$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1d04561-54bf-45bb-85ee-804da85b65f9.roa File: b1d04561-54bf-45bb-85ee-804da85b65f9.roa (raw, json) Hash identifier: yZ8FvTqdgLCgxAP2LZY7z7t66YZ6L+k1GcjrZk88w7Q= Subject key identifier: C0:C5:5C:17:0F:3E:78:CB:4A:56:5D:40:FA:30:D3:3D:7C:39:6B:C7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 49D1D8D4630E18B157F9ECD9A1CEDE9863E52A77 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1d04561-54bf-45bb-85ee-804da85b65f9.roa Signing time: Tue 28 Apr 2026 00:00:09 +0000 ROA not before: Tue 28 Apr 2026 00:00:09 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 150.247.33.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:d1:d8:d4:63:0e:18:b1:57:f9:ec:d9:a1:ce:de:98:63:e5:2a:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:00:09 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=6006735b16e2d48ca63f8aa866b8842e4aa1947312e9541a71fd00719c7202d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:94:6a:58:ad:6c:a8:e0:7a:9b:a0:17:22:0f: b8:85:52:09:cf:fa:09:ca:64:5c:32:59:bd:71:5a: 13:ae:4d:16:16:cb:f4:30:11:c2:24:ea:52:1f:e5: b1:1b:07:2f:af:9c:d6:8b:4d:3c:09:a0:67:d2:13: 0f:e4:f9:d5:7f:70:71:9b:db:16:a8:bb:07:04:c7: 24:1b:7f:c4:2e:52:c5:5b:33:35:20:b7:f1:28:f3: be:93:ea:df:2b:91:1e:ad:1f:e9:07:ad:2d:ce:4b: 3f:26:bf:fd:ff:48:2a:75:1e:9f:15:9c:2b:af:46: 71:f5:02:42:bf:2e:58:d2:3d:2f:f0:fc:cf:49:ea: 69:8e:34:8b:40:50:e1:eb:25:a6:14:f0:b8:2b:e8: 1a:f0:2d:06:4d:55:77:ea:f3:c1:78:8d:c3:f1:3a: ae:92:5e:50:3b:f3:53:33:79:9c:a6:a3:f9:89:c8: e4:48:7f:27:23:b2:ac:4d:a7:0b:ef:c8:00:1f:79: 66:23:63:6a:8b:9d:bd:12:85:03:98:05:83:8b:a9: 54:d3:7e:c6:8f:b1:33:6e:a0:18:49:25:ce:a5:8f: 72:ef:64:34:06:23:1d:fa:32:8e:4c:c8:ff:a6:d4: 2d:47:42:45:9e:4e:a1:65:d6:b4:b9:83:95:d7:1a: 77:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:C5:5C:17:0F:3E:78:CB:4A:56:5D:40:FA:30:D3:3D:7C:39:6B:C7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b1d04561-54bf-45bb-85ee-804da85b65f9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 150.247.33.0/24 Signature Algorithm: sha256WithRSAEncryption 06:78:7a:2d:5a:ab:06:1b:fc:30:cd:3f:8a:b6:d8:06:c1:cf: 33:2d:47:b6:98:9f:8a:c4:48:9b:78:bd:05:17:6e:c6:3a:f8: 5f:2a:f5:ae:aa:7e:71:b8:a5:eb:f8:59:1d:67:a8:51:f4:67: f0:ee:6b:10:8d:15:22:4b:70:4c:7a:14:63:58:bf:64:19:71: c8:bd:1a:2a:58:fa:cf:16:9b:94:56:2b:35:c6:1b:10:f3:a8: be:2d:56:20:f1:f8:c0:0e:29:8b:b2:63:08:53:76:62:c9:6b: ab:ba:59:52:e5:a2:9d:58:13:c9:28:85:ff:57:38:6b:2b:a6: ad:7f:56:af:5e:28:de:a0:75:02:86:ca:f9:c8:9c:47:96:b2: aa:20:2e:7e:75:b1:62:bf:9d:a7:94:c6:a4:e8:96:7d:15:b3: db:85:86:32:b3:da:9b:13:a3:67:96:fa:ec:22:22:e7:d8:42: 3e:95:31:cc:0a:00:99:5a:0a:6c:33:99:eb:3b:9b:6e:24:b8: a1:2b:f8:b7:dc:96:b4:eb:cc:a1:61:73:42:0c:ac:79:92:66: a4:43:00:48:43:6c:a0:fc:e1:58:03:84:e5:ba:3a:61:9d:99: 48:c7:5a:5f:e3:b3:b5:11:29:44:e1:aa:47:28:e9:d5:a5:f2: 89:4f:b5:01 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSdHY1GMOGLFX+ezZoc7emGPlKncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAwMDA5WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDA2NzM1YjE2ZTJkNDhjYTYzZjhhYTg2NmI4ODQyZTRh YTE5NDczMTJlOTU0MWE3MWZkMDA3MTljNzIwMmQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzlGpYrWyo4HqboBciD7iFUgnP+gnKZFwyWb1xWhOuTRYW y/QwEcIk6lIf5bEbBy+vnNaLTTwJoGfSEw/k+dV/cHGb2xaouwcExyQbf8QuUsVb MzUgt/Eo876T6t8rkR6tH+kHrS3OSz8mv/3/SCp1Hp8VnCuvRnH1AkK/LljSPS/w /M9J6mmONItAUOHrJaYU8Lgr6BrwLQZNVXfq88F4jcPxOq6SXlA781MzeZymo/mJ yORIfycjsqxNpwvvyAAfeWYjY2qLnb0ShQOYBYOLqVTTfsaPsTNuoBhJJc6lj3Lv ZDQGIx36Mo5MyP+m1C1HQkWeTqFl1rS5g5XXGneJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUwMVcFw8+eMtKVl1A+jDTPXw5a8cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IxZDA0NTYxLTU0YmYtNDViYi04NWVlLTgwNGRhODViNjVmOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACW9yEwDQYJKoZIhvcNAQELBQADggEBAAZ4ei1aqwYb/DDNP4q22AbBzzMt R7aYn4rESJt4vQUXbsY6+F8q9a6qfnG4pev4WR1nqFH0Z/DuaxCNFSJLcEx6FGNY v2QZcci9GipY+s8Wm5RWKzXGGxDzqL4tViDx+MAOKYuyYwhTdmLJa6u6WVLlop1Y E8kohf9XOGsrpq1/Vq9eKN6gdQKGyvnInEeWsqogLn51sWK/naeUxqToln0Vs9uF hjKz2psTo2eW+uwiIufYQj6VMcwKAJlaCmwzmes7m24kuKEr+LfclrTrzKFhc0IM rHmSZqRDAEhDbKD84VgDhOW6OmGdmUjHWl/js7URKUThqkco6dWl8olPtQE= -----END CERTIFICATE-----Generated at Mon May 4 21:37:50 2026 by rpki-client