$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1275f174-610b-437f-af9b-97ea79f618ae.roa File: 1275f174-610b-437f-af9b-97ea79f618ae.roa (raw, json) Hash identifier: x0ss7DM90xDO9Jy3Bnfjgo6Hishq/o+p2BEMhVEABWg= Subject key identifier: 15:68:E9:41:E1:60:CB:A7:0A:78:42:2E:66:62:F0:6F:DC:62:67:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0B6D3796FD477F27DAA29655202D77ED691DEFD2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1275f174-610b-437f-af9b-97ea79f618ae.roa Signing time: Sun 03 May 2026 16:46:51 +0000 ROA not before: Sun 03 May 2026 16:46:51 +0000 ROA not after: Sat 01 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.238.138.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0b:6d:37:96:fd:47:7f:27:da:a2:96:55:20:2d:77:ed:69:1d:ef:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 3 16:46:51 2026 GMT Not After : Aug 1 23:59:59 2026 GMT Subject: serialNumber=e6befd432ae9dff6c642ef2094eec00e2336973cd329a3eff702837fd2434375, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:09:33:42:35:42:01:55:59:b4:e8:98:88:a2: ac:ab:22:9f:e3:28:3e:20:91:49:13:2f:54:65:4a: 33:50:ca:2b:c1:3a:d2:22:e9:df:bb:d6:57:90:28: 71:6d:18:a8:7b:2f:72:06:db:32:14:a5:35:80:80: b8:d6:8c:30:ea:7d:41:cc:59:8e:c0:54:01:a4:da: 06:2c:28:50:68:fd:9a:e1:46:8f:a4:af:8e:dd:06: ed:b6:1e:33:23:25:f2:48:e5:16:bc:dc:12:66:a8: b8:03:c5:f2:b9:cb:ed:6a:62:c2:28:b7:18:0e:5e: 24:27:04:29:2c:91:17:2d:41:f3:77:9b:2f:07:59: 03:1a:90:93:1f:17:5f:54:3e:f4:dc:bf:24:5a:cc: ac:e9:0a:0c:a6:62:c0:6c:14:83:2a:07:c9:8c:42: 77:da:19:be:d5:35:10:a3:1d:e3:d1:3e:6e:ab:b4: a8:3b:b6:2e:24:22:15:85:e3:0e:cf:c1:9a:a1:02: 07:b9:73:7f:16:c8:8d:bf:30:ea:c8:26:a1:f3:da: 20:69:e3:55:90:69:2b:68:e2:27:07:28:d7:96:92: 80:0b:bc:6d:d4:dd:4a:86:ca:44:d5:8b:33:52:d5: 21:6a:eb:f2:2e:7e:cf:fd:d7:e2:15:02:cb:f8:9e: 98:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:68:E9:41:E1:60:CB:A7:0A:78:42:2E:66:62:F0:6F:DC:62:67:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1275f174-610b-437f-af9b-97ea79f618ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.238.138.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:f8:cf:bb:6b:c4:0c:3d:7e:b2:f2:e1:7e:50:a9:f0:2b:ea: 0d:16:e8:42:96:6f:7f:2e:0e:65:ce:3c:f7:31:a4:73:19:34: 85:e3:91:2c:d5:e1:e7:20:82:a9:0b:1e:96:8d:0c:d5:30:40: 9c:d5:c5:26:47:d9:c4:58:74:3f:b7:8c:2f:28:67:7e:6c:90: a3:08:23:20:03:a2:be:16:15:0f:e7:bc:37:6c:f7:ae:02:53: 14:10:67:2c:e0:c1:06:4d:96:1b:d9:fa:85:10:ff:b4:db:c4: f4:23:61:33:f7:a8:7f:c9:81:d2:a6:87:cd:1a:66:cd:df:66: a0:e3:f4:11:e5:98:ed:76:c9:d6:8d:43:d2:c4:9e:5f:79:f6: ef:36:ba:89:bb:c6:7c:ff:f1:6f:43:51:c1:94:23:9b:98:81: 4c:4b:ba:4e:ed:0e:93:d3:40:bc:0e:bc:f7:93:9e:b0:0a:19: 7f:86:50:b7:29:0f:a0:2a:0b:67:22:40:58:38:25:07:b8:f8: 7e:97:02:2a:f9:5c:b8:f1:9d:e1:5a:35:91:e0:9b:7f:19:48: e0:3a:fb:d5:a0:c1:db:5d:0f:21:27:c0:38:eb:2e:a6:70:dd: bc:00:26:b5:30:c5:77:bd:97:0e:fc:e2:77:75:88:c5:09:72: d1:f1:ef:5c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUC203lv1HfyfaopZVIC137Wkd79IwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAzMTY0NjUxWhcNMjYwODAxMjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmJlZmQ0MzJhZTlkZmY2YzY0MmVmMjA5NGVlYzAwZTIz MzY5NzNjZDMyOWEzZWZmNzAyODM3ZmQyNDM0Mzc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3CTNCNUIBVVm06JiIoqyrIp/jKD4gkUkTL1RlSjNQyivB OtIi6d+71leQKHFtGKh7L3IG2zIUpTWAgLjWjDDqfUHMWY7AVAGk2gYsKFBo/Zrh Ro+kr47dBu22HjMjJfJI5Ra83BJmqLgDxfK5y+1qYsIotxgOXiQnBCkskRctQfN3 my8HWQMakJMfF19UPvTcvyRazKzpCgymYsBsFIMqB8mMQnfaGb7VNRCjHePRPm6r tKg7ti4kIhWF4w7PwZqhAge5c38WyI2/MOrIJqHz2iBp41WQaSto4icHKNeWkoAL vG3U3UqGykTVizNS1SFq6/Iufs/91+IVAsv4nphRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFWjpQeFgy6cKeEIuZmLwb9xiZx4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEyNzVmMTc0LTYxMGItNDM3Zi1hZjliLTk3ZWE3OWY2MThhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAX7oowDQYJKoZIhvcNAQELBQADggEBABv4z7trxAw9frLy4X5QqfAr6g0W 6EKWb38uDmXOPPcxpHMZNIXjkSzV4ecggqkLHpaNDNUwQJzVxSZH2cRYdD+3jC8o Z35skKMIIyADor4WFQ/nvDds964CUxQQZyzgwQZNlhvZ+oUQ/7TbxPQjYTP3qH/J gdKmh80aZs3fZqDj9BHlmO12ydaNQ9LEnl959u82uom7xnz/8W9DUcGUI5uYgUxL uk7tDpPTQLwOvPeTnrAKGX+GULcpD6AqC2ciQFg4JQe4+H6XAir5XLjxneFaNZHg m38ZSOA6+9WgwdtdDyEnwDjrLqZw3bwAJrUwxXe9lw784nd1iMUJctHx71w= -----END CERTIFICATE-----Generated at Mon May 4 21:37:02 2026 by rpki-client