$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa File: ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa (raw, json) Hash identifier: dqEiwyhjrALln8CUUt6o0zDP01TSfhosMyQxhXG4E3Y= Subject key identifier: 4B:BA:ED:93:30:B8:1E:AA:2E:C8:F3:63:B2:B1:6D:FB:CF:F9:17:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FEA3444842DA591729F8CA095DDFB4EA63B675E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa Signing time: Tue 28 Apr 2026 00:31:18 +0000 ROA not before: Tue 28 Apr 2026 00:31:18 +0000 ROA not after: Mon 27 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 153.12.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ea:34:44:84:2d:a5:91:72:9f:8c:a0:95:dd:fb:4e:a6:3b:67:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 28 00:31:18 2026 GMT Not After : Jul 27 23:59:59 2026 GMT Subject: serialNumber=42d2df8f3a1d8cbe4c1e0ffabe6b2083e45a993de9413dc69df8bb5de437c670, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:ef:d5:01:78:cb:ba:5c:5e:56:38:fc:a8:af: 24:dc:7a:1b:e9:66:e9:ec:5a:6f:b8:20:53:59:70: 39:d6:b3:5d:85:06:cc:5f:5c:80:d5:20:25:a9:f3: da:22:d8:bf:cf:44:8a:b3:bf:93:15:5b:c0:29:c0: 7e:78:ad:61:6c:8a:d5:c5:b3:4e:41:c1:fb:de:f2: 48:17:cb:94:12:b5:aa:04:dc:5a:c4:b8:c5:56:4c: 28:60:d8:bd:47:67:b0:25:4c:49:46:ea:d7:49:c4: c6:e7:d7:bb:ef:9c:23:a9:d7:5f:0c:b2:b2:1f:4e: 21:6e:92:22:7e:83:61:87:ba:73:d5:ca:e7:d3:1b: 47:bc:cb:d3:3a:4c:2c:16:93:cb:08:35:84:3e:d2: 57:1d:7e:9e:0a:dc:86:8d:a4:1e:6a:4c:e1:60:70: b6:b1:9b:d5:d4:7d:83:0e:fd:0d:58:2b:e9:b8:7b: a2:d3:76:fb:5a:0a:da:05:80:27:9d:c2:5f:0c:29: 8e:30:06:b1:b7:43:48:58:ef:e7:f2:48:62:08:8b: 8f:5f:fe:7b:48:fb:85:e6:78:88:41:04:a7:43:13: 3d:07:5b:89:36:14:61:60:3e:da:78:ec:49:d1:58: ca:3c:96:5c:77:eb:63:07:d5:b5:91:eb:48:a0:70: f5:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:BA:ED:93:30:B8:1E:AA:2E:C8:F3:63:B2:B1:6D:FB:CF:F9:17:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ac0c9bbb-60c5-4758-abc3-54032a060d3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 153.12.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:21:df:3a:f8:9f:ea:73:a7:58:1d:62:3b:b9:f8:3a:6c:5b: 1a:f2:92:07:80:79:ed:41:32:95:0e:db:0b:30:81:bc:47:5a: da:29:36:99:93:01:34:c9:4f:87:da:27:cf:f7:e9:33:69:70: b5:82:cc:8f:d6:93:c4:1c:86:19:da:ce:e7:db:6b:90:74:6d: 12:87:4b:5e:37:0a:30:6a:b7:ca:07:29:52:11:94:66:73:df: 35:ea:a0:d9:a9:ce:d4:a7:4a:4d:e5:0a:b7:72:4e:2c:9f:c8: 10:b1:ad:5e:a6:59:93:ec:5c:36:a8:b3:a9:ac:46:69:9e:28: 38:03:d1:70:07:7c:6a:82:af:22:20:60:b6:9d:16:0c:39:e5: 10:74:7e:fd:82:f8:e8:d4:aa:f9:56:be:a4:d7:ba:97:be:ce: 81:b2:37:20:c6:fd:ad:ce:1d:3e:e4:94:43:2f:2f:d3:e6:79: c3:8e:2c:96:54:c9:22:2b:ff:54:ba:e1:85:ec:f0:b9:06:ad: 9e:a7:4d:9d:d2:e7:6e:a6:40:72:b5:84:57:86:05:35:f1:dc: e0:f0:08:1d:63:8f:71:6c:e9:0f:5e:e4:bc:82:35:11:ee:43: b0:5b:77:8d:00:4d:4c:93:92:89:bf:ed:c9:57:19:65:5c:88: 0d:82:da:62 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH+o0RIQtpZFyn4ygld37TqY7Z14wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI4MDAzMTE4WhcNMjYwNzI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MmQyZGY4ZjNhMWQ4Y2JlNGMxZTBmZmFiZTZiMjA4M2U0 NWE5OTNkZTk0MTNkYzY5ZGY4YmI1ZGU0MzdjNjcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC479UBeMu6XF5WOPyoryTcehvpZunsWm+4IFNZcDnWs12F BsxfXIDVICWp89oi2L/PRIqzv5MVW8ApwH54rWFsitXFs05Bwfve8kgXy5QStaoE 3FrEuMVWTChg2L1HZ7AlTElG6tdJxMbn17vvnCOp118MsrIfTiFukiJ+g2GHunPV yufTG0e8y9M6TCwWk8sINYQ+0lcdfp4K3IaNpB5qTOFgcLaxm9XUfYMO/Q1YK+m4 e6LTdvtaCtoFgCedwl8MKY4wBrG3Q0hY7+fySGIIi49f/ntI+4XmeIhBBKdDEz0H W4k2FGFgPtp47EnRWMo8llx362MH1bWR60igcPVZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUS7rtkzC4HqouyPNjsrFt+8/5FzEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjMGM5YmJiLTYwYzUtNDc1OC1hYmMzLTU0MDMyYTA2MGQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCZDDANBgkqhkiG9w0BAQsFAAOCAQEAkyHfOvif6nOnWB1iO7n4OmxbGvKS B4B57UEylQ7bCzCBvEda2ik2mZMBNMlPh9onz/fpM2lwtYLMj9aTxByGGdrO59tr kHRtEodLXjcKMGq3ygcpUhGUZnPfNeqg2anO1KdKTeUKt3JOLJ/IELGtXqZZk+xc NqizqaxGaZ4oOAPRcAd8aoKvIiBgtp0WDDnlEHR+/YL46NSq+Va+pNe6l77OgbI3 IMb9rc4dPuSUQy8v0+Z5w44sllTJIiv/VLrhhezwuQatnqdNndLnbqZAcrWEV4YF NfHc4PAIHWOPcWzpD17kvII1Ee5DsFt3jQBNTJOSib/tyVcZZVyIDYLaYg== -----END CERTIFICATE-----Generated at Sun May 3 14:50:22 2026 by rpki-client