$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a068b29a-2587-45c9-a0fb-b9a7111f2897.roa File: a068b29a-2587-45c9-a0fb-b9a7111f2897.roa (raw, json) Hash identifier: 3Du6Ren0d6gPzDVhGgmrnHvdzrUA23vS5VQDohKG78A= Subject key identifier: CC:7D:EC:1C:1E:B7:DE:1C:81:D9:BB:65:E4:85:6A:DD:75:1D:A0:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4EC300EF5CAF40F6B49B41B32D196CE7609FF133 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a068b29a-2587-45c9-a0fb-b9a7111f2897.roa Signing time: Mon 04 May 2026 01:01:17 +0000 ROA not before: Mon 04 May 2026 01:01:17 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:c3:00:ef:5c:af:40:f6:b4:9b:41:b3:2d:19:6c:e7:60:9f:f1:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:01:17 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=ba3a20a7b1ff026f6cde29950cca00e4e42f79256b4d8dda4136a9fa2208070f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5d:d8:2e:30:c7:71:43:13:d6:92:9d:ab:68: 45:46:3c:5d:b1:f4:19:ca:f9:51:f7:ca:9f:b2:67: c4:fc:3b:b4:8d:6e:51:13:8e:d3:5c:85:09:f5:ff: af:f2:eb:23:e0:98:09:06:99:5d:f0:8e:88:9f:b9: 98:d9:3b:a0:07:bf:73:08:be:51:c6:a9:79:82:b6: 35:61:ea:8f:7a:34:27:4f:a1:cc:5c:09:f3:93:d7: c7:1a:b5:9e:36:ed:a0:87:a0:cd:79:31:1e:b8:e7: 97:d9:39:b6:62:1e:c2:81:ba:37:1b:2d:43:81:5f: 01:ef:14:e8:37:c4:ec:d4:78:26:83:7a:cf:8f:c0: 6d:68:6a:8c:c8:88:4a:e8:8f:ef:6f:eb:51:5d:cb: 7f:5f:7d:91:0f:85:4e:a4:90:33:bc:1f:d6:1a:81: 61:44:16:29:12:02:8f:b0:9e:ca:c7:f1:b9:bf:8e: 78:97:7f:02:2d:e4:c4:c7:ea:7b:30:d5:70:85:14: 03:77:36:e7:f8:86:5b:85:cd:b3:da:c3:6a:8c:62: 24:5f:f6:20:77:13:76:d6:c5:ef:72:d8:7e:c6:04: 1b:3b:9a:6e:af:b1:1b:92:c8:94:bf:df:5c:f6:c1: ab:c0:13:79:b6:7c:b6:94:0e:51:4e:aa:9e:f4:ae: 81:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7D:EC:1C:1E:B7:DE:1C:81:D9:BB:65:E4:85:6A:DD:75:1D:A0:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a068b29a-2587-45c9-a0fb-b9a7111f2897.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.0.0/16 Signature Algorithm: sha256WithRSAEncryption 7b:bc:e2:df:c8:77:55:41:14:c0:c4:73:0c:d3:73:a1:14:65: dd:c2:27:17:05:24:0d:82:61:4b:ea:59:4d:02:54:70:f4:17: 34:e9:cf:77:5c:ad:44:53:50:fc:50:c9:33:02:b0:52:e2:40: 5d:68:d4:2c:7d:6c:0e:ae:f2:40:47:71:21:fb:ac:f4:a4:7d: 4a:ad:01:00:33:bd:5c:6b:a7:fe:f4:aa:23:22:9e:a4:65:cc: fd:3c:af:bc:c2:ba:6e:e3:06:4d:2f:c1:a8:41:d5:5a:fb:b1: 40:a8:5a:82:f8:60:34:00:c9:2e:84:90:c1:75:05:7c:ab:67: 3e:32:59:79:75:4a:e4:38:a7:8e:ce:84:f7:67:03:ac:df:e8: fe:eb:80:a6:fb:9b:9e:d6:00:a5:32:46:51:63:94:79:33:c9: c5:d3:74:af:4e:79:da:c7:9b:76:e3:18:50:6b:9a:e7:53:62: 53:28:7a:e3:4c:5b:2d:3a:22:0f:08:5f:60:27:3c:24:e7:91: 9c:3f:6b:ba:c6:30:1a:a2:9e:f9:f6:11:af:9c:d3:1f:02:92: fc:8b:6b:9c:24:98:32:8d:a6:b5:9a:97:23:16:7e:9e:33:20: 3b:96:59:03:cd:bb:4a:73:09:ad:d1:a9:67:a4:5c:6f:c3:7d: 89:a0:ef:07 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTsMA71yvQPa0m0GzLRls52Cf8TMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEwMTE3WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTNhMjBhN2IxZmYwMjZmNmNkZTI5OTUwY2NhMDBlNGU0 MmY3OTI1NmI0ZDhkZGE0MTM2YTlmYTIyMDgwNzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8XdguMMdxQxPWkp2raEVGPF2x9BnK+VH3yp+yZ8T8O7SN blETjtNchQn1/6/y6yPgmAkGmV3wjoifuZjZO6AHv3MIvlHGqXmCtjVh6o96NCdP ocxcCfOT18catZ427aCHoM15MR6455fZObZiHsKBujcbLUOBXwHvFOg3xOzUeCaD es+PwG1oaozIiEroj+9v61Fdy39ffZEPhU6kkDO8H9YagWFEFikSAo+wnsrH8bm/ jniXfwIt5MTH6nsw1XCFFAN3Nuf4hluFzbPaw2qMYiRf9iB3E3bWxe9y2H7GBBs7 mm6vsRuSyJS/31z2wavAE3m2fLaUDlFOqp70roF/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzH3sHB633hyB2btl5IVq3XUdoFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EwNjhiMjlhLTI1ODctNDVjOS1hMGZiLWI5YTcxMTFmMjg5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAyEjANBgkqhkiG9w0BAQsFAAOCAQEAe7zi38h3VUEUwMRzDNNzoRRl3cIn FwUkDYJhS+pZTQJUcPQXNOnPd1ytRFNQ/FDJMwKwUuJAXWjULH1sDq7yQEdxIfus 9KR9Sq0BADO9XGun/vSqIyKepGXM/TyvvMK6buMGTS/BqEHVWvuxQKhagvhgNADJ LoSQwXUFfKtnPjJZeXVK5Dinjs6E92cDrN/o/uuApvubntYApTJGUWOUeTPJxdN0 r0552sebduMYUGua51NiUyh640xbLToiDwhfYCc8JOeRnD9rusYwGqKe+fYRr5zT HwKS/ItrnCSYMo2mtZqXIxZ+njMgO5ZZA827SnMJrdGpZ6Rcb8N9iaDvBw== -----END CERTIFICATE-----Generated at Tue May 12 21:54:55 2026 by rpki-client