$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa File: 6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa (raw, json) Hash identifier: lIfi3nG0hWCqhZJ9CcJxULpAWxajATeyrOE81ibExqQ= Subject key identifier: 68:B3:33:7E:8D:61:59:DE:92:18:06:76:17:C1:32:A7:CD:9F:3D:0C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0F23A318170CEC028E6ABF7C7281E2C1441F7036 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa Signing time: Tue 12 May 2026 01:31:14 +0000 ROA not before: Tue 12 May 2026 01:31:14 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:23:a3:18:17:0c:ec:02:8e:6a:bf:7c:72:81:e2:c1:44:1f:70:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:31:14 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=aca0ef0bfd9a5daf5733a2e4f0436c18f41e2b06372ca1930a075003fd30c3cc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:2d:ee:17:06:43:0d:67:59:1c:1a:71:45:20: 31:cd:c0:0d:aa:b6:ef:67:12:bb:83:7f:80:20:12: 24:2d:a4:fd:d6:66:32:c6:b1:d7:9f:f6:f9:d6:49: 29:4b:ee:8d:d8:fe:88:ae:53:68:ea:81:d7:09:bf: de:9c:50:6d:b5:e0:83:cd:99:05:b4:5c:7e:62:51: 61:b4:db:a9:7f:c3:2c:75:06:71:d5:8d:14:0b:0d: ba:6f:f1:55:ef:0d:41:92:7e:69:32:78:7d:fc:7e: ed:24:ba:b9:c9:f2:35:ec:f4:a5:04:29:57:2e:bd: 69:75:01:59:c6:f6:00:77:07:86:6f:46:b0:f5:9f: 57:e7:ce:40:ff:e4:d2:5e:5b:64:05:77:1c:a7:71: 6d:b8:53:4e:87:0a:24:c1:07:65:6e:37:af:21:e9: f5:f2:24:20:cc:2e:06:4f:af:18:06:f7:e1:56:05: 8b:47:95:1e:90:5d:5f:af:6e:a6:48:f4:2b:fd:d0: 77:6e:19:c8:3f:26:d1:7e:8a:87:17:35:4d:5e:55: ae:b8:1b:4d:3c:40:53:ec:69:85:81:fc:e5:30:7a: 40:8b:a6:12:7b:46:08:bf:7e:96:9c:30:43:6b:73: 77:9d:88:c4:cf:c5:8f:be:3c:a0:f5:3b:0e:56:e3: 74:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:B3:33:7E:8D:61:59:DE:92:18:06:76:17:C1:32:A7:CD:9F:3D:0C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6af293ec-eb2a-4e7a-940e-d5d252f0af7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.254.0/24 Signature Algorithm: sha256WithRSAEncryption 00:ad:b4:6f:f9:03:96:ec:17:9d:5b:98:87:4e:5e:67:13:f0: 2b:f6:35:9a:f7:c8:ac:ea:2b:e9:c9:6f:9e:b3:83:4f:14:82: d2:5b:dc:79:50:85:cf:64:fd:a5:fb:97:89:3e:82:f8:d9:da: be:35:67:4e:eb:cc:1c:0f:bf:e2:0b:fc:8a:70:08:db:6e:18: a5:91:be:d8:8f:68:73:3e:3a:ac:5d:bd:ce:7e:a9:57:2f:c7: 01:8f:8a:d5:40:58:65:45:c9:72:00:46:71:36:e4:55:80:9d: c8:be:3d:ab:08:47:32:42:07:94:57:9e:83:6a:61:e8:3b:8d: 6e:25:67:8f:e4:ad:bf:d3:8c:35:3b:12:83:fe:5b:34:1e:0a: 27:19:70:13:96:86:91:6e:ca:c1:55:1c:63:99:ae:92:cf:d4: 81:ed:16:78:ca:e1:00:29:84:63:24:2b:7b:2f:e9:1a:c1:4e: 71:3a:c2:d3:b7:99:c1:e7:92:08:5f:b7:d7:82:45:44:c7:df: cb:0e:4f:cc:0e:86:b9:00:59:ce:6e:2d:bb:e5:73:e8:2b:c3: ed:72:46:c3:62:60:84:e7:37:35:f8:a9:fb:71:c5:01:11:f7: 02:08:e1:b2:65:e1:37:d8:63:a6:0a:cc:4d:1f:06:a8:54:5e: 52:4d:f8:43 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDyOjGBcM7AKOar98coHiwUQfcDYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEzMTE0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhY2EwZWYwYmZkOWE1ZGFmNTczM2EyZTRmMDQzNmMxOGY0 MWUyYjA2MzcyY2ExOTMwYTA3NTAwM2ZkMzBjM2NjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKLe4XBkMNZ1kcGnFFIDHNwA2qtu9nEruDf4AgEiQtpP3W ZjLGsdef9vnWSSlL7o3Y/oiuU2jqgdcJv96cUG214IPNmQW0XH5iUWG026l/wyx1 BnHVjRQLDbpv8VXvDUGSfmkyeH38fu0kurnJ8jXs9KUEKVcuvWl1AVnG9gB3B4Zv RrD1n1fnzkD/5NJeW2QFdxyncW24U06HCiTBB2VuN68h6fXyJCDMLgZPrxgG9+FW BYtHlR6QXV+vbqZI9Cv90HduGcg/JtF+iocXNU1eVa64G008QFPsaYWB/OUwekCL phJ7Rgi/fpacMENrc3ediMTPxY++PKD1Ow5W43RTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaLMzfo1hWd6SGAZ2F8Eyp82fPQwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhZjI5M2VjLWViMmEtNGU3YS05NDBlLWQ1ZDI1MmYwYWY3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsP4wDQYJKoZIhvcNAQELBQADggEBAACttG/5A5bsF51bmIdOXmcT8Cv2 NZr3yKzqK+nJb56zg08UgtJb3HlQhc9k/aX7l4k+gvjZ2r41Z07rzBwPv+IL/Ipw CNtuGKWRvtiPaHM+Oqxdvc5+qVcvxwGPitVAWGVFyXIARnE25FWAnci+PasIRzJC B5RXnoNqYeg7jW4lZ4/krb/TjDU7EoP+WzQeCicZcBOWhpFuysFVHGOZrpLP1IHt FnjK4QAphGMkK3sv6RrBTnE6wtO3mcHnkghft9eCRUTH38sOT8wOhrkAWc5uLbvl c+grw+1yRsNiYITnNzX4qftxxQER9wII4bJl4TfYY6YKzE0fBqhUXlJN+EM= -----END CERTIFICATE-----Generated at Tue May 12 21:40:55 2026 by rpki-client