$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b17fec-62d5-4132-9af4-c06b4ca233e5.roa File: 53b17fec-62d5-4132-9af4-c06b4ca233e5.roa (raw, json) Hash identifier: D92KUMQwhzazFHyjMIcxOAfPx4Hy4YACrhqN9BJbYVw= Subject key identifier: 17:06:A0:97:80:A9:1E:CB:43:39:03:3F:D8:96:61:20:E7:26:32:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2325988DA83F837E334829D38370DD62F088628E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b17fec-62d5-4132-9af4-c06b4ca233e5.roa Signing time: Mon 04 May 2026 01:10:41 +0000 ROA not before: Mon 04 May 2026 01:10:41 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.144.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:25:98:8d:a8:3f:83:7e:33:48:29:d3:83:70:dd:62:f0:88:62:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:10:41 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=14248f3155072b8a5660e4b03ccbaa2625dff07682aceb916c7ee9f9c14fa2ad, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9d:f2:16:de:8c:46:78:c2:ac:97:35:4e:0e: 4f:cf:17:fc:17:90:27:21:19:2a:a0:21:d8:ea:36: d2:1b:98:b3:c9:e1:97:e1:46:66:6c:2e:42:ca:00: 07:e8:33:ed:f5:26:5b:f3:40:27:2a:94:45:b1:dc: e7:67:39:15:b3:75:b9:97:a2:6a:a4:f1:bf:14:0a: 8d:41:dd:65:41:6b:8e:6b:c2:a7:5b:1f:ca:b9:e0: a5:18:e4:35:1c:09:62:57:89:8d:d4:85:f5:bf:81: a2:0e:01:e6:62:27:da:66:1d:e1:0c:28:ce:8c:ad: 2f:d7:08:0d:22:a1:13:79:4d:e1:61:8f:46:0d:aa: 24:d3:44:87:24:fd:03:44:7f:df:1c:e4:ef:5a:4f: 52:41:ff:b5:a4:e7:d8:ac:d9:6b:bf:de:ed:cf:e2: 6d:c3:fb:d1:a4:73:3d:3a:46:43:64:f1:02:15:62: 13:78:1c:83:e4:8c:6b:7e:05:1f:f6:de:64:d0:40: 49:13:14:9a:76:8a:82:b5:26:6b:7d:6d:be:7e:76: 76:70:d3:9f:a0:31:0c:16:41:30:fe:94:30:8a:a9: 02:46:ea:25:9a:48:dd:dc:68:cc:41:96:eb:21:c1: 3a:ed:b6:4c:e9:61:8a:8b:e9:8b:40:47:93:e1:5f: 9c:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:06:A0:97:80:A9:1E:CB:43:39:03:3F:D8:96:61:20:E7:26:32:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53b17fec-62d5-4132-9af4-c06b4ca233e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.144.0/22 Signature Algorithm: sha256WithRSAEncryption b1:b3:d4:12:9c:3e:9a:e2:dc:68:1e:be:1b:94:92:0a:83:73: e5:80:10:61:06:d9:ba:c5:d9:aa:4d:aa:2a:a4:75:03:cc:f8: 60:8a:ba:68:1f:52:30:e3:04:81:4e:27:00:90:c2:1c:28:ca: cb:28:2b:d7:80:fe:14:85:6d:8d:36:30:98:fb:22:4e:6c:49: 43:1b:76:4a:87:94:d1:6a:1d:06:f0:8c:98:f9:d2:35:be:69: f6:c4:e9:12:24:6f:80:5b:3e:ee:5d:1b:d5:af:bb:f2:03:14: b6:0a:fd:9e:9a:9b:94:34:91:9e:bd:1f:96:89:65:f0:13:ed: f5:a1:fa:51:16:fc:ad:49:6b:1d:d1:ba:d4:78:7d:1b:5f:ac: f0:ba:1a:0d:e6:e7:41:c1:94:67:30:0f:f1:65:c3:d5:10:e8: 12:0b:79:3d:a3:b6:65:7d:39:8a:97:94:b6:54:82:a5:7a:63: 39:c0:c1:25:a5:19:ed:f7:7d:0a:a6:6c:f9:a4:7e:62:5f:e8: bc:f3:71:11:6f:10:05:6d:a8:b9:99:59:27:2b:1b:bc:b0:5c: 76:a8:65:9a:76:73:86:fe:30:ff:cc:f9:41:ca:90:19:0a:c7: a6:af:14:95:db:11:f7:a5:27:a7:d4:24:82:bb:71:e4:bd:06: 6d:44:f3:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIyWYjag/g34zSCnTg3DdYvCIYo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDExMDQxWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDI0OGYzMTU1MDcyYjhhNTY2MGU0YjAzY2NiYWEyNjI1 ZGZmMDc2ODJhY2ViOTE2YzdlZTlmOWMxNGZhMmFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKnfIW3oxGeMKslzVODk/PF/wXkCchGSqgIdjqNtIbmLPJ 4ZfhRmZsLkLKAAfoM+31JlvzQCcqlEWx3OdnORWzdbmXomqk8b8UCo1B3WVBa45r wqdbH8q54KUY5DUcCWJXiY3UhfW/gaIOAeZiJ9pmHeEMKM6MrS/XCA0ioRN5TeFh j0YNqiTTRIck/QNEf98c5O9aT1JB/7Wk59is2Wu/3u3P4m3D+9Gkcz06RkNk8QIV YhN4HIPkjGt+BR/23mTQQEkTFJp2ioK1Jmt9bb5+dnZw05+gMQwWQTD+lDCKqQJG 6iWaSN3caMxBlushwTrttkzpYYqL6YtAR5PhX5wdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFwagl4CpHstDOQM/2JZhIOcmMucwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzYjE3ZmVjLTYyZDUtNDEzMi05YWY0LWMwNmI0Y2EyMzNlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIyEpAwDQYJKoZIhvcNAQELBQADggEBALGz1BKcPpri3GgevhuUkgqDc+WA EGEG2brF2apNqiqkdQPM+GCKumgfUjDjBIFOJwCQwhwoyssoK9eA/hSFbY02MJj7 Ik5sSUMbdkqHlNFqHQbwjJj50jW+afbE6RIkb4BbPu5dG9Wvu/IDFLYK/Z6am5Q0 kZ69H5aJZfAT7fWh+lEW/K1Jax3RutR4fRtfrPC6Gg3m50HBlGcwD/Flw9UQ6BIL eT2jtmV9OYqXlLZUgqV6YznAwSWlGe33fQqmbPmkfmJf6LzzcRFvEAVtqLmZWScr G7ywXHaoZZp2c4b+MP/M+UHKkBkKx6avFJXbEfelJ6fUJIK7ceS9Bm1E83k= -----END CERTIFICATE-----Generated at Tue May 12 21:50:52 2026 by rpki-client