$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/892d8f96-62eb-4803-bfe4-1f245858e633.roa File: 892d8f96-62eb-4803-bfe4-1f245858e633.roa (raw, json) Hash identifier: l5aASdUcGAP+JpCR9FkWxNK6ETT7gNjFdIJrC+9MiDI= Subject key identifier: 07:CA:28:1D:D0:2A:B2:0D:52:9A:E5:18:02:FB:04:D5:BB:C0:02:40 Certificate issuer: /CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Certificate serial: 524DFC13865777D00F577AE1EEDAE4AC31908B0C Authority key identifier: E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/892d8f96-62eb-4803-bfe4-1f245858e633.roa Signing time: Mon 11 May 2026 00:50:39 +0000 ROA not before: Mon 11 May 2026 00:50:39 +0000 ROA not after: Sun 09 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.246.178.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/99f8fed2-292b-4722-b928-fee7bf0a5910.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/f60c9f32-a87c-4339-a2f3-6299a3b02e29.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Thu 14 May 2026 21:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:4d:fc:13:86:57:77:d0:0f:57:7a:e1:ee:da:e4:ac:31:90:8b:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce Validity Not Before: May 11 00:50:39 2026 GMT Not After : Aug 9 23:59:59 2026 GMT Subject: serialNumber=c7d197b32bbf14a04f57a26ddc6c751e98a0ffed8623c074d1c40d97704751d6, CN=9f230fa9-aa2f-4020-ae2a-1a60374084b8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:98:11:d0:95:0c:76:92:11:f2:43:09:65:0f: 01:93:6b:11:3b:82:8d:18:9a:69:df:ee:5e:2d:34: ff:b6:95:0f:cd:dd:d8:d1:5b:76:08:0f:9c:7f:fd: 16:7b:78:c3:27:34:9f:37:80:a5:b9:5f:ec:66:f0: 2c:96:0e:e8:02:c8:0b:64:3f:77:9b:99:0b:7c:4e: 8b:ad:17:0a:bd:ac:5c:95:2d:07:49:2a:08:dc:36: 67:a0:59:e2:bd:9c:ca:3b:55:1b:0f:b2:67:74:e5: 99:7f:d3:34:c1:45:ca:2a:54:db:26:61:ca:25:a2: b0:ac:a8:3d:a2:6a:7b:44:2f:7d:8b:d8:bb:0f:7f: 36:3a:29:5d:17:57:ca:d4:a2:f1:6c:b7:59:5e:3a: a7:4d:27:c7:21:ac:cf:f7:5c:c0:da:75:05:28:bf: c0:e3:84:2c:0f:17:d0:c2:5b:08:32:46:17:1a:c8: c7:28:94:88:b0:af:79:26:0a:ff:f5:c1:ea:74:92: e6:bc:51:b6:ab:5e:ef:8c:a9:94:02:a6:d9:53:a5: 92:bd:ff:5d:34:66:d9:48:f9:10:06:bf:82:dd:1b: c5:f3:67:37:27:70:6f:82:e9:4c:5a:6d:a3:76:44: 9c:8d:c5:f9:7f:31:83:6b:bc:c3:00:f4:26:84:42: 58:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:CA:28:1D:D0:2A:B2:0D:52:9A:E5:18:02:FB:04:D5:BB:C0:02:40 X509v3 Authority Key Identifier: keyid:E8:F3:C5:20:E2:0E:F2:5D:3A:B7:A2:16:BB:14:04:31:6A:37:38:F1 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/f60c9f32-a87c-4339-a2f3-6299a3b02e29/99f8fed2-292b-4722-b928-fee7bf0a5910/551209027f5e7ad54e04f042e4ac0e9e65c56e55c77478d2ce.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/892d8f96-62eb-4803-bfe4-1f245858e633.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/e7518af5-a343-428d-bf78-f982b6e60505/XnrVTgTwQuSsDp5lxW5Vx3R40s4.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.246.178.0/23 Signature Algorithm: sha256WithRSAEncryption 3c:04:8f:a7:e5:cf:51:96:84:9f:b7:61:67:79:dd:c5:98:3f: 8a:88:a3:13:c1:4e:56:04:ea:f0:25:66:88:71:56:3e:8a:03: 7c:ce:cd:31:0f:e0:2e:87:9d:0c:cc:59:42:2d:b6:8c:f0:78: 2d:51:90:31:2b:62:28:f6:bd:6d:77:41:1b:73:3c:2b:bb:b1: 28:fd:0b:d9:f8:6c:2e:32:64:78:20:9e:39:79:12:6c:8e:d5: 1d:bd:23:2a:72:1f:5b:84:83:2a:fa:0b:f5:bf:e6:8a:5e:ae: f0:97:6b:8b:f9:fd:9d:cc:3e:66:55:77:90:b7:c4:36:33:a1: 3e:b1:74:10:71:d0:3d:28:20:02:6f:99:4d:7f:24:29:4e:e3: e4:b1:cf:67:5c:06:a9:88:ff:ed:c4:d1:b1:f4:f3:b5:be:e8: 84:38:47:d0:30:47:0d:e8:78:56:07:82:67:3f:01:25:d9:66: 6e:ac:e8:4f:74:fb:0c:7c:9f:cb:ba:30:52:c8:4a:94:72:b8: 2c:57:97:dd:01:88:e2:5c:55:36:f0:e7:c6:f7:ff:7e:27:37: 19:34:cf:12:03:69:bb:ee:61:c1:9e:d0:81:55:fb:22:c2:36: 41:d7:1c:f0:72:4f:f0:3c:c5:de:95:05:3d:d4:9c:5a:c7:27: f0:1b:50:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUk38E4ZXd9APV3rh7trkrDGQiwwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNTUxMjA5MDI3ZjVlN2FkNTRlMDRmMDQyZTRhYzBlOWU2 NWM1NmU1NWM3NzQ3OGQyY2UwHhcNMjYwNTExMDA1MDM5WhcNMjYwODA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2QxOTdiMzJiYmYxNGEwNGY1N2EyNmRkYzZjNzUxZTk4 YTBmZmVkODYyM2MwNzRkMWM0MGQ5NzcwNDc1MWQ2MS0wKwYDVQQDEyQ5ZjIzMGZh OS1hYTJmLTQwMjAtYWUyYS0xYTYwMzc0MDg0YjgwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEmBHQlQx2khHyQwllDwGTaxE7go0Ymmnf7l4tNP+2lQ/N 3djRW3YID5x//RZ7eMMnNJ83gKW5X+xm8CyWDugCyAtkP3ebmQt8ToutFwq9rFyV LQdJKgjcNmegWeK9nMo7VRsPsmd05Zl/0zTBRcoqVNsmYcolorCsqD2iantEL32L 2LsPfzY6KV0XV8rUovFst1leOqdNJ8chrM/3XMDadQUov8DjhCwPF9DCWwgyRhca yMcolIiwr3kmCv/1wep0kua8UbarXu+MqZQCptlTpZK9/100ZtlI+RAGv4LdG8Xz ZzcncG+C6UxabaN2RJyNxfl/MYNrvMMA9CaEQljvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB8ooHdAqsg1SmuUYAvsE1bvAAkAwHwYDVR0jBBgwFoAU6PPFIOIO8l06 t6IWuxQEMWo3OPEwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz L2Y2MGM5ZjMyLWE4N2MtNDMzOS1hMmYzLTYyOTlhM2IwMmUyOS85OWY4ZmVkMi0y OTJiLTQ3MjItYjkyOC1mZWU3YmYwYTU5MTAvNTUxMjA5MDI3ZjVlN2FkNTRlMDRm MDQyZTRhYzBlOWU2NWM1NmU1NWM3NzQ3OGQyY2UuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZTc1MThhZjUtYTM0My00MjhkLWJmNzgtZjk4 MmI2ZTYwNTA1Lzg5MmQ4Zjk2LTYyZWItNDgwMy1iZmU0LTFmMjQ1ODU4ZTYzMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2U3NTE4YWY1LWEzNDMtNDI4ZC1iZjc4 LWY5ODJiNmU2MDUwNS9YbnJWVGdUd1F1U3NEcDVseFc1VngzUjQwczQuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHM9rIwDQYJKoZIhvcNAQELBQADggEBADwEj6flz1GWhJ+3YWd53cWYP4qI oxPBTlYE6vAlZohxVj6KA3zOzTEP4C6HnQzMWUIttozweC1RkDErYij2vW13QRtz PCu7sSj9C9n4bC4yZHggnjl5EmyO1R29IypyH1uEgyr6C/W/5opervCXa4v5/Z3M PmZVd5C3xDYzoT6xdBBx0D0oIAJvmU1/JClO4+Sxz2dcBqmI/+3E0bH087W+6IQ4 R9AwRw3oeFYHgmc/ASXZZm6s6E90+wx8n8u6MFLISpRyuCxXl90BiOJcVTbw58b3 /34nNxk0zxIDabvuYcGe0IFV+yLCNkHXHPByT/A8xd6VBT3UnFrHJ/AbUKg= -----END CERTIFICATE-----Generated at Wed May 13 01:31:13 2026 by rpki-client