$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa File: 396fb735-ddd1-4676-8f03-961ccd29c7fb.roa (raw, json) Hash identifier: b1twE11FzvQtm0r6zWcWY2SN2yguDbnyw0fs5iWQ6yw= Subject key identifier: 93:78:9B:B6:29:7C:35:3F:88:9C:38:DF:E0:03:92:D8:C9:61:D6:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77AED1131175394F317940A59C72BAB2C598AECF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa Signing time: Wed 06 May 2026 00:30:15 +0000 ROA not before: Wed 06 May 2026 00:30:15 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.162.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:ae:d1:13:11:75:39:4f:31:79:40:a5:9c:72:ba:b2:c5:98:ae:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:30:15 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=1775ed6ac3991db5a3a64572b15fec10819645105bbd54f198201e9388056e16, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:28:4a:7a:71:fa:e5:fb:79:5d:ab:6d:01:37: 75:18:69:a0:63:02:d3:34:16:f5:99:82:86:d5:93: ca:97:34:5e:93:93:8b:02:d2:85:ec:e3:95:07:e3: 6c:18:a6:1f:15:a1:2f:57:ed:c1:43:fc:89:70:20: 68:dd:15:b5:9c:d1:e5:a6:d4:ed:de:0e:be:5d:ee: 7e:5f:5b:30:ad:0c:2d:cc:cb:12:88:ce:f4:c4:49: 47:53:36:f7:82:e7:e8:06:d5:dd:d2:bf:fd:5f:3f: 46:95:a8:b1:bc:cd:79:4a:9c:3a:a8:7b:2e:95:f8: be:1f:1c:bf:4b:7b:35:0b:e7:1c:03:b8:b9:2b:be: 17:e0:c1:15:9e:b1:d2:55:d8:18:79:ee:d3:53:ef: 6a:e4:a6:cf:7b:91:0a:46:b9:7f:e4:a8:5f:fa:ec: 04:11:0b:56:0d:c6:2d:73:63:0b:35:7d:63:4b:0e: 6f:5b:b4:1d:0d:48:97:01:ec:55:8d:02:fe:fb:68: c5:91:ad:bb:2a:10:da:f0:1e:5e:85:81:90:ae:24: 46:f0:94:f4:44:40:ce:e1:34:00:bf:4a:df:0b:9f: ee:34:d6:de:1e:d9:56:82:96:2d:6c:d1:54:d7:6b: b4:30:e1:57:94:9d:43:16:00:80:52:41:6c:5b:84: 0a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 93:78:9B:B6:29:7C:35:3F:88:9C:38:DF:E0:03:92:D8:C9:61:D6:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/396fb735-ddd1-4676-8f03-961ccd29c7fb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.162.0/24 Signature Algorithm: sha256WithRSAEncryption 48:08:95:9d:7d:89:6a:e5:47:c9:90:ef:60:50:bb:2d:49:fb: ea:b3:92:4d:db:db:57:7d:67:2f:34:bc:4d:e6:f2:4e:40:6e: da:44:26:b5:fd:11:24:10:79:52:47:fd:70:94:06:cf:80:46: 5e:1c:a7:12:82:57:27:23:ce:55:0f:37:8f:79:56:ed:2f:30: 57:36:d0:fa:8c:d1:96:c9:f3:54:18:83:ee:2a:a3:11:ff:98: 2d:c5:e6:93:3a:2b:24:18:c4:e2:0d:7e:85:b8:ee:19:f9:c7: 8a:42:30:7a:5b:7f:63:0b:9a:5d:39:48:42:57:52:99:88:92: 6b:48:c7:d5:28:8f:27:08:92:ac:05:66:34:f4:a1:0c:0e:da: 73:eb:fa:20:a0:95:90:a3:e3:d1:f8:ce:fe:c1:51:79:85:48: 31:cb:6a:84:92:1f:c1:ba:d3:23:07:d8:09:9e:b7:d4:b2:11: 29:52:d8:43:9d:6b:35:d0:4b:cd:06:82:ec:a9:89:d3:d8:71: 98:72:af:d8:ff:3d:a6:6a:63:f0:27:c9:f4:b3:49:2b:af:68: dc:04:a7:8b:0f:a0:dd:fb:b7:9f:f3:d9:36:9d:dd:5c:89:8e: b0:97:39:b0:dc:db:43:28:30:12:4d:11:f3:0a:8e:1f:ca:51: 95:db:93:bc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd67RExF1OU8xeUClnHK6ssWYrs8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAzMDE1WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzc1ZWQ2YWMzOTkxZGI1YTNhNjQ1NzJiMTVmZWMxMDgx OTY0NTEwNWJiZDU0ZjE5ODIwMWU5Mzg4MDU2ZTE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsKEp6cfrl+3ldq20BN3UYaaBjAtM0FvWZgobVk8qXNF6T k4sC0oXs45UH42wYph8VoS9X7cFD/IlwIGjdFbWc0eWm1O3eDr5d7n5fWzCtDC3M yxKIzvTESUdTNveC5+gG1d3Sv/1fP0aVqLG8zXlKnDqoey6V+L4fHL9LezUL5xwD uLkrvhfgwRWesdJV2Bh57tNT72rkps97kQpGuX/kqF/67AQRC1YNxi1zYws1fWNL Dm9btB0NSJcB7FWNAv77aMWRrbsqENrwHl6FgZCuJEbwlPREQM7hNAC/St8Ln+40 1t4e2VaCli1s0VTXa7Qw4VeUnUMWAIBSQWxbhArPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUk3ibtil8NT+InDjf4AOS2Mlh1rwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5NmZiNzM1LWRkZDEtNDY3Ni04ZjAzLTk2MWNjZDI5YzdmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl6IwDQYJKoZIhvcNAQELBQADggEBAEgIlZ19iWrlR8mQ72BQuy1J++qz kk3b21d9Zy80vE3m8k5AbtpEJrX9ESQQeVJH/XCUBs+ARl4cpxKCVycjzlUPN495 Vu0vMFc20PqM0ZbJ81QYg+4qoxH/mC3F5pM6KyQYxOINfoW47hn5x4pCMHpbf2ML ml05SEJXUpmIkmtIx9UojycIkqwFZjT0oQwO2nPr+iCglZCj49H4zv7BUXmFSDHL aoSSH8G60yMH2Amet9SyESlS2EOdazXQS80GguypidPYcZhyr9j/PaZqY/AnyfSz SSuvaNwEp4sPoN37t5/z2Tad3VyJjrCXObDc20MoMBJNEfMKjh/KUZXbk7w= -----END CERTIFICATE-----Generated at Tue May 12 21:54:26 2026 by rpki-client