$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa File: 44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa (raw, json) Hash identifier: GnMzSRS04xtC01r7Yp7pgqE3Vi4OIyHj4qq0VC65nzs= Subject key identifier: E5:27:39:33:5A:F9:84:9D:8B:DB:89:A1:41:98:C2:AE:B2:B7:84:56 Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 7DD59D63A8EDB7078425BEC5072584E397C318FD Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa Signing time: Fri 08 May 2026 01:20:09 +0000 ROA not before: Fri 08 May 2026 01:20:09 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.220.207.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:d5:9d:63:a8:ed:b7:07:84:25:be:c5:07:25:84:e3:97:c3:18:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 8 01:20:09 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=e614067071da0d10c87e55c9202988f50f1ed3d22885515a6dc6b0fd5afdc9c3, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:e1:1b:30:3c:63:1e:92:6e:fd:52:42:f5:37: 98:77:31:32:74:76:7a:f8:e1:5a:44:60:70:70:8e: 9d:00:f8:28:1d:ee:7f:34:a5:35:77:93:16:ac:81: 6a:1e:d2:ae:ce:f9:86:6f:bf:f0:8f:3d:06:b2:7b: ee:4d:e3:a2:6e:c8:43:13:bf:31:c6:ec:ba:5d:9d: f5:d9:a8:fe:95:cd:ff:1a:bc:a2:04:93:2f:bf:e8: 1d:68:bd:55:a2:f8:4f:31:27:55:1c:62:0e:8e:b1: 90:7b:6f:71:23:47:2a:a8:1f:fd:03:72:c8:a2:67: 66:a3:28:4d:26:ea:f4:5e:4c:25:ef:bb:66:c0:e6: c6:f6:59:05:1e:15:04:0b:4a:a5:ca:3a:7f:ba:1a: ce:d9:64:37:5e:7a:44:50:fc:7b:6e:b4:f3:a4:7f: 15:56:ba:5b:12:32:6f:51:1d:a1:69:65:41:46:a8: c7:62:45:04:3b:cf:ec:94:c6:55:13:85:a6:d3:b1: 22:cd:a5:9c:6b:07:48:13:a6:05:01:16:89:e3:08: 4b:bd:8e:b6:c1:70:13:63:e8:a7:de:e3:53:e6:e0: 17:93:0e:97:d9:36:a8:60:6c:ca:dd:ca:b9:dd:77: 96:79:fb:ba:25:b7:12:89:0a:96:2f:4c:5d:90:8b: 5a:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:27:39:33:5A:F9:84:9D:8B:DB:89:A1:41:98:C2:AE:B2:B7:84:56 X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/44c6fbad-1339-4ec1-b4f9-6105db85c70b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.220.207.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:99:23:7b:86:d0:0f:41:cf:b5:ea:c6:af:f5:2c:f0:6f:3f: 0e:88:35:06:ab:24:8f:ef:0d:29:1a:e8:38:5a:bf:c0:77:24: b0:c6:28:11:20:02:52:7f:18:55:12:22:7d:d0:dd:af:8d:d0: 41:1b:b2:01:c4:88:ed:8a:fa:d4:cd:b3:eb:1b:99:da:7b:54: 4f:d4:a4:d4:64:5c:04:d7:39:b9:70:93:c1:01:9a:f1:f3:79: 2f:42:b3:52:c2:45:64:18:d9:1a:27:b4:04:88:9d:40:eb:a2: ce:10:3e:a4:ea:3a:14:47:8d:e8:82:d5:67:3b:8f:ab:05:84: d9:60:e3:11:ce:57:58:cc:cb:0e:d6:12:d2:c1:fc:4d:e1:20: 29:6c:25:db:72:93:00:b7:0e:de:f6:f5:47:1a:f2:6e:54:8a: 30:6c:39:85:a1:9d:64:a5:cc:2f:04:73:46:2b:db:c1:96:69: a5:85:f3:f6:b0:43:ea:13:7a:2d:74:0d:98:1d:77:fa:a7:c5: db:88:81:5e:60:93:96:ef:c0:22:6a:70:92:c1:03:c4:67:9b: 9a:2b:b6:39:9a:ba:b6:8f:74:28:84:47:bb:20:3b:20:9e:b5: 0b:fc:a2:b5:c6:07:e3:54:6d:ea:50:1c:dc:92:54:5c:e9:c9: ef:1c:4d:3f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfdWdY6jttweEJb7FByWE45fDGP0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA4MDEyMDA5WhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjE0MDY3MDcxZGEwZDEwYzg3ZTU1YzkyMDI5ODhmNTBm MWVkM2QyMjg4NTUxNWE2ZGM2YjBmZDVhZmRjOWMzMS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf4RswPGMekm79UkL1N5h3MTJ0dnr44VpEYHBwjp0A+Cgd 7n80pTV3kxasgWoe0q7O+YZvv/CPPQaye+5N46JuyEMTvzHG7LpdnfXZqP6Vzf8a vKIEky+/6B1ovVWi+E8xJ1UcYg6OsZB7b3EjRyqoH/0DcsiiZ2ajKE0m6vReTCXv u2bA5sb2WQUeFQQLSqXKOn+6Gs7ZZDdeekRQ/HtutPOkfxVWulsSMm9RHaFpZUFG qMdiRQQ7z+yUxlUThabTsSLNpZxrB0gTpgUBFonjCEu9jrbBcBNj6Kfe41Pm4BeT DpfZNqhgbMrdyrndd5Z5+7oltxKJCpYvTF2Qi1qDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5Sc5M1r5hJ2L24mhQZjCrrK3hFYwHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzQ0YzZmYmFkLTEzMzktNGVjMS1iNGY5LTYxMDVkYjg1YzcwYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAP3M8wDQYJKoZIhvcNAQELBQADggEBADqZI3uG0A9Bz7Xqxq/1LPBvPw6I NQarJI/vDSka6Dhav8B3JLDGKBEgAlJ/GFUSIn3Q3a+N0EEbsgHEiO2K+tTNs+sb mdp7VE/UpNRkXATXOblwk8EBmvHzeS9Cs1LCRWQY2RontASInUDros4QPqTqOhRH jeiC1Wc7j6sFhNlg4xHOV1jMyw7WEtLB/E3hIClsJdtykwC3Dt729Uca8m5UijBs OYWhnWSlzC8Ec0Yr28GWaaWF8/awQ+oTei10DZgdd/qnxduIgV5gk5bvwCJqcJLB A8Rnm5ortjmauraPdCiER7sgOyCetQv8orXGB+NUbepQHNySVFzpye8cTT8= -----END CERTIFICATE-----Generated at Tue May 12 21:59:47 2026 by rpki-client