$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dba301a9-839a-4d56-b8d7-def092c4877c.roa File: dba301a9-839a-4d56-b8d7-def092c4877c.roa (raw, json) Hash identifier: wD9J+gjuIpmdd8vGgkEg1eQD+HrE1WiifDMwwntvegE= Subject key identifier: 60:E8:75:1A:23:93:E1:00:6F:5B:00:B3:82:14:B0:68:0F:66:24:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0967952B635F459D756B0EB71CBDFB3CFBF67E1A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dba301a9-839a-4d56-b8d7-def092c4877c.roa Signing time: Mon 04 May 2026 00:10:48 +0000 ROA not before: Mon 04 May 2026 00:10:48 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 44.215.140.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 09:67:95:2b:63:5f:45:9d:75:6b:0e:b7:1c:bd:fb:3c:fb:f6:7e:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:10:48 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=058b93b61bcb31ea440d5569e277d653caa96a837d17d629e960e7b03a496234, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:a0:85:ab:29:66:42:b3:32:2d:0b:c7:78:19: 7f:e1:3b:21:c3:69:7a:23:dd:e1:d2:e3:de:af:09: 32:fb:a5:ca:89:5b:35:44:82:5d:1c:72:7f:51:48: 10:fd:27:fc:ed:f5:59:3b:f1:41:a6:71:8b:0a:00: 5f:a6:58:3d:99:e2:87:98:e7:c4:63:46:a3:f4:c9: 06:99:a5:0a:cb:66:54:69:5e:6c:6d:34:32:e9:03: d9:69:fc:52:7a:4e:5d:11:50:44:88:6b:5e:e3:65: 1f:41:a5:3c:da:e7:54:bd:ae:6d:55:8b:48:b8:8f: 89:ab:8f:53:75:f0:fa:09:7b:9f:c8:a6:21:c2:7b: 11:24:ba:f8:6f:d7:95:0f:01:40:59:2b:e2:4d:01: 7b:00:23:b8:7d:cd:4b:16:3d:c9:ee:b4:9b:44:dc: 8f:0f:6c:7c:8d:9f:fb:17:ac:3e:ca:cc:b8:27:bd: 94:27:08:36:ec:11:da:07:e7:f0:5f:74:8a:42:b9: 04:b0:fd:39:55:46:c1:0a:4e:25:26:90:fb:f6:7b: 27:40:7b:d0:e7:05:99:ec:19:b3:1e:07:77:dd:17: aa:2e:5a:8f:79:4b:1e:c0:0f:0f:bf:52:f6:9c:d2: dc:42:3a:7a:a8:67:69:58:6d:34:76:84:b8:0b:c7: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:E8:75:1A:23:93:E1:00:6F:5B:00:B3:82:14:B0:68:0F:66:24:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dba301a9-839a-4d56-b8d7-def092c4877c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.215.140.0/22 Signature Algorithm: sha256WithRSAEncryption 83:46:aa:7e:b9:6b:53:81:26:3f:29:da:b7:a8:f5:3b:fb:3d: c2:08:9d:f7:81:13:0a:c9:02:02:1a:51:5a:e8:4f:ef:47:66: 66:fb:7d:6f:c4:a5:ba:19:b9:6a:17:ea:9a:d0:d1:05:af:84: b1:39:a3:50:8c:00:03:85:f6:eb:67:3c:72:4d:7e:05:62:00: 82:75:1b:ad:f1:5a:cf:80:b1:cb:8c:5b:c1:03:06:c2:8a:f8: 50:34:cb:7b:f0:71:45:44:c9:f2:74:29:a7:3e:49:b1:31:01: 50:18:77:5e:ab:72:e5:40:89:44:30:c3:60:f1:41:96:6d:84: b8:02:a8:6f:72:34:86:54:78:5a:df:10:ad:93:ef:6e:1a:36: 64:d9:b9:fc:78:e0:a3:bf:68:d2:ad:fd:50:56:b4:7a:70:0a: 65:dc:27:13:6d:75:63:85:64:ee:2e:e9:93:a7:83:b1:cf:90: 42:36:49:5d:2d:58:6d:13:ef:ab:9f:ea:19:b0:3d:94:e8:69: ee:49:e6:25:1c:7a:f7:d1:d5:24:f1:18:83:c8:17:1a:35:69: 5a:2d:de:5c:3b:16:7c:34:86:70:96:e7:94:c9:25:54:ce:bd: ac:69:03:69:b3:65:fa:a3:65:97:f2:10:5f:e1:ec:4c:f2:50: 74:b7:13:17 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCWeVK2NfRZ11aw63HL37PPv2fhowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDAxMDQ4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNThiOTNiNjFiY2IzMWVhNDQwZDU1NjllMjc3ZDY1M2Nh YTk2YTgzN2QxN2Q2MjllOTYwZTdiMDNhNDk2MjM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdoIWrKWZCszItC8d4GX/hOyHDaXoj3eHS496vCTL7pcqJ WzVEgl0ccn9RSBD9J/zt9Vk78UGmcYsKAF+mWD2Z4oeY58RjRqP0yQaZpQrLZlRp XmxtNDLpA9lp/FJ6Tl0RUESIa17jZR9BpTza51S9rm1Vi0i4j4mrj1N18PoJe5/I piHCexEkuvhv15UPAUBZK+JNAXsAI7h9zUsWPcnutJtE3I8PbHyNn/sXrD7KzLgn vZQnCDbsEdoH5/BfdIpCuQSw/TlVRsEKTiUmkPv2eydAe9DnBZnsGbMeB3fdF6ou Wo95Sx7ADw+/Uvac0txCOnqoZ2lYbTR2hLgLx67pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYOh1GiOT4QBvWwCzghSwaA9mJBIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RiYTMwMWE5LTgzOWEtNGQ1Ni1iOGQ3LWRlZjA5MmM0ODc3Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs14wwDQYJKoZIhvcNAQELBQADggEBAINGqn65a1OBJj8p2reo9Tv7PcII nfeBEwrJAgIaUVroT+9HZmb7fW/EpboZuWoX6prQ0QWvhLE5o1CMAAOF9utnPHJN fgViAIJ1G63xWs+AscuMW8EDBsKK+FA0y3vwcUVEyfJ0Kac+SbExAVAYd16rcuVA iUQww2DxQZZthLgCqG9yNIZUeFrfEK2T724aNmTZufx44KO/aNKt/VBWtHpwCmXc JxNtdWOFZO4u6ZOng7HPkEI2SV0tWG0T76uf6hmwPZToae5J5iUcevfR1STxGIPI Fxo1aVot3lw7Fnw0hnCW55TJJVTOvaxpA2mzZfqjZZfyEF/h7EzyUHS3Exc= -----END CERTIFICATE-----Generated at Mon May 4 21:38:09 2026 by rpki-client