$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/705338a3-c121-4cfc-8da1-351146f2216a.roa File: 705338a3-c121-4cfc-8da1-351146f2216a.roa (raw, json) Hash identifier: 3hnN2qSvoXdvVBntqI9+/u3RpKC2K2Fdc1z5gou7Uck= Subject key identifier: 5B:41:7D:44:6B:2B:6E:31:83:DC:8C:96:F4:E6:FD:32:20:34:21:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 272A2EC629DD8FBDDDDADCE0358D0C8116A6892D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/705338a3-c121-4cfc-8da1-351146f2216a.roa Signing time: Tue 12 May 2026 01:00:55 +0000 ROA not before: Tue 12 May 2026 01:00:55 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:2a:2e:c6:29:dd:8f:bd:dd:da:dc:e0:35:8d:0c:81:16:a6:89:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:00:55 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=92d1820a902726e73e6ba308a99012f139bc43ef59b2451d2b173b99d8135804, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:34:1b:ab:ea:b5:ae:5d:8b:a9:cc:ee:eb:0b: ef:29:b9:ac:18:de:1e:be:88:3b:39:a5:ac:f2:b5: 8e:ce:98:73:e6:15:db:62:e3:a9:d5:0c:69:ea:da: bd:b9:49:3d:c7:d6:2c:60:2f:4d:dd:d8:bf:ec:38: 9d:12:79:7c:2c:b5:a9:f1:9e:ec:01:e8:bf:72:3c: 46:3a:62:7e:ee:4d:42:95:8b:cc:68:31:81:1c:b2: 51:e4:b6:f1:ef:f1:ac:ed:dc:6f:0c:4c:48:ee:ae: 4b:2e:db:2e:7c:b3:20:c0:b7:ad:b3:94:ad:17:2a: d2:ba:7b:29:f5:42:77:65:56:33:16:69:90:d5:00: 17:dd:bb:1e:7d:6b:69:4e:f5:b0:74:ca:09:c3:2b: 06:7b:40:45:83:58:40:d6:fe:8c:41:1e:eb:8a:e7: 29:3c:07:37:0a:5f:23:8f:16:a7:36:fc:cd:7e:2c: 77:23:ae:00:49:d9:53:8e:04:e4:a4:48:2e:c8:0a: 86:2b:00:c0:fd:93:b2:62:46:53:00:f3:32:ca:69: 23:5b:d3:e1:74:23:4a:e3:b1:36:17:4a:a7:e5:48: bf:47:25:5b:22:53:f2:76:a8:e5:2b:e6:41:86:1e: a8:47:61:e9:e8:40:c7:a0:66:96:9f:90:6a:91:c2: 5e:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:41:7D:44:6B:2B:6E:31:83:DC:8C:96:F4:E6:FD:32:20:34:21:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/705338a3-c121-4cfc-8da1-351146f2216a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.9.0/24 Signature Algorithm: sha256WithRSAEncryption 81:e9:87:4d:c7:2a:55:09:4b:a1:bd:56:b9:d7:6e:8c:18:9e: 91:26:94:35:04:e4:3f:e5:1f:7d:2c:01:69:16:35:7d:0e:9b: d0:d9:08:00:00:b7:48:81:34:a5:18:95:26:1a:4b:3e:41:4e: 43:4a:fa:c1:c4:20:fb:18:15:0e:c1:fe:8b:33:45:2b:ca:41: d7:fa:e1:72:de:e0:4b:aa:10:56:8b:2d:5a:e8:f2:4e:9b:3c: c4:59:fa:0a:80:5f:63:cf:31:a5:37:ea:84:a5:ae:b4:0d:7e: 7b:21:86:87:67:6b:dd:05:d1:5e:24:ac:7b:5a:85:99:1e:4c: d7:02:02:19:a3:45:d3:10:e7:07:13:06:cd:31:3f:87:73:cc: 81:63:c1:ee:7b:98:10:10:ed:93:b2:22:ad:b8:4d:59:04:a7: ba:a9:db:fc:54:52:65:02:6a:af:92:20:db:eb:e9:af:04:22: f8:5c:9a:6b:2f:d0:b5:13:aa:40:f5:4c:ba:9d:46:da:fc:3e: 71:b9:1d:78:0d:c6:4c:30:90:ca:72:37:48:5f:a7:ff:68:25: 35:1f:0d:5c:80:d8:9f:16:99:65:5a:a2:20:38:1d:d1:ac:a1: be:ad:db:b3:49:54:2b:d0:e0:ff:c3:01:e6:f7:69:b2:84:10: 37:4e:59:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJyouxindj73d2tzgNY0MgRamiS0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDEwMDU1WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MmQxODIwYTkwMjcyNmU3M2U2YmEzMDhhOTkwMTJmMTM5 YmM0M2VmNTliMjQ1MWQyYjE3M2I5OWQ4MTM1ODA0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDINBur6rWuXYupzO7rC+8puawY3h6+iDs5pazytY7OmHPm Fdti46nVDGnq2r25ST3H1ixgL03d2L/sOJ0SeXwstanxnuwB6L9yPEY6Yn7uTUKV i8xoMYEcslHktvHv8azt3G8MTEjurksu2y58syDAt62zlK0XKtK6eyn1QndlVjMW aZDVABfdux59a2lO9bB0ygnDKwZ7QEWDWEDW/oxBHuuK5yk8BzcKXyOPFqc2/M1+ LHcjrgBJ2VOOBOSkSC7ICoYrAMD9k7JiRlMA8zLKaSNb0+F0I0rjsTYXSqflSL9H JVsiU/J2qOUr5kGGHqhHYenoQMegZpafkGqRwl6fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUW0F9RGsrbjGD3IyW9Ob9MiA0IZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwNTMzOGEzLWMxMjEtNGNmYy04ZGExLTM1MTE0NmYyMjE2YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmAkwDQYJKoZIhvcNAQELBQADggEBAIHph03HKlUJS6G9VrnXbowYnpEm lDUE5D/lH30sAWkWNX0Om9DZCAAAt0iBNKUYlSYaSz5BTkNK+sHEIPsYFQ7B/osz RSvKQdf64XLe4EuqEFaLLVro8k6bPMRZ+gqAX2PPMaU36oSlrrQNfnshhodna90F 0V4krHtahZkeTNcCAhmjRdMQ5wcTBs0xP4dzzIFjwe57mBAQ7ZOyIq24TVkEp7qp 2/xUUmUCaq+SINvr6a8EIvhcmmsv0LUTqkD1TLqdRtr8PnG5HXgNxkwwkMpyN0hf p/9oJTUfDVyA2J8WmWVaoiA4HdGsob6t27NJVCvQ4P/DAeb3abKEEDdOWew= -----END CERTIFICATE-----Generated at Wed May 13 02:35:37 2026 by rpki-client