$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dce774fb-7083-4b97-a7b4-a1059c4ea9cf.roa File: dce774fb-7083-4b97-a7b4-a1059c4ea9cf.roa (raw, json) Hash identifier: NZDoEwTYKfck9crxrxhu8oqIukDvueaW8YAyUXp3Tek= Subject key identifier: 4C:F7:D2:2C:15:FD:AA:A6:C6:78:50:BD:EF:67:86:83:13:82:71:77 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6ADF1A22F63D0858519E006DB416176EC0B013BE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dce774fb-7083-4b97-a7b4-a1059c4ea9cf.roa Signing time: Sat 02 May 2026 00:50:07 +0000 ROA not before: Sat 02 May 2026 00:50:07 +0000 ROA not after: Fri 31 Jul 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.141.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 06 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:df:1a:22:f6:3d:08:58:51:9e:00:6d:b4:16:17:6e:c0:b0:13:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 2 00:50:07 2026 GMT Not After : Jul 31 23:59:59 2026 GMT Subject: serialNumber=3306535d10aa5b3edc1e168525b34c011ea60926f39882cdbb654372d89b1946, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e6:07:f7:82:95:00:b9:7b:0b:31:7a:7c:24: ca:67:a8:fe:d6:fd:10:d8:48:cf:59:5e:78:30:4a: 59:67:d7:86:a7:07:11:e8:96:d4:26:7b:3d:e0:b9: 22:28:00:5f:16:37:79:86:b8:2c:c9:a8:3b:89:ec: 00:ad:af:00:75:c7:7d:9a:3b:2d:ab:42:da:87:c1: 48:f7:33:dc:8a:36:11:e5:c2:71:27:50:29:9e:f2: 50:74:e6:86:e6:03:a9:2a:8a:24:4f:aa:96:db:ea: 7b:ef:dd:16:48:83:97:a6:78:24:b0:d3:a7:d5:89: 2d:ab:6e:25:7e:37:ec:2c:6d:6b:38:36:53:39:8e: 7b:4e:1e:2e:b6:1f:57:d5:73:fb:ca:3a:32:95:63: b6:22:b6:41:e6:97:3b:d7:5d:be:14:da:43:c0:dc: 85:bc:c4:f6:53:2a:fa:d9:6e:19:39:68:fa:0b:21: 62:f0:9a:d7:d7:28:ce:ac:2b:de:23:0b:b2:4c:70: 99:a7:2f:c5:00:48:10:4d:91:3b:be:f2:86:15:27: 1d:ab:be:ec:1d:1a:8e:ea:4f:3d:79:4a:84:8d:42: 81:4a:7c:94:91:f0:92:03:24:8e:d8:f8:10:3c:95: db:f3:5c:f0:92:05:fb:12:f5:4e:4d:58:77:b7:42: 0c:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4C:F7:D2:2C:15:FD:AA:A6:C6:78:50:BD:EF:67:86:83:13:82:71:77 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dce774fb-7083-4b97-a7b4-a1059c4ea9cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.141.0.0/16 Signature Algorithm: sha256WithRSAEncryption 46:b3:5e:20:48:47:97:72:47:d9:23:55:9b:6c:fa:8c:79:82: f2:3e:95:0a:db:74:d8:56:36:92:24:b6:54:9b:29:53:bb:14: 23:0e:30:32:96:8e:f1:a0:d3:57:1f:9e:2d:1a:c3:98:54:e1: 86:10:12:9a:b7:e5:ad:5e:34:c6:29:66:09:03:79:65:4e:fa: a7:c4:6d:4d:e5:b2:4f:4c:21:a9:d5:5f:4b:3f:89:56:5d:32: bf:b2:ab:19:0d:d3:cc:8c:e3:bf:21:04:a8:76:4d:bc:1a:ea: 5e:46:e8:3e:c3:45:f6:ab:9a:8c:72:93:00:70:c4:52:19:af: 74:cf:4a:84:11:bb:50:2f:99:dd:47:8d:a3:c7:d5:9e:54:fa: de:18:89:ad:f2:50:b7:5c:6b:6c:bb:04:50:86:4c:93:5e:ef: 49:12:f8:d9:dd:67:21:10:45:88:da:8f:7e:e0:43:45:88:f8: cd:b4:9b:88:6e:98:3d:3d:e9:dc:2b:d8:45:a2:82:7d:22:f8: d0:6a:94:cd:34:f8:82:62:19:99:20:aa:3e:35:16:48:83:0b: 3c:b1:04:d1:61:4b:66:0e:36:ba:dd:69:19:17:52:31:9a:dd: f3:69:e7:fd:af:9c:a4:27:50:4e:e1:93:ae:05:6c:0c:e7:00: ff:63:f1:09 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUat8aIvY9CFhRngBttBYXbsCwE74wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAyMDA1MDA3WhcNMjYwNzMxMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzA2NTM1ZDEwYWE1YjNlZGMxZTE2ODUyNWIzNGMwMTFl YTYwOTI2ZjM5ODgyY2RiYjY1NDM3MmQ4OWIxOTQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb5gf3gpUAuXsLMXp8JMpnqP7W/RDYSM9ZXngwSlln14an BxHoltQmez3guSIoAF8WN3mGuCzJqDuJ7ACtrwB1x32aOy2rQtqHwUj3M9yKNhHl wnEnUCme8lB05obmA6kqiiRPqpbb6nvv3RZIg5emeCSw06fViS2rbiV+N+wsbWs4 NlM5jntOHi62H1fVc/vKOjKVY7YitkHmlzvXXb4U2kPA3IW8xPZTKvrZbhk5aPoL IWLwmtfXKM6sK94jC7JMcJmnL8UASBBNkTu+8oYVJx2rvuwdGo7qTz15SoSNQoFK fJSR8JIDJI7Y+BA8ldvzXPCSBfsS9U5NWHe3QgzxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUTPfSLBX9qqbGeFC972eGgxOCcXcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjZTc3NGZiLTcwODMtNGI5Ny1hN2I0LWExMDU5YzRlYTljZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQjTANBgkqhkiG9w0BAQsFAAOCAQEARrNeIEhHl3JH2SNVm2z6jHmC8j6V Ctt02FY2kiS2VJspU7sUIw4wMpaO8aDTVx+eLRrDmFThhhASmrflrV40xilmCQN5 ZU76p8RtTeWyT0whqdVfSz+JVl0yv7KrGQ3TzIzjvyEEqHZNvBrqXkboPsNF9qua jHKTAHDEUhmvdM9KhBG7UC+Z3UeNo8fVnlT63hiJrfJQt1xrbLsEUIZMk17vSRL4 2d1nIRBFiNqPfuBDRYj4zbSbiG6YPT3p3CvYRaKCfSL40GqUzTT4gmIZmSCqPjUW SIMLPLEE0WFLZg42ut1pGRdSMZrd82nn/a+cpCdQTuGTrgVsDOcA/2PxCQ== -----END CERTIFICATE-----Generated at Mon May 4 22:29:57 2026 by rpki-client