$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb61ed5e-39be-4263-9415-ebd102b321b7.roa File: bb61ed5e-39be-4263-9415-ebd102b321b7.roa (raw, json) Hash identifier: ZukhJVHMwmwGfr5YHFh5981epqnhvll6gFV339k5nl4= Subject key identifier: 97:E9:41:5A:93:52:33:B0:34:9C:E8:28:3D:D0:D6:8D:B7:68:6B:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 040DFCA47C88099F7F7C348772D02C601655CB31 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb61ed5e-39be-4263-9415-ebd102b321b7.roa Signing time: Mon 04 May 2026 00:51:15 +0000 ROA not before: Mon 04 May 2026 00:51:15 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.18.64.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:0d:fc:a4:7c:88:09:9f:7f:7c:34:87:72:d0:2c:60:16:55:cb:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:51:15 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=ef1bdd49f8f47dbfced9be4923e524cbec1cc9a3b2bcd20753384dc36e43b4ca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:42:28:52:92:cb:5d:5c:b4:a6:48:b7:a9:c1: d1:c6:47:14:e7:9d:90:ef:ba:5b:51:88:d9:d7:fe: d6:46:a7:9b:30:99:9b:8c:b9:9b:99:e2:ce:df:b0: 6d:28:0a:41:bd:44:9d:e8:75:87:d3:72:8e:1f:fb: d2:57:2c:0b:1c:6f:66:f6:62:52:ee:b2:2f:72:db: a6:e7:ad:e4:ab:95:34:56:10:6a:6d:5c:bf:98:96: be:53:5e:9a:08:94:22:8c:dd:8f:fd:c9:92:b5:39: 59:8c:2d:5e:1f:d3:b8:67:78:da:8b:ae:b4:d5:2b: 8e:6d:cd:34:e5:06:95:a5:ee:c0:b4:d4:e3:60:0a: 02:69:27:61:a1:f6:e8:88:bf:10:d0:96:c9:26:96: 6e:49:b1:9a:bb:be:dd:3f:32:43:53:8e:05:c5:20: 70:23:55:7e:40:7f:83:c2:58:89:aa:c0:32:1c:76: 6b:ad:5f:86:9b:eb:cb:b4:02:dd:5a:b5:fa:5c:56: d6:08:0e:d0:5f:a3:fb:4c:ea:50:52:89:17:f3:7d: 6d:5c:8d:82:b4:32:be:be:38:f2:60:f5:7c:6c:e3: 56:26:44:7b:31:9a:41:0b:65:b7:0b:33:91:da:86: 96:da:2f:10:d4:54:de:f9:04:1b:44:d4:3a:f4:69: 16:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:E9:41:5A:93:52:33:B0:34:9C:E8:28:3D:D0:D6:8D:B7:68:6B:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb61ed5e-39be-4263-9415-ebd102b321b7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.18.64.0/19 Signature Algorithm: sha256WithRSAEncryption 3d:c5:bb:1f:be:0d:79:5b:59:3d:a6:06:29:8e:16:e4:34:4e: 4f:d0:4f:bf:e3:5c:d0:ee:60:77:b4:46:43:04:8d:42:0f:ec: 2b:0d:17:68:48:dd:14:9f:96:a1:54:ca:4a:87:74:e2:f0:3d: c0:84:cd:e5:dd:44:93:6a:d8:d1:d1:3c:b8:6f:87:c0:01:d5: ca:db:61:e1:a2:53:e5:93:44:2a:ba:22:f0:de:cf:fc:5b:7a: 4c:7f:15:dc:c2:b7:21:16:b4:c7:79:f9:71:30:ce:ec:bb:e9: 26:b6:8a:94:a7:69:55:ac:7e:5f:db:30:34:8c:75:7e:c9:f0: d1:36:9e:c2:48:fa:a8:5e:8f:3b:8d:c1:9f:9b:68:1a:a8:87: e6:30:95:51:36:19:9e:78:72:97:1d:61:1b:af:8e:eb:43:5b: ab:bb:ef:75:59:60:a7:72:54:4e:2c:9e:b9:24:35:c2:82:27: a2:64:e9:80:4a:bb:b0:3b:61:63:a1:54:d9:7d:0e:49:b4:fe: af:49:c7:f8:a4:c1:48:bb:c2:68:85:7d:ad:e3:6b:1f:38:62: 0b:d7:1a:c4:a9:0c:a7:21:60:05:9c:2d:ca:d8:25:f7:26:5f: b5:6c:90:97:68:dc:30:b9:ac:ed:31:72:4d:c6:fa:05:2a:3f: 26:9d:ba:8f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBA38pHyICZ9/fDSHctAsYBZVyzEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA1MTE1WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlZjFiZGQ0OWY4ZjQ3ZGJmY2VkOWJlNDkyM2U1MjRjYmVj MWNjOWEzYjJiY2QyMDc1MzM4NGRjMzZlNDNiNGNhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDtQihSkstdXLSmSLepwdHGRxTnnZDvultRiNnX/tZGp5sw mZuMuZuZ4s7fsG0oCkG9RJ3odYfTco4f+9JXLAscb2b2YlLusi9y26bnreSrlTRW EGptXL+Ylr5TXpoIlCKM3Y/9yZK1OVmMLV4f07hneNqLrrTVK45tzTTlBpWl7sC0 1ONgCgJpJ2Gh9uiIvxDQlskmlm5JsZq7vt0/MkNTjgXFIHAjVX5Af4PCWImqwDIc dmutX4ab68u0At1atfpcVtYIDtBfo/tM6lBSiRfzfW1cjYK0Mr6+OPJg9Xxs41Ym RHsxmkELZbcLM5HahpbaLxDUVN75BBtE1Dr0aRZfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUl+lBWpNSM7A0nOgoPdDWjbdoazQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiNjFlZDVlLTM5YmUtNDI2My05NDE1LWViZDEwMmIzMjFiNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUyEkAwDQYJKoZIhvcNAQELBQADggEBAD3Fux++DXlbWT2mBimOFuQ0Tk/Q T7/jXNDuYHe0RkMEjUIP7CsNF2hI3RSflqFUykqHdOLwPcCEzeXdRJNq2NHRPLhv h8AB1crbYeGiU+WTRCq6IvDez/xbekx/FdzCtyEWtMd5+XEwzuy76Sa2ipSnaVWs fl/bMDSMdX7J8NE2nsJI+qhejzuNwZ+baBqoh+YwlVE2GZ54cpcdYRuvjutDW6u7 73VZYKdyVE4snrkkNcKCJ6Jk6YBKu7A7YWOhVNl9Dkm0/q9Jx/ikwUi7wmiFfa3j ax84YgvXGsSpDKchYAWcLcrYJfcmX7VskJdo3DC5rO0xck3G+gUqPyaduo8= -----END CERTIFICATE-----Generated at Tue May 12 21:51:37 2026 by rpki-client