$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa File: 40022edc-7d4c-49da-b461-30d23c93029d.roa (raw, json) Hash identifier: Q03bBZgngjPojRr3RG31MxjVZ2lwFdDi35WMO4ri0XI= Subject key identifier: D1:4D:ED:3A:07:DC:89:88:8D:CA:72:E1:CB:B6:90:8F:4E:5B:56:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7AD40FD27156A0E1614056D32978E9ABE2E3D383 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa Signing time: Fri 01 May 2026 00:51:04 +0000 ROA not before: Fri 01 May 2026 00:51:04 +0000 ROA not after: Thu 30 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.79.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:d4:0f:d2:71:56:a0:e1:61:40:56:d3:29:78:e9:ab:e2:e3:d3:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 1 00:51:04 2026 GMT Not After : Jul 30 23:59:59 2026 GMT Subject: serialNumber=c27ecb529a4f2854b5849308dccf24076eb9d4921de4187aa0929dbba38aa9d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:9a:65:b5:9b:c5:59:5b:12:4b:19:12:59:1d: 17:33:24:f3:5b:31:69:ba:32:18:f4:e6:f0:0c:8a: 6e:a8:f6:96:df:0d:db:a6:20:6c:1f:38:36:a4:e5: 98:3d:89:76:b7:45:ff:50:3e:78:9d:f2:4c:ed:65: d4:15:78:7d:a3:a1:2c:c6:37:8c:38:1f:d9:21:d5: 51:16:56:23:29:24:75:81:8a:df:5e:4f:5a:2c:2e: 1a:54:38:c3:d1:eb:dc:67:b8:8f:aa:4b:cc:69:32: f3:f7:7c:25:92:62:8c:93:d5:df:fa:95:28:41:43: d9:36:e9:88:86:18:0f:c6:ef:43:d0:21:d5:02:41: 87:0a:0c:1b:98:97:ca:8d:ef:02:7b:d8:89:2c:50: 0c:18:41:b6:dd:82:74:8e:f4:72:cd:9f:0e:47:7b: d6:b3:e6:29:bc:5b:6e:b5:ae:4d:69:22:da:af:27: 77:3b:73:0e:9a:df:4e:e3:d3:d4:74:9e:e1:fa:bf: 08:b2:1e:fa:17:00:25:c4:a4:72:9f:a7:05:33:52: 4f:1e:57:a7:41:6d:04:90:b6:54:86:7e:95:2f:fb: 11:6d:2a:1f:c7:20:46:cf:69:db:1f:cb:66:d7:a3: e0:69:d0:65:b9:3c:5d:6d:9e:0a:76:25:76:8d:5b: 91:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D1:4D:ED:3A:07:DC:89:88:8D:CA:72:E1:CB:B6:90:8F:4E:5B:56:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40022edc-7d4c-49da-b461-30d23c93029d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.79.0.0/16 Signature Algorithm: sha256WithRSAEncryption 68:79:7c:7f:f4:6a:37:10:83:cb:62:1e:38:02:e5:8f:78:95: dc:cc:77:37:fb:1c:2c:3a:a3:82:10:01:6a:88:fa:e1:32:31: ad:22:85:25:42:b3:d9:e5:32:4a:4a:7c:59:1f:ee:24:09:c6: 8b:fb:5d:ff:12:f6:7f:78:51:38:88:e0:34:b9:ad:47:48:81: bf:e6:60:83:35:63:9d:3c:55:83:7a:96:5c:bc:f9:01:7d:ae: 32:0c:d9:3d:de:96:e5:ad:f5:bb:64:54:bc:0a:3b:f6:bb:b9: 22:54:73:dc:a1:8b:82:54:7c:42:70:32:c8:a9:f1:21:c8:f0: 88:25:e8:c2:1a:96:45:19:1c:b0:bd:d0:a2:33:4e:be:02:85: e7:e3:75:57:ec:d2:6a:47:da:1a:d8:f2:f0:83:23:88:bf:f0: ef:74:28:da:74:9e:fc:f0:46:cb:67:9a:07:01:df:c2:95:df: d2:9e:de:3c:6a:8c:92:ba:7a:1e:5c:cb:df:b2:bc:e9:5f:31: b3:d6:c2:19:5c:45:ea:04:43:18:2d:d5:a0:8f:ef:6e:26:ce: 41:37:90:11:74:81:c0:96:50:5d:03:19:3a:b8:0d:d9:a7:c4: 63:a6:d6:fc:32:1f:94:2a:06:55:41:f0:8e:58:19:5a:5d:d1: 63:86:d0:75 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUetQP0nFWoOFhQFbTKXjpq+Lj04MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTAxMDA1MTA0WhcNMjYwNzMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjdlY2I1MjlhNGYyODU0YjU4NDkzMDhkY2NmMjQwNzZl YjlkNDkyMWRlNDE4N2FhMDkyOWRiYmEzOGFhOWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxmmW1m8VZWxJLGRJZHRczJPNbMWm6Mhj05vAMim6o9pbf DdumIGwfODak5Zg9iXa3Rf9QPnid8kztZdQVeH2joSzGN4w4H9kh1VEWViMpJHWB it9eT1osLhpUOMPR69xnuI+qS8xpMvP3fCWSYoyT1d/6lShBQ9k26YiGGA/G70PQ IdUCQYcKDBuYl8qN7wJ72IksUAwYQbbdgnSO9HLNnw5He9az5im8W261rk1pItqv J3c7cw6a307j09R0nuH6vwiyHvoXACXEpHKfpwUzUk8eV6dBbQSQtlSGfpUv+xFt Kh/HIEbPadsfy2bXo+Bp0GW5PF1tngp2JXaNW5FLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU0U3tOgfciYiNynLhy7aQj05bViUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwMDIyZWRjLTdkNGMtNDlkYS1iNDYxLTMwZDIzYzkzMDI5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4TzANBgkqhkiG9w0BAQsFAAOCAQEAaHl8f/RqNxCDy2IeOALlj3iV3Mx3 N/scLDqjghABaoj64TIxrSKFJUKz2eUySkp8WR/uJAnGi/td/xL2f3hROIjgNLmt R0iBv+ZggzVjnTxVg3qWXLz5AX2uMgzZPd6W5a31u2RUvAo79ru5IlRz3KGLglR8 QnAyyKnxIcjwiCXowhqWRRkcsL3QojNOvgKF5+N1V+zSakfaGtjy8IMjiL/w73Qo 2nSe/PBGy2eaBwHfwpXf0p7ePGqMkrp6HlzL37K86V8xs9bCGVxF6gRDGC3VoI/v bibOQTeQEXSBwJZQXQMZOrgN2afEY6bW/DIflCoGVUHwjlgZWl3RY4bQdQ== -----END CERTIFICATE-----Generated at Tue May 12 21:58:28 2026 by rpki-client