$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d0591a6e-6027-4086-8a15-b3726a145079.roa File: d0591a6e-6027-4086-8a15-b3726a145079.roa (raw, json) Hash identifier: ieBFNlCXU5AGSmORWFNRw3wMNBPadxQ+jKztL+6OE3w= Subject key identifier: D4:49:D3:A4:60:25:24:B6:0B:83:30:64:1C:EC:F0:83:75:46:08:E8 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 0CA51A16E782E10288620534D383AFC1807DB2A0 Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d0591a6e-6027-4086-8a15-b3726a145079.roa Signing time: Fri 15 May 2026 03:10:34 +0000 ROA not before: Fri 15 May 2026 03:10:34 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.232.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 31 May 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:a5:1a:16:e7:82:e1:02:88:62:05:34:d3:83:af:c1:80:7d:b2:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 15 03:10:34 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=6e9a96fc30e1efece76cd211891124b8eec8a397057ee96e867f8767bdaca568, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:77:61:30:8c:31:65:b8:66:ca:98:45:80:9b: 95:3f:47:18:bb:9b:08:c5:65:bf:cc:12:02:ba:f3: 77:c2:e9:e0:c8:91:83:f0:79:b5:7e:6e:1b:33:b5: ad:bd:d4:39:86:b4:c1:ac:e6:b9:32:33:2a:5e:e8: bb:7b:6e:86:bb:0c:45:51:d4:a5:31:93:e5:b9:e0: 5d:3f:37:bc:00:8e:48:ee:4d:47:5e:c0:99:71:99: 1c:68:27:b2:8b:fd:e9:1f:be:8c:ba:f3:53:3a:04: 82:fd:99:9a:c0:e8:5e:9c:b8:d0:2c:ff:1a:31:52: 8b:e4:e3:60:9e:7d:31:cf:ff:3f:62:83:73:d0:49: 4e:b0:32:79:fc:7f:45:e3:ad:b6:f6:e2:33:93:39: 35:ec:96:40:70:4e:a7:36:67:16:6b:13:6a:fd:e6: 6a:ff:87:86:02:66:87:f3:5d:e3:63:de:e5:74:f0: 86:3b:18:ac:65:e4:7e:5a:92:4b:1d:31:e3:3d:a9: c1:1f:85:34:1a:86:8a:eb:a3:fc:0d:7b:a8:e8:ca: af:a2:14:e8:2a:6c:1a:7d:66:85:7f:f3:26:31:77: 73:45:ad:94:b1:b4:78:79:5a:33:e6:ee:11:76:1b: ee:c9:8f:97:c4:97:5d:09:76:8a:4a:c2:0a:1d:47: 3f:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:49:D3:A4:60:25:24:B6:0B:83:30:64:1C:EC:F0:83:75:46:08:E8 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/d0591a6e-6027-4086-8a15-b3726a145079.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.232.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5e:0f:ee:b1:59:69:ff:58:dd:00:fe:4e:8b:37:af:9f:90:37: 96:16:3d:0d:d0:5e:94:ff:ea:b9:d7:e6:99:a7:f2:44:46:32: b5:7a:38:f9:5c:8b:80:c3:3f:cf:1c:b3:c7:35:31:38:c4:d4: 61:b3:1d:96:2e:cf:37:94:a2:59:da:d4:eb:69:ba:ca:a1:f6: 6e:08:3a:3d:24:99:9a:07:31:50:fd:68:38:b4:35:f5:6a:e6: df:5a:e5:64:60:c1:f1:c5:e2:d9:b7:3b:f1:fd:3b:6c:0e:ae: ea:c4:e6:0f:67:ea:bd:75:0c:b5:19:dd:46:1d:89:50:52:73: 55:b5:f6:dd:31:da:aa:ff:7e:71:f8:ce:91:45:a9:65:66:ce: 4d:26:fa:28:46:a6:46:34:55:45:da:b7:68:c5:9a:c7:d1:43: 32:49:b5:59:64:10:1a:be:ef:a3:e9:4b:d1:01:a4:ce:2c:b0: 19:17:7d:0b:45:13:c1:f3:66:09:9e:52:9a:e4:64:ee:1f:e7: 22:28:fa:51:42:6a:55:43:5f:fd:65:21:b4:c1:40:68:f7:d9: d6:92:88:e7:ae:86:65:1e:36:19:c3:82:b7:1c:5e:d4:f3:ac: 19:b6:cb:ea:c0:c7:a7:6a:08:a1:fa:88:24:8d:ca:a7:ee:15: de:42:26:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDKUaFueC4QKIYgU004OvwYB9sqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTE1MDMxMDM0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZTlhOTZmYzMwZTFlZmVjZTc2Y2QyMTE4OTExMjRiOGVl YzhhMzk3MDU3ZWU5NmU4NjdmODc2N2JkYWNhNTY4MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCad2EwjDFluGbKmEWAm5U/Rxi7mwjFZb/MEgK683fC6eDI kYPwebV+bhszta291DmGtMGs5rkyMype6Lt7boa7DEVR1KUxk+W54F0/N7wAjkju TUdewJlxmRxoJ7KL/ekfvoy681M6BIL9mZrA6F6cuNAs/xoxUovk42CefTHP/z9i g3PQSU6wMnn8f0Xjrbb24jOTOTXslkBwTqc2ZxZrE2r95mr/h4YCZofzXeNj3uV0 8IY7GKxl5H5akksdMeM9qcEfhTQahorro/wNe6joyq+iFOgqbBp9ZoV/8yYxd3NF rZSxtHh5WjPm7hF2G+7Jj5fEl10JdopKwgodRz/HAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1EnTpGAlJLYLgzBkHOzwg3VGCOgwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyL2QwNTkxYTZlLTYwMjctNDA4Ni04YTE1LWIzNzI2YTE0NTA3OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc26AAwDQYJKoZIhvcNAQELBQADggEBAF4P7rFZaf9Y3QD+Tos3r5+QN5YW PQ3QXpT/6rnX5pmn8kRGMrV6OPlci4DDP88cs8c1MTjE1GGzHZYuzzeUolna1Otp usqh9m4IOj0kmZoHMVD9aDi0NfVq5t9a5WRgwfHF4tm3O/H9O2wOrurE5g9n6r11 DLUZ3UYdiVBSc1W19t0x2qr/fnH4zpFFqWVmzk0m+ihGpkY0VUXat2jFmsfRQzJJ tVlkEBq+76PpS9EBpM4ssBkXfQtFE8HzZgmeUprkZO4f5yIo+lFCalVDX/1lIbTB QGj32daSiOeuhmUeNhnDgrccXtTzrBm2y+rAx6dqCKH6iCSNyqfuFd5CJlY= -----END CERTIFICATE-----Generated at Sat May 30 02:00:20 2026 by rpki-client