$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4ed46c33-65ef-488c-97e8-2241e4cdee74.roa File: 4ed46c33-65ef-488c-97e8-2241e4cdee74.roa (raw, json) Hash identifier: iwtvE+AhcP+RH07px/NbL/XEui0h3KYc8wxX2sPKEN8= Subject key identifier: 11:64:4A:13:4F:5B:CE:95:50:E4:0B:C7:79:33:EA:56:78:11:22:EE Certificate issuer: /CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Certificate serial: 69FB8932B6B3FA64CB743A21A5E1DEC2804FE91B Authority key identifier: 25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4ed46c33-65ef-488c-97e8-2241e4cdee74.roa Signing time: Fri 08 May 2026 01:10:11 +0000 ROA not before: Fri 08 May 2026 01:10:11 +0000 ROA not after: Thu 06 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.168.192.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/851cef17-132a-4337-b7d1-bf16a52ffd03.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Wed 13 May 2026 20:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:fb:89:32:b6:b3:fa:64:cb:74:3a:21:a5:e1:de:c2:80:4f:e9:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476 Validity Not Before: May 8 01:10:11 2026 GMT Not After : Aug 6 23:59:59 2026 GMT Subject: serialNumber=325978709e5fe883c10a527ada6520e6911891c1a1a0ef5f58ce852ca7c4f3f5, CN=5f276045-5b9f-45ef-923d-f3fce24a6225 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:e5:5b:3d:08:52:5a:11:10:f1:d5:b3:c7:cd: f4:da:c1:86:15:eb:80:fa:f0:11:84:87:ac:a8:29: ac:31:72:11:67:7a:65:70:ff:c2:5f:42:ec:aa:5c: 98:8f:b4:68:ab:18:a7:47:da:7d:2c:f3:29:5c:36: c4:41:6b:41:7a:63:20:48:bf:3b:ec:cf:1c:52:9c: 04:58:11:31:65:f5:9a:50:9c:d9:c0:66:c5:b9:d7: 89:54:e0:74:cf:df:6e:94:98:e2:e8:0d:1e:63:2b: 15:c4:62:a4:d1:fc:bc:a2:33:c6:d5:99:d0:53:08: 4f:44:a1:43:26:1e:7c:07:2b:ab:7f:38:93:a1:15: 75:4b:53:11:53:d4:43:93:3c:4d:d0:50:fe:89:0c: 8f:a1:19:dc:5d:a4:b9:ea:22:f5:55:4d:aa:74:4f: bc:a9:0d:84:70:e1:34:24:a9:ba:82:9f:2a:ca:fd: 8e:78:d1:4e:3d:4e:bd:da:78:7d:47:16:8e:b3:e4: b6:f9:57:3f:89:02:ce:36:8f:af:2d:fe:a2:57:92: 50:f8:47:a9:0b:af:d5:22:2a:12:5f:e4:f3:47:62: f2:01:df:4d:f9:3c:50:60:ea:d4:4f:22:fd:75:4b: 2e:40:87:cd:d1:a3:c0:9b:c1:65:b6:65:4e:52:7d: 07:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:64:4A:13:4F:5B:CE:95:50:E4:0B:C7:79:33:EA:56:78:11:22:EE X509v3 Authority Key Identifier: keyid:25:AD:D3:42:B0:1E:B7:A5:8E:AD:19:90:26:88:B5:4B:3F:81:F4:B8 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/851cef17-132a-4337-b7d1-bf16a52ffd03/df6f3b3a34b6386d1a32d8f4fa3178ef31887d8b428dfaa476.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/4ed46c33-65ef-488c-97e8-2241e4cdee74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/f703696e-e47b-4c20-bd93-6f80904e42d2/tjhtGjLY9PoxeO8xiH2LQo36pHY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.168.192.0/19 Signature Algorithm: sha256WithRSAEncryption 0b:2b:e4:a8:6e:60:9e:c5:3c:4b:9a:bc:4c:84:a5:aa:42:f6: 18:7a:f6:4a:70:7a:ae:2e:0b:ef:ca:7c:aa:ad:71:62:22:ac: 8e:f3:18:ed:be:f2:ee:0f:8b:79:b5:d9:3d:b7:38:e2:2b:8c: f8:8d:c4:6a:ad:bc:bb:83:44:f9:cf:4c:3c:f8:d8:11:8f:35: 7b:a8:28:f7:24:bd:bd:e2:9e:e8:f9:b8:ea:0d:bd:42:1f:fd: 49:b7:f4:d1:25:e1:28:10:b6:2e:00:f8:83:17:35:f5:99:bb: b0:a0:cf:fd:e3:6b:34:a8:21:e0:5f:4c:fb:70:17:a4:e6:b8: ad:c0:ad:35:22:4e:ff:66:da:f0:0e:82:f0:d1:45:66:4d:30: c8:00:8f:2f:4e:14:5e:f8:84:d1:5c:bc:af:59:cd:ff:6e:4e: bf:09:64:25:b3:ec:22:9e:8e:ce:5a:6a:4f:e3:ba:55:33:74: 57:5d:1e:f5:fa:25:26:21:06:a6:12:37:66:1e:0e:81:44:db: 06:84:f4:57:c8:4b:c4:44:8a:2c:13:7c:2d:0d:b0:5b:ed:d8: 06:73:ba:cf:89:cf:35:87:65:a3:21:7b:63:a0:cb:da:d3:05: e3:38:36:07:95:5b:89:a6:8c:9e:1b:9f:a8:19:42:4b:52:7e: 12:43:d9:6d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUafuJMraz+mTLdDohpeHewoBP6RswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJkOGY0ZmEzMTc4ZWYz MTg4N2Q4YjQyOGRmYWE0NzYwHhcNMjYwNTA4MDExMDExWhcNMjYwODA2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjU5Nzg3MDllNWZlODgzYzEwYTUyN2FkYTY1MjBlNjkx MTg5MWMxYTFhMGVmNWY1OGNlODUyY2E3YzRmM2Y1MS0wKwYDVQQDEyQ1ZjI3NjA0 NS01YjlmLTQ1ZWYtOTIzZC1mM2ZjZTI0YTYyMjUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC35Vs9CFJaERDx1bPHzfTawYYV64D68BGEh6yoKawxchFn emVw/8JfQuyqXJiPtGirGKdH2n0s8ylcNsRBa0F6YyBIvzvszxxSnARYETFl9ZpQ nNnAZsW514lU4HTP326UmOLoDR5jKxXEYqTR/LyiM8bVmdBTCE9EoUMmHnwHK6t/ OJOhFXVLUxFT1EOTPE3QUP6JDI+hGdxdpLnqIvVVTap0T7ypDYRw4TQkqbqCnyrK /Y540U49Tr3aeH1HFo6z5Lb5Vz+JAs42j68t/qJXklD4R6kLr9UiKhJf5PNHYvIB 3035PFBg6tRPIv11Sy5Ah83Ro8CbwWW2ZU5SfQdJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEWRKE09bzpVQ5AvHeTPqVngRIu4wHwYDVR0jBBgwFoAUJa3TQrAet6WO rRmQJoi1Sz+B9LgwDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi84NTFjZWYxNy0x MzJhLTQzMzctYjdkMS1iZjE2YTUyZmZkMDMvZGY2ZjNiM2EzNGI2Mzg2ZDFhMzJk OGY0ZmEzMTc4ZWYzMTg4N2Q4YjQyOGRmYWE0NzYuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvZjcwMzY5NmUtZTQ3Yi00YzIwLWJkOTMtNmY4 MDkwNGU0MmQyLzRlZDQ2YzMzLTY1ZWYtNDg4Yy05N2U4LTIyNDFlNGNkZWU3NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2Y3MDM2OTZlLWU0N2ItNGMyMC1iZDkz LTZmODA5MDRlNDJkMi90amh0R2pMWTlQb3hlTzh4aUgyTFFvMzZwSFkuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAU2qMAwDQYJKoZIhvcNAQELBQADggEBAAsr5KhuYJ7FPEuavEyEpapC9hh6 9kpweq4uC+/KfKqtcWIirI7zGO2+8u4Pi3m12T23OOIrjPiNxGqtvLuDRPnPTDz4 2BGPNXuoKPckvb3inuj5uOoNvUIf/Um39NEl4SgQti4A+IMXNfWZu7Cgz/3jazSo IeBfTPtwF6TmuK3ArTUiTv9m2vAOgvDRRWZNMMgAjy9OFF74hNFcvK9Zzf9uTr8J ZCWz7CKejs5aak/julUzdFddHvX6JSYhBqYSN2YeDoFE2waE9FfIS8REiiwTfC0N sFvt2AZzus+JzzWHZaMhe2Ogy9rTBeM4NgeVW4mmjJ4bn6gZQktSfhJD2W0= -----END CERTIFICATE-----Generated at Tue May 12 22:26:56 2026 by rpki-client