$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f278b37a-a12f-48c8-bb13-86309c2b47f7.roa File: f278b37a-a12f-48c8-bb13-86309c2b47f7.roa (raw, json) Hash identifier: M/oZe8cyblJlMZypuXJfV6EhRBeAcrHGFqoBmUGCKS0= Subject key identifier: 85:75:39:06:FA:19:D3:73:7B:B6:7C:09:8F:88:91:79:70:86:E5:53 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 423DE64D72E9EDDD9D3762A11FDD71F798CE561C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f278b37a-a12f-48c8-bb13-86309c2b47f7.roa Signing time: Mon 27 Apr 2026 00:20:25 +0000 ROA not before: Mon 27 Apr 2026 00:20:25 +0000 ROA not after: Sun 26 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 74.237.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 04 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42:3d:e6:4d:72:e9:ed:dd:9d:37:62:a1:1f:dd:71:f7:98:ce:56:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 27 00:20:25 2026 GMT Not After : Jul 26 23:59:59 2026 GMT Subject: serialNumber=2d3413d4d81c6d122e102c3fa98ff3d27a069743b652d950975cb0f614a8d43b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:02:95:6a:8f:3b:d2:b3:59:e3:2d:88:63:34: 88:5d:65:12:d6:a6:ad:e9:c8:80:50:73:61:30:5c: 77:64:83:0c:bd:70:7d:e8:fa:01:2e:5a:56:16:d7: d5:bb:6b:bf:fd:a3:ad:5f:08:48:83:aa:dd:6a:3a: e6:55:67:46:5d:54:c7:b9:08:94:10:d5:a4:92:a7: b8:79:49:d4:c4:2e:5e:c5:7a:1d:ca:9d:db:6f:2f: 30:be:33:61:b8:2d:12:8f:22:fb:58:91:3a:7e:f1: 34:cd:ce:3e:e8:99:17:c9:77:56:70:8b:1f:da:a4: 0b:df:70:c2:21:b7:f3:70:45:d4:1f:b4:8c:97:74: d3:8e:04:1a:97:55:71:44:fe:3a:44:e9:7c:d4:a4: 5c:e2:27:12:8f:13:8b:41:29:6f:14:1f:de:50:5a: d6:5a:68:25:3d:a9:3a:98:fc:60:a2:55:df:75:6d: 82:f4:22:78:ff:88:c0:ca:ab:f1:3d:cb:c2:c0:98: 51:68:4c:f0:72:f3:be:1e:95:59:86:c4:c8:35:db: ca:a7:73:3a:19:b2:44:2d:22:c8:d6:67:be:e3:7a: f5:26:59:71:2a:bf:91:3e:b8:dd:17:74:4e:00:4e: d6:5b:a4:0f:b3:65:8b:82:54:b9:1a:23:e7:31:73: 39:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:75:39:06:FA:19:D3:73:7B:B6:7C:09:8F:88:91:79:70:86:E5:53 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f278b37a-a12f-48c8-bb13-86309c2b47f7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.237.0.0/16 Signature Algorithm: sha256WithRSAEncryption 69:48:13:3a:11:ff:21:c1:1f:c0:8b:30:27:b4:64:d7:f7:ef: c0:f2:4f:dc:34:5f:df:65:b5:6c:ea:52:89:11:cb:2a:d7:74: c4:c7:64:7a:67:61:8b:8c:e3:84:01:7c:bb:f1:2d:d6:9c:61: 83:7c:4e:33:c7:37:9d:eb:73:5a:76:c0:bf:d2:88:55:eb:c3: 95:02:be:87:e8:1b:2b:f9:7b:1d:28:93:8b:af:02:56:88:37: 84:2d:16:23:6f:36:1f:78:90:2e:0e:cd:91:21:a2:46:df:50: 97:4b:d8:62:f3:65:a8:65:8d:c4:0d:7b:e4:39:7d:90:e9:28: f7:fc:68:fa:c9:95:1f:dc:63:37:b2:16:13:99:3f:c2:fc:83: c2:92:f4:52:7b:fe:2e:bc:81:fa:96:d9:12:75:a8:83:56:5e: cc:7f:87:bd:5f:be:0e:e1:19:5b:c5:37:21:12:93:ac:ab:2e: c8:2d:c2:88:55:45:90:e6:8f:b9:59:6f:08:39:cf:e3:bf:e5: 32:cd:5d:1b:75:0d:1b:33:2c:b5:1b:2e:7b:f7:f8:fb:f9:63: e4:b7:f1:a3:05:34:32:72:4b:6e:65:d8:e0:b4:c3:f0:18:d4: c3:db:85:f7:66:ae:ee:b0:3c:19:52:19:14:2e:65:03:0e:96: 2b:da:4b:1c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQj3mTXLp7d2dN2KhH91x95jOVhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDI3MDAyMDI1WhcNMjYwNzI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyZDM0MTNkNGQ4MWM2ZDEyMmUxMDJjM2ZhOThmZjNkMjdh MDY5NzQzYjY1MmQ5NTA5NzVjYjBmNjE0YThkNDNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaApVqjzvSs1njLYhjNIhdZRLWpq3pyIBQc2EwXHdkgwy9 cH3o+gEuWlYW19W7a7/9o61fCEiDqt1qOuZVZ0ZdVMe5CJQQ1aSSp7h5SdTELl7F eh3KndtvLzC+M2G4LRKPIvtYkTp+8TTNzj7omRfJd1Zwix/apAvfcMIht/NwRdQf tIyXdNOOBBqXVXFE/jpE6XzUpFziJxKPE4tBKW8UH95QWtZaaCU9qTqY/GCiVd91 bYL0Inj/iMDKq/E9y8LAmFFoTPBy874elVmGxMg128qnczoZskQtIsjWZ77jevUm WXEqv5E+uN0XdE4ATtZbpA+zZYuCVLkaI+cxczllAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUhXU5BvoZ03N7tnwJj4iReXCG5VMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyNzhiMzdhLWExMmYtNDhjOC1iYjEzLTg2MzA5YzJiNDdmNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBK7TANBgkqhkiG9w0BAQsFAAOCAQEAaUgTOhH/IcEfwIswJ7Rk1/fvwPJP 3DRf32W1bOpSiRHLKtd0xMdkemdhi4zjhAF8u/Et1pxhg3xOM8c3netzWnbAv9KI VevDlQK+h+gbK/l7HSiTi68CVog3hC0WI282H3iQLg7NkSGiRt9Ql0vYYvNlqGWN xA175Dl9kOko9/xo+smVH9xjN7IWE5k/wvyDwpL0Unv+LryB+pbZEnWog1ZezH+H vV++DuEZW8U3IRKTrKsuyC3CiFVFkOaPuVlvCDnP47/lMs1dG3UNGzMstRsue/f4 +/lj5LfxowU0MnJLbmXY4LTD8BjUw9uF92au7rA8GVIZFC5lAw6WK9pLHA== -----END CERTIFICATE-----Generated at Sun May 3 15:31:19 2026 by rpki-client