$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5888e779-11a4-4577-8042-8d5d09efae41.roa File: 5888e779-11a4-4577-8042-8d5d09efae41.roa (raw, json) Hash identifier: J4csXxU8Zy/h1r4ADgVG0KIIiOvWB37ozfxd+YfVzaY= Subject key identifier: 0A:D8:E2:4A:A9:AA:44:5C:A8:43:7F:47:CD:F1:33:95:06:BF:74:4E Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 25E28031193314D3510C04E6384F99E2030765C1 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5888e779-11a4-4577-8042-8d5d09efae41.roa Signing time: Thu 14 May 2026 01:02:00 +0000 ROA not before: Thu 14 May 2026 01:02:00 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.94.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:e2:80:31:19:33:14:d3:51:0c:04:e6:38:4f:99:e2:03:07:65:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 01:02:00 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=a55cafec49232252be77c23c4d0d13ae4fbba084da536868f9e0fbd124f550c7, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:f8:a5:7c:56:3c:d2:8c:05:23:d4:df:d5:6e: 37:9f:5b:4b:ef:56:89:cc:14:df:15:a9:9d:85:5d: 2d:1b:c9:54:7e:bd:bc:cf:00:46:c2:97:48:22:38: 5b:08:3f:ba:fe:6b:18:28:cd:ba:fa:5a:9d:e2:40: f8:fa:86:d9:a2:57:95:3a:b5:97:f5:1f:4d:2b:3a: 2d:7e:f6:04:b5:db:27:61:25:7c:fc:0e:d9:95:55: 4f:df:86:3b:53:9a:cf:91:3e:17:b2:5c:47:aa:a7: a9:16:cf:20:25:d7:f9:e2:cd:82:2e:27:89:0b:4b: 78:eb:90:01:f1:65:e0:bf:f6:f4:33:93:38:6d:a1: 73:e3:e9:47:80:90:5c:10:f3:40:c8:ce:e2:d3:ef: de:cb:38:b0:67:44:53:50:0a:28:05:2e:ce:49:fe: d4:4d:c8:02:74:d7:5f:50:8c:e2:88:c0:45:64:db: 29:23:d2:72:88:d1:a2:91:36:c0:19:4e:66:e4:c0: 16:f4:49:ea:ec:e7:6c:f1:fa:dc:f0:a5:fe:25:b8: df:3f:92:f6:b6:00:99:63:96:d2:37:6e:33:05:4c: 66:21:f3:80:8b:aa:7b:59:bd:e1:72:f2:b2:74:94: f8:dc:42:af:a7:8f:12:35:23:63:8d:a5:af:5e:80: a8:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:D8:E2:4A:A9:AA:44:5C:A8:43:7F:47:CD:F1:33:95:06:BF:74:4E X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/5888e779-11a4-4577-8042-8d5d09efae41.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.94.0/24 Signature Algorithm: sha256WithRSAEncryption 11:dc:96:ea:3f:4f:36:f6:8b:72:40:03:5f:fd:4e:18:69:3a: d1:2c:16:9a:a5:9f:64:82:17:77:f4:89:d0:0d:c4:1e:2a:60: c6:80:34:21:0f:e1:1b:65:d1:86:38:bd:b7:31:a8:25:92:8c: 9c:e4:54:3c:0c:d4:8c:6e:ef:7d:4f:cb:53:c1:4b:01:56:b0: 21:4e:ca:2e:9b:68:c9:b7:63:03:eb:5e:0f:ee:21:f1:d8:b4: 2a:00:c8:0d:4d:17:bb:b2:9f:a2:06:04:ea:f8:da:92:c0:78: d1:9b:3a:4b:53:9d:5b:23:47:e4:f1:9f:ac:55:5f:c2:d5:27: 8d:ad:56:ae:a4:b0:11:6b:d7:a4:d2:44:9b:4b:fa:61:30:ae: 01:33:2d:a4:97:f1:0f:97:2d:af:c9:6c:e2:02:87:33:38:70: 30:61:b6:6e:6d:d2:fd:f3:b7:47:cd:ac:00:25:cd:4f:65:4a: 1d:da:17:df:d7:7c:db:dd:8c:4e:4d:14:99:75:89:8c:a5:b9: a5:bb:62:68:83:ca:13:37:f4:91:91:84:39:30:a3:a6:b4:37: f3:e7:86:c8:f0:d6:2f:22:c6:2b:6f:2c:dc:8f:75:5b:43:a3: 6d:f5:82:f7:89:f0:5d:4a:20:0d:17:a1:5f:3b:3e:11:5a:58: ac:e9:7b:ba -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJeKAMRkzFNNRDATmOE+Z4gMHZcEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDEwMjAwWhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTVjYWZlYzQ5MjMyMjUyYmU3N2MyM2M0ZDBkMTNhZTRm YmJhMDg0ZGE1MzY4NjhmOWUwZmJkMTI0ZjU1MGM3MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCm+KV8VjzSjAUj1N/VbjefW0vvVonMFN8VqZ2FXS0byVR+ vbzPAEbCl0giOFsIP7r+axgozbr6Wp3iQPj6htmiV5U6tZf1H00rOi1+9gS12ydh JXz8DtmVVU/fhjtTms+RPheyXEeqp6kWzyAl1/nizYIuJ4kLS3jrkAHxZeC/9vQz kzhtoXPj6UeAkFwQ80DIzuLT797LOLBnRFNQCigFLs5J/tRNyAJ0119QjOKIwEVk 2ykj0nKI0aKRNsAZTmbkwBb0Sers52zx+tzwpf4luN8/kva2AJljltI3bjMFTGYh 84CLqntZveFy8rJ0lPjcQq+njxI1I2ONpa9egKhzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCtjiSqmqRFyoQ39HzfEzlQa/dE4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzU4ODhlNzc5LTExYTQtNDU3Ny04MDQyLThkNWQwOWVmYWU0MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASRF4wDQYJKoZIhvcNAQELBQADggEBABHcluo/Tzb2i3JAA1/9ThhpOtEs Fpqln2SCF3f0idANxB4qYMaANCEP4Rtl0YY4vbcxqCWSjJzkVDwM1Ixu731Py1PB SwFWsCFOyi6baMm3YwPrXg/uIfHYtCoAyA1NF7uyn6IGBOr42pLAeNGbOktTnVsj R+Txn6xVX8LVJ42tVq6ksBFr16TSRJtL+mEwrgEzLaSX8Q+XLa/JbOIChzM4cDBh tm5t0v3zt0fNrAAlzU9lSh3aF9/XfNvdjE5NFJl1iYyluaW7YmiDyhM39JGRhDkw o6a0N/Pnhsjw1i8ixitvLNyPdVtDo231gveJ8F1KIA0XoV87PhFaWKzpe7o= -----END CERTIFICATE-----Generated at Sat Jun 13 04:50:34 2026 by rpki-client