$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa File: d171a8a1-9f08-410d-8286-615fcfbb13fc.roa (raw, json) Hash identifier: qMOEOCcK/dQvglu1B7j5bnya+/8V7bfWXZ9h4vyHZHs= Subject key identifier: 63:0D:F6:77:0A:A3:B8:9E:77:5A:27:D5:77:F2:30:FB:55:7E:F9:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58D271241DF5C12CE610A11A4336068E1CF62454 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa Signing time: Tue 05 May 2026 00:10:12 +0000 ROA not before: Tue 05 May 2026 00:10:12 +0000 ROA not after: Mon 03 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.15.176.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d2:71:24:1d:f5:c1:2c:e6:10:a1:1a:43:36:06:8e:1c:f6:24:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 5 00:10:12 2026 GMT Not After : Aug 3 23:59:59 2026 GMT Subject: serialNumber=c48f6f38795b9a1d4bda6120e075b32686ae86872690eab73898bfd13a6202f6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cb:7b:4e:64:ab:d8:00:60:1c:71:e7:a5:9f: 00:7a:00:5e:b6:00:c4:c4:93:7f:f6:7a:57:86:f7: ec:58:52:be:c9:12:d8:46:d5:1b:63:d9:e5:01:42: 30:90:6f:64:fe:23:26:25:79:65:dc:b8:d6:9c:20: a5:62:f2:63:fa:11:38:e6:27:33:52:6a:81:4b:04: b9:24:6a:c1:a4:b9:34:12:20:42:ec:2f:a4:10:38: 86:eb:05:bc:4c:5a:55:d5:31:63:cd:65:21:d5:e3: c4:50:72:af:be:9f:2a:19:20:a0:a5:26:6c:87:69: 33:15:d4:23:06:a1:f0:69:1d:cf:b7:b9:bb:f8:04: 43:54:ba:a3:c9:1b:06:e8:4d:f6:2e:42:e0:bb:ef: aa:12:49:f6:b3:d3:12:f9:44:b0:18:f3:5b:b6:4f: a4:e2:d4:ca:1a:5f:79:49:88:cd:80:c5:62:5e:db: b9:a6:3d:23:a3:be:5a:0f:39:cb:03:2a:23:9b:f7: af:99:9a:e5:61:13:64:c8:b9:ee:3d:ee:7a:51:aa: 15:40:73:03:cd:fd:ca:01:90:ca:b4:8c:af:52:d6: ad:45:e5:a4:5d:5e:fd:3d:57:1f:67:63:da:bb:c6: 8f:ff:e0:11:6a:8c:16:88:67:eb:95:84:75:a3:bc: ee:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:0D:F6:77:0A:A3:B8:9E:77:5A:27:D5:77:F2:30:FB:55:7E:F9:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d171a8a1-9f08-410d-8286-615fcfbb13fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.15.176.0/20 Signature Algorithm: sha256WithRSAEncryption cf:50:5b:3a:44:5b:e6:64:84:a9:6e:ff:38:00:6e:bd:17:b6: 94:69:43:56:63:cb:d9:9c:3c:e3:f9:19:53:bb:c8:01:85:f8: 1b:d5:54:e4:e6:61:50:06:5f:a5:d0:dc:53:bb:46:80:f5:c5: f4:73:23:c7:79:c5:e5:79:89:68:8b:70:88:3f:10:ce:08:ce: 29:00:a3:3c:a9:38:d8:99:57:35:bd:8c:66:c2:97:57:19:9c: 20:e6:56:31:46:45:c9:d4:63:60:05:b8:ad:66:6f:0e:d2:1a: dd:6d:da:13:5c:b4:70:08:3f:ec:77:70:9d:5e:e8:d5:78:1a: 3d:99:6a:27:30:95:b3:a7:3b:94:1e:3e:de:ac:8f:a2:1e:ca: e7:82:88:f4:4d:3d:02:d6:ae:35:85:09:3a:23:b0:74:7e:68: 83:3b:16:80:3f:03:f9:42:d3:bb:b0:10:94:ca:33:3e:2a:1e: 11:ab:91:31:f3:4b:7c:72:36:6b:60:b5:d8:9e:a1:c6:7a:ad: 01:f2:0a:67:bd:6c:e6:89:ca:df:2e:25:1a:c3:37:04:8f:f0: c2:80:f2:13:14:6f:af:6a:68:1d:96:ef:43:01:76:b8:ae:c5: ea:0c:79:1e:83:fe:2c:c9:9b:18:b5:bd:69:04:5b:c0:f9:94: 5d:29:84:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWNJxJB31wSzmEKEaQzYGjhz2JFQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTA1MDAxMDEyWhcNMjYwODAzMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNDhmNmYzODc5NWI5YTFkNGJkYTYxMjBlMDc1YjMyNjg2 YWU4Njg3MjY5MGVhYjczODk4YmZkMTNhNjIwMmY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCy3tOZKvYAGAcceelnwB6AF62AMTEk3/2eleG9+xYUr7J EthG1Rtj2eUBQjCQb2T+IyYleWXcuNacIKVi8mP6ETjmJzNSaoFLBLkkasGkuTQS IELsL6QQOIbrBbxMWlXVMWPNZSHV48RQcq++nyoZIKClJmyHaTMV1CMGofBpHc+3 ubv4BENUuqPJGwboTfYuQuC776oSSfaz0xL5RLAY81u2T6Ti1MoaX3lJiM2AxWJe 27mmPSOjvloPOcsDKiOb96+ZmuVhE2TIue497npRqhVAcwPN/coBkMq0jK9S1q1F 5aRdXv09Vx9nY9q7xo//4BFqjBaIZ+uVhHWjvO6JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYw32dwqjuJ53WifVd/Iw+1V++WgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QxNzFhOGExLTlmMDgtNDEwZC04Mjg2LTYxNWZjZmJiMTNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQQD7AwDQYJKoZIhvcNAQELBQADggEBAM9QWzpEW+ZkhKlu/zgAbr0XtpRp Q1Zjy9mcPOP5GVO7yAGF+BvVVOTmYVAGX6XQ3FO7RoD1xfRzI8d5xeV5iWiLcIg/ EM4IzikAozypONiZVzW9jGbCl1cZnCDmVjFGRcnUY2AFuK1mbw7SGt1t2hNctHAI P+x3cJ1e6NV4Gj2ZaicwlbOnO5QePt6sj6IeyueCiPRNPQLWrjWFCTojsHR+aIM7 FoA/A/lC07uwEJTKMz4qHhGrkTHzS3xyNmtgtdieocZ6rQHyCme9bOaJyt8uJRrD NwSP8MKA8hMUb69qaB2W70MBdriuxeoMeR6D/izJmxi1vWkEW8D5lF0phLY= -----END CERTIFICATE-----Generated at Wed May 13 08:17:19 2026 by rpki-client