$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c03fcda-0ad1-41fc-8c42-94116582146a.roa File: 7c03fcda-0ad1-41fc-8c42-94116582146a.roa (raw, json) Hash identifier: M5E+hU/jp1xNHKN418NS1YforDRsbPEeENtA12hzPs8= Subject key identifier: C2:DB:26:8F:CF:3D:64:71:99:69:55:62:3B:61:BB:0D:37:E1:9F:DB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A11AC9EB4511D44AFBCB8412AF78AAFB97CA28E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c03fcda-0ad1-41fc-8c42-94116582146a.roa Signing time: Tue 28 Apr 2026 00:21:41 +0000 ROA not before: Tue 28 Apr 2026 00:21:41 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.150.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:11:ac:9e:b4:51:1d:44:af:bc:b8:41:2a:f7:8a:af:b9:7c:a2:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:21:41 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=2a13dd54d748d45b2cdd1d9550bb39b22cc81f1649dffde055b33d0d3a1ca8c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:94:8c:90:74:1e:9d:43:6d:d9:5f:93:36:89: fc:f1:c7:56:74:46:4d:90:87:b0:d0:6b:35:d3:cc: c5:2b:be:1c:bc:79:52:aa:60:62:6d:b9:19:e8:dc: b9:3b:20:eb:f5:b2:3d:01:28:92:ee:69:e1:32:73: 2b:72:b3:15:b6:19:63:66:8b:38:3d:99:92:9a:7f: fa:96:d5:f6:3b:b7:9a:f1:c3:41:32:30:e2:7e:da: f4:ed:36:be:65:18:41:74:3b:9f:6c:92:d6:93:bd: d5:d1:8b:f5:cf:49:56:7a:a1:c4:c4:ce:52:99:d8: 99:83:fa:3a:77:10:ed:5f:5c:18:0c:d7:5c:bd:9e: 09:6b:c0:bf:60:0a:1c:3c:cc:5a:6c:b6:c4:37:55: e3:b8:7f:b4:2a:8c:8f:61:3a:d5:f4:9f:a7:11:94: f5:bb:09:ad:ba:80:fa:d0:a6:a3:88:2a:0e:e9:ad: 75:dc:1f:d4:64:e3:58:d9:29:13:5c:6b:47:d8:8f: e5:42:2d:6f:88:ac:0d:9f:b2:ca:9f:4c:be:12:98: d4:c3:90:19:77:98:19:bb:c2:a7:ba:27:69:ea:0b: a6:4f:1f:85:82:bb:f7:6d:25:68:86:25:2e:aa:f4: b5:37:b7:eb:79:63:e5:a6:e7:52:f9:96:9c:33:b3: 62:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:DB:26:8F:CF:3D:64:71:99:69:55:62:3B:61:BB:0D:37:E1:9F:DB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c03fcda-0ad1-41fc-8c42-94116582146a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.150.0.0/15 Signature Algorithm: sha256WithRSAEncryption 08:31:7f:40:fd:59:43:ec:e9:d0:1c:af:70:c3:77:f0:06:f2: c7:cd:8b:c2:11:e4:75:40:46:36:a7:8c:a1:48:fe:40:1d:73: 1b:16:9b:d1:64:64:3b:c1:3c:85:39:e0:91:ad:5c:9c:c4:77: 44:c5:2b:2c:40:4c:3f:9f:36:fb:f5:2e:bb:73:d3:20:85:2b: 70:ae:02:c7:54:ca:be:4a:97:3e:e0:39:bc:38:55:3f:ba:8d: f7:8f:cd:c6:ba:2d:cd:4b:ed:a3:ee:8a:66:85:ea:ca:ec:2b: 6d:2c:80:aa:c2:6f:c6:54:f2:4a:bd:47:54:58:77:26:85:76: a5:fc:9e:39:0c:32:84:03:26:97:18:3f:ad:f3:cf:8a:a3:e3: 88:ed:48:58:2c:b0:71:a1:49:53:45:0e:a4:f8:63:3c:f2:fe: 2b:c5:8e:b5:a9:15:2e:ed:52:97:22:c8:50:c4:9d:f1:8c:4c: ea:10:df:94:4e:46:4c:33:c5:05:b8:63:f1:0b:85:c9:54:f5: 15:10:c8:3d:d7:f5:eb:4e:18:6d:e8:b2:26:52:9f:c1:64:f7: 42:a9:1b:60:22:b7:40:11:ef:a4:9a:bd:16:0b:21:b6:8e:10: df:2e:3f:e1:5f:6b:09:26:44:d1:3d:ed:9d:16:07:39:a8:23: 21:d1:3f:2b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUChGsnrRRHUSvvLhBKveKr7l8oo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMTQxWhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYTEzZGQ1NGQ3NDhkNDViMmNkZDFkOTU1MGJiMzliMjJj YzgxZjE2NDlkZmZkZTA1NWIzM2QwZDNhMWNhOGM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6lIyQdB6dQ23ZX5M2ifzxx1Z0Rk2Qh7DQazXTzMUrvhy8 eVKqYGJtuRno3Lk7IOv1sj0BKJLuaeEycytysxW2GWNmizg9mZKaf/qW1fY7t5rx w0EyMOJ+2vTtNr5lGEF0O59sktaTvdXRi/XPSVZ6ocTEzlKZ2JmD+jp3EO1fXBgM 11y9nglrwL9gChw8zFpstsQ3VeO4f7QqjI9hOtX0n6cRlPW7Ca26gPrQpqOIKg7p rXXcH9Rk41jZKRNca0fYj+VCLW+IrA2fssqfTL4SmNTDkBl3mBm7wqe6J2nqC6ZP H4WCu/dtJWiGJS6q9LU3t+t5Y+Wm51L5lpwzs2KDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwtsmj889ZHGZaVViO2G7DTfhn9swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjMDNmY2RhLTBhZDEtNDFmYy04YzQyLTk0MTE2NTgyMTQ2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwENljANBgkqhkiG9w0BAQsFAAOCAQEACDF/QP1ZQ+zp0ByvcMN38Abyx82L whHkdUBGNqeMoUj+QB1zGxab0WRkO8E8hTngka1cnMR3RMUrLEBMP582+/Uuu3PT IIUrcK4Cx1TKvkqXPuA5vDhVP7qN94/NxrotzUvto+6KZoXqyuwrbSyAqsJvxlTy Sr1HVFh3JoV2pfyeOQwyhAMmlxg/rfPPiqPjiO1IWCywcaFJU0UOpPhjPPL+K8WO takVLu1SlyLIUMSd8YxM6hDflE5GTDPFBbhj8QuFyVT1FRDIPdf1604YbeiyJlKf wWT3QqkbYCK3QBHvpJq9Fgshto4Q3y4/4V9rCSZE0T3tnRYHOagjIdE/Kw== -----END CERTIFICATE-----Generated at Mon May 4 21:39:18 2026 by rpki-client