$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b69f7f-4751-4010-80f2-09f4e9615993.roa File: 18b69f7f-4751-4010-80f2-09f4e9615993.roa (raw, json) Hash identifier: VCchR3rjdA4Du7GUZgbZ6tP6ugshWaqwGc19ilf2cJI= Subject key identifier: 02:EC:B2:3E:17:F2:E8:50:6D:F7:15:BB:DF:24:54:60:01:89:98:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 244C15CD0D561EF215BCE4F4338113038A0EC453 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b69f7f-4751-4010-80f2-09f4e9615993.roa Signing time: Sun 01 Mar 2026 00:30:42 +0000 ROA not before: Sun 01 Mar 2026 00:30:42 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.50.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:4c:15:cd:0d:56:1e:f2:15:bc:e4:f4:33:81:13:03:8a:0e:c4:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:30:42 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=cc64f995f9bfe28d9663d10873128a550f8e7d82ce44cc0e9fbd845e6dc3a2f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:cc:8e:e1:c1:0c:c6:1e:4c:59:53:7d:f0:c5: c4:c9:43:68:ee:18:c0:18:3d:b7:9f:38:03:0c:4f: c2:d0:85:e2:8e:0e:5f:09:5b:b8:0c:8f:7f:21:3b: 5c:af:3f:78:aa:74:61:fa:38:92:13:b7:63:e4:70: cf:8c:4d:33:a5:ad:0d:80:e0:79:c0:78:7d:45:d1: 67:51:ef:b7:62:88:4a:4f:ca:5d:ee:84:22:bf:21: f4:5f:26:bf:27:29:4b:e0:9c:4d:98:c9:37:70:a1: 4e:d0:68:a1:04:2b:e2:44:3f:d5:b4:60:78:19:22: 9b:64:90:90:ea:19:a0:13:f9:d8:b9:ce:43:4f:9c: 6b:52:b9:b0:9b:e3:50:12:17:40:45:ad:89:02:b7: 7f:5c:99:d0:60:82:01:ee:81:7e:48:6f:92:48:3b: 81:dd:20:cb:72:0f:4e:79:fb:55:50:a3:e5:45:e5: ad:90:a0:01:b2:70:54:75:f0:dd:3e:ae:1d:e4:c1: e9:de:15:59:d9:0b:7a:2d:39:ad:16:c6:af:07:80: b3:ce:0d:a0:05:13:93:89:44:13:33:63:4f:51:f9: c3:a0:0d:55:50:65:69:38:db:b3:9e:87:fa:7f:9d: b7:37:26:76:c2:c8:82:6a:30:61:ab:1a:79:53:a8: 21:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:EC:B2:3E:17:F2:E8:50:6D:F7:15:BB:DF:24:54:60:01:89:98:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/18b69f7f-4751-4010-80f2-09f4e9615993.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.50.0/24 Signature Algorithm: sha256WithRSAEncryption 44:9f:e9:3b:57:1e:5a:c1:79:ee:22:26:d2:2f:3a:2a:31:0e: a9:d3:35:76:3c:67:45:1b:59:03:3a:c6:1b:9e:ec:a0:b6:d2: 84:4b:11:35:00:5e:0f:ee:66:b9:ee:13:49:5f:da:3c:81:28: ab:05:18:8b:3c:1b:39:8e:f4:98:85:f8:83:11:db:ec:ed:90: ee:93:04:1b:ba:84:7b:96:bb:46:8e:56:79:ed:10:95:23:3d: a5:c9:b8:0b:c4:dd:69:f1:88:75:1e:bc:92:d4:fa:f0:04:37: d8:67:37:d6:39:eb:4d:b0:ba:88:9d:6b:02:d3:08:2d:6c:8c: 1c:5b:88:ef:22:11:e4:13:8e:52:83:05:36:45:ce:79:d3:47: e0:02:25:2a:1e:2a:e3:b6:85:62:86:b7:ec:f7:66:5e:b6:06: 11:1c:57:d3:f4:98:d2:90:4d:73:24:74:7a:b4:41:07:01:c3: 85:b7:02:be:d5:4e:2b:e8:64:11:bc:77:92:8f:a4:ee:33:9f: 5c:15:af:16:ab:be:2a:33:cb:2b:bd:65:8c:95:90:28:22:36: 39:30:f3:03:a5:ff:52:ec:40:86:36:31:f6:37:4b:64:f0:96: 32:6e:c4:d8:8a:7f:51:0a:40:e0:b9:c3:8c:ef:1b:e5:e9:94: 57:1b:d6:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJEwVzQ1WHvIVvOT0M4ETA4oOxFMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMDQyWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzY0Zjk5NWY5YmZlMjhkOTY2M2QxMDg3MzEyOGE1NTBm OGU3ZDgyY2U0NGNjMGU5ZmJkODQ1ZTZkYzNhMmYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4zI7hwQzGHkxZU33wxcTJQ2juGMAYPbefOAMMT8LQheKO Dl8JW7gMj38hO1yvP3iqdGH6OJITt2PkcM+MTTOlrQ2A4HnAeH1F0WdR77diiEpP yl3uhCK/IfRfJr8nKUvgnE2YyTdwoU7QaKEEK+JEP9W0YHgZIptkkJDqGaAT+di5 zkNPnGtSubCb41ASF0BFrYkCt39cmdBgggHugX5Ib5JIO4HdIMtyD055+1VQo+VF 5a2QoAGycFR18N0+rh3kweneFVnZC3otOa0Wxq8HgLPODaAFE5OJRBMzY09R+cOg DVVQZWk427Oeh/p/nbc3JnbCyIJqMGGrGnlTqCGxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAuyyPhfy6FBt9xW73yRUYAGJmJYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4YjY5ZjdmLTQ3NTEtNDAxMC04MGYyLTA5ZjRlOTYxNTk5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjNjIwDQYJKoZIhvcNAQELBQADggEBAESf6TtXHlrBee4iJtIvOioxDqnT NXY8Z0UbWQM6xhue7KC20oRLETUAXg/uZrnuE0lf2jyBKKsFGIs8GzmO9JiF+IMR 2+ztkO6TBBu6hHuWu0aOVnntEJUjPaXJuAvE3WnxiHUevJLU+vAEN9hnN9Y5602w uoidawLTCC1sjBxbiO8iEeQTjlKDBTZFznnTR+ACJSoeKuO2hWKGt+z3Zl62BhEc V9P0mNKQTXMkdHq0QQcBw4W3Ar7VTivoZBG8d5KPpO4zn1wVrxarviozyyu9ZYyV kCgiNjkw8wOl/1LsQIY2MfY3S2TwljJuxNiKf1EKQOC5w4zvG+XplFcb1qQ= -----END CERTIFICATE-----Generated at Mon Mar 2 04:55:50 2026 by rpki-client