$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa File: a4227170-2265-45c8-950f-f4e81e32653b.roa (raw, json) Hash identifier: dtx5Hnib67Pe+kavD90/15g1pR+ocgtvpliTG0papgI= Subject key identifier: C7:03:A5:5C:E0:C5:4A:DA:E8:F8:C0:22:5A:D4:A6:C4:C0:FF:20:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0603A439A3A3A83FF32BD3E77BB33E378C679DEB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa Signing time: Fri 01 May 2026 00:20:11 +0000 ROA not before: Fri 01 May 2026 00:20:11 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:03:a4:39:a3:a3:a8:3f:f3:2b:d3:e7:7b:b3:3e:37:8c:67:9d:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:20:11 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=3f1f8677b016d4c930e8189da832ad5b5e1d38333bc2e095700e3d80058e3366, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:39:d2:86:45:ae:8a:0f:13:2c:db:91:06:a0: 92:a7:f7:19:4c:3a:d8:53:c9:d6:d6:9b:f2:07:d2: f4:ea:21:1f:8a:43:87:a5:8d:45:dd:56:1d:94:52: 87:6e:88:8e:00:2f:3b:3d:a6:c3:9a:2a:ec:c8:fc: ae:b3:69:53:4c:e4:ac:80:b0:8a:89:31:50:b7:c0: 9a:95:d9:ca:3d:7e:90:9d:39:37:33:4c:be:d5:b6: c3:5d:86:5a:15:c8:f3:fa:89:36:e2:f3:82:90:45: a3:74:14:84:45:8e:60:b5:b9:8b:30:d6:43:97:2d: 86:7f:66:ff:09:7b:76:c5:8e:7d:a1:d4:29:d1:af: 89:13:9c:76:29:8e:3f:5c:de:eb:14:95:33:17:07: cd:e8:2d:52:e6:d6:9f:f7:fa:ad:0b:64:05:92:d5: 15:6e:ef:61:83:21:d4:c0:e2:9f:90:bd:24:cb:b6: c1:ff:e0:06:27:03:5f:15:6e:c2:bd:4e:ab:3e:8e: 16:0a:b1:87:b8:d2:03:f5:37:b5:9d:21:90:6d:50: 4d:8c:fb:f1:40:f9:45:d0:8a:60:fa:8e:f6:00:d2: ee:fd:c2:66:ce:4d:e5:3c:50:f7:ff:e4:21:8a:05: db:98:9e:1a:ba:d7:0a:b4:f5:48:6c:27:a5:54:fe: 6f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:03:A5:5C:E0:C5:4A:DA:E8:F8:C0:22:5A:D4:A6:C4:C0:FF:20:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a4227170-2265-45c8-950f-f4e81e32653b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.0.0/16 Signature Algorithm: sha256WithRSAEncryption c4:52:34:5f:89:ed:b3:a2:24:14:65:0e:df:68:31:31:41:85: 13:ac:3b:a2:86:03:a8:09:fa:a6:97:bd:73:4b:66:6d:5c:92: 36:f5:34:85:1d:cc:f6:24:c9:92:00:a7:92:87:db:d2:9a:90: ca:1d:97:60:00:32:95:8a:1a:d3:82:1b:5a:c3:78:2d:f6:95: 6e:9e:5d:ba:17:c8:14:60:35:c6:bc:da:a9:1d:c4:4b:c2:0e: 1d:55:f2:4f:18:4c:1f:ff:46:ad:63:7e:5a:b3:10:3c:e1:63: da:b7:c9:4f:0f:da:26:2b:1f:b4:45:a6:68:05:27:38:97:ad: 36:97:6f:61:85:9d:72:f8:ea:73:e8:25:72:77:9d:9d:a6:11: 20:9c:18:d7:02:48:ce:0a:f0:a3:02:5d:4b:23:27:33:18:1f: 43:22:06:a7:cf:8e:01:0a:9c:2b:0a:00:89:fc:dd:76:f2:a5: cf:a4:1c:cb:6e:66:7b:a9:f2:f1:f6:4f:5d:99:5a:13:4c:04: d9:49:70:8e:99:88:da:95:6c:7c:16:1c:d3:22:c3:60:61:e9: 51:d6:bb:23:ba:9a:06:4e:f8:86:d2:4d:99:19:9f:1a:72:96: e5:39:8e:83:68:89:a8:ba:5e:e1:43:96:30:64:e5:89:56:81: e9:d3:43:74 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBgOkOaOjqD/zK9Pne7M+N4xnneswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAyMDExWhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjFmODY3N2IwMTZkNGM5MzBlODE4OWRhODMyYWQ1YjVl MWQzODMzM2JjMmUwOTU3MDBlM2Q4MDA1OGUzMzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDfOdKGRa6KDxMs25EGoJKn9xlMOthTydbWm/IH0vTqIR+K Q4eljUXdVh2UUoduiI4ALzs9psOaKuzI/K6zaVNM5KyAsIqJMVC3wJqV2co9fpCd OTczTL7VtsNdhloVyPP6iTbi84KQRaN0FIRFjmC1uYsw1kOXLYZ/Zv8Je3bFjn2h 1CnRr4kTnHYpjj9c3usUlTMXB83oLVLm1p/3+q0LZAWS1RVu72GDIdTA4p+QvSTL tsH/4AYnA18VbsK9Tqs+jhYKsYe40gP1N7WdIZBtUE2M+/FA+UXQimD6jvYA0u79 wmbOTeU8UPf/5CGKBduYnhq61wq09UhsJ6VU/m9fAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxwOlXODFStro+MAiWtSmxMD/IBswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E0MjI3MTcwLTIyNjUtNDVjOC05NTBmLWY0ZTgxZTMyNjUzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBgADANBgkqhkiG9w0BAQsFAAOCAQEAxFI0X4nts6IkFGUO32gxMUGFE6w7 ooYDqAn6ppe9c0tmbVySNvU0hR3M9iTJkgCnkofb0pqQyh2XYAAylYoa04IbWsN4 LfaVbp5duhfIFGA1xrzaqR3ES8IOHVXyTxhMH/9GrWN+WrMQPOFj2rfJTw/aJisf tEWmaAUnOJetNpdvYYWdcvjqc+glcnednaYRIJwY1wJIzgrwowJdSyMnMxgfQyIG p8+OAQqcKwoAifzddvKlz6Qcy25me6ny8fZPXZlaE0wE2UlwjpmI2pVsfBYc0yLD YGHpUda7I7qaBk74htJNmRmfGnKW5TmOg2iJqLpe4UOWMGTliVaB6dNDdA== -----END CERTIFICATE-----Generated at Sun May 3 15:33:12 2026 by rpki-client