$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa File: 8b498707-3ebd-45a5-b072-5696977433b4.roa (raw, json) Hash identifier: 5QGSfwab2AVFKqD7ZOIZLDZX1jNtCi/AfslidGDDDxE= Subject key identifier: 25:DB:87:C8:68:DF:2E:EF:72:34:6F:05:27:71:EC:49:04:B9:B4:CC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2022BD80F925EE3D19EE699680108CED689359A4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa Signing time: Tue 05 May 2026 00:30:15 +0000 ROA not before: Tue 05 May 2026 00:30:15 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 157.243.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:22:bd:80:f9:25:ee:3d:19:ee:69:96:80:10:8c:ed:68:93:59:a4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:30:15 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=aaf0d86591b9133ebc3711c4e062283b13aaa64654aa748f37c56709d21e6c5d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:b5:17:36:a4:6b:2f:90:7c:b5:88:be:92:0b: af:5a:90:19:22:e4:ec:76:2a:6f:bb:b5:fa:88:43: 2b:f9:f8:cd:5b:0e:c6:48:88:72:81:9f:2e:fd:59: ad:58:18:65:ad:ed:75:14:a9:57:cf:a0:b0:d5:38: 53:2d:b1:0f:e7:47:f8:ae:db:78:f0:8e:86:15:e6: 23:1d:c4:ef:6d:ce:2c:07:b4:c4:be:4a:1e:1a:e0: 03:c2:87:d8:f3:07:fe:09:ff:fd:e1:20:a0:49:1c: af:e9:41:60:1e:eb:26:35:8f:5e:a7:60:52:20:9c: 5f:23:b5:93:5c:17:ae:03:ce:54:bc:95:f5:6a:c9: b0:0f:b0:d8:82:d9:f9:ea:b8:7d:f6:a2:d9:74:03: e0:aa:5e:ce:04:d4:cf:fc:e8:5c:69:63:56:e1:85: df:1d:c8:b1:be:2b:26:22:7b:5e:b1:a8:a9:50:6f: af:5a:66:08:00:af:b2:e3:81:99:50:37:0e:52:2b: 07:62:f3:89:8b:f9:85:e2:48:2e:ba:4f:14:90:25: 98:dc:6e:27:f4:d2:7e:96:1c:30:00:ed:1d:65:19: 22:9b:f6:7f:d2:ed:15:d1:e1:21:45:31:9a:df:6c: 98:60:d3:2d:27:77:ba:60:81:36:d5:68:03:41:8a: 6f:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:DB:87:C8:68:DF:2E:EF:72:34:6F:05:27:71:EC:49:04:B9:B4:CC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b498707-3ebd-45a5-b072-5696977433b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 157.243.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:41:35:69:73:7f:01:7b:bb:67:98:0b:e5:1a:a8:22:dd:9e: 90:38:c6:12:82:3d:d8:c2:1c:eb:56:1a:65:e1:9d:0e:d1:d7: cd:db:f0:cc:2b:05:72:7e:9d:ef:98:71:d4:b7:4e:bd:5d:4d: 38:ed:39:8d:33:a8:db:a7:58:6f:d9:92:d9:a0:8a:1c:11:f0: 14:3a:97:9a:11:92:65:3f:8b:5f:5f:b8:8c:34:1c:fd:e3:ee: 91:47:8b:82:e8:7e:ab:6c:2f:45:5d:1e:0a:b6:0d:92:6b:15: 1a:2c:dc:53:cf:ff:a8:18:a8:df:b7:30:9a:3c:94:7d:e0:d4: 19:5e:df:64:3d:85:43:46:09:e8:25:9d:5e:d8:9d:e9:e2:4e: 66:a2:34:fb:b0:46:14:1f:c3:7c:78:e6:b8:1f:8b:c2:ee:bf: a4:17:8c:6c:4c:f9:c8:a9:24:4f:6d:28:ac:80:2b:c6:64:0a: 1f:c1:fb:a7:3b:b6:63:a8:74:e9:a4:5a:df:a1:7d:50:d8:e8: 28:0e:89:e4:64:1d:a3:09:eb:fb:e1:49:46:8b:22:90:93:22: 78:9f:33:f2:7e:86:3c:c1:48:2d:b9:e9:30:e0:e9:c3:97:a0: 0c:ac:30:94:4b:53:e1:f3:3d:86:9c:01:c8:ed:28:db:10:6c: e5:48:d0:3c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUICK9gPkl7j0Z7mmWgBCM7WiTWaQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAzMDE1WhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BhYWYwZDg2NTkxYjkxMzNlYmMzNzExYzRlMDYyMjgzYjEz YWFhNjQ2NTRhYTc0OGYzN2M1NjcwOWQyMWU2YzVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRtRc2pGsvkHy1iL6SC69akBki5Ox2Km+7tfqIQyv5+M1b DsZIiHKBny79Wa1YGGWt7XUUqVfPoLDVOFMtsQ/nR/iu23jwjoYV5iMdxO9tziwH tMS+Sh4a4APCh9jzB/4J//3hIKBJHK/pQWAe6yY1j16nYFIgnF8jtZNcF64DzlS8 lfVqybAPsNiC2fnquH32otl0A+CqXs4E1M/86FxpY1bhhd8dyLG+KyYie16xqKlQ b69aZggAr7LjgZlQNw5SKwdi84mL+YXiSC66TxSQJZjcbif00n6WHDAA7R1lGSKb 9n/S7RXR4SFFMZrfbJhg0y0nd7pggTbVaANBim9PAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJduHyGjfLu9yNG8FJ3HsSQS5tMwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiNDk4NzA3LTNlYmQtNDVhNS1iMDcyLTU2OTY5Nzc0MzNiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCd8zANBgkqhkiG9w0BAQsFAAOCAQEAFUE1aXN/AXu7Z5gL5RqoIt2ekDjG EoI92MIc61YaZeGdDtHXzdvwzCsFcn6d75hx1LdOvV1NOO05jTOo26dYb9mS2aCK HBHwFDqXmhGSZT+LX1+4jDQc/ePukUeLguh+q2wvRV0eCrYNkmsVGizcU8//qBio 37cwmjyUfeDUGV7fZD2FQ0YJ6CWdXtid6eJOZqI0+7BGFB/DfHjmuB+Lwu6/pBeM bEz5yKkkT20orIArxmQKH8H7pzu2Y6h06aRa36F9UNjoKA6J5GQdownr++FJRosi kJMieJ8z8n6GPMFILbnpMODpw5egDKwwlEtT4fM9hpwByO0o2xBs5UjQPA== -----END CERTIFICATE-----Generated at Tue May 12 21:55:24 2026 by rpki-client