$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa File: 52a2b218-2a29-4964-b153-565ac1d505cf.roa (raw, json) Hash identifier: qOqZ4Q+G9xDxFwJzVHa5sL1Chn4HQi3OYs4YPXba3z0= Subject key identifier: AA:E7:A3:E3:A2:4D:25:57:3F:B4:60:7A:06:D8:13:05:0B:AF:6C:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22624FA88489DA0D87B3DBDE0E28A80C657CA991 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa Signing time: Wed 06 May 2026 00:21:27 +0000 ROA not before: Wed 06 May 2026 00:21:27 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.59.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:62:4f:a8:84:89:da:0d:87:b3:db:de:0e:28:a8:0c:65:7c:a9:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:21:27 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=b5c77bc9dfd5648eda7fc6f877726ff06437902ef7c1126183b5d88dfb5cb206, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:4f:01:af:5f:0f:91:3c:f4:50:d1:58:31:63: 4d:a9:54:6f:7d:e6:d2:62:d3:23:c6:9a:2e:02:69: a8:08:7f:20:59:13:bf:a3:1f:e5:0d:73:ee:ba:d1: c5:b0:fa:7b:a8:2b:9c:b0:aa:0c:55:59:40:45:b3: d9:8c:7f:83:e7:67:db:55:e7:6a:84:af:82:ee:a3: 05:c8:ef:31:d1:15:e0:ec:31:8e:b1:16:77:a7:49: e0:c0:ba:b7:7e:f1:0a:4f:3a:d9:ba:c1:1e:7f:61: 44:3f:5b:0d:ee:ab:66:c7:60:f5:e5:7c:35:97:a0: cf:ea:ac:83:02:74:5a:ee:60:ea:ed:0c:54:4e:72: e9:1f:ab:a9:fe:c8:a3:6f:b3:33:02:5d:c7:12:9c: 35:b9:79:ef:e1:19:88:fa:d3:87:b2:b8:1a:6c:35: 2a:33:08:29:04:c0:84:f2:c0:d7:d8:f1:07:86:e0: ee:a1:ab:5a:db:84:44:cc:2c:fa:95:91:e5:86:10: d1:f3:77:6c:e6:9c:67:96:8a:46:09:bc:19:03:f5: 66:87:0a:dd:d8:30:38:eb:de:45:f8:12:dc:05:d3: c2:40:dd:3f:d6:d9:be:04:b0:f8:01:34:35:df:01: 3e:1b:e3:a1:52:72:7e:74:fd:91:cc:69:79:cf:d2: 19:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:E7:A3:E3:A2:4D:25:57:3F:B4:60:7A:06:D8:13:05:0B:AF:6C:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/52a2b218-2a29-4964-b153-565ac1d505cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.59.0.0/18 Signature Algorithm: sha256WithRSAEncryption 5e:36:d1:81:b0:a9:18:66:cd:38:0a:5d:b2:27:d9:10:8e:54: 06:50:19:70:a0:e2:82:8d:a2:d2:15:b6:88:8f:a2:d9:80:e9: ed:1c:d7:79:57:22:96:fb:44:92:06:88:a5:76:77:28:4d:f7: 95:18:16:e2:5a:6b:4f:ac:ba:5c:e6:a1:83:3b:89:f9:a5:15: c6:92:ce:97:4d:fe:36:3a:64:60:1b:8e:56:3a:b1:92:f8:f9: fa:cc:c6:cf:0b:1c:55:cb:a8:95:cc:d2:75:28:22:af:7e:ba: d0:8e:50:a9:f7:78:37:8b:1d:53:bc:b6:cd:b4:f5:6e:86:5f: aa:fd:c2:65:35:94:52:1e:20:bb:5b:52:2f:71:f3:8e:3e:30: be:fd:84:9e:fa:d6:1f:86:86:74:42:b8:aa:81:9f:b9:54:97: b8:87:ab:03:e1:70:4d:ce:63:8d:88:34:dd:e3:2c:71:a5:14: ea:d3:e0:fe:65:f0:11:26:6f:58:25:3e:38:e0:3d:6e:9a:37: 12:2b:f2:be:fa:d8:82:c1:6d:2f:c8:9c:88:c0:7e:89:6c:d9: f8:ac:a9:54:ca:cf:69:a2:d2:1c:f2:29:e4:a0:96:ad:48:7b: ad:4b:85:d5:ef:b7:da:8e:2a:af:44:ce:06:24:2a:b6:37:9c: 9d:be:9c:dc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUImJPqISJ2g2Hs9veDiioDGV8qZEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMTI3WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWM3N2JjOWRmZDU2NDhlZGE3ZmM2Zjg3NzcyNmZmMDY0 Mzc5MDJlZjdjMTEyNjE4M2I1ZDg4ZGZiNWNiMjA2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWTwGvXw+RPPRQ0VgxY02pVG995tJi0yPGmi4CaagIfyBZ E7+jH+UNc+660cWw+nuoK5ywqgxVWUBFs9mMf4PnZ9tV52qEr4LuowXI7zHRFeDs MY6xFnenSeDAurd+8QpPOtm6wR5/YUQ/Ww3uq2bHYPXlfDWXoM/qrIMCdFruYOrt DFROcukfq6n+yKNvszMCXccSnDW5ee/hGYj604eyuBpsNSozCCkEwITywNfY8QeG 4O6hq1rbhETMLPqVkeWGENHzd2zmnGeWikYJvBkD9WaHCt3YMDjr3kX4EtwF08JA 3T/W2b4EsPgBNDXfAT4b46FScn50/ZHMaXnP0hnbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUquej46JNJVc/tGB6BtgTBQuvbJswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyYTJiMjE4LTJhMjktNDk2NC1iMTUzLTU2NWFjMWQ1MDVjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAOwAwDQYJKoZIhvcNAQELBQADggEBAF420YGwqRhmzTgKXbIn2RCOVAZQ GXCg4oKNotIVtoiPotmA6e0c13lXIpb7RJIGiKV2dyhN95UYFuJaa0+sulzmoYM7 ifmlFcaSzpdN/jY6ZGAbjlY6sZL4+frMxs8LHFXLqJXM0nUoIq9+utCOUKn3eDeL HVO8ts209W6GX6r9wmU1lFIeILtbUi9x844+ML79hJ761h+GhnRCuKqBn7lUl7iH qwPhcE3OY42INN3jLHGlFOrT4P5l8BEmb1glPjjgPW6aNxIr8r762ILBbS/InIjA fols2fisqVTKz2mi0hzyKeSglq1Ie61LhdXvt9qOKq9EzgYkKrY3nJ2+nNw= -----END CERTIFICATE-----Generated at Tue May 12 21:54:42 2026 by rpki-client