$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4df828-87d0-400e-bee0-4cd343ba4776.roa File: 4d4df828-87d0-400e-bee0-4cd343ba4776.roa (raw, json) Hash identifier: ErOqweYrGM4c6dp50BjfdPC1WDABQLTHxwZK/5lvMEk= Subject key identifier: D2:80:53:33:E2:8C:10:F3:BA:7F:4D:FA:4B:AF:B6:6D:BC:64:ED:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02CE5C486FA1D382C396B9079836AC714A05F812 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4df828-87d0-400e-bee0-4cd343ba4776.roa Signing time: Mon 04 May 2026 01:00:07 +0000 ROA not before: Mon 04 May 2026 01:00:07 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.64.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:ce:5c:48:6f:a1:d3:82:c3:96:b9:07:98:36:ac:71:4a:05:f8:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:00:07 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=29cb2a1db1a2e12ea7ef7fce2a8b5d9a6030260266c626ac5c5be9cf99a85bc3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:01:71:38:38:6f:ca:44:fa:ed:27:04:95:5f: 2c:0e:4b:6f:82:77:b7:a2:f7:8a:65:27:10:bc:db: 95:62:48:8e:18:b4:2b:87:26:66:9a:f8:d5:5a:c9: d3:03:27:eb:03:b5:02:48:39:b3:6d:37:24:b1:68: df:7e:b8:40:e3:cb:2f:d1:fd:5f:a4:1d:b4:86:e7: 01:7d:01:a5:b2:48:d7:f0:69:6f:2c:cc:44:e8:1f: 2d:36:af:73:b0:40:09:99:49:27:7f:1f:96:92:0f: 25:9f:49:65:b6:50:91:30:f1:82:9b:2a:81:d2:91: 05:81:d4:92:34:6c:58:8f:2d:03:88:a2:ae:82:4c: aa:9c:d0:14:2a:87:f6:fd:79:5c:83:a5:13:7e:e6: 11:c6:6e:88:de:c2:8c:a6:50:08:44:9e:9d:24:0e: 04:9c:c5:6b:f3:9a:71:f9:8b:ff:ba:c1:23:07:0c: bb:5d:7e:21:a3:8d:64:e4:cb:cf:bd:7b:27:d5:36: 35:cc:fe:3e:e0:64:57:e5:01:40:48:47:79:b5:e7: e9:a8:09:30:22:d3:5d:05:87:6a:00:b3:8c:f3:89: 2f:d6:da:b4:73:7c:4d:91:be:1c:83:11:b3:42:8f: ea:ed:09:36:b5:84:b0:bf:19:7a:ec:43:7b:b4:f1: cb:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:80:53:33:E2:8C:10:F3:BA:7F:4D:FA:4B:AF:B6:6D:BC:64:ED:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4d4df828-87d0-400e-bee0-4cd343ba4776.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.64.0/18 Signature Algorithm: sha256WithRSAEncryption d1:16:ff:bb:ca:d9:b3:81:1f:ff:a1:05:93:74:e3:a7:85:f3: c8:04:9a:52:ab:ae:61:5c:ad:92:1f:5e:76:c2:43:de:7a:2d: 8d:e0:7e:15:7f:c5:03:c5:e5:de:55:e0:7c:d7:84:70:72:e2: d5:35:c2:67:ac:65:bf:ff:c7:2e:47:ea:a7:8e:5a:1a:11:6a: dc:c6:87:d8:b9:8c:bf:04:1f:71:77:42:93:65:0f:57:3c:69: 07:6f:b5:a7:0c:f1:2d:17:08:89:5f:bd:86:04:6a:08:97:80: d5:df:19:85:40:2c:c1:b8:24:b4:63:70:81:9e:99:7b:a3:fd: 8f:74:c9:15:de:57:a8:b6:0d:41:c0:00:02:6d:b1:c8:84:31: e5:bc:c9:70:cc:0e:8d:0f:66:09:9c:59:50:ea:8f:43:fa:17: 6f:88:b1:5b:5f:ce:70:ca:ec:9c:c1:f6:e8:1b:d4:9f:ec:d8: 24:7b:0e:9e:8a:02:31:87:85:05:b0:b3:8b:08:54:22:b9:90: 5e:fd:88:9a:11:64:00:a5:44:1b:2b:48:eb:4d:34:60:ea:6a: 7f:44:02:e1:aa:2a:5a:2a:c7:ca:65:a3:a0:06:b5:33:d7:30: ba:3e:cb:14:ed:3b:f2:57:c7:6d:eb:89:ce:58:19:f2:87:bf: a2:ea:24:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAs5cSG+h04LDlrkHmDascUoF+BIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEwMDA3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOWNiMmExZGIxYTJlMTJlYTdlZjdmY2UyYThiNWQ5YTYw MzAyNjAyNjZjNjI2YWM1YzViZTljZjk5YTg1YmMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLAXE4OG/KRPrtJwSVXywOS2+Cd7ei94plJxC825ViSI4Y tCuHJmaa+NVaydMDJ+sDtQJIObNtNySxaN9+uEDjyy/R/V+kHbSG5wF9AaWySNfw aW8szEToHy02r3OwQAmZSSd/H5aSDyWfSWW2UJEw8YKbKoHSkQWB1JI0bFiPLQOI oq6CTKqc0BQqh/b9eVyDpRN+5hHGbojewoymUAhEnp0kDgScxWvzmnH5i/+6wSMH DLtdfiGjjWTky8+9eyfVNjXM/j7gZFflAUBIR3m15+moCTAi010Fh2oAs4zziS/W 2rRzfE2RvhyDEbNCj+rtCTa1hLC/GXrsQ3u08cubAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU0oBTM+KMEPO6f036S6+2bbxk7eYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRkNGRmODI4LTg3ZDAtNDAwZS1iZWUwLTRjZDM0M2JhNDc3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYyEkAwDQYJKoZIhvcNAQELBQADggEBANEW/7vK2bOBH/+hBZN046eF88gE mlKrrmFcrZIfXnbCQ956LY3gfhV/xQPF5d5V4HzXhHBy4tU1wmesZb//xy5H6qeO WhoRatzGh9i5jL8EH3F3QpNlD1c8aQdvtacM8S0XCIlfvYYEagiXgNXfGYVALMG4 JLRjcIGemXuj/Y90yRXeV6i2DUHAAAJtsciEMeW8yXDMDo0PZgmcWVDqj0P6F2+I sVtfznDK7JzB9ugb1J/s2CR7Dp6KAjGHhQWws4sIVCK5kF79iJoRZAClRBsrSOtN NGDqan9EAuGqKloqx8plo6AGtTPXMLo+yxTtO/JXx23ric5YGfKHv6LqJJ0= -----END CERTIFICATE-----Generated at Tue May 12 21:50:13 2026 by rpki-client