$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa File: 05d7f342-6157-48d6-afa9-e8e77d622676.roa (raw, json) Hash identifier: BDvIN1Cly/pyEc3sDqDCrw2mbfFIjc4/92W5bVK5Abc= Subject key identifier: 28:CE:F7:FC:3D:7C:B9:C3:F3:A0:14:50:9C:5A:42:D3:00:1D:A7:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5218D4A65E63C3E27FECC29C5618D270C19C1133 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa Signing time: Mon 27 Apr 2026 00:21:00 +0000 ROA not before: Mon 27 Apr 2026 00:21:00 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.52.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:18:d4:a6:5e:63:c3:e2:7f:ec:c2:9c:56:18:d2:70:c1:9c:11:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:21:00 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=97b2c5c4a71d260d95602058c046524de1e6cce04fafb3936a98e46cf46c243f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:15:04:e8:2a:85:08:a1:31:c1:64:e1:ea:70: 04:5b:fa:fe:6e:a8:20:28:60:43:7b:bb:95:dd:85: 7a:b7:fa:22:72:e1:54:1e:60:1c:16:a7:57:b0:9b: 14:2a:f9:57:bc:da:13:aa:2e:34:24:e9:cb:14:c0: c2:48:d0:95:48:f2:c4:0a:49:1e:73:04:d9:28:6e: 7c:c8:f5:b4:f9:c4:9f:4d:9d:c8:05:f8:fe:78:4c: f6:2a:df:99:63:a6:32:18:36:c1:21:ec:e9:42:bd: 37:87:a1:ef:c8:03:15:b1:11:20:7c:7b:2a:49:85: 12:e8:24:d6:1f:25:ea:d0:05:a9:05:8d:4d:2d:c4: 5e:34:de:2e:af:f9:55:cc:13:b5:40:70:dc:8d:d5: 81:26:8a:0a:eb:c1:96:ab:45:2f:f7:2d:a8:b5:dd: 01:52:4b:e9:fe:58:d8:b4:bf:69:29:ed:f7:78:47: 99:23:0b:5b:83:43:72:84:05:2e:59:21:89:ae:21: f5:86:96:47:60:f4:f9:a7:dc:5c:01:5b:d4:59:67: fb:dc:34:3c:98:c1:94:e9:a9:67:b0:f5:fc:6a:0f: 01:71:92:ac:e7:41:97:6f:57:4c:2a:cd:9b:52:1b: 37:70:a7:b8:49:7d:08:60:2e:1a:55:d3:98:76:12: ba:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:CE:F7:FC:3D:7C:B9:C3:F3:A0:14:50:9C:5A:42:D3:00:1D:A7:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d7f342-6157-48d6-afa9-e8e77d622676.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.52.0/22 Signature Algorithm: sha256WithRSAEncryption 1d:ff:0d:12:84:d7:81:48:2b:89:84:90:9c:2e:0d:cc:88:f8: a2:37:9a:ff:cd:97:1c:18:5c:0c:5e:8f:7b:81:30:1b:b2:bd: c4:01:0d:78:10:92:6e:7b:e3:95:43:4f:f6:e5:8f:51:26:8e: e2:6b:19:e2:8f:9e:8e:84:92:e4:33:6c:89:77:d4:62:ab:28: 0c:27:36:8c:93:38:0b:56:e2:9a:f2:e7:76:2e:0e:8e:31:f2: 96:fc:62:24:17:eb:88:f0:d7:cf:e7:56:7c:7a:21:e7:02:f0: 29:74:71:a3:80:f0:16:a3:ba:1c:b5:c4:ed:c6:51:12:c2:1b: 19:36:9e:38:53:8c:19:e8:c0:0b:15:39:ed:cd:cc:03:11:22: 45:00:63:70:c8:98:41:aa:ac:a7:c9:c8:f7:ef:d5:cc:4c:3d: c4:a8:b3:66:ba:df:5a:15:c1:87:53:68:d9:ba:c0:83:c2:25: 8d:61:c8:01:7b:de:28:ce:e5:e2:14:15:6d:58:eb:df:09:58: 49:b7:cc:59:56:16:23:f5:3f:a8:93:b1:97:98:ce:a1:65:66: f2:15:87:96:e6:7a:85:8c:73:a4:97:b4:5f:03:e6:ac:d3:71: 0b:f3:0c:6c:96:c2:79:ff:6e:86:d5:e3:0d:9e:c4:64:5f:88: c2:c1:46:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUhjUpl5jw+J/7MKcVhjScMGcETMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAyMTAwWhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2IyYzVjNGE3MWQyNjBkOTU2MDIwNThjMDQ2NTI0ZGUx ZTZjY2UwNGZhZmIzOTM2YTk4ZTQ2Y2Y0NmMyNDNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+FQToKoUIoTHBZOHqcARb+v5uqCAoYEN7u5XdhXq3+iJy 4VQeYBwWp1ewmxQq+Ve82hOqLjQk6csUwMJI0JVI8sQKSR5zBNkobnzI9bT5xJ9N ncgF+P54TPYq35ljpjIYNsEh7OlCvTeHoe/IAxWxESB8eypJhRLoJNYfJerQBakF jU0txF403i6v+VXME7VAcNyN1YEmigrrwZarRS/3Lai13QFSS+n+WNi0v2kp7fd4 R5kjC1uDQ3KEBS5ZIYmuIfWGlkdg9Pmn3FwBW9RZZ/vcNDyYwZTpqWew9fxqDwFx kqznQZdvV0wqzZtSGzdwp7hJfQhgLhpV05h2Erp3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKM73/D18ucPzoBRQnFpC0wAdp50wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1ZDdmMzQyLTYxNTctNDhkNi1hZmE5LWU4ZTc3ZDYyMjY3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKIEjQwDQYJKoZIhvcNAQELBQADggEBAB3/DRKE14FIK4mEkJwuDcyI+KI3 mv/NlxwYXAxej3uBMBuyvcQBDXgQkm5745VDT/blj1EmjuJrGeKPno6EkuQzbIl3 1GKrKAwnNoyTOAtW4pry53YuDo4x8pb8YiQX64jw18/nVnx6IecC8Cl0caOA8Baj uhy1xO3GURLCGxk2njhTjBnowAsVOe3NzAMRIkUAY3DImEGqrKfJyPfv1cxMPcSo s2a631oVwYdTaNm6wIPCJY1hyAF73ijO5eIUFW1Y698JWEm3zFlWFiP1P6iTsZeY zqFlZvIVh5bmeoWMc6SXtF8D5qzTcQvzDGyWwnn/bobV4w2exGRfiMLBRlc= -----END CERTIFICATE-----Generated at Mon May 4 22:27:54 2026 by rpki-client