$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b49bec95-e75d-4838-ba12-33c2ccdde15c.roa File: b49bec95-e75d-4838-ba12-33c2ccdde15c.roa (raw, json) Hash identifier: Zwkr41zHc8YKl9Lxm9sP500v1OiRx4PC23X2dsu1WN0= Subject key identifier: AC:D6:C6:39:58:35:88:4D:F5:6C:ED:61:7C:D0:0F:FA:BB:6B:26:EE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 6B3B8B515F9E7D3D2AEF45F7585F017C19E101CC Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b49bec95-e75d-4838-ba12-33c2ccdde15c.roa Signing time: Thu 14 May 2026 00:30:14 +0000 ROA not before: Thu 14 May 2026 00:30:14 +0000 ROA not after: Wed 12 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 18.68.144.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3b:8b:51:5f:9e:7d:3d:2a:ef:45:f7:58:5f:01:7c:19:e1:01:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 14 00:30:14 2026 GMT Not After : Aug 12 23:59:59 2026 GMT Subject: serialNumber=f21208b68183ce0d19d474f685d124bbac947b5f1bd51efb4ff7ff2a528fb55c, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:9b:1d:a0:a7:87:ef:18:ca:c2:8a:2f:b0:8c: 20:cc:4e:9e:79:73:fe:e7:4c:db:d9:1d:26:91:d9: f8:38:dd:12:e8:29:7a:78:b9:5e:4a:3b:19:9a:a0: a5:f2:0e:d4:1c:11:da:11:d9:d6:6b:10:02:d4:8c: 16:5f:66:8e:e0:aa:67:05:d3:b8:52:dc:df:8a:df: 7f:e7:3d:08:ab:c4:29:7d:c5:33:9c:f5:19:94:3c: 09:f0:bf:dc:36:b4:dd:dc:87:81:10:78:6c:d9:71: 0b:c6:7e:1a:c3:1a:48:e9:eb:d1:dc:e9:34:63:ac: 13:9c:4c:7f:36:2d:fa:3e:a5:03:38:33:bd:47:ce: 59:e3:d5:98:1b:4a:ec:de:02:9a:24:24:8f:7e:18: bd:5d:18:83:1b:b0:b3:1e:5e:91:0f:67:aa:ac:04: aa:36:f6:a5:67:3f:03:f7:d8:79:96:d7:7d:60:2a: d1:ba:fb:e2:12:4f:6c:2a:a8:44:39:b1:0b:b1:ba: cd:c0:45:e1:40:e5:be:a4:09:54:24:f8:57:bb:d5: 48:e7:b1:8e:dc:d0:9d:74:97:5a:46:41:d1:aa:40: e1:a0:b7:d7:06:5a:5a:c4:51:07:4d:be:3f:0d:c9: a7:1a:74:b1:55:5c:af:98:d5:e6:34:01:e4:59:80: b0:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:D6:C6:39:58:35:88:4D:F5:6C:ED:61:7C:D0:0F:FA:BB:6B:26:EE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/b49bec95-e75d-4838-ba12-33c2ccdde15c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 18.68.144.0/24 Signature Algorithm: sha256WithRSAEncryption 49:96:25:d5:1d:82:22:7b:f2:b8:43:88:93:35:86:bc:e2:8a: 89:48:7a:03:36:2d:1b:63:bb:e2:db:aa:fe:38:b9:78:d8:58: 10:6b:8d:b1:90:5a:ca:08:5b:9d:14:87:c7:f9:55:9c:aa:d4: b0:f6:3a:31:53:e3:04:60:b9:8f:6f:60:b9:e3:2f:44:89:5d: e1:5c:5c:ee:5a:60:78:1c:6e:fa:6d:13:af:9a:3b:38:71:30: d9:c1:2e:6f:7f:f4:da:b6:1a:73:4d:07:f0:23:1c:58:a1:ef: 14:81:a5:aa:8a:e6:70:b7:18:1d:30:6d:0c:98:e6:39:25:df: 51:ae:03:68:b7:1e:03:ba:cc:4b:04:b3:10:eb:d3:e3:1d:98: a2:ff:f6:ce:1a:38:5a:49:a7:28:ca:31:f5:17:b6:fb:e8:98: bd:20:80:1b:ac:9b:d9:e9:69:42:11:8b:b9:18:8a:6b:fa:3a: 72:4e:64:33:07:0b:99:6c:61:62:f8:e1:7a:35:f0:16:64:46: 8b:59:62:7f:e4:67:1a:ed:3d:8b:fa:ec:a2:06:62:4f:c5:db: e3:62:68:e0:28:7f:89:19:74:1e:49:6d:48:a0:d9:dc:35:a9: e8:45:db:f8:03:00:5e:34:2d:28:0c:26:c9:f9:6d:80:8a:a4: 09:dc:bf:8d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUazuLUV+efT0q70X3WF8BfBnhAcwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE0MDAzMDE0WhcNMjYwODEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMjEyMDhiNjgxODNjZTBkMTlkNDc0ZjY4NWQxMjRiYmFj OTQ3YjVmMWJkNTFlZmI0ZmY3ZmYyYTUyOGZiNTVjMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQClmx2gp4fvGMrCii+wjCDMTp55c/7nTNvZHSaR2fg43RLo KXp4uV5KOxmaoKXyDtQcEdoR2dZrEALUjBZfZo7gqmcF07hS3N+K33/nPQirxCl9 xTOc9RmUPAnwv9w2tN3ch4EQeGzZcQvGfhrDGkjp69Hc6TRjrBOcTH82Lfo+pQM4 M71Hzlnj1ZgbSuzeApokJI9+GL1dGIMbsLMeXpEPZ6qsBKo29qVnPwP32HmW131g KtG6++IST2wqqEQ5sQuxus3AReFA5b6kCVQk+Fe71UjnsY7c0J10l1pGQdGqQOGg t9cGWlrEUQdNvj8NyacadLFVXK+Y1eY0AeRZgLDhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrNbGOVg1iE31bO1hfNAP+rtrJu4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2I0OWJlYzk1LWU3NWQtNDgzOC1iYTEyLTMzYzJjY2RkZTE1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAASRJAwDQYJKoZIhvcNAQELBQADggEBAEmWJdUdgiJ78rhDiJM1hrziiolI egM2LRtju+Lbqv44uXjYWBBrjbGQWsoIW50Uh8f5VZyq1LD2OjFT4wRguY9vYLnj L0SJXeFcXO5aYHgcbvptE6+aOzhxMNnBLm9/9Nq2GnNNB/AjHFih7xSBpaqK5nC3 GB0wbQyY5jkl31GuA2i3HgO6zEsEsxDr0+MdmKL/9s4aOFpJpyjKMfUXtvvomL0g gBusm9npaUIRi7kYimv6OnJOZDMHC5lsYWL44Xo18BZkRotZYn/kZxrtPYv67KIG Yk/F2+NiaOAof4kZdB5JbUig2dw1qehF2/gDAF40LSgMJsn5bYCKpAncv40= -----END CERTIFICATE-----Generated at Sat Jun 13 04:45:48 2026 by rpki-client