$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa File: 4e472895-b434-4391-8576-749405dc5ab2.roa (raw, json) Hash identifier: uFczE+nZTLL1ddXi/7ktMQUUTTe9+q4z6pNV3AFKQnE= Subject key identifier: A3:06:DF:AB:33:C3:1B:F9:77:D8:AF:F8:C3:0A:27:D3:55:48:67:DF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5494FB0F6376FF7E916C5AE8D5E1E0518A59FDEF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa Signing time: Wed 29 Apr 2026 00:31:55 +0000 ROA not before: Wed 29 Apr 2026 00:31:55 +0000 ROA not after: Tue 28 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.104.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:94:fb:0f:63:76:ff:7e:91:6c:5a:e8:d5:e1:e0:51:8a:59:fd:ef Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 29 00:31:55 2026 GMT Not After : Jul 28 23:59:59 2026 GMT Subject: serialNumber=4b28fd9347f5077e656b0ca426be06942009011b299a30ec3563687cbc3c24cb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:22:c5:9b:53:5d:ba:7e:3a:96:f4:41:d6:4c: de:6b:1b:6a:22:01:28:1d:23:8e:f8:26:50:1f:e0: 12:49:3e:62:3a:d0:ee:bb:3d:b2:a3:8a:69:1e:96: 8a:4e:27:2e:0a:18:e9:1d:18:ff:7d:3b:c2:fa:8a: 61:c9:34:52:87:9a:06:7b:5d:d7:a7:9b:73:f2:80: fb:42:57:fa:68:89:39:2d:41:72:72:77:5b:4b:9a: 3c:c5:77:09:57:5f:f6:fa:d6:d6:42:9c:5d:f4:9c: 6e:7d:d4:ae:83:0c:38:a1:e8:b7:c5:ae:90:ba:15: 9d:34:fe:dc:cd:59:f8:dc:aa:1e:86:43:98:30:b7: d1:a4:dc:d7:9f:dc:01:ab:a2:38:0a:f4:d0:a7:16: ec:c5:37:eb:f2:49:18:73:6d:1b:1a:58:e5:94:56: 4b:8e:98:41:00:81:51:12:c0:98:96:0d:ea:91:dd: 09:0b:07:1d:1d:03:06:8f:29:d3:5c:0b:73:5c:9e: 48:75:7d:04:12:8a:08:87:5e:88:61:df:10:ad:bf: 4e:52:95:68:94:d0:35:07:a9:96:1b:ec:40:6f:2b: cc:71:95:ad:6f:1b:43:fa:b1:20:49:e1:51:64:59: a2:eb:4e:ec:7a:7f:b3:34:d6:39:f0:d4:ba:74:b2: 4f:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:06:DF:AB:33:C3:1B:F9:77:D8:AF:F8:C3:0A:27:D3:55:48:67:DF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4e472895-b434-4391-8576-749405dc5ab2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.104.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:ed:ef:ac:32:cd:f5:12:3f:e3:48:53:09:05:e0:25:2b:71: 91:4b:24:4d:8c:39:31:8a:23:f9:7f:04:87:17:0b:90:be:69: e0:6a:be:a5:58:f2:bc:91:58:4a:27:ac:8b:a4:c8:ca:ae:75: 97:54:97:62:dd:9e:c3:0f:e6:67:f3:17:c7:61:74:59:f1:f1: bd:de:8d:1f:4f:ac:78:82:e1:ba:7d:89:6a:33:48:71:3b:6a: fc:dd:ce:a3:73:51:75:09:74:ae:56:6a:ff:f5:a3:61:68:44: 19:ab:c9:b6:6a:42:a7:2f:ca:de:76:03:ac:f0:b7:5c:76:03: 36:69:40:9d:fa:da:f0:4d:3c:4c:f0:08:0f:45:59:3e:6a:4a: f0:6c:a8:40:bd:68:13:1a:65:8c:1d:10:7e:61:66:48:b2:e5: 56:9b:30:7b:09:49:f8:b4:f4:a8:98:9f:07:aa:66:4f:fd:48: c9:9c:d3:1c:0b:60:56:47:1a:07:ea:d9:bc:4c:40:6a:55:72: ba:b7:4a:e5:dd:16:37:a5:af:f5:b7:70:4a:93:76:dd:4c:63: 6f:11:c9:55:51:38:d1:cf:cf:6d:5f:21:dc:db:7c:dd:0d:4b: b2:04:d2:c5:75:c4:19:a8:26:07:1f:22:3e:40:59:41:00:22: 25:94:ee:72 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUVJT7D2N2/36RbFro1eHgUYpZ/e8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI5MDAzMTU1WhcNMjYwNzI4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjI4ZmQ5MzQ3ZjUwNzdlNjU2YjBjYTQyNmJlMDY5NDIw MDkwMTFiMjk5YTMwZWMzNTYzNjg3Y2JjM2MyNGNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJIsWbU126fjqW9EHWTN5rG2oiASgdI474JlAf4BJJPmI6 0O67PbKjimkelopOJy4KGOkdGP99O8L6imHJNFKHmgZ7Xdenm3PygPtCV/poiTkt QXJyd1tLmjzFdwlXX/b61tZCnF30nG591K6DDDih6LfFrpC6FZ00/tzNWfjcqh6G Q5gwt9Gk3Nef3AGrojgK9NCnFuzFN+vySRhzbRsaWOWUVkuOmEEAgVESwJiWDeqR 3QkLBx0dAwaPKdNcC3Ncnkh1fQQSigiHXohh3xCtv05SlWiU0DUHqZYb7EBvK8xx la1vG0P6sSBJ4VFkWaLrTux6f7M01jnw1Lp0sk9HAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUowbfqzPDG/l32K/4wwon01VIZ98wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlNDcyODk1LWI0MzQtNDM5MS04NTc2LTc0OTQwNWRjNWFiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4aDANBgkqhkiG9w0BAQsFAAOCAQEAae3vrDLN9RI/40hTCQXgJStxkUsk TYw5MYoj+X8EhxcLkL5p4Gq+pVjyvJFYSiesi6TIyq51l1SXYt2eww/mZ/MXx2F0 WfHxvd6NH0+seILhun2JajNIcTtq/N3Oo3NRdQl0rlZq//WjYWhEGavJtmpCpy/K 3nYDrPC3XHYDNmlAnfra8E08TPAID0VZPmpK8GyoQL1oExpljB0QfmFmSLLlVpsw ewlJ+LT0qJifB6pmT/1IyZzTHAtgVkcaB+rZvExAalVyurdK5d0WN6Wv9bdwSpN2 3UxjbxHJVVE40c/PbV8h3Nt83Q1LsgTSxXXEGagmBx8iPkBZQQAiJZTucg== -----END CERTIFICATE-----Generated at Sun May 3 14:46:28 2026 by rpki-client