$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caa6be5d-5e5d-48cb-b090-492b5fcf5dc9.roa File: caa6be5d-5e5d-48cb-b090-492b5fcf5dc9.roa (raw, json) Hash identifier: cIVJ8zSJjB0eN+fnt/EIDy3FwmLMnzqthmk/sGOss2U= Subject key identifier: B3:B5:D1:11:AA:AB:95:6A:32:48:89:29:32:DB:3E:89:30:93:4D:4B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2269A44EF139EF96204CAC6EA5A75F4C31789BCD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caa6be5d-5e5d-48cb-b090-492b5fcf5dc9.roa Signing time: Wed 06 May 2026 00:40:08 +0000 ROA not before: Wed 06 May 2026 00:40:08 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:69:a4:4e:f1:39:ef:96:20:4c:ac:6e:a5:a7:5f:4c:31:78:9b:cd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:40:08 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=1d157a68f4c9b59b002ec29fdf0df1666e65a89b400b1a04fa67e2d13aa02e5c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:32:45:c5:7c:fe:aa:ba:69:8f:cb:77:84:5b: 0c:b2:cf:d1:9b:97:83:78:da:40:f4:0a:01:de:11: 6c:c0:4b:2b:dc:c4:aa:e0:68:08:ac:45:5e:45:9f: 2a:28:c1:28:00:b9:f9:2e:25:44:50:56:66:51:57: 1d:7d:e6:ab:35:d8:6e:cc:08:ed:c9:2f:22:fd:c6: 3b:52:a0:27:d2:31:71:3b:64:f6:53:54:2e:19:d8: aa:43:f5:76:1f:7d:09:55:60:04:21:d0:b7:aa:3f: 40:cc:bc:89:88:67:3d:86:c6:91:0b:38:c2:b4:cc: 8a:42:9c:1c:45:e5:d3:48:a4:ac:03:ef:69:ab:a8: a7:43:7b:0a:1a:e0:44:3d:24:4f:64:77:90:a3:dd: fe:44:6d:5e:29:8f:c9:19:23:50:65:11:58:a8:74: 98:21:34:0b:63:05:f0:38:54:45:07:f1:f3:53:82: 55:06:8d:47:19:90:11:42:5c:33:18:da:e5:10:00: 66:d4:fd:6c:8e:76:de:10:66:ac:ad:db:cb:26:90: 19:69:08:89:a5:8b:65:23:07:c5:52:1b:3e:55:61: 62:b6:03:4a:e1:2b:d4:46:c6:e1:f7:90:01:e7:aa: 2a:f9:fb:84:fc:4d:bc:79:89:60:5a:ab:9a:0e:33: d2:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:B5:D1:11:AA:AB:95:6A:32:48:89:29:32:DB:3E:89:30:93:4D:4B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/caa6be5d-5e5d-48cb-b090-492b5fcf5dc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.154.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:99:e6:d3:ee:63:a6:f8:b0:2b:b1:e5:77:e9:96:da:4e:28: b4:1b:16:10:b1:e8:93:3f:2d:bc:9a:46:93:83:2e:c6:3c:80: c8:ad:ee:e1:52:13:ea:7b:e0:31:61:12:40:57:b9:26:9b:34: 31:e0:4f:ff:91:38:58:58:5e:b1:63:df:c1:e5:c6:ba:ff:d6: de:1c:f2:02:39:5b:27:8a:68:0f:0c:a4:26:1f:f9:d1:e2:43: 69:36:e8:55:4d:15:75:b1:c9:42:75:aa:dc:3f:fc:a6:1a:00: 9d:07:b1:5b:2c:b0:88:7d:d0:85:23:a2:94:2e:58:20:42:82: 05:f5:9d:6e:48:73:16:e5:32:5c:f9:c9:82:e1:79:d1:f3:7f: d4:c5:bd:c8:53:2f:51:80:f7:a3:54:54:9b:84:a3:21:3b:15: 04:61:e8:40:6c:94:93:77:a0:29:67:60:21:23:d4:97:2b:74: a0:f6:44:6c:0b:47:fc:64:8a:30:d9:0c:99:d6:8b:6f:ec:12: 2b:19:29:da:21:98:8e:d3:78:f4:e4:c7:48:88:81:8c:ff:d9: 30:cb:bf:4e:b1:86:c5:08:bb:8c:83:f7:a5:2a:47:92:bc:a5: 2c:6b:05:2e:6a:09:41:64:6b:77:f7:f7:fc:78:4a:25:d7:a9: e8:c3:c6:3a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUImmkTvE575YgTKxupadfTDF4m80wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDA0MDA4WhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDE1N2E2OGY0YzliNTliMDAyZWMyOWZkZjBkZjE2NjZl NjVhODliNDAwYjFhMDRmYTY3ZTJkMTNhYTAyZTVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKMkXFfP6qummPy3eEWwyyz9Gbl4N42kD0CgHeEWzASyvc xKrgaAisRV5FnyoowSgAufkuJURQVmZRVx195qs12G7MCO3JLyL9xjtSoCfSMXE7 ZPZTVC4Z2KpD9XYffQlVYAQh0LeqP0DMvImIZz2GxpELOMK0zIpCnBxF5dNIpKwD 72mrqKdDewoa4EQ9JE9kd5Cj3f5EbV4pj8kZI1BlEViodJghNAtjBfA4VEUH8fNT glUGjUcZkBFCXDMY2uUQAGbU/WyOdt4QZqyt28smkBlpCImli2UjB8VSGz5VYWK2 A0rhK9RGxuH3kAHnqir5+4T8Tbx5iWBaq5oOM9IVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs7XREaqrlWoySIkpMts+iTCTTUswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhYTZiZTVkLTVlNWQtNDhjYi1iMDkwLTQ5MmI1ZmNmNWRjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjl5owDQYJKoZIhvcNAQELBQADggEBAJ+Z5tPuY6b4sCux5XfpltpOKLQb FhCx6JM/LbyaRpODLsY8gMit7uFSE+p74DFhEkBXuSabNDHgT/+ROFhYXrFj38Hl xrr/1t4c8gI5WyeKaA8MpCYf+dHiQ2k26FVNFXWxyUJ1qtw//KYaAJ0HsVsssIh9 0IUjopQuWCBCggX1nW5IcxblMlz5yYLhedHzf9TFvchTL1GA96NUVJuEoyE7FQRh 6EBslJN3oClnYCEj1JcrdKD2RGwLR/xkijDZDJnWi2/sEisZKdohmI7TePTkx0iI gYz/2TDLv06xhsUIu4yD96UqR5K8pSxrBS5qCUFka3f39/x4SiXXqejDxjo= -----END CERTIFICATE-----Generated at Wed May 13 08:17:29 2026 by rpki-client