$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a23c679-6872-4f52-ace3-b8c4e3fbc8c4.roa File: 6a23c679-6872-4f52-ace3-b8c4e3fbc8c4.roa (raw, json) Hash identifier: a3MyGlG0NnzAeQvBiHyHTeJ+ZjSSeOJ+V9BWV+67lpg= Subject key identifier: 13:63:A6:77:B7:59:7E:38:9E:51:D2:CF:99:B0:0F:BE:49:B8:EF:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30C40D435D1B3CB8AD4E04C18F8C34471AB85B1C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a23c679-6872-4f52-ace3-b8c4e3fbc8c4.roa Signing time: Tue 05 May 2026 00:40:06 +0000 ROA not before: Tue 05 May 2026 00:40:06 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.19.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:c4:0d:43:5d:1b:3c:b8:ad:4e:04:c1:8f:8c:34:47:1a:b8:5b:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:40:06 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=95d8eeee22cf772328a40c72fdd51544953abceaef97389499fe3ba0bc6ae490, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:b9:6c:67:dd:5a:32:c8:0f:c2:38:dc:5b:59: 7a:4c:11:ed:fb:f5:6e:76:78:c1:6a:bd:d2:98:90: da:d1:3c:e3:62:1c:70:bb:0a:f4:17:fd:2d:1a:7c: db:85:55:5b:4f:86:d1:d4:23:d1:8f:4d:a0:1f:a2: 0c:3f:ef:f2:14:bf:24:78:37:2e:c6:ac:99:f2:91: 97:f7:7f:a1:44:af:2b:68:76:c6:ef:36:de:ba:31: 3a:33:c6:54:fc:0e:03:64:87:23:d1:7a:69:2b:de: 54:29:de:99:ac:a9:28:80:83:c5:2b:68:a4:b9:af: e3:44:a3:b6:47:47:cc:87:0f:75:42:c9:a0:1d:f2: b6:af:e1:e1:8c:f3:1e:92:6c:65:d7:67:d9:ee:7c: 89:86:9a:61:7d:ca:c5:66:e1:b8:4d:51:83:48:86: b8:7a:84:15:12:e8:67:8b:83:16:09:06:e5:fa:0c: 74:4b:b4:74:d5:c2:c2:a6:51:af:86:b4:1f:31:8f: fd:0b:44:e1:e3:03:84:b4:55:a7:1b:f3:6a:fa:9b: df:74:85:79:5a:48:8a:9c:51:77:6e:00:2b:8b:0b: 54:a7:bb:e7:02:d7:b5:75:3b:d1:34:79:36:96:18: 1e:4f:b4:aa:43:81:04:66:a5:ce:23:43:13:e2:53: b4:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:63:A6:77:B7:59:7E:38:9E:51:D2:CF:99:B0:0F:BE:49:B8:EF:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a23c679-6872-4f52-ace3-b8c4e3fbc8c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.19.0.0/18 Signature Algorithm: sha256WithRSAEncryption 33:3b:f6:5f:9a:45:e9:2f:91:cf:0f:90:a3:f2:34:1e:4f:68: 25:f6:4b:54:18:ce:09:bc:26:ff:78:d0:9f:7a:4a:3c:a3:d9: b1:c1:60:d8:30:8c:ed:d0:ff:1f:e1:a8:c5:7d:af:67:68:e4: 51:c4:20:bd:62:94:5b:a3:d7:cb:90:1d:11:03:64:3f:91:84: 00:04:0d:a3:f2:5a:05:50:2a:1d:3a:58:9e:a2:54:bb:aa:24: fd:ce:94:f6:cc:c4:93:25:a4:0e:4b:6a:df:f7:97:22:bf:38: 31:3d:de:77:9c:e5:ae:e1:cb:ad:f3:14:27:38:39:e7:c6:c2: 35:cb:6c:37:91:19:e2:18:e4:dd:25:85:0c:30:6d:fc:2f:fb: 1a:a8:7d:d5:94:33:2e:82:fc:ca:02:98:59:65:34:89:fc:99: d5:1a:ed:c5:93:c0:5f:7a:d0:0d:a6:4a:a0:44:53:c1:a4:7f: 4f:72:a6:fd:25:3f:c7:9f:dc:0c:75:2c:10:b1:fe:05:07:8b: 17:62:cd:23:37:93:39:b0:ce:bc:fb:7c:17:f2:ae:ae:a7:4f: 8f:80:0d:71:85:73:6b:24:fa:28:4b:ee:2d:ba:5b:57:2a:23: d3:d7:cd:cc:ec:76:80:9a:5d:4a:d9:89:06:b9:5f:98:5e:6c: 93:53:18:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMMQNQ10bPLitTgTBj4w0Rxq4WxwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDA0MDA2WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NWQ4ZWVlZTIyY2Y3NzIzMjhhNDBjNzJmZGQ1MTU0NDk1 M2FiY2VhZWY5NzM4OTQ5OWZlM2JhMGJjNmFlNDkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7uWxn3VoyyA/CONxbWXpMEe379W52eMFqvdKYkNrRPONi HHC7CvQX/S0afNuFVVtPhtHUI9GPTaAfogw/7/IUvyR4Ny7GrJnykZf3f6FEryto dsbvNt66MTozxlT8DgNkhyPRemkr3lQp3pmsqSiAg8UraKS5r+NEo7ZHR8yHD3VC yaAd8rav4eGM8x6SbGXXZ9nufImGmmF9ysVm4bhNUYNIhrh6hBUS6GeLgxYJBuX6 DHRLtHTVwsKmUa+GtB8xj/0LROHjA4S0Vacb82r6m990hXlaSIqcUXduACuLC1Sn u+cC17V1O9E0eTaWGB5PtKpDgQRmpc4jQxPiU7QjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE2Omd7dZfjieUdLPmbAPvkm47zowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhMjNjNjc5LTY4NzItNGY1Mi1hY2UzLWI4YzRlM2ZiYzhjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYyEwAwDQYJKoZIhvcNAQELBQADggEBADM79l+aRekvkc8PkKPyNB5PaCX2 S1QYzgm8Jv940J96Sjyj2bHBYNgwjO3Q/x/hqMV9r2do5FHEIL1ilFuj18uQHRED ZD+RhAAEDaPyWgVQKh06WJ6iVLuqJP3OlPbMxJMlpA5Lat/3lyK/ODE93nec5a7h y63zFCc4OefGwjXLbDeRGeIY5N0lhQwwbfwv+xqofdWUMy6C/MoCmFllNIn8mdUa 7cWTwF960A2mSqBEU8Gkf09ypv0lP8ef3Ax1LBCx/gUHixdizSM3kzmwzrz7fBfy rq6nT4+ADXGFc2sk+ihL7i26W1cqI9PXzczsdoCaXUrZiQa5X5hebJNTGL0= -----END CERTIFICATE-----Generated at Tue May 12 21:49:05 2026 by rpki-client