$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa File: 979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa (raw, json) Hash identifier: NCjoqRoLn/k7hCDNwjD2kCnZNObDRq8uHDoVenCYyxs= Subject key identifier: 7B:49:7A:8C:3D:34:83:7C:58:F1:08:C0:93:3C:71:CB:6F:D9:4D:F3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4717FCD96523CB5E1242AC10D09C017EDAE69358 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa Signing time: Sat 09 May 2026 00:30:46 +0000 ROA not before: Sat 09 May 2026 00:30:46 +0000 ROA not after: Fri 07 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.152.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:17:fc:d9:65:23:cb:5e:12:42:ac:10:d0:9c:01:7e:da:e6:93:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 9 00:30:46 2026 GMT Not After : Aug 7 23:59:59 2026 GMT Subject: serialNumber=5946d93eb50ee8e83b9f059dff6141aceddca3d2d02e6c9fdbd4b123dd1cef18, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:6b:fc:d5:1b:bb:8d:2e:ad:91:c6:3b:35:49: 51:2a:56:fd:18:54:c5:5d:04:68:2e:a9:49:53:f5: 5a:37:7e:67:4a:a6:cb:43:d2:3c:6b:d9:aa:01:58: 31:70:31:fe:79:cc:b3:8b:0b:73:3f:f9:19:b1:3a: 82:b8:f0:f8:ed:af:28:62:34:62:fd:e4:ba:95:76: d2:84:dc:20:b2:38:bd:76:ff:2c:9f:c3:8c:f7:b1: 7a:90:54:f6:67:7f:3d:9b:93:0f:50:dd:54:f4:67: 4e:67:71:79:4a:23:e6:53:12:94:73:7f:50:65:ca: e2:0a:9c:9a:5a:42:37:07:11:c0:e6:32:8d:28:f0: 82:42:01:71:af:fa:91:8f:7a:f2:b7:a1:8e:69:4d: c1:2c:4b:7b:34:12:04:d4:c9:e8:21:c6:d7:6a:ab: 6a:1e:0b:fd:b9:96:34:24:95:45:76:cc:76:54:3e: 29:3a:df:7e:71:af:32:07:c1:ed:18:31:77:59:81: 85:28:9d:32:d3:70:ab:2e:af:42:d5:72:71:f3:b1: e3:64:85:4a:dc:c2:fb:35:56:cc:98:eb:a3:bb:52: cc:3c:b5:f2:a0:ae:c8:ce:3c:e7:44:e7:77:6b:01: 76:9d:f1:e9:e5:96:1d:c3:56:03:2c:02:2e:79:f6: 7f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:49:7A:8C:3D:34:83:7C:58:F1:08:C0:93:3C:71:CB:6F:D9:4D:F3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/979dc8d9-65f6-490d-ba4a-cbcc274052e3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.152.0/21 Signature Algorithm: sha256WithRSAEncryption 45:6e:3a:55:3e:08:eb:64:1f:c5:12:6f:34:8c:8f:c9:6c:9f: 34:a4:b0:0b:f4:4c:74:94:68:8e:07:3b:ca:dc:a8:be:f2:47: 68:e9:f4:f0:d0:a1:58:e3:f3:4f:18:cb:93:a9:79:e3:8b:79: 9e:1f:43:b9:3e:77:91:0b:01:47:1a:e0:15:d3:c0:2f:f8:11: 8e:74:8e:6d:49:fa:f4:fe:1d:f3:61:d1:2d:f2:00:f4:ea:85: ed:6e:a8:a2:ac:5e:29:b1:ba:5b:b0:26:8d:89:1c:cb:e1:c4: 58:e2:ff:61:c3:3c:46:f4:be:ab:d1:96:8c:1d:3d:c2:1b:a3: c6:ed:f5:2a:50:24:df:6a:39:6b:0d:cc:99:58:f8:6c:8a:44: 26:1a:14:95:a3:3e:bf:d9:16:c5:ce:32:66:e6:27:70:d0:88: d1:6b:3e:02:76:9f:ab:e1:15:44:21:e3:a7:72:e3:fd:f9:a4: b0:6a:4e:a9:f2:51:a2:28:95:05:6a:05:a9:b7:0b:a3:2a:94: 7a:b0:11:2b:88:88:28:85:7c:10:ea:ac:c1:72:eb:a4:6a:6a: 26:a5:ef:a3:21:99:9c:3a:d6:a7:4c:da:fa:30:c2:aa:70:e6: 20:d1:df:8f:89:d8:40:88:e0:22:d9:b4:28:02:35:f0:08:fe: 63:c1:01:34 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURxf82WUjy14SQqwQ0JwBftrmk1gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA5MDAzMDQ2WhcNMjYwODA3MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OTQ2ZDkzZWI1MGVlOGU4M2I5ZjA1OWRmZjYxNDFhY2Vk ZGNhM2QyZDAyZTZjOWZkYmQ0YjEyM2RkMWNlZjE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXa/zVG7uNLq2Rxjs1SVEqVv0YVMVdBGguqUlT9Vo3fmdK pstD0jxr2aoBWDFwMf55zLOLC3M/+RmxOoK48PjtryhiNGL95LqVdtKE3CCyOL12 /yyfw4z3sXqQVPZnfz2bkw9Q3VT0Z05ncXlKI+ZTEpRzf1BlyuIKnJpaQjcHEcDm Mo0o8IJCAXGv+pGPevK3oY5pTcEsS3s0EgTUyeghxtdqq2oeC/25ljQklUV2zHZU Pik6335xrzIHwe0YMXdZgYUonTLTcKsur0LVcnHzseNkhUrcwvs1VsyY66O7Usw8 tfKgrsjOPOdE53drAXad8enllh3DVgMsAi559n/5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe0l6jD00g3xY8QjAkzxxy2/ZTfMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk3OWRjOGQ5LTY1ZjYtNDkwZC1iYTRhLWNiY2MyNzQwNTJlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANFAJgwDQYJKoZIhvcNAQELBQADggEBAEVuOlU+COtkH8USbzSMj8lsnzSk sAv0THSUaI4HO8rcqL7yR2jp9PDQoVjj808Yy5OpeeOLeZ4fQ7k+d5ELAUca4BXT wC/4EY50jm1J+vT+HfNh0S3yAPTqhe1uqKKsXimxuluwJo2JHMvhxFji/2HDPEb0 vqvRlowdPcIbo8bt9SpQJN9qOWsNzJlY+GyKRCYaFJWjPr/ZFsXOMmbmJ3DQiNFr PgJ2n6vhFUQh46dy4/35pLBqTqnyUaIolQVqBam3C6MqlHqwESuIiCiFfBDqrMFy 66Rqaial76MhmZw61qdM2vowwqpw5iDR34+J2ECI4CLZtCgCNfAI/mPBATQ= -----END CERTIFICATE-----Generated at Tue May 12 21:52:10 2026 by rpki-client