$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6712166e-3bec-471c-a385-b21c7ca5744e.roa File: 6712166e-3bec-471c-a385-b21c7ca5744e.roa (raw, json) Hash identifier: K7GY897hF9eYoqd/u55i9pgqL5V/DemXH42htxadng4= Subject key identifier: 90:FA:9D:F5:46:DF:7A:B9:5A:26:F6:C1:11:98:C5:27:EF:B8:68:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DB10A3FB22979C1F2D47D6E6B9095FB730A3657 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6712166e-3bec-471c-a385-b21c7ca5744e.roa Signing time: Mon 04 May 2026 01:01:15 +0000 ROA not before: Mon 04 May 2026 01:01:15 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.0.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:b1:0a:3f:b2:29:79:c1:f2:d4:7d:6e:6b:90:95:fb:73:0a:36:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:01:15 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=7d0fe1271c4f4e5316c113bdca836e9dcbe4ee7f2328d11282e458a39fe40024, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:a6:98:38:0e:a3:c8:93:66:18:ed:cc:fd:9f: 53:48:6f:5c:56:a0:99:a4:ec:38:e0:45:de:3e:13: be:16:ad:bb:26:c1:fe:11:06:bf:7e:0f:10:65:9f: 07:f0:c8:c0:32:1a:2e:cd:2e:96:ef:9c:de:02:2d: 08:e7:2e:53:8a:94:1d:69:4f:cf:00:f8:6f:79:f2: 0e:96:e0:2c:ba:df:cc:5b:80:dd:3a:2c:17:1e:1a: cd:49:7d:68:18:69:ac:04:54:f5:47:46:ed:4c:03: 25:81:19:2a:5a:46:cf:98:02:9b:1f:8e:9b:31:61: 10:86:05:42:c5:d6:a3:ac:48:ff:19:03:f4:18:42: 96:00:99:75:24:06:cc:2e:68:e1:e8:51:2a:29:74: fa:ed:7c:1d:cc:da:82:ee:b7:7d:ff:aa:38:38:14: 71:73:54:a4:25:38:a2:f3:f6:69:4b:c1:47:3b:1e: 92:94:51:51:73:c7:c2:96:fe:dc:f6:c1:3e:0c:65: 08:8d:1c:47:f7:e5:4c:dd:a2:5e:37:a0:f1:5a:bd: 46:67:92:d4:60:7f:f7:66:05:56:ff:12:73:3e:16: 18:7b:9e:bb:98:7e:51:c4:05:21:8f:f7:47:3c:88: a4:b7:17:5f:3b:b9:4b:4b:a5:d6:09:96:53:e3:1c: 4f:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:FA:9D:F5:46:DF:7A:B9:5A:26:F6:C1:11:98:C5:27:EF:B8:68:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6712166e-3bec-471c-a385-b21c7ca5744e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.0.0/19 Signature Algorithm: sha256WithRSAEncryption 79:45:b2:b8:b8:93:35:97:e1:12:10:ca:8f:96:16:c0:5f:ef: 43:f9:bb:ad:ec:fa:f5:fe:2b:63:1c:9f:2b:c6:3f:aa:d3:2d: 0b:84:a3:d0:81:f3:d2:6f:10:32:5b:27:0d:49:b1:c9:44:ee: 0b:f3:d7:50:8c:66:92:85:96:ac:26:56:60:56:37:04:39:41: 06:6e:55:33:5a:7f:78:a6:f5:d3:6c:85:74:51:65:ed:d3:8e: 38:d2:1f:f1:ff:27:bc:1a:10:3e:23:6f:65:ea:e8:05:82:cf: 4d:bf:a7:c9:22:18:65:d2:9a:5a:1f:24:2c:86:a0:53:46:50: 20:41:63:5c:31:7d:22:45:d5:fb:bd:2f:b5:da:e2:10:77:72: e1:43:11:5c:62:eb:e4:5d:84:73:f8:ae:f8:b5:ab:51:83:c8: 3e:e2:a3:3b:ee:3a:2f:ba:e6:c9:f9:1f:cb:bb:f2:94:60:f1: 82:1d:63:17:7c:ef:c5:33:c1:0a:43:bc:59:96:a9:ee:ac:45: ce:df:20:a3:c9:e8:fa:51:e0:57:08:bc:ed:57:53:cc:7d:b3: 33:c2:94:a9:75:9c:18:5b:8d:0c:5d:f6:74:fa:d3:08:c4:e6: 5e:55:c7:bd:44:34:ba:fe:f4:4b:f3:b0:13:40:b7:6d:52:ed: d2:95:e3:c0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDbEKP7IpecHy1H1ua5CV+3MKNlcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEwMTE1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDBmZTEyNzFjNGY0ZTUzMTZjMTEzYmRjYTgzNmU5ZGNi ZTRlZTdmMjMyOGQxMTI4MmU0NThhMzlmZTQwMDI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrppg4DqPIk2YY7cz9n1NIb1xWoJmk7DjgRd4+E74Wrbsm wf4RBr9+DxBlnwfwyMAyGi7NLpbvnN4CLQjnLlOKlB1pT88A+G958g6W4Cy638xb gN06LBceGs1JfWgYaawEVPVHRu1MAyWBGSpaRs+YApsfjpsxYRCGBULF1qOsSP8Z A/QYQpYAmXUkBswuaOHoUSopdPrtfB3M2oLut33/qjg4FHFzVKQlOKLz9mlLwUc7 HpKUUVFzx8KW/tz2wT4MZQiNHEf35Uzdol43oPFavUZnktRgf/dmBVb/EnM+Fhh7 nruYflHEBSGP90c8iKS3F187uUtLpdYJllPjHE+1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkPqd9UbferlaJvbBEZjFJ++4aMkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3MTIxNjZlLTNiZWMtNDcxYy1hMzg1LWIyMWM3Y2E1NzQ0ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEgAwDQYJKoZIhvcNAQELBQADggEBAHlFsri4kzWX4RIQyo+WFsBf70P5 u63s+vX+K2McnyvGP6rTLQuEo9CB89JvEDJbJw1JsclE7gvz11CMZpKFlqwmVmBW NwQ5QQZuVTNaf3im9dNshXRRZe3TjjjSH/H/J7waED4jb2Xq6AWCz02/p8kiGGXS mlofJCyGoFNGUCBBY1wxfSJF1fu9L7Xa4hB3cuFDEVxi6+RdhHP4rvi1q1GDyD7i ozvuOi+65sn5H8u78pRg8YIdYxd878UzwQpDvFmWqe6sRc7fIKPJ6PpR4FcIvO1X U8x9szPClKl1nBhbjQxd9nT60wjE5l5Vx71ENLr+9EvzsBNAt21S7dKV48A= -----END CERTIFICATE-----Generated at Wed May 13 00:57:09 2026 by rpki-client