$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa File: c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa (raw, json) Hash identifier: hs8Qa9jiZzjFANQDz+rxzHsKMKdAKqXEiICykdYAa2E= Subject key identifier: F0:C1:9A:F6:45:9C:16:5B:25:4D:9A:E4:72:6B:37:2B:E6:B5:7F:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C5061D20B97FD6E24D96787D7D265AF4A71638A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa Signing time: Fri 01 May 2026 01:00:29 +0000 ROA not before: Fri 01 May 2026 01:00:29 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.2.64.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:50:61:d2:0b:97:fd:6e:24:d9:67:87:d7:d2:65:af:4a:71:63:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 01:00:29 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=4810d0740f6edd02f093ebc4c519d00335614100991172fb4d333ae118017734, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:94:ff:ed:50:93:59:c5:63:e1:e7:7e:9f:3b: a3:0c:f9:19:a7:dd:d2:f5:0a:98:6f:86:1a:39:60: 27:67:ec:d1:88:e3:34:8a:0b:ab:0f:24:e2:63:99: 7f:fa:4d:99:2f:cd:db:e0:8e:9c:da:e2:9f:dc:17: 77:e6:55:24:12:88:be:0f:0a:e3:34:51:75:f7:3a: c0:74:85:ad:97:c1:e3:b2:5e:71:cf:b1:c2:b5:19: 91:ea:23:ac:af:43:e1:b2:2b:5c:3c:f7:7f:e4:0b: f4:39:8e:c1:27:65:bd:d7:f9:52:2f:eb:8b:0b:d2: 32:aa:78:0a:ef:ab:de:bd:e1:11:ac:56:02:bc:30: 5a:cf:54:f6:8f:f4:40:3c:69:54:df:d8:c6:bf:e5: 25:5d:af:dd:02:aa:14:ec:9e:a3:77:50:a7:89:a1: c3:ca:b2:70:4a:d6:fb:e0:5e:1b:a6:a2:51:c8:60: c7:4b:9a:0e:6f:5a:91:b7:23:dc:95:10:a8:a1:01: 04:05:32:b0:52:9f:d7:cc:35:3e:2d:2f:04:88:de: 20:e6:db:93:ba:8d:45:5d:09:d7:fe:09:cd:a1:ee: 09:81:81:f3:29:9d:59:23:30:cb:4e:9a:e7:56:13: b6:f4:68:ec:a6:02:df:48:ad:bf:75:22:01:6c:9e: 22:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:C1:9A:F6:45:9C:16:5B:25:4D:9A:E4:72:6B:37:2B:E6:B5:7F:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c21e7f7c-c7c4-4cb4-8053-52a71a84a2a6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.2.64.0/19 Signature Algorithm: sha256WithRSAEncryption 45:44:ba:80:ed:a2:73:0c:82:d2:2c:15:d9:15:3c:7f:4c:fa: c5:95:ca:6f:f3:40:6e:88:35:e5:25:c6:67:2b:d8:20:c3:61: 1e:a5:73:13:20:5d:a5:0c:d1:24:1c:96:70:2e:0d:49:10:39: 67:c0:a6:74:02:72:d3:71:43:6d:ac:b1:4c:04:99:e3:7a:55: d0:64:0f:6d:2c:a4:af:8c:2e:6b:65:18:e8:fd:08:69:35:0c: ef:f1:a2:25:a6:99:31:77:a7:75:eb:c0:7d:f8:0c:c8:9a:6f: 46:46:43:bf:a7:68:fb:fb:2d:07:24:f2:62:72:9a:a9:0a:2b: 66:84:e6:12:da:bd:df:f0:68:df:2f:ae:55:b7:14:15:f7:49: 9d:10:4b:18:a2:41:5f:1f:94:61:88:1e:1f:7f:b2:9f:6a:bb: 78:d3:eb:ce:bd:c5:46:d0:4b:6e:e5:35:4e:fb:43:e1:71:71: c4:6d:0b:8a:ca:84:53:a6:a9:61:3e:dd:f2:c9:8c:1b:8c:34: d9:62:6d:39:19:ee:53:50:bb:be:68:77:8e:17:3e:e7:c9:41: e9:ae:f2:8d:ec:7d:ed:19:f9:26:f1:2a:6d:29:a8:60:8b:40: 0a:5d:21:aa:e9:97:1f:75:c6:56:86:b4:d6:b3:a4:01:9f:0a: b8:c3:3a:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXFBh0guX/W4k2WeH19Jlr0pxY4owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDEwMDI5WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0ODEwZDA3NDBmNmVkZDAyZjA5M2ViYzRjNTE5ZDAwMzM1 NjE0MTAwOTkxMTcyZmI0ZDMzM2FlMTE4MDE3NzM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4lP/tUJNZxWPh536fO6MM+Rmn3dL1Cphvhho5YCdn7NGI 4zSKC6sPJOJjmX/6TZkvzdvgjpza4p/cF3fmVSQSiL4PCuM0UXX3OsB0ha2XweOy XnHPscK1GZHqI6yvQ+GyK1w893/kC/Q5jsEnZb3X+VIv64sL0jKqeArvq9694RGs VgK8MFrPVPaP9EA8aVTf2Ma/5SVdr90CqhTsnqN3UKeJocPKsnBK1vvgXhumolHI YMdLmg5vWpG3I9yVEKihAQQFMrBSn9fMNT4tLwSI3iDm25O6jUVdCdf+Cc2h7gmB gfMpnVkjMMtOmudWE7b0aOymAt9Irb91IgFsniIJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8MGa9kWcFlslTZrkcms3K+a1f00wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyMWU3ZjdjLWM3YzQtNGNiNC04MDUzLTUyYTcxYTg0YTJhNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVFAkAwDQYJKoZIhvcNAQELBQADggEBAEVEuoDtonMMgtIsFdkVPH9M+sWV ym/zQG6INeUlxmcr2CDDYR6lcxMgXaUM0SQclnAuDUkQOWfApnQCctNxQ22ssUwE meN6VdBkD20spK+MLmtlGOj9CGk1DO/xoiWmmTF3p3XrwH34DMiab0ZGQ7+naPv7 LQck8mJymqkKK2aE5hLavd/waN8vrlW3FBX3SZ0QSxiiQV8flGGIHh9/sp9qu3jT 6869xUbQS27lNU77Q+FxccRtC4rKhFOmqWE+3fLJjBuMNNlibTkZ7lNQu75od44X PufJQemu8o3sfe0Z+SbxKm0pqGCLQApdIarplx91xlaGtNazpAGfCrjDOss= -----END CERTIFICATE-----Generated at Sun May 3 16:13:28 2026 by rpki-client