$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa File: d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa (raw, json) Hash identifier: qICKbJglSZi8+hD/S2QBofF24cDDL6TJ317PJnjevhg= Subject key identifier: FA:BB:D7:31:DD:CF:E4:72:25:DA:CF:0B:71:57:CB:7C:AA:A0:11:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 505144331C6AEA4379076F6B0A66FC8A9416987C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa Signing time: Wed 06 May 2026 00:20:11 +0000 ROA not before: Wed 06 May 2026 00:20:11 +0000 ROA not after: Tue 04 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.88.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:51:44:33:1c:6a:ea:43:79:07:6f:6b:0a:66:fc:8a:94:16:98:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 6 00:20:11 2026 GMT Not After : Aug 4 23:59:59 2026 GMT Subject: serialNumber=422964e4c1ed9c337cca6401cc947814023b925df939166880c26918911f6549, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:f3:76:e7:41:47:a1:32:34:6d:b7:b1:6b:0a: 82:ab:1f:9b:71:df:da:c3:fc:27:ad:a1:01:8d:50: 56:01:3c:ce:d3:29:bc:42:96:c3:b3:0b:4b:49:cd: b2:fb:d7:de:ea:44:ae:94:28:ed:0d:f7:a4:2d:dd: b3:67:ac:d2:5e:97:20:96:62:93:09:93:70:fb:15: b9:97:60:1f:b7:d3:2b:ac:fd:85:be:b9:b8:31:4a: 82:46:60:4b:1c:8a:21:f2:1e:26:04:47:d3:b8:52: 49:a6:65:2e:35:9d:98:50:b8:fb:87:20:fd:88:5a: a3:17:16:4f:19:93:a4:06:97:b0:b0:30:38:ac:ac: 1d:5a:95:5d:67:a9:61:21:c5:1e:af:08:46:6c:0c: 5e:30:75:98:99:a3:59:27:f8:14:d1:21:c6:d0:93: c4:f3:c9:60:0f:61:7c:f0:0f:aa:4b:8b:5a:41:4e: 6a:82:9c:a9:e3:17:2a:e0:93:c3:b0:a6:46:fb:2c: 60:b0:c7:e9:7c:72:ac:a9:1d:8f:1b:74:05:d2:95: 77:52:e3:1c:40:4b:98:0a:3e:9c:40:1d:25:33:af: a1:4e:b4:f3:60:96:2e:b3:02:52:6c:b9:d6:ad:22: db:72:fd:21:e2:fd:bc:8b:5a:16:b2:1d:d4:75:2d: 4f:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:BB:D7:31:DD:CF:E4:72:25:DA:CF:0B:71:57:CB:7C:AA:A0:11:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d0253c6b-0ad3-46f5-bb41-d219105c7dc3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.88.0/21 Signature Algorithm: sha256WithRSAEncryption ad:d7:19:3b:66:10:94:cd:ad:28:83:73:14:72:98:35:5d:6a: 02:07:3a:bf:12:5a:99:92:e5:e5:f5:41:3b:e4:03:ea:68:a9: 16:62:cb:90:3f:3c:02:a8:bc:69:e0:2b:fd:43:43:e2:58:db: 33:e5:a0:40:f9:10:76:de:15:5f:e9:98:60:29:e6:4e:91:87: ed:36:63:a9:b9:e2:96:04:24:94:d1:70:ca:5e:12:33:75:0e: be:f8:ab:08:8e:a1:f7:44:01:a7:2f:da:e1:d6:25:4d:7b:e4: a4:09:ac:d8:a4:3a:0a:6f:fa:96:50:03:8e:97:f4:94:d2:9f: 92:c0:90:5e:ee:c3:66:ba:e4:f6:11:bc:cd:18:11:88:83:52: 1a:59:e8:98:7b:65:06:e2:c2:74:88:3b:99:b3:54:bc:17:fb: 5e:00:76:5a:f8:09:fb:d6:09:fa:db:55:f2:9f:25:94:3b:e5: 1d:88:bb:54:db:6a:22:7a:62:f3:4d:fc:d6:93:11:2e:4d:2d: f3:56:96:54:f4:c5:84:dd:61:b5:55:e9:c7:e2:09:48:c0:20: 60:db:4e:7e:e1:a3:d4:3c:05:cc:5f:f1:f2:16:89:f5:a0:26: 12:43:be:54:95:2b:36:d6:ff:88:03:89:68:ba:7e:47:da:4b: 75:1a:95:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUFFEMxxq6kN5B29rCmb8ipQWmHwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA2MDAyMDExWhcNMjYwODA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MjI5NjRlNGMxZWQ5YzMzN2NjYTY0MDFjYzk0NzgxNDAy M2I5MjVkZjkzOTE2Njg4MGMyNjkxODkxMWY2NTQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCc83bnQUehMjRtt7FrCoKrH5tx39rD/CetoQGNUFYBPM7T KbxClsOzC0tJzbL7197qRK6UKO0N96Qt3bNnrNJelyCWYpMJk3D7FbmXYB+30yus /YW+ubgxSoJGYEsciiHyHiYER9O4UkmmZS41nZhQuPuHIP2IWqMXFk8Zk6QGl7Cw MDisrB1alV1nqWEhxR6vCEZsDF4wdZiZo1kn+BTRIcbQk8TzyWAPYXzwD6pLi1pB TmqCnKnjFyrgk8Owpkb7LGCwx+l8cqypHY8bdAXSlXdS4xxAS5gKPpxAHSUzr6FO tPNgli6zAlJsudatItty/SHi/byLWhayHdR1LU8rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+rvXMd3P5HIl2s8LcVfLfKqgEWkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QwMjUzYzZiLTBhZDMtNDZmNS1iYjQxLWQyMTkxMDVjN2RjMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl1gwDQYJKoZIhvcNAQELBQADggEBAK3XGTtmEJTNrSiDcxRymDVdagIH Or8SWpmS5eX1QTvkA+poqRZiy5A/PAKovGngK/1DQ+JY2zPloED5EHbeFV/pmGAp 5k6Rh+02Y6m54pYEJJTRcMpeEjN1Dr74qwiOofdEAacv2uHWJU175KQJrNikOgpv +pZQA46X9JTSn5LAkF7uw2a65PYRvM0YEYiDUhpZ6Jh7ZQbiwnSIO5mzVLwX+14A dlr4CfvWCfrbVfKfJZQ75R2Iu1TbaiJ6YvNN/NaTES5NLfNWllT0xYTdYbVV6cfi CUjAIGDbTn7ho9Q8Bcxf8fIWifWgJhJDvlSVKzbW/4gDiWi6fkfaS3Ualdc= -----END CERTIFICATE-----Generated at Wed May 13 08:16:58 2026 by rpki-client