$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7e48273-d97f-45e2-9820-48c08d0db4f5.roa File: c7e48273-d97f-45e2-9820-48c08d0db4f5.roa (raw, json) Hash identifier: 6e5gWgZYQPREEzosEjQeIpW7XXLlYHNSUCwTUMg432I= Subject key identifier: CE:3A:7E:05:DD:23:76:78:40:53:55:71:77:BB:6E:97:1A:3C:0E:83 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A19F44D881414E78B8A31CDBCFF7EE5964F6F36 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7e48273-d97f-45e2-9820-48c08d0db4f5.roa Signing time: Tue 05 May 2026 00:10:42 +0000 ROA not before: Tue 05 May 2026 00:10:42 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:19:f4:4d:88:14:14:e7:8b:8a:31:cd:bc:ff:7e:e5:96:4f:6f:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:10:42 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=756a7c9c8227483b3eb69929b2c65a762dabaf084e13ccb31284891344019933, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:a8:74:c3:5e:02:21:ff:22:f1:46:95:6f:ba: b5:d4:9f:b9:ae:c8:5f:5c:97:e3:1a:4a:42:b1:da: 72:a7:5c:03:d6:8f:1b:dd:ad:eb:0b:17:eb:55:00: 54:ce:3f:ec:6f:29:e6:6c:ca:65:86:c9:9b:93:8e: 40:a0:4b:95:18:59:b2:97:b6:43:04:d6:86:2f:c5: d7:56:d0:01:b9:db:32:06:9f:5a:d3:7d:fd:61:c4: af:66:fc:7b:98:60:ef:ad:9d:00:b2:03:2f:bb:31: 77:be:42:e5:7e:bd:58:5d:19:85:0f:37:2a:b4:08: c3:a3:64:08:3b:21:a2:12:a1:72:99:1b:fe:37:4d: 4f:e1:32:04:01:99:3a:10:e6:27:b2:3c:59:87:af: ed:28:41:b8:34:16:8f:1b:d7:df:e6:1b:42:bc:aa: 0a:4a:6b:9d:38:64:b9:1e:50:ff:3d:d9:89:5e:8a: 9f:71:ba:3a:2f:92:52:75:39:38:8f:21:16:aa:50: 56:a2:2b:60:86:6e:43:df:ec:d9:3b:61:82:6b:f6: f1:da:c4:4b:18:ab:ad:b0:94:88:e7:d1:b2:9b:28: 1d:eb:20:26:33:29:cb:66:d3:6b:aa:84:45:03:fb: 3c:08:f3:8e:9a:4d:04:9f:1a:6d:ef:a7:cc:4a:82: 2f:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:3A:7E:05:DD:23:76:78:40:53:55:71:77:BB:6E:97:1A:3C:0E:83 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7e48273-d97f-45e2-9820-48c08d0db4f5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.254.0/24 Signature Algorithm: sha256WithRSAEncryption 68:c6:bc:3a:5c:ae:1c:0c:91:55:44:3f:40:bc:70:5c:27:b1: f3:99:38:14:c9:bd:0c:e4:03:9a:23:19:91:f0:3e:1f:af:b5: 57:4e:7d:e6:75:97:7b:64:ff:b1:4d:36:5f:91:56:8e:17:ad: 9a:73:fe:73:2a:78:e3:b8:f9:74:f5:96:16:0f:81:04:fd:6e: 53:84:72:a6:80:a6:ad:cf:ee:b8:6b:6e:fe:e3:f3:73:40:d6: 84:fd:3f:f2:7c:63:5c:ce:e2:de:78:3b:c7:21:17:5a:ef:c9: 96:34:e0:bd:9e:31:7d:3e:c9:ad:8d:3b:dc:f4:2d:94:93:01: 20:e7:19:ec:d9:65:55:e5:57:7d:6c:77:15:96:ce:20:c0:f4: 71:10:37:24:10:8d:99:1a:f4:9f:3d:58:39:25:78:8e:b9:5b: b8:aa:01:e9:49:31:2b:d2:04:f6:a4:d5:6c:63:68:4d:9c:d4: 0e:91:96:70:81:9a:8e:95:7b:1b:b6:90:26:6b:60:83:d9:56: e4:59:d7:a3:46:a2:58:a0:c5:f4:13:e2:67:07:17:be:fc:5b: 4b:6e:3a:25:25:82:15:3a:fc:d0:dd:91:79:1b:1c:84:72:41: d0:20:94:ac:3b:95:74:57:c5:ba:92:56:2e:a6:27:2d:15:d7: a6:e1:1f:79 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGhn0TYgUFOeLijHNvP9+5ZZPbzYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAxMDQyWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTZhN2M5YzgyMjc0ODNiM2ViNjk5MjliMmM2NWE3NjJk YWJhZjA4NGUxM2NjYjMxMjg0ODkxMzQ0MDE5OTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+qHTDXgIh/yLxRpVvurXUn7muyF9cl+MaSkKx2nKnXAPW jxvdresLF+tVAFTOP+xvKeZsymWGyZuTjkCgS5UYWbKXtkME1oYvxddW0AG52zIG n1rTff1hxK9m/HuYYO+tnQCyAy+7MXe+QuV+vVhdGYUPNyq0CMOjZAg7IaISoXKZ G/43TU/hMgQBmToQ5ieyPFmHr+0oQbg0Fo8b19/mG0K8qgpKa504ZLkeUP892Yle ip9xujovklJ1OTiPIRaqUFaiK2CGbkPf7Nk7YYJr9vHaxEsYq62wlIjn0bKbKB3r ICYzKctm02uqhEUD+zwI846aTQSfGm3vp8xKgi+VAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzjp+Bd0jdnhAU1Vxd7tulxo8DoMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M3ZTQ4MjczLWQ5N2YtNDVlMi05ODIwLTQ4YzA4ZDBkYjRmNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEv4wDQYJKoZIhvcNAQELBQADggEBAGjGvDpcrhwMkVVEP0C8cFwnsfOZ OBTJvQzkA5ojGZHwPh+vtVdOfeZ1l3tk/7FNNl+RVo4XrZpz/nMqeOO4+XT1lhYP gQT9blOEcqaApq3P7rhrbv7j83NA1oT9P/J8Y1zO4t54O8chF1rvyZY04L2eMX0+ ya2NO9z0LZSTASDnGezZZVXlV31sdxWWziDA9HEQNyQQjZka9J89WDkleI65W7iq AelJMSvSBPak1WxjaE2c1A6RlnCBmo6Vexu2kCZrYIPZVuRZ16NGoligxfQT4mcH F778W0tuOiUlghU6/NDdkXkbHIRyQdAglKw7lXRXxbqSVi6mJy0V16bhH3k= -----END CERTIFICATE-----Generated at Wed May 13 08:17:00 2026 by rpki-client