRPxEJgpuxd+bNPCcvG/Oo70R OQ+YPwH2tQQpHN1mXlAwGdAL5WIpxD2hdByqFU5JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIkTDlV8szccrasrO/x0bp4xp6p4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI4YzI2ODRiLWMxYmQtNDc4NS1hMWM0LTM5MDg5N2JlM2M4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEtAwDQYJKoZIhvcNAQELBQADggEBALfV26XobO92OwonAgIEdcMvgr0S +SAr0uhroLbbDV7EKkGr1U/4UBeyqn+9t7At7SPd53aF3xJYzPnoP7iHpwy9QJWN ZQWdQ44FZA/mXAWNDgYUfxWG+b0gpgtOqCjS21xXevkUJtELZB6LRD99Ia5eBxIp eTgZB/3gSHDx1iPwTw5bHUqfYGbF4InS0nT0KqeO++m14HoPOMB8Fa1jpxu7C9tn B9ikmP0mfWuBn1eHqH3U6ZWf8ervAO2zipmjAJbeiGQJZl1QrtV6YtCuPXU9G8GP BgSgCN2wUFQ11THB/5d4OKprPthekuuuNYpxIIsmeQbXb1zQA8ZirdfVSkM= -----END CERTIFICATE-----Generated at Wed May 13 01:00:34 2026 by rpki-client