$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa File: 5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa (raw, json) Hash identifier: mleOr/Yec52J3k2E1C2DXBEezR/l1OMpCdlqsaM1Rzw= Subject key identifier: AF:3D:DE:78:D6:F4:B3:1B:F8:68:C4:FA:AA:64:9A:19:8F:D2:96:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 269ECFAAAA0B0579379307634A5D8AD944D4794A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa Signing time: Mon 04 May 2026 00:50:08 +0000 ROA not before: Mon 04 May 2026 00:50:08 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 44.213.98.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:9e:cf:aa:aa:0b:05:79:37:93:07:63:4a:5d:8a:d9:44:d4:79:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:50:08 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=c595e66e5510e2e41322618fbf890ae4c71820348c924b1c6582c8d2c516506d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2c:35:c3:d9:a2:39:42:68:b4:3f:cb:16:03: f9:57:c1:ec:af:e4:de:1f:12:56:f9:52:e8:ee:96: 59:63:e3:d1:30:f9:1a:91:e7:60:9a:76:24:43:f3: 4f:23:1e:b9:0a:9e:83:3c:54:d4:3a:7b:68:2e:16: 08:b5:70:41:d8:f9:66:90:99:6d:46:3a:49:e5:fb: 5d:22:a2:e9:b4:09:a8:c8:dc:ae:bd:e6:23:78:78: ec:04:0d:76:e8:94:60:30:43:94:6e:b1:05:db:1b: b6:17:14:f0:7e:94:2f:bd:98:22:cb:b9:e0:e6:95: 28:25:4e:90:f0:da:c3:92:95:bb:01:e8:ca:17:ae: 1a:0f:2c:69:39:33:be:6d:df:7a:cb:8e:1b:8f:fb: 70:c6:65:05:15:cd:42:66:2d:d8:38:ce:fa:9a:b0: 76:c5:a6:cc:3c:a6:17:ba:38:c9:60:58:4f:a0:14: 57:c9:34:48:32:59:3b:c7:c9:da:6e:c0:89:ba:48: d8:71:53:35:61:96:63:1a:25:9f:a3:f4:1c:f5:e9: 70:1a:5e:c6:36:04:52:1b:cc:da:54:f6:8d:bd:3c: d1:ad:f9:a8:a4:90:26:ac:f5:5a:41:ae:cc:aa:79: f6:80:0b:9c:f7:70:18:40:88:6d:2a:1a:a7:b9:55: d7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:3D:DE:78:D6:F4:B3:1B:F8:68:C4:FA:AA:64:9A:19:8F:D2:96:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5af66b92-7c00-4307-9785-0c5ccb72cbb6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.213.98.0/24 Signature Algorithm: sha256WithRSAEncryption 1f:c2:ea:95:cd:8d:a2:20:3a:94:6f:54:a9:86:ef:5c:27:6a: 34:88:9a:b5:52:66:0a:53:52:e6:01:63:41:7e:5b:76:59:23: 5e:bc:d3:42:a0:a2:59:f3:2e:e2:36:51:81:56:46:9b:cf:9b: fa:cf:17:60:b8:c8:df:97:a5:80:a6:8c:89:90:7a:41:08:a2: be:3c:05:e1:39:b1:ac:37:8f:0b:ac:f8:93:35:3e:32:c9:3b: ba:74:02:0f:b9:84:08:01:03:a6:56:6f:8b:c7:91:0b:38:c1: b3:19:c3:00:3d:68:46:ab:54:49:65:da:f9:ab:2f:55:87:d7: 5b:48:51:11:a3:f9:b4:6a:14:7b:f0:5c:69:6b:70:cf:96:f0: 53:2c:88:76:fb:1e:02:9a:59:76:6b:83:af:e3:c4:60:6f:92: 45:7c:27:6e:98:07:87:92:25:63:1b:3d:57:2d:23:93:fe:8d: 03:ee:64:67:51:a9:d2:34:30:49:43:ff:d4:d8:d1:a8:a7:17: b8:a2:8f:56:c5:85:5e:f7:3a:dc:bc:1f:db:30:30:0f:7b:c3: f8:96:aa:58:f1:d6:4e:d3:a3:80:a6:d1:45:f9:e6:1d:d6:83: a4:4f:74:c0:82:b0:f1:f2:a0:fb:8b:08:2a:09:50:8d:42:3f: d4:84:3b:9d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJp7PqqoLBXk3kwdjSl2K2UTUeUowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA1MDA4WhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNTk1ZTY2ZTU1MTBlMmU0MTMyMjYxOGZiZjg5MGFlNGM3 MTgyMDM0OGM5MjRiMWM2NTgyYzhkMmM1MTY1MDZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvLDXD2aI5Qmi0P8sWA/lXweyv5N4fElb5Uujulllj49Ew +RqR52CadiRD808jHrkKnoM8VNQ6e2guFgi1cEHY+WaQmW1GOknl+10ioum0CajI 3K695iN4eOwEDXbolGAwQ5RusQXbG7YXFPB+lC+9mCLLueDmlSglTpDw2sOSlbsB 6MoXrhoPLGk5M75t33rLjhuP+3DGZQUVzUJmLdg4zvqasHbFpsw8phe6OMlgWE+g FFfJNEgyWTvHydpuwIm6SNhxUzVhlmMaJZ+j9Bz16XAaXsY2BFIbzNpU9o29PNGt +aikkCas9VpBrsyqefaAC5z3cBhAiG0qGqe5VdehAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrz3eeNb0sxv4aMT6qmSaGY/SlkwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhZjY2YjkyLTdjMDAtNDMwNy05Nzg1LTBjNWNjYjcyY2JiNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAs1WIwDQYJKoZIhvcNAQELBQADggEBAB/C6pXNjaIgOpRvVKmG71wnajSI mrVSZgpTUuYBY0F+W3ZZI16800KgolnzLuI2UYFWRpvPm/rPF2C4yN+XpYCmjImQ ekEIor48BeE5saw3jwus+JM1PjLJO7p0Ag+5hAgBA6ZWb4vHkQs4wbMZwwA9aEar VEll2vmrL1WH11tIURGj+bRqFHvwXGlrcM+W8FMsiHb7HgKaWXZrg6/jxGBvkkV8 J26YB4eSJWMbPVctI5P+jQPuZGdRqdI0MElD/9TY0ainF7iij1bFhV73Oty8H9sw MA97w/iWqljx1k7To4Cm0UX55h3Wg6RPdMCCsPHyoPuLCCoJUI1CP9SEO50= -----END CERTIFICATE-----Generated at Tue May 12 21:54:47 2026 by rpki-client