$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b5120f-9da8-4835-9d8b-0c7948eafa35.roa File: 24b5120f-9da8-4835-9d8b-0c7948eafa35.roa (raw, json) Hash identifier: 242TajzoiaKrEzCzxwPDG/iRYuF0egQ709F3gUOn/ks= Subject key identifier: B5:73:3A:70:41:0F:D1:A9:13:ED:D0:54:3E:A4:44:F9:E5:51:DA:02 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 43AE1E5E80C6CAB343AD57BD32721C06562A9F6A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b5120f-9da8-4835-9d8b-0c7948eafa35.roa Signing time: Mon 04 May 2026 01:21:18 +0000 ROA not before: Mon 04 May 2026 01:21:18 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.162.72.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:ae:1e:5e:80:c6:ca:b3:43:ad:57:bd:32:72:1c:06:56:2a:9f:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 01:21:18 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=ade72b7f340432bf4333b258011a81e0a35f3c200c8f9b11407a44fead2857b3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6c:ed:72:da:70:5f:da:10:6c:51:34:c8:41: 06:0f:18:f2:3a:d4:31:22:28:e0:ec:69:f5:2d:ba: a7:e9:89:bb:aa:5c:48:40:d6:26:2a:1d:ef:76:de: be:43:3c:a2:ea:8a:86:22:5c:ff:1d:ce:81:2e:f6: 5d:0c:6a:78:3a:68:37:fc:ca:94:94:2d:94:35:e3: 2b:34:9a:d5:1e:35:25:6e:36:56:32:1b:9f:84:bd: f8:ef:1f:b7:53:b5:23:a6:2c:81:b2:0b:22:be:38: 35:17:9a:6c:0b:db:f3:fc:bf:30:9f:47:15:b6:dd: 0f:46:65:07:17:d0:71:64:9d:4a:11:02:f5:00:d6: ca:46:28:40:57:eb:8b:71:59:74:42:f1:df:70:27: fe:37:64:43:1c:32:74:bb:ef:fd:a8:34:08:29:37: f5:e4:64:04:a7:e2:5e:df:3c:0d:4f:9c:86:83:b4: 1c:90:a0:08:cd:6c:a7:24:d4:df:51:d2:62:d1:fc: 87:08:8b:c7:ea:1a:ab:5a:1f:0e:b4:43:d0:c3:d4: 54:a1:ac:ee:a6:fe:5f:a1:cf:15:73:32:7a:8a:81: 98:1e:19:63:58:7e:79:06:a0:d5:b1:cf:92:c3:e3: 1c:57:68:f1:a3:e0:0f:96:2c:d6:83:0f:40:75:f1: 58:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:73:3A:70:41:0F:D1:A9:13:ED:D0:54:3E:A4:44:F9:E5:51:DA:02 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/24b5120f-9da8-4835-9d8b-0c7948eafa35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.162.72.0/21 Signature Algorithm: sha256WithRSAEncryption 21:b7:87:79:19:f9:20:a4:b6:c1:b9:66:9d:f4:a7:be:f1:31: 4e:01:6f:00:6c:c1:43:b8:73:1a:63:f6:1b:fe:21:d4:9c:85: 9f:22:5a:59:83:21:76:02:29:f8:99:ba:6b:66:fb:ca:fd:a9: da:99:6b:05:54:30:bf:eb:ae:06:83:59:ce:40:bf:5f:51:2a: 86:59:7f:1b:4f:86:29:48:00:e9:8a:7e:11:6a:65:2c:db:98: 89:a5:a3:40:c8:ef:3f:f0:69:97:4a:62:12:cb:c7:91:4d:1f: 72:43:b1:36:48:49:a8:9e:9d:67:27:a4:da:84:2f:a7:9a:d5: 39:d4:96:5f:8d:2f:29:07:f6:9e:b1:a6:2f:8d:06:cf:39:e9: 61:7e:39:05:a1:f3:87:eb:89:e2:08:5e:a4:14:37:56:b3:a8: 6d:ed:cb:d1:fb:a4:8f:67:c5:85:bc:3b:b7:11:e5:e2:17:79: 2d:ea:77:34:21:ff:f0:fb:ba:1f:7c:ad:e2:16:49:d4:29:a0: 7b:60:49:f4:1b:e3:21:17:2a:fe:25:ab:64:31:7f:1c:a8:ff: d9:10:27:a3:2a:8d:50:b7:a5:13:e2:e9:0a:bd:4d:11:e3:5c: ae:3e:b5:22:cc:d0:26:5a:84:df:07:38:94:6f:b9:56:6d:f6: b7:ce:e2:9f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ64eXoDGyrNDrVe9MnIcBlYqn2owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDEyMTE4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhZGU3MmI3ZjM0MDQzMmJmNDMzM2IyNTgwMTFhODFlMGEz NWYzYzIwMGM4ZjliMTE0MDdhNDRmZWFkMjg1N2IzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4bO1y2nBf2hBsUTTIQQYPGPI61DEiKODsafUtuqfpibuq XEhA1iYqHe923r5DPKLqioYiXP8dzoEu9l0Mang6aDf8ypSULZQ14ys0mtUeNSVu NlYyG5+EvfjvH7dTtSOmLIGyCyK+ODUXmmwL2/P8vzCfRxW23Q9GZQcX0HFknUoR AvUA1spGKEBX64txWXRC8d9wJ/43ZEMcMnS77/2oNAgpN/XkZASn4l7fPA1PnIaD tByQoAjNbKck1N9R0mLR/IcIi8fqGqtaHw60Q9DD1FShrO6m/l+hzxVzMnqKgZge GWNYfnkGoNWxz5LD4xxXaPGj4A+WLNaDD0B18Vg9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtXM6cEEP0akT7dBUPqRE+eVR2gIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI0YjUxMjBmLTlkYTgtNDgzNS05ZDhiLTBjNzk0OGVhZmEzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNokgwDQYJKoZIhvcNAQELBQADggEBACG3h3kZ+SCktsG5Zp30p77xMU4B bwBswUO4cxpj9hv+IdSchZ8iWlmDIXYCKfiZumtm+8r9qdqZawVUML/rrgaDWc5A v19RKoZZfxtPhilIAOmKfhFqZSzbmImlo0DI7z/waZdKYhLLx5FNH3JDsTZISaie nWcnpNqEL6ea1TnUll+NLykH9p6xpi+NBs856WF+OQWh84frieIIXqQUN1azqG3t y9H7pI9nxYW8O7cR5eIXeS3qdzQh//D7uh98reIWSdQpoHtgSfQb4yEXKv4lq2Qx fxyo/9kQJ6MqjVC3pRPi6Qq9TRHjXK4+tSLM0CZahN8HOJRvuVZt9rfO4p8= -----END CERTIFICATE-----Generated at Tue May 12 21:51:45 2026 by rpki-client