$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa File: 3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa (raw, json) Hash identifier: WOiCjmcEJdTdQAb6maHx1Lijw9/wHPv3pg+Bej11v98= Subject key identifier: 40:B9:D1:DF:22:DD:36:01:02:DD:6D:A5:01:4A:87:74:F3:E7:33:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 60092B9C292A39FE85B2E3584F94E9D31D9C599D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa Signing time: Wed 06 May 2026 00:11:08 +0000 ROA not before: Wed 06 May 2026 00:11:08 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.168.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60:09:2b:9c:29:2a:39:fe:85:b2:e3:58:4f:94:e9:d3:1d:9c:59:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:11:08 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=c8a395b8904bfe89105a2fd9cfff9a2f43f395ce7fa339494448a7eeb67f8d66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:01:38:06:84:d9:b8:2b:8d:f3:d7:65:ca:ce: df:c7:32:bf:bc:83:b8:2c:71:5e:0b:b3:6e:35:05: db:1d:de:84:db:e2:32:a7:9c:6d:31:c2:7e:a9:21: bc:7b:55:17:61:84:e8:fe:fa:e9:1e:16:55:27:71: f8:fb:51:40:91:41:63:69:77:99:63:4b:5e:02:41: ee:a9:9c:94:e9:e6:af:ea:95:f4:5b:7d:6b:37:a2: b8:3a:74:ef:6a:59:96:7e:77:6e:d5:7a:fc:9b:06: 46:9f:6f:a3:d1:73:ca:c6:2d:5e:75:95:b1:1e:bc: c4:1f:86:04:30:1f:58:85:0a:61:02:75:6b:64:f2: 9f:e5:68:24:37:7a:72:93:ca:06:99:24:b1:db:20: 95:02:d8:25:81:3f:50:43:62:af:45:1c:69:a4:5e: 22:e0:15:e4:4f:17:26:13:74:ec:de:ad:72:41:b9: d7:0a:2b:75:66:93:1e:17:f6:a3:31:84:33:4f:91: bd:7c:bf:09:ff:27:fb:78:24:06:db:e7:67:06:20: cc:55:bc:27:67:00:eb:d7:e7:6f:f3:bc:e5:01:e7: e2:0e:4a:8d:ab:7d:74:2b:36:34:77:e3:88:21:88: f7:79:e9:20:59:d5:07:5b:8a:4d:b8:af:54:fb:06: 74:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 40:B9:D1:DF:22:DD:36:01:02:DD:6D:A5:01:4A:87:74:F3:E7:33:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dc5c33f-c479-49ed-8d91-5f2b6a296eb1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.168.0/22 Signature Algorithm: sha256WithRSAEncryption 96:ea:79:48:1e:14:0a:b7:62:5f:c9:80:54:58:1a:1f:21:60: 41:65:1c:77:3d:01:8b:d5:1b:54:35:c3:50:1f:5e:ff:76:89: b9:5a:79:ac:36:2b:0e:de:61:71:82:be:d2:8b:e2:90:ec:34: 16:cb:bf:0b:5f:3f:c0:0f:d7:7c:24:78:51:45:b3:61:ea:d5: c1:80:d9:67:b8:ee:ad:76:7c:89:19:56:08:cf:bd:70:0b:fd: 29:a1:fe:20:e8:41:c1:99:1b:d9:1d:67:52:4c:12:24:f4:21: 0d:f9:4b:c1:d1:69:bb:f1:b2:9e:44:ad:02:f3:91:2d:ed:42: 94:ff:3c:c2:68:b5:d6:02:76:4e:a9:46:32:4c:09:31:b7:34: 23:51:07:d1:97:6d:24:69:14:9f:5c:0e:71:b5:8b:39:3b:90: b2:00:37:3c:8f:8f:3e:e5:6d:78:fc:b8:e5:08:78:03:09:c1: d4:46:55:58:b3:ec:57:ad:71:2f:1e:09:f4:4c:fc:56:ea:65: 61:b1:05:7b:52:39:df:f5:88:5b:d7:c8:60:e7:53:d0:7a:7f: 13:5b:d5:cb:58:89:98:4a:6e:92:5c:10:05:b1:61:32:4b:9d: 68:36:84:8f:0b:4c:7d:be:15:4f:38:c3:e1:e8:06:29:c0:4e: 37:3f:dd:4c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUYAkrnCkqOf6FsuNYT5Tp0x2cWZ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAxMTA4WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjOGEzOTViODkwNGJmZTg5MTA1YTJmZDljZmZmOWEyZjQz ZjM5NWNlN2ZhMzM5NDk0NDQ4YTdlZWI2N2Y4ZDY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxATgGhNm4K43z12XKzt/HMr+8g7gscV4Ls241Bdsd3oTb 4jKnnG0xwn6pIbx7VRdhhOj++ukeFlUncfj7UUCRQWNpd5ljS14CQe6pnJTp5q/q lfRbfWs3org6dO9qWZZ+d27VevybBkafb6PRc8rGLV51lbEevMQfhgQwH1iFCmEC dWtk8p/laCQ3enKTygaZJLHbIJUC2CWBP1BDYq9FHGmkXiLgFeRPFyYTdOzerXJB udcKK3Vmkx4X9qMxhDNPkb18vwn/J/t4JAbb52cGIMxVvCdnAOvX52/zvOUB5+IO So2rfXQrNjR344ghiPd56SBZ1Qdbik24r1T7BnQFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQLnR3yLdNgEC3W2lAUqHdPPnMwgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkYzVjMzNmLWM0NzktNDllZC04ZDkxLTVmMmI2YTI5NmViMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJjl6gwDQYJKoZIhvcNAQELBQADggEBAJbqeUgeFAq3Yl/JgFRYGh8hYEFl HHc9AYvVG1Q1w1AfXv92iblaeaw2Kw7eYXGCvtKL4pDsNBbLvwtfP8AP13wkeFFF s2Hq1cGA2We47q12fIkZVgjPvXAL/Smh/iDoQcGZG9kdZ1JMEiT0IQ35S8HRabvx sp5ErQLzkS3tQpT/PMJotdYCdk6pRjJMCTG3NCNRB9GXbSRpFJ9cDnG1izk7kLIA NzyPjz7lbXj8uOUIeAMJwdRGVViz7FetcS8eCfRM/FbqZWGxBXtSOd/1iFvXyGDn U9B6fxNb1ctYiZhKbpJcEAWxYTJLnWg2hI8LTH2+FU84w+HoBinATjc/3Uw= -----END CERTIFICATE-----Generated at Tue May 12 21:43:22 2026 by rpki-client