$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa File: 87a321d9-94a4-41d4-9de7-5617146603fa.roa (raw, json) Hash identifier: 3ErHskJa/wF9BG5gSN0At+JpIgcM1ZG5/HzRpw3daQw= Subject key identifier: 52:70:5F:F2:39:C6:3E:62:38:0B:7D:C0:5C:55:04:E4:45:36:03:A4 Certificate issuer: /CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Certificate serial: 5B2D57BD9FA2A0E05A805F6DD07E4C52E413B76D Authority key identifier: 91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa Signing time: Tue 19 May 2026 00:50:06 +0000 ROA not before: Tue 19 May 2026 00:50:06 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 50.112.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/7188ac24-09cc-4f20-9dbd-cd9005d2797e.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Jun 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:2d:57:bd:9f:a2:a0:e0:5a:80:5f:6d:d0:7e:4c:52:e4:13:b7:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3 Validity Not Before: May 19 00:50:06 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=b0f53999a95d78fb1b15f563f86107a5bc67e7a91e2cccd747121d9201231821, CN=ddfbc97c-7bed-40df-95ca-e664b29d7b27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d2:4b:c6:7f:a0:ef:1e:0c:d5:d8:90:6f:85: cf:59:28:02:c5:53:1f:cf:19:43:03:9d:92:26:9a: 24:4e:21:dd:c9:6d:dc:7d:2a:3d:eb:d1:be:17:e5: dd:22:93:49:a0:8f:de:99:28:24:98:82:f1:e9:4f: 22:51:1f:b9:78:9c:47:a0:51:77:bc:10:2f:cb:37: 13:b7:44:39:f4:e2:41:c9:41:be:85:b4:a5:70:89: 7d:e2:c4:af:5d:13:d8:7c:00:b7:4b:d8:fb:ce:6b: 33:02:70:0e:08:43:a6:20:52:08:1f:24:37:d6:93: 1c:c8:00:34:18:f8:d4:a8:92:ad:03:ea:6b:3d:3e: f4:e6:38:06:d2:24:ed:c9:a0:b0:36:a6:d3:18:d5: c5:4c:78:a3:39:1a:69:83:f0:82:e0:49:3c:8d:37: ea:5e:0a:88:a6:86:e5:1b:27:f1:b9:09:ed:43:61: c5:08:fc:ee:fa:a4:d0:10:2c:51:87:86:d5:d3:ef: 38:b0:c5:ee:1e:7e:b8:8b:0e:ee:3c:e2:6f:87:77: 53:5e:50:f4:b1:21:ec:79:7b:2c:a9:21:0b:0e:5d: eb:f6:22:8c:22:44:2e:52:3f:45:7f:b8:3c:fb:b4: 8a:c2:84:1b:35:a6:a5:24:90:d0:79:f1:4c:91:f0: a5:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:70:5F:F2:39:C6:3E:62:38:0B:7D:C0:5C:55:04:E4:45:36:03:A4 X509v3 Authority Key Identifier: keyid:91:2D:C6:0D:D7:64:29:82:BC:AE:7F:81:FE:3C:4C:12:72:80:22:1F X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/7188ac24-09cc-4f20-9dbd-cd9005d2797e/a15d8aa10d62dbdd348326876ba56753cb99b464cc455324b3.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/87a321d9-94a4-41d4-9de7-5617146603fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/602a26e5-4a9e-4e5e-89f0-ef891490d9c9/YtvdNIMmh2ulZ1PLmbRkzEVTJLM.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.112.0.0/17 Signature Algorithm: sha256WithRSAEncryption 7a:a8:81:69:03:59:e6:a4:83:4c:22:ab:bd:40:2c:20:b0:24: 79:a5:9a:fd:b1:14:f0:80:4d:80:5a:41:3d:11:f7:d3:d2:49: 01:57:1f:2d:f9:e4:86:77:69:59:7d:61:88:19:ad:18:65:9b: 5d:93:23:7e:1e:70:63:ff:a9:4a:6f:d3:0a:49:42:0a:56:19: 68:4c:7d:5e:67:99:a4:f4:03:a9:50:65:e8:ed:e6:57:2e:3e: c4:63:c4:2a:ad:e9:ca:4e:7d:6d:72:0f:71:f0:56:97:3f:45: 39:fe:f6:d6:5f:c3:ad:04:b6:99:58:86:e6:92:9f:eb:4c:1a: 31:df:7f:d4:d6:53:d5:08:01:d7:b6:8e:f6:4b:cb:da:2f:30: 35:76:31:a0:0d:51:63:ba:bc:27:dd:5c:a0:25:e8:01:ba:71: 48:b1:d2:2b:fd:30:8b:cc:fa:42:2b:aa:e6:1c:f7:ca:68:4a: fb:ae:64:15:a1:59:42:bd:45:73:eb:a3:b0:d4:bf:84:53:79: 10:09:c2:8d:91:20:ae:fd:93:c5:35:41:97:bd:1b:bb:de:1b: 44:df:dc:9b:36:a3:79:3d:c5:41:03:b2:c6:e5:43:18:8c:1d: e6:ce:2e:8f:d7:e5:65:0d:de:be:45:10:7a:40:6b:06:80:27: 2a:9b:83:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWy1XvZ+ioOBagF9t0H5MUuQTt20wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyYTE1ZDhhYTEwZDYyZGJkZDM0ODMyNjg3NmJhNTY3NTNj Yjk5YjQ2NGNjNDU1MzI0YjMwHhcNMjYwNTE5MDA1MDA2WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMGY1Mzk5OWE5NWQ3OGZiMWIxNWY1NjNmODYxMDdhNWJj NjdlN2E5MWUyY2NjZDc0NzEyMWQ5MjAxMjMxODIxMS0wKwYDVQQDEyRkZGZiYzk3 Yy03YmVkLTQwZGYtOTVjYS1lNjY0YjI5ZDdiMjcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS0kvGf6DvHgzV2JBvhc9ZKALFUx/PGUMDnZImmiROId3J bdx9Kj3r0b4X5d0ik0mgj96ZKCSYgvHpTyJRH7l4nEegUXe8EC/LNxO3RDn04kHJ Qb6FtKVwiX3ixK9dE9h8ALdL2PvOazMCcA4IQ6YgUggfJDfWkxzIADQY+NSokq0D 6ms9PvTmOAbSJO3JoLA2ptMY1cVMeKM5GmmD8ILgSTyNN+peCoimhuUbJ/G5Ce1D YcUI/O76pNAQLFGHhtXT7ziwxe4efriLDu484m+Hd1NeUPSxIex5eyypIQsOXev2 IowiRC5SP0V/uDz7tIrChBs1pqUkkNB58UyR8KXbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUnBf8jnGPmI4C33AXFUE5EU2A6QwHwYDVR0jBBgwFoAUkS3GDddkKYK8 rn+B/jxMEnKAIh8wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi83MTg4YWMyNC0w OWNjLTRmMjAtOWRiZC1jZDkwMDVkMjc5N2UvYTE1ZDhhYTEwZDYyZGJkZDM0ODMy Njg3NmJhNTY3NTNjYjk5YjQ2NGNjNDU1MzI0YjMuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvNjAyYTI2ZTUtNGE5ZS00ZTVlLTg5ZjAtZWY4 OTE0OTBkOWM5Lzg3YTMyMWQ5LTk0YTQtNDFkNC05ZGU3LTU2MTcxNDY2MDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzYwMmEyNmU1LTRhOWUtNGU1ZS04OWYw LWVmODkxNDkwZDljOS9ZdHZkTklNbWgydWxaMVBMbWJSa3pFVlRKTE0uY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcycAAwDQYJKoZIhvcNAQELBQADggEBAHqogWkDWeakg0wiq71ALCCwJHml mv2xFPCATYBaQT0R99PSSQFXHy355IZ3aVl9YYgZrRhlm12TI34ecGP/qUpv0wpJ QgpWGWhMfV5nmaT0A6lQZejt5lcuPsRjxCqt6cpOfW1yD3HwVpc/RTn+9tZfw60E tplYhuaSn+tMGjHff9TWU9UIAde2jvZLy9ovMDV2MaANUWO6vCfdXKAl6AG6cUix 0iv9MIvM+kIrquYc98poSvuuZBWhWUK9RXPro7DUv4RTeRAJwo2RIK79k8U1QZe9 G7veG0Tf3Js2o3k9xUEDssblQxiMHebOLo/X5WUN3r5FEHpAawaAJyqbg4A= -----END CERTIFICATE-----Generated at Sun Jun 14 03:39:24 2026 by rpki-client