$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa File: 725de74a-ea25-4864-a260-52460f0b56de.roa (raw, json) Hash identifier: y963C9VgB768GhPzcMyin6uT/bgFsPzXNsgZ9a95W+I= Subject key identifier: A2:D5:D9:B9:BF:D5:EF:43:80:B0:73:04:0A:E3:4A:80:18:A1:72:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 76BD6895F1D0AF72DEED2DB5C36B1C013DDC881C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa Signing time: Tue 28 Apr 2026 00:20:09 +0000 ROA not before: Tue 28 Apr 2026 00:20:09 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 192.43.175.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:bd:68:95:f1:d0:af:72:de:ed:2d:b5:c3:6b:1c:01:3d:dc:88:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:20:09 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=d626bb7e2e2f129e281908fe61ab91837fe124d89865155b94737f54ff125c83, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:d7:ea:40:e8:6d:0b:93:28:cf:b5:39:c6:75: f8:41:10:60:86:81:61:19:a3:d1:4d:e6:60:75:ce: af:f7:e6:61:23:71:4b:ea:a3:c5:33:30:09:06:68: 39:97:a6:41:df:97:bf:e4:0b:7c:4c:af:15:6e:be: 95:43:36:bb:b1:be:d7:1a:76:2b:19:00:ad:77:e6: aa:b7:3c:c8:15:31:74:d3:bb:cc:c2:79:ee:94:bc: 32:65:55:94:ce:83:87:a5:e6:dc:c4:df:a4:c5:94: 6c:d4:0d:65:cc:36:6b:74:37:98:32:36:62:47:6a: 32:58:de:50:ae:ec:f4:75:e6:58:bf:e5:59:8b:f1: c6:24:2f:d4:5b:66:12:27:e3:0c:9a:2f:e8:52:c9: e8:d4:71:2f:89:f3:63:82:20:ea:ed:6d:42:91:86: 23:2d:26:b8:d4:be:01:db:42:ae:2c:6d:e8:5d:53: b1:3a:44:af:fd:2a:42:a7:c9:5a:55:e6:cc:58:b9: 51:f3:22:50:9d:77:43:d0:6c:36:2f:09:c0:5b:74: b0:bd:3c:21:7d:8d:10:f3:04:90:5d:40:3d:f0:c1: e5:cc:06:a2:c3:f4:ed:d4:70:65:69:39:d8:b8:a3: 8f:a8:48:37:0b:a4:85:66:c1:f4:1d:53:f1:be:3b: d6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D5:D9:B9:BF:D5:EF:43:80:B0:73:04:0A:E3:4A:80:18:A1:72:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/725de74a-ea25-4864-a260-52460f0b56de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.175.0/24 Signature Algorithm: sha256WithRSAEncryption 77:5b:f7:ba:eb:fc:f5:02:61:9e:f0:c0:d4:6e:9f:22:a6:73: f4:3c:be:e9:7e:24:c0:f4:86:88:f1:2f:72:87:36:3f:c8:b9: 55:a1:94:1c:78:bc:e2:3d:35:f6:83:94:2e:9f:0f:25:51:9d: b1:2f:23:8b:1a:86:63:4c:48:06:e8:db:de:6c:76:bc:33:ae: 35:c6:7d:79:35:85:10:65:11:12:72:ca:5c:f3:46:22:e8:03: 5d:66:29:f3:11:94:7d:24:51:74:d0:8b:bd:18:0f:f1:8a:19: b6:2e:40:8b:96:6c:e2:f4:75:aa:18:9b:4f:df:55:d4:af:5e: fe:c1:2d:1c:a9:b6:52:ec:fb:24:30:1a:33:ea:04:3d:05:ed: dd:40:c4:5b:06:df:e2:50:9a:15:5d:9c:aa:04:79:46:6f:39: a3:ad:9b:5c:6b:34:c4:d5:27:c8:02:76:a1:a4:3b:6a:b0:06: 95:40:79:06:2c:bc:d6:c1:4b:20:89:99:2f:11:57:0d:cd:2c: da:d3:01:ee:36:89:11:27:b0:c6:d6:b2:57:3d:42:2c:c8:d1: 99:42:f1:02:cf:af:92:98:00:de:a1:80:c1:1c:ca:10:81:a2: 97:59:86:14:e8:f7:f1:84:f9:98:95:bb:7a:e5:e0:6a:9f:bb: b9:4e:8f:a2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdr1olfHQr3Le7S21w2scAT3ciBwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAyMDA5WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNjI2YmI3ZTJlMmYxMjllMjgxOTA4ZmU2MWFiOTE4Mzdm ZTEyNGQ4OTg2NTE1NWI5NDczN2Y1NGZmMTI1YzgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC91+pA6G0LkyjPtTnGdfhBEGCGgWEZo9FN5mB1zq/35mEj cUvqo8UzMAkGaDmXpkHfl7/kC3xMrxVuvpVDNruxvtcadisZAK135qq3PMgVMXTT u8zCee6UvDJlVZTOg4el5tzE36TFlGzUDWXMNmt0N5gyNmJHajJY3lCu7PR15li/ 5VmL8cYkL9RbZhIn4wyaL+hSyejUcS+J82OCIOrtbUKRhiMtJrjUvgHbQq4sbehd U7E6RK/9KkKnyVpV5sxYuVHzIlCdd0PQbDYvCcBbdLC9PCF9jRDzBJBdQD3wweXM BqLD9O3UcGVpOdi4o4+oSDcLpIVmwfQdU/G+O9YXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUotXZub/V70OAsHMECuNKgBihch0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyNWRlNzRhLWVhMjUtNDg2NC1hMjYwLTUyNDYwZjBiNTZkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK68wDQYJKoZIhvcNAQELBQADggEBAHdb97rr/PUCYZ7wwNRunyKmc/Q8 vul+JMD0hojxL3KHNj/IuVWhlBx4vOI9NfaDlC6fDyVRnbEvI4sahmNMSAbo295s drwzrjXGfXk1hRBlERJyylzzRiLoA11mKfMRlH0kUXTQi70YD/GKGbYuQIuWbOL0 daoYm0/fVdSvXv7BLRyptlLs+yQwGjPqBD0F7d1AxFsG3+JQmhVdnKoEeUZvOaOt m1xrNMTVJ8gCdqGkO2qwBpVAeQYsvNbBSyCJmS8RVw3NLNrTAe42iREnsMbWslc9 QizI0ZlC8QLPr5KYAN6hgMEcyhCBopdZhhTo9/GE+ZiVu3rl4Gqfu7lOj6I= -----END CERTIFICATE-----Generated at Sat May 2 18:35:29 2026 by rpki-client