$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5625505e-6d61-4895-a194-4bc7fb88da1d.roa File: 5625505e-6d61-4895-a194-4bc7fb88da1d.roa (raw, json) Hash identifier: dGBgOw/u2XR5d8DAm7R5qjhl5vq9AToMU7JVPFzIlRk= Subject key identifier: 1B:BD:F5:DA:7F:10:40:CB:73:CC:F8:88:C4:6C:F2:C8:B0:BC:EB:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D224DB99C3DE0EEFCD4ACEB19C7E81550A72ABC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5625505e-6d61-4895-a194-4bc7fb88da1d.roa Signing time: Fri 08 May 2026 00:10:38 +0000 ROA not before: Fri 08 May 2026 00:10:38 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.42.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:22:4d:b9:9c:3d:e0:ee:fc:d4:ac:eb:19:c7:e8:15:50:a7:2a:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 8 00:10:38 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=50bf57512c2d10e4385389df995faefd03ce44ef072d1646cc7616291150c172, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:da:de:86:0a:53:04:52:67:07:8c:cc:3a:2b: 21:7d:6d:f3:3a:ab:d2:72:cb:19:ea:35:8b:93:39: 7f:c8:5c:87:4f:01:c6:ba:5c:5c:3c:94:39:f3:31: ab:b6:24:da:de:6e:05:3c:3f:5d:79:32:c1:3e:0d: fd:16:f3:82:42:fc:32:8a:34:fb:28:b3:ef:b2:94: 73:12:d3:15:69:f3:6c:d6:d2:64:ac:72:5b:23:fe: 61:00:2c:2a:b3:96:d7:9c:8d:b4:85:16:20:81:9c: 7d:63:c2:1a:02:99:30:3f:4c:e0:0c:b7:2a:b3:7a: 20:18:ff:03:9a:8c:4a:75:07:72:29:60:c8:9a:e8: 33:4d:db:af:f1:f9:61:b9:f6:9e:c3:a5:78:31:47: 75:20:44:bd:aa:ca:2a:ce:31:a9:80:42:8a:e0:da: b6:b4:79:32:e1:e7:9e:f0:9a:ef:46:aa:55:a6:ab: cc:eb:9e:d6:e1:10:29:5b:ed:f5:e7:fc:e5:69:ea: 21:5e:59:ba:3d:8b:78:63:da:a0:63:f9:bc:cf:ca: 8d:c2:96:1d:84:d8:66:4b:bd:5f:40:e2:73:d1:5e: df:17:f3:24:32:21:ad:b6:5e:f4:e7:43:20:d2:e0: e8:94:f2:fa:3e:4c:82:b1:2a:51:03:48:27:1c:48: fa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:BD:F5:DA:7F:10:40:CB:73:CC:F8:88:C4:6C:F2:C8:B0:BC:EB:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5625505e-6d61-4895-a194-4bc7fb88da1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.42.188.0/22 Signature Algorithm: sha256WithRSAEncryption 82:24:e6:03:e0:8f:d1:50:53:7d:0c:85:a7:18:41:c9:0f:c3: 93:02:ab:31:ee:9b:de:7c:d2:ef:76:2e:07:af:58:49:fd:7e: 30:78:4d:af:31:3c:21:22:68:55:5d:33:a8:77:74:ba:e7:ba: b5:aa:b4:ba:a1:a3:db:8f:b6:30:e0:9f:d7:33:83:59:6c:fd: 7f:a8:da:5d:7b:45:4e:8e:65:0b:62:4b:a9:c0:a1:2c:18:1f: f0:7d:6a:e3:76:25:ab:36:e6:26:27:82:50:99:72:7a:11:bd: be:07:3c:00:3d:02:cd:4d:7e:76:be:8d:89:5f:fe:60:13:99: 67:90:47:ec:25:af:35:09:79:f2:16:46:54:3a:f1:45:7a:25: 96:00:29:8e:c8:32:5e:eb:f2:5f:ca:dd:05:32:18:70:f0:ba: c0:ca:ec:4c:f6:c0:a4:fa:c8:78:a2:94:e8:e4:26:93:0b:94: 7c:67:cc:2a:93:06:ab:52:ec:87:ea:06:33:84:fe:68:17:d8: ec:5d:b8:d2:93:44:da:48:8e:c2:61:7f:ca:dc:b9:ee:ab:56: c2:33:b4:63:4c:c5:c8:c4:db:30:f0:8a:cc:3f:1c:00:67:60: c4:52:7e:c1:73:f8:69:03:93:0f:f7:9c:fa:c0:9e:97:1d:bf: 55:a3:03:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfSJNuZw94O781KzrGcfoFVCnKrwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA4MDAxMDM4WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MGJmNTc1MTJjMmQxMGU0Mzg1Mzg5ZGY5OTVmYWVmZDAz Y2U0NGVmMDcyZDE2NDZjYzc2MTYyOTExNTBjMTcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC32t6GClMEUmcHjMw6KyF9bfM6q9JyyxnqNYuTOX/IXIdP Aca6XFw8lDnzMau2JNrebgU8P115MsE+Df0W84JC/DKKNPsos++ylHMS0xVp82zW 0mSsclsj/mEALCqzltecjbSFFiCBnH1jwhoCmTA/TOAMtyqzeiAY/wOajEp1B3Ip YMia6DNN26/x+WG59p7DpXgxR3UgRL2qyirOMamAQorg2ra0eTLh557wmu9GqlWm q8zrntbhEClb7fXn/OVp6iFeWbo9i3hj2qBj+bzPyo3Clh2E2GZLvV9A4nPRXt8X 8yQyIa22XvTnQyDS4OiU8vo+TIKxKlEDSCccSPrnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUG7312n8QQMtzzPiIxGzyyLC8644wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2MjU1MDVlLTZkNjEtNDg5NS1hMTk0LTRiYzdmYjg4ZGExZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJGKrwwDQYJKoZIhvcNAQELBQADggEBAIIk5gPgj9FQU30MhacYQckPw5MC qzHum9580u92LgevWEn9fjB4Ta8xPCEiaFVdM6h3dLrnurWqtLqho9uPtjDgn9cz g1ls/X+o2l17RU6OZQtiS6nAoSwYH/B9auN2Jas25iYnglCZcnoRvb4HPAA9As1N fna+jYlf/mATmWeQR+wlrzUJefIWRlQ68UV6JZYAKY7IMl7r8l/K3QUyGHDwusDK 7Ez2wKT6yHiilOjkJpMLlHxnzCqTBqtS7IfqBjOE/mgX2OxduNKTRNpIjsJhf8rc ue6rVsIztGNMxcjE2zDwisw/HABnYMRSfsFz+GkDkw/3nPrAnpcdv1WjA/4= -----END CERTIFICATE-----Generated at Tue May 12 21:54:46 2026 by rpki-client