$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6928a406-38e7-41d6-a4c4-6665e62bdcea.roa File: 6928a406-38e7-41d6-a4c4-6665e62bdcea.roa (raw, json) Hash identifier: FIvQ9C82FfnMJsJIlpJnUnrpi1wivpeUDGzGVXg2gco= Subject key identifier: BF:43:34:F6:1D:B2:F9:D2:9B:82:0E:65:78:69:A8:66:66:6C:24:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1FC34A9130DF1F93683C9768D24B1BDE8519F1BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6928a406-38e7-41d6-a4c4-6665e62bdcea.roa Signing time: Mon 04 May 2026 00:51:13 +0000 ROA not before: Mon 04 May 2026 00:51:13 +0000 ROA not after: Sun 02 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.144.32.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:c3:4a:91:30:df:1f:93:68:3c:97:68:d2:4b:1b:de:85:19:f1:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 4 00:51:13 2026 GMT Not After : Aug 2 23:59:59 2026 GMT Subject: serialNumber=39de13d8e3fb42abe2dc0a0130c75ab37d733671439e170c0366be2c40c03186, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:70:ab:52:3a:bc:c0:c7:5d:66:38:00:e8:72: 0f:62:6e:ee:1f:c8:fc:49:06:6e:1f:74:cd:74:23: b3:7e:7b:1c:df:26:90:2c:02:7a:dc:f1:b3:d7:70: 36:88:b0:f6:c5:a7:af:73:af:7a:25:08:63:52:f8: 45:69:25:8f:22:c6:ed:68:7b:86:7f:33:22:35:08: 71:e8:87:97:3b:64:93:5d:8a:9f:79:3c:37:8d:c9: e7:cf:14:c1:73:e9:5b:0f:b5:2d:bb:27:46:a1:f6: 0b:80:ff:ff:ab:90:7d:eb:3c:db:6c:33:e2:86:99: a9:00:fc:51:2b:ac:cb:16:ca:bf:ae:11:b6:f8:89: 58:12:cc:e2:71:4b:15:3e:75:4c:5e:a7:48:a1:29: c2:8a:ae:8c:f1:d9:f7:96:ba:22:88:7f:cf:ac:ac: 7c:79:e8:1b:6a:01:3c:cf:e1:a5:61:7e:ee:31:5f: 80:86:26:28:45:a5:06:27:13:9d:c3:f7:20:b1:c1: 97:d3:ba:be:51:11:ac:9b:b4:fb:94:9f:d5:3a:c8: da:e1:c6:d9:86:45:c9:bd:5e:42:80:b9:4f:c9:1d: c8:11:7d:6f:59:1b:fc:cc:03:e5:cc:26:96:cf:62: 2b:5c:aa:8b:8c:4a:ed:41:d9:a7:4b:64:84:7a:82: 12:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:43:34:F6:1D:B2:F9:D2:9B:82:0E:65:78:69:A8:66:66:6C:24:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6928a406-38e7-41d6-a4c4-6665e62bdcea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.144.32.0/20 Signature Algorithm: sha256WithRSAEncryption c9:b4:d9:e0:7f:4d:a6:89:43:c0:ff:e0:e5:86:84:67:ea:ff: 23:63:16:10:b5:ec:63:13:11:4b:51:3e:84:de:15:07:59:9c: 19:e2:e5:24:9f:ed:fe:89:ce:e4:e0:b3:ef:13:31:ab:92:17: 57:6c:e5:5c:98:4d:6c:2c:ca:83:84:82:df:08:6e:8d:25:cf: da:3b:60:a0:ec:65:54:9f:b7:71:0b:1a:3d:bb:7c:9d:25:d8: 48:87:6a:85:37:6e:51:af:34:60:35:93:d4:16:1e:83:e8:fa: d9:a2:ba:6a:d5:39:86:23:58:bd:3b:79:66:4e:d7:f5:83:ca: 8b:37:b8:ab:fb:36:57:5c:42:5f:12:cd:d8:82:15:e0:21:be: 16:1c:30:5f:ee:c3:78:5c:79:0e:ea:aa:fa:85:e7:73:42:5f: 41:78:6c:93:00:e7:fe:63:da:18:84:e2:51:d3:c5:a2:fa:c4: 44:e1:93:b5:12:1b:70:87:3e:36:88:df:9b:cd:53:9b:7b:74: 80:03:57:d9:98:30:e3:42:c4:7d:2c:46:d6:09:7d:c8:96:33: e3:95:66:c8:9d:8e:39:3b:5b:67:51:9c:2e:82:53:2d:5c:88: 33:f3:d8:6f:a3:28:a9:c9:7e:b2:68:b5:35:31:96:99:77:4f: 12:93:6c:c3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUH8NKkTDfH5NoPJdo0ksb3oUZ8b8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA0MDA1MTEzWhcNMjYwODAyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzOWRlMTNkOGUzZmI0MmFiZTJkYzBhMDEzMGM3NWFiMzdk NzMzNjcxNDM5ZTE3MGMwMzY2YmUyYzQwYzAzMTg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7cKtSOrzAx11mOADocg9ibu4fyPxJBm4fdM10I7N+exzf JpAsAnrc8bPXcDaIsPbFp69zr3olCGNS+EVpJY8ixu1oe4Z/MyI1CHHoh5c7ZJNd ip95PDeNyefPFMFz6VsPtS27J0ah9guA//+rkH3rPNtsM+KGmakA/FErrMsWyr+u Ebb4iVgSzOJxSxU+dUxep0ihKcKKrozx2feWuiKIf8+srHx56BtqATzP4aVhfu4x X4CGJihFpQYnE53D9yCxwZfTur5REaybtPuUn9U6yNrhxtmGRcm9XkKAuU/JHcgR fW9ZG/zMA+XMJpbPYitcqouMSu1B2adLZIR6ghJLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUv0M09h2y+dKbgg5leGmoZmZsJLcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5MjhhNDA2LTM4ZTctNDFkNi1hNGM0LTY2NjVlNjJiZGNlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNkCAwDQYJKoZIhvcNAQELBQADggEBAMm02eB/TaaJQ8D/4OWGhGfq/yNj FhC17GMTEUtRPoTeFQdZnBni5SSf7f6JzuTgs+8TMauSF1ds5VyYTWwsyoOEgt8I bo0lz9o7YKDsZVSft3ELGj27fJ0l2EiHaoU3blGvNGA1k9QWHoPo+tmiumrVOYYj WL07eWZO1/WDyos3uKv7NldcQl8SzdiCFeAhvhYcMF/uw3hceQ7qqvqF53NCX0F4 bJMA5/5j2hiE4lHTxaL6xEThk7USG3CHPjaI35vNU5t7dIADV9mYMONCxH0sRtYJ fciWM+OVZsidjjk7W2dRnC6CUy1ciDPz2G+jKKnJfrJotTUxlpl3TxKTbMM= -----END CERTIFICATE-----Generated at Tue May 12 21:51:48 2026 by rpki-client