$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa File: 0f928fc8-8614-4113-b84d-7aa32406a477.roa (raw, json) Hash identifier: wPZFK8Cg2rOHs9yKkHQxKzJDLtMCDYZMPWPEdiCGwxg= Subject key identifier: BD:FE:A8:DF:B8:4B:81:DC:AD:64:C6:29:80:4A:12:37:7A:BA:47:4E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C56A66D11131726D9A130A761141DEA3C3308FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa Signing time: Sun 08 Feb 2026 00:10:57 +0000 ROA not before: Sun 08 Feb 2026 00:10:57 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.7.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:56:a6:6d:11:13:17:26:d9:a1:30:a7:61:14:1d:ea:3c:33:08:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:57 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=ac95a0625d8494107861d5c7deba12be990f76e382563a1034f55f7d1404d132, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3d:8e:5c:0a:06:b1:fd:7e:79:a3:d9:63:03: 44:1d:26:48:d7:3c:0a:57:23:0a:c3:cf:54:ca:7a: 56:d8:53:54:e0:1a:b0:4c:46:ac:9b:9b:3a:42:a1: 3c:3c:36:b9:c7:b1:f7:5c:fa:83:ab:c1:da:01:40: 97:6d:34:a3:67:7f:de:f9:1b:25:32:9a:ee:c8:22: 77:9d:1d:19:d1:7c:10:62:73:2b:ed:56:9d:21:33: 68:70:15:01:ce:95:0b:08:56:a7:ab:06:ba:7b:43: 2b:f0:dc:3b:98:cd:dd:02:7f:d1:42:03:66:11:66: 7e:0b:e6:5e:4f:f0:68:5a:3a:ac:06:87:4c:b2:dc: b1:66:1f:21:d3:52:40:48:c6:a4:57:d6:e1:95:6d: 5a:64:74:ca:39:36:20:56:36:7b:bb:67:60:7b:22: 26:2e:39:29:3c:00:ea:0d:a2:84:ae:2a:8e:f6:15: df:a7:f6:d7:00:92:bf:85:92:dc:53:07:d4:9c:82: 02:5b:57:84:fc:b2:17:21:e3:4c:12:0e:9f:e3:b7: 35:19:89:89:c9:48:7c:77:bd:e4:cb:3c:ec:a8:03: 2e:e4:51:00:88:3e:bb:83:33:66:d8:b2:c4:5a:a5: b6:87:9b:31:42:95:43:fd:08:13:91:74:f1:4e:ce: c6:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:FE:A8:DF:B8:4B:81:DC:AD:64:C6:29:80:4A:12:37:7A:BA:47:4E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0f928fc8-8614-4113-b84d-7aa32406a477.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.7.0.0/16 Signature Algorithm: sha256WithRSAEncryption cc:72:58:65:35:23:33:ca:87:92:42:98:3d:28:b6:a6:bb:90: df:e2:b9:ba:ee:89:9c:d4:b4:da:54:53:ae:5d:a6:96:79:03: c6:d1:65:ae:3f:84:dc:ed:6f:22:05:8c:d1:c3:8f:69:a3:1b: 01:0b:4a:d3:d6:c9:26:9b:50:15:39:5c:84:01:6b:c7:80:3b: 06:ca:e3:07:8b:29:6e:86:13:2b:b9:6a:a8:e3:9e:c8:41:29: c1:ce:6c:bf:6a:19:85:31:67:53:6f:6e:0e:8d:6f:9b:ff:d5: 45:b2:0b:38:65:43:c2:24:da:35:e9:bf:f2:88:06:e9:31:8e: 2a:38:2e:8a:3f:93:a2:72:ae:dd:db:3c:fa:a9:3f:c5:da:17: 5b:d2:96:3f:68:4d:02:2e:6a:eb:49:9b:7e:3a:46:d9:02:cb: 3d:3d:52:fa:ad:ee:94:5d:cc:5d:e7:c8:9c:4f:72:7c:b6:e8: c6:6a:77:32:ca:0f:1c:04:45:95:0e:20:1f:4f:36:7a:3a:89: 69:91:97:f2:f9:4a:ac:01:68:17:f9:b8:93:4e:d4:37:9b:03: e9:f8:1a:51:a3:e9:1e:bb:3d:ba:12:26:5b:20:83:6d:14:3c: 80:21:fa:eb:52:3d:25:5e:e6:54:d1:f5:40:d5:e3:c5:a6:e0: 5a:6c:14:2a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXFambRETFybZoTCnYRQd6jwzCPwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDU3WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzk1YTA2MjVkODQ5NDEwNzg2MWQ1YzdkZWJhMTJiZTk5 MGY3NmUzODI1NjNhMTAzNGY1NWY3ZDE0MDRkMTMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjPY5cCgax/X55o9ljA0QdJkjXPApXIwrDz1TKelbYU1Tg GrBMRqybmzpCoTw8NrnHsfdc+oOrwdoBQJdtNKNnf975GyUymu7IInedHRnRfBBi cyvtVp0hM2hwFQHOlQsIVqerBrp7Qyvw3DuYzd0Cf9FCA2YRZn4L5l5P8GhaOqwG h0yy3LFmHyHTUkBIxqRX1uGVbVpkdMo5NiBWNnu7Z2B7IiYuOSk8AOoNooSuKo72 Fd+n9tcAkr+FktxTB9ScggJbV4T8shch40wSDp/jtzUZiYnJSHx3veTLPOyoAy7k UQCIPruDM2bYssRapbaHmzFClUP9CBORdPFOzsYrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUvf6o37hLgdytZMYpgEoSN3q6R04wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBmOTI4ZmM4LTg2MTQtNDExMy1iODRkLTdhYTMyNDA2YTQ3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2BzANBgkqhkiG9w0BAQsFAAOCAQEAzHJYZTUjM8qHkkKYPSi2pruQ3+K5 uu6JnNS02lRTrl2mlnkDxtFlrj+E3O1vIgWM0cOPaaMbAQtK09bJJptQFTlchAFr x4A7BsrjB4spboYTK7lqqOOeyEEpwc5sv2oZhTFnU29uDo1vm//VRbILOGVDwiTa Nem/8ogG6TGOKjguij+TonKu3ds8+qk/xdoXW9KWP2hNAi5q60mbfjpG2QLLPT1S +q3ulF3MXefInE9yfLboxmp3MsoPHARFlQ4gH082ejqJaZGX8vlKrAFoF/m4k07U N5sD6fgaUaPpHrs9uhImWyCDbRQ8gCH661I9JV7mVNH1QNXjxabgWmwUKg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:14 2026 by rpki-client