$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95cc89f9-cb09-4680-9d92-2d07d18c23c5.roa File: 95cc89f9-cb09-4680-9d92-2d07d18c23c5.roa (raw, json) Hash identifier: Ro1avMrHyX/R33rnvvFCUm6khJKjDQi/g2j1GitAaBc= Subject key identifier: 07:BA:F6:9E:04:F8:BD:39:9E:44:78:5B:30:51:55:C2:40:10:49:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B949920AD9A523F607778B79279ACDD2E58BF84 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95cc89f9-cb09-4680-9d92-2d07d18c23c5.roa Signing time: Tue 12 May 2026 01:10:54 +0000 ROA not before: Tue 12 May 2026 01:10:54 +0000 ROA not after: Mon 10 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.135.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:94:99:20:ad:9a:52:3f:60:77:78:b7:92:79:ac:dd:2e:58:bf:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 12 01:10:54 2026 GMT Not After : Aug 10 23:59:59 2026 GMT Subject: serialNumber=91ec783d3916f67805a201e998d4c292e915bfcec0a359ad20f347836509ae5d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:5f:96:d8:25:87:da:45:00:ca:7a:61:7c:55: 52:00:90:13:2e:8e:3f:ce:1e:1a:99:c1:a7:aa:56: e6:b5:a7:98:61:a3:a6:82:ac:8e:51:a0:3b:6a:93: 56:98:e2:cf:35:d0:33:01:da:cc:d9:4b:c9:79:63: 05:ae:23:1d:03:df:4d:c0:4e:fa:7f:ed:bb:7a:d3: af:6e:1c:5c:16:05:fe:69:4a:a7:b8:49:28:5e:33: eb:14:a1:33:6c:87:33:07:f1:69:f3:23:7b:9e:25: ef:14:e9:47:95:eb:70:9a:51:67:8a:21:f7:b5:7d: fe:cc:01:7f:b5:bd:d7:8f:69:78:7f:75:62:70:50: a9:a2:59:2e:79:a9:d9:34:b7:4d:c7:36:df:73:c9: c1:55:9e:3b:ad:3f:c1:28:25:2f:e8:ee:58:6a:7a: 8f:34:e0:75:ae:79:d3:3b:60:84:07:fd:04:5f:94: bc:c4:3e:f1:aa:49:38:57:1b:8d:8e:72:17:72:c0: 84:48:b1:42:9d:9e:51:08:98:57:84:3c:ad:77:03: fb:71:e9:8b:fb:bd:d4:8a:3e:b9:1b:a0:94:11:6c: c8:7d:9b:94:d2:bb:30:ea:eb:c7:7c:a7:bd:d9:7d: 34:ec:c6:6b:d2:ba:62:f2:50:51:12:08:e1:3f:9e: 49:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:BA:F6:9E:04:F8:BD:39:9E:44:78:5B:30:51:55:C2:40:10:49:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/95cc89f9-cb09-4680-9d92-2d07d18c23c5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.135.0/24 Signature Algorithm: sha256WithRSAEncryption 86:f6:75:8c:ac:b5:49:37:d4:3d:17:cd:8a:06:5d:59:da:58: 0d:4d:83:2f:da:3e:7e:36:fd:81:86:90:16:3a:6f:b3:a4:33: 37:e7:68:65:2a:a2:1c:47:0c:71:49:70:2b:c3:1a:18:e0:25: fa:96:6f:f3:20:10:cb:93:3e:23:69:c9:17:8c:1c:41:f0:16: 66:d8:91:35:16:fc:43:72:2c:24:bd:ac:75:f9:d9:2d:6f:ff: 0c:34:dc:ba:34:c1:1d:cb:15:57:f1:1f:37:49:81:1a:25:01: 3b:3c:5b:27:a0:97:54:70:02:c3:64:78:a7:c3:75:5b:6e:34: fa:50:f8:ac:7f:52:ab:9c:2d:7c:ca:78:7c:e6:e5:a4:7d:18: c2:c6:e9:ed:70:de:f5:18:35:28:43:e8:92:f0:d7:b0:d8:eb: 95:15:c9:1a:7a:2f:8d:5a:84:41:7d:e5:8e:c6:d4:cf:52:66: aa:a6:5f:09:7b:d4:16:82:7a:be:5c:8c:0d:df:bd:04:9c:7f: 09:77:e1:12:32:ad:fc:8a:bb:91:a1:00:82:a0:41:8b:67:5f: 80:97:91:74:49:e4:32:72:68:8a:2b:21:bf:7e:be:3f:8f:fb: dc:6d:75:0c:ee:57:14:04:ac:81:96:6f:ba:da:d8:e0:7c:17: d2:4f:51:4a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS5SZIK2aUj9gd3i3knms3S5Yv4QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTEyMDExMDU0WhcNMjYwODEwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWVjNzgzZDM5MTZmNjc4MDVhMjAxZTk5OGQ0YzI5MmU5 MTViZmNlYzBhMzU5YWQyMGYzNDc4MzY1MDlhZTVkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsX5bYJYfaRQDKemF8VVIAkBMujj/OHhqZwaeqVua1p5hh o6aCrI5RoDtqk1aY4s810DMB2szZS8l5YwWuIx0D303ATvp/7bt6069uHFwWBf5p Sqe4SSheM+sUoTNshzMH8WnzI3ueJe8U6UeV63CaUWeKIfe1ff7MAX+1vdePaXh/ dWJwUKmiWS55qdk0t03HNt9zycFVnjutP8EoJS/o7lhqeo804HWuedM7YIQH/QRf lLzEPvGqSThXG42OchdywIRIsUKdnlEImFeEPK13A/tx6Yv7vdSKPrkboJQRbMh9 m5TSuzDq68d8p73ZfTTsxmvSumLyUFESCOE/nkkrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB7r2ngT4vTmeRHhbMFFVwkAQSR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1Y2M4OWY5LWNiMDktNDY4MC05ZDkyLTJkMDdkMThjMjNjNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKrocwDQYJKoZIhvcNAQELBQADggEBAIb2dYystUk31D0XzYoGXVnaWA1N gy/aPn42/YGGkBY6b7OkMzfnaGUqohxHDHFJcCvDGhjgJfqWb/MgEMuTPiNpyReM HEHwFmbYkTUW/ENyLCS9rHX52S1v/ww03Lo0wR3LFVfxHzdJgRolATs8Wyegl1Rw AsNkeKfDdVtuNPpQ+Kx/UqucLXzKeHzm5aR9GMLG6e1w3vUYNShD6JLw17DY65UV yRp6L41ahEF95Y7G1M9SZqqmXwl71BaCer5cjA3fvQScfwl34RIyrfyKu5GhAIKg QYtnX4CXkXRJ5DJyaIorIb9+vj+P+9xtdQzuVxQErIGWb7ra2OB8F9JPUUo= -----END CERTIFICATE-----Generated at Tue May 12 21:51:03 2026 by rpki-client