$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5662335-41ff-4f74-b027-29cb3a13c5fd.roa File: c5662335-41ff-4f74-b027-29cb3a13c5fd.roa (raw, json) Hash identifier: TW46kS4Qn+XSe9J8ohCnOlu+GHFm3YunpXVJvK0YTg4= Subject key identifier: E5:5F:BD:A7:5C:92:51:64:58:37:66:1A:93:3F:C2:C2:70:CF:20:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2E13507B71C5F70F45DC4454EC4CCCE35C7414FD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5662335-41ff-4f74-b027-29cb3a13c5fd.roa Signing time: Fri 01 May 2026 00:31:47 +0000 ROA not before: Fri 01 May 2026 00:31:47 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 63.179.154.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:13:50:7b:71:c5:f7:0f:45:dc:44:54:ec:4c:cc:e3:5c:74:14:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:31:47 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=52a7d3c61fa18138a29f183340b377dc8ba9b2ded7c990b88f43ee52a5ecfc23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:17:09:88:fa:c6:cb:8d:61:56:ff:41:3f:4f: b7:b8:cc:d4:df:4b:bd:1a:2e:e3:0f:66:1e:fb:1b: 1e:6d:4e:35:31:f4:11:f7:a3:e4:d9:ee:a2:e9:22: d7:c9:8c:89:8a:99:f2:8f:6d:97:18:11:3c:85:9f: 8a:ce:50:fb:05:bf:b7:29:f3:33:f7:0f:17:ae:4f: 03:4b:58:a4:09:ca:59:e0:1f:9a:de:b5:ab:e9:ca: 57:49:ca:05:35:14:44:70:2a:89:61:c8:9a:71:6c: 0c:ee:fc:7a:32:55:39:b8:f0:ad:a2:18:e8:88:b0: 87:cf:14:dd:59:bd:60:ee:c6:61:82:ef:c4:b0:4f: 9c:e1:ef:3c:a7:ca:69:91:72:d0:90:d7:ba:06:90: 3c:64:c0:b5:82:3e:ed:b1:20:92:88:56:29:68:c1: 98:65:e4:6f:bf:08:99:ac:a5:af:ce:c4:49:24:cb: 14:02:26:40:8c:47:ec:db:3e:03:ed:7c:d2:b7:4e: 76:3c:4b:54:fa:54:17:00:2b:73:cf:2c:2c:05:3b: 53:55:8a:b7:62:c3:07:d0:18:5c:78:c7:f4:d2:2b: 0e:0b:ca:dd:49:cf:44:e4:de:6f:17:0f:8b:49:fe: 36:69:55:9f:5f:9b:05:ef:3d:f2:71:09:99:d8:8a: f9:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:5F:BD:A7:5C:92:51:64:58:37:66:1A:93:3F:C2:C2:70:CF:20:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5662335-41ff-4f74-b027-29cb3a13c5fd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.179.154.0/23 Signature Algorithm: sha256WithRSAEncryption a1:b6:fe:e3:f6:ad:93:fe:16:aa:fe:6b:0a:cf:aa:82:d2:ee: bc:d0:39:86:6b:df:a1:82:78:a8:a5:b7:78:7c:67:04:2b:65: ca:a3:b8:d6:6d:ee:c4:d8:3b:5f:e6:84:2a:d8:dc:57:30:c2: 68:93:b7:03:ba:a8:20:19:cc:dd:23:d8:75:6c:55:13:55:f5: e2:23:53:1f:f8:47:fa:a2:f9:51:f8:8d:81:fd:34:93:2c:a7: 47:0e:67:43:0a:ff:af:11:0b:3e:a2:d6:e9:28:52:00:d0:73: 48:b5:cb:b8:5b:3a:b2:b4:b8:dd:b3:bb:1b:c1:f7:cb:69:cc: dd:e9:45:81:29:d2:80:fc:3f:7f:8d:03:90:1b:a9:32:08:e3: 87:97:6a:05:69:c4:59:f6:94:ad:fb:59:1d:dc:bd:f4:f3:89: 37:c7:e0:3e:94:44:23:b7:2a:34:48:22:7f:ef:03:d2:08:3a: fb:0d:14:b1:6a:c8:72:89:83:51:38:d6:92:35:80:5c:c2:26: 28:69:1b:6a:8f:db:e7:21:ea:9d:04:84:ff:99:c2:6f:92:c5: fa:99:76:2c:d8:24:8c:22:8a:d3:5c:48:21:ec:ef:15:da:37: 24:c1:d8:0b:b4:d3:00:34:a8:a6:12:ef:fa:65:7f:66:7f:22: 8d:02:e7:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULhNQe3HF9w9F3ERU7EzM41x0FP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDAzMTQ3WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1MmE3ZDNjNjFmYTE4MTM4YTI5ZjE4MzM0MGIzNzdkYzhi YTliMmRlZDdjOTkwYjg4ZjQzZWU1MmE1ZWNmYzIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDFwmI+sbLjWFW/0E/T7e4zNTfS70aLuMPZh77Gx5tTjUx 9BH3o+TZ7qLpItfJjImKmfKPbZcYETyFn4rOUPsFv7cp8zP3DxeuTwNLWKQJylng H5retavpyldJygU1FERwKolhyJpxbAzu/HoyVTm48K2iGOiIsIfPFN1ZvWDuxmGC 78SwT5zh7zynymmRctCQ17oGkDxkwLWCPu2xIJKIVilowZhl5G+/CJmspa/OxEkk yxQCJkCMR+zbPgPtfNK3TnY8S1T6VBcAK3PPLCwFO1NVirdiwwfQGFx4x/TSKw4L yt1Jz0Tk3m8XD4tJ/jZpVZ9fmwXvPfJxCZnYivk1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5V+9p1ySUWRYN2Yakz/CwnDPIFcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1NjYyMzM1LTQxZmYtNGY3NC1iMDI3LTI5Y2IzYTEzYzVmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAE/s5owDQYJKoZIhvcNAQELBQADggEBAKG2/uP2rZP+Fqr+awrPqoLS7rzQ OYZr36GCeKilt3h8ZwQrZcqjuNZt7sTYO1/mhCrY3FcwwmiTtwO6qCAZzN0j2HVs VRNV9eIjUx/4R/qi+VH4jYH9NJMsp0cOZ0MK/68RCz6i1ukoUgDQc0i1y7hbOrK0 uN2zuxvB98tpzN3pRYEp0oD8P3+NA5AbqTII44eXagVpxFn2lK37WR3cvfTziTfH 4D6URCO3KjRIIn/vA9IIOvsNFLFqyHKJg1E41pI1gFzCJihpG2qP2+ch6p0EhP+Z wm+SxfqZdizYJIwiitNcSCHs7xXaNyTB2Au00wA0qKYS7/plf2Z/Io0C57w= -----END CERTIFICATE-----Generated at Sun May 3 15:32:12 2026 by rpki-client