$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa File: a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa (raw, json) Hash identifier: TL0wB1wcPFHv5ISZHc0GYX9Bay7Pon705cGypn9DxyI= Subject key identifier: A7:ED:68:F8:9C:B3:5E:FD:9B:93:55:C6:07:94:81:CA:39:05:9A:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49BB49449C77349DB1E409F27BBF334C6F232348 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa Signing time: Tue 05 May 2026 00:20:08 +0000 ROA not before: Tue 05 May 2026 00:20:08 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 149.98.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:bb:49:44:9c:77:34:9d:b1:e4:09:f2:7b:bf:33:4c:6f:23:23:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:20:08 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=06ebc751e647904c6e12806d29117bdd1ed276b574bc0d554378b060acce2ff4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f1:3a:f5:14:a2:1f:82:d6:e5:5b:11:06:b2: 8f:e9:ce:09:ca:9a:1d:0b:da:d2:60:a4:57:22:2a: 70:09:8e:af:f6:84:70:43:b1:a2:dd:0b:1e:33:f8: f3:30:f6:0f:da:30:19:f1:fd:a8:5b:6b:28:73:7a: 49:42:ae:73:1d:d9:46:3f:dc:86:4f:b1:a6:57:20: 2d:09:e8:31:a8:6f:e3:91:85:84:05:54:8a:7f:a7: 8a:7f:79:32:57:7a:90:bb:10:44:61:01:8b:85:46: ff:da:fb:0b:73:71:f9:34:6d:82:9e:7a:63:28:fb: b2:e0:33:20:f7:13:83:7d:00:30:00:aa:a8:08:d5: 3f:c8:ae:be:72:3f:28:1d:4e:76:5d:ca:8e:8e:b2: e2:93:93:be:03:7c:d2:53:ee:ff:d8:dd:ee:8a:f6: 05:12:16:b5:21:8a:e5:9e:33:57:92:3b:0c:a4:9b: 6d:71:30:94:54:66:3a:94:1e:a6:06:26:b0:5f:f6: e2:8b:72:c2:de:11:05:b9:40:71:ee:2c:2b:97:8e: 39:07:32:3f:cf:d1:8f:78:b3:c3:fe:6f:eb:75:34: 43:e4:3c:06:7f:68:94:1f:b9:71:a9:25:79:d2:e1: bd:5c:35:32:1a:4a:17:e7:76:94:bc:9a:7b:12:3a: 46:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:ED:68:F8:9C:B3:5E:FD:9B:93:55:C6:07:94:81:CA:39:05:9A:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a649a23c-1e8e-45ad-bd04-c8fa20a62c33.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.98.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:ea:3f:c6:6a:ee:f5:7a:24:ff:a9:fe:73:f5:e5:27:28:6c: c4:25:8e:e5:6b:c1:04:91:9d:2f:38:7f:01:be:c7:cb:f0:7d: 05:fc:32:18:67:c4:dc:61:ff:59:8c:ad:bc:b3:e2:df:8c:52: 2f:6d:00:d0:cc:b5:9c:ff:4d:54:a2:b8:50:31:21:3e:7e:e6: c2:07:88:d2:84:b9:15:a8:1b:67:15:35:5d:fb:17:e2:24:20: ad:46:6f:6d:b1:95:2e:4b:3f:22:02:39:6b:68:4e:b7:e3:36: a3:af:c9:87:a2:46:31:99:c9:bb:c9:dd:48:b2:89:1e:ca:8f: dc:2c:10:01:dc:9c:ec:4f:55:b1:a5:3a:1c:63:41:63:3d:d7: 71:69:1f:bc:91:71:0f:8c:1f:3a:a3:a0:00:89:b8:3a:fb:33: 03:a9:d6:a8:cb:9b:be:d4:34:11:c0:b0:c7:66:84:3c:50:c8: 7f:e7:a9:65:1d:c7:78:0a:1f:9b:8f:20:cc:9d:fe:25:92:5d: 94:d7:7e:24:ad:8f:3b:5c:63:d9:df:73:85:22:ab:44:f4:e0: 7e:43:38:66:b1:a2:84:cb:97:4e:17:59:1f:1b:6c:5f:af:8f: a7:dc:a2:84:c8:a0:1b:5a:53:9e:84:aa:ae:b8:b5:5d:23:8e: 67:0c:85:d8 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSbtJRJx3NJ2x5Anye78zTG8jI0gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAyMDA4WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNmViYzc1MWU2NDc5MDRjNmUxMjgwNmQyOTExN2JkZDFl ZDI3NmI1NzRiYzBkNTU0Mzc4YjA2MGFjY2UyZmY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDK8Tr1FKIfgtblWxEGso/pzgnKmh0L2tJgpFciKnAJjq/2 hHBDsaLdCx4z+PMw9g/aMBnx/ahbayhzeklCrnMd2UY/3IZPsaZXIC0J6DGob+OR hYQFVIp/p4p/eTJXepC7EERhAYuFRv/a+wtzcfk0bYKeemMo+7LgMyD3E4N9ADAA qqgI1T/Irr5yPygdTnZdyo6OsuKTk74DfNJT7v/Y3e6K9gUSFrUhiuWeM1eSOwyk m21xMJRUZjqUHqYGJrBf9uKLcsLeEQW5QHHuLCuXjjkHMj/P0Y94s8P+b+t1NEPk PAZ/aJQfuXGpJXnS4b1cNTIaShfndpS8mnsSOkaDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUp+1o+JyzXv2bk1XGB5SByjkFmqkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E2NDlhMjNjLTFlOGUtNDVhZC1iZDA0LWM4ZmEyMGE2MmMzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVYjANBgkqhkiG9w0BAQsFAAOCAQEAOuo/xmru9Xok/6n+c/XlJyhsxCWO 5WvBBJGdLzh/Ab7Hy/B9BfwyGGfE3GH/WYytvLPi34xSL20A0My1nP9NVKK4UDEh Pn7mwgeI0oS5FagbZxU1XfsX4iQgrUZvbbGVLks/IgI5a2hOt+M2o6/Jh6JGMZnJ u8ndSLKJHsqP3CwQAdyc7E9VsaU6HGNBYz3XcWkfvJFxD4wfOqOgAIm4OvszA6nW qMubvtQ0EcCwx2aEPFDIf+epZR3HeAofm48gzJ3+JZJdlNd+JK2PO1xj2d9zhSKr RPTgfkM4ZrGihMuXThdZHxtsX6+Pp9yihMigG1pTnoSqrri1XSOOZwyF2A== -----END CERTIFICATE-----Generated at Wed May 13 00:48:54 2026 by rpki-client