$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa File: 158b805b-2506-47c4-a087-7b0accaf249e.roa (raw, json) Hash identifier: 7/DFeKgdz0FtH1XYTkkPnsv4vS/cMs82ZMR5H6Kikgk= Subject key identifier: B5:B9:6D:C8:F5:A3:9F:46:FE:22:16:71:FA:4E:EF:13:4C:88:09:30 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 520473467ADD637D8BF63FD12B378F34783B334B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa Signing time: Sat 28 Feb 2026 00:41:13 +0000 ROA not before: Sat 28 Feb 2026 00:41:13 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.71.32.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:04:73:46:7a:dd:63:7d:8b:f6:3f:d1:2b:37:8f:34:78:3b:33:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:41:13 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=69831ce0a143de0e3a4f4b51e8e3723d0f72e6162072ff6e801565bceff6da4c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:d3:23:74:26:50:87:4f:2c:cf:ca:49:9d:34: 57:38:75:4e:53:e7:4e:2a:7c:6b:2a:01:36:e2:34: 61:ee:3d:25:6e:c8:6d:d4:5f:13:59:2b:9a:17:3f: 53:0a:48:de:df:a1:de:2e:05:ff:22:b6:f0:fd:18: b1:a7:ca:05:e8:34:78:8c:6c:ff:bd:5d:5a:2b:a1: 0d:2b:d2:20:81:52:b7:af:4e:92:3c:43:b2:20:64: 22:39:5a:83:81:81:d4:42:fe:d8:8b:16:a3:04:57: 95:4e:2c:83:0e:72:15:9a:a5:79:7f:01:7a:77:30: a4:22:03:92:86:5a:e8:02:a7:c7:93:47:08:34:00: 50:0d:90:b2:8d:ed:6e:eb:4c:34:ac:78:f5:db:93: 52:f0:44:8d:2d:97:79:d0:9c:e7:ef:c4:e8:d9:e3: 56:cf:ac:9a:d9:4b:45:93:d0:ba:28:6b:14:63:20: 5c:37:a2:0c:a0:84:70:eb:64:d0:11:f5:b6:cc:32: 2a:5c:6e:f0:76:66:34:7c:c6:08:50:10:20:70:a0: 63:c9:6b:85:12:11:09:ab:1d:7c:3d:b0:13:d5:97: 7b:e4:67:82:da:85:9e:c9:7f:90:df:55:e8:f5:17: 6e:0d:3a:66:e4:86:25:4d:f2:90:da:6b:1d:ad:d7: b0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:B9:6D:C8:F5:A3:9F:46:FE:22:16:71:FA:4E:EF:13:4C:88:09:30 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/158b805b-2506-47c4-a087-7b0accaf249e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.71.32.0/19 Signature Algorithm: sha256WithRSAEncryption b4:a5:7b:92:f1:7e:28:8e:89:8f:b3:ad:f7:7c:39:fc:51:68: 3c:57:45:0d:bb:a1:f5:0b:4d:19:d5:4e:6e:9a:2d:61:5c:b2: d0:8d:34:4e:63:8d:7f:d1:7e:09:80:08:c0:c7:59:c9:88:10: 5a:55:88:01:00:06:f7:3d:bc:ec:6f:98:c4:11:53:9f:08:9a: 60:12:c4:99:15:9f:8e:07:fa:2a:71:85:a1:ce:12:84:57:04: b1:8a:c8:19:51:a0:c1:ab:91:2a:8d:8f:f9:62:9c:c6:24:3d: 93:06:c9:36:94:49:07:0b:80:fd:4c:69:17:d2:fc:c4:f3:6a: 58:04:69:f7:e0:25:2e:8e:13:47:b4:0b:d5:01:71:23:f9:e2: 92:77:b9:30:93:0f:38:ff:6c:8b:44:8b:e2:83:cc:ea:4c:4c: 6e:58:c5:40:e4:98:4d:8a:97:e0:c0:dd:43:26:69:cd:e9:cc: d9:39:fa:61:2a:9b:fa:b9:3a:bf:20:8c:47:77:b5:e7:85:e6: 80:a6:ab:b9:dd:fd:26:b3:89:5b:19:56:eb:f1:11:e5:05:5a: 0d:19:58:ab:77:64:33:4b:12:f0:d6:ac:cd:c7:b9:12:04:80: 06:a7:de:af:1d:14:2a:ce:49:11:d0:98:24:dd:69:de:c1:6b: fe:c6:3d:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUgRzRnrdY32L9j/RKzePNHg7M0swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDA0MTEzWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2OTgzMWNlMGExNDNkZTBlM2E0ZjRiNTFlOGUzNzIzZDBm NzJlNjE2MjA3MmZmNmU4MDE1NjViY2VmZjZkYTRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCl0yN0JlCHTyzPykmdNFc4dU5T504qfGsqATbiNGHuPSVu yG3UXxNZK5oXP1MKSN7fod4uBf8itvD9GLGnygXoNHiMbP+9XVoroQ0r0iCBUrev TpI8Q7IgZCI5WoOBgdRC/tiLFqMEV5VOLIMOchWapXl/AXp3MKQiA5KGWugCp8eT Rwg0AFANkLKN7W7rTDSsePXbk1LwRI0tl3nQnOfvxOjZ41bPrJrZS0WT0LooaxRj IFw3ogyghHDrZNAR9bbMMipcbvB2ZjR8xghQECBwoGPJa4USEQmrHXw9sBPVl3vk Z4LahZ7Jf5DfVej1F24NOmbkhiVN8pDaax2t17D9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtbltyPWjn0b+IhZx+k7vE0yICTAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE1OGI4MDViLTI1MDYtNDdjNC1hMDg3LTdiMGFjY2FmMjQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQRyAwDQYJKoZIhvcNAQELBQADggEBALSle5LxfiiOiY+zrfd8OfxRaDxX RQ27ofULTRnVTm6aLWFcstCNNE5jjX/RfgmACMDHWcmIEFpViAEABvc9vOxvmMQR U58ImmASxJkVn44H+ipxhaHOEoRXBLGKyBlRoMGrkSqNj/linMYkPZMGyTaUSQcL gP1MaRfS/MTzalgEaffgJS6OE0e0C9UBcSP54pJ3uTCTDzj/bItEi+KDzOpMTG5Y xUDkmE2Kl+DA3UMmac3pzNk5+mEqm/q5Or8gjEd3teeF5oCmq7nd/SaziVsZVuvx EeUFWg0ZWKt3ZDNLEvDWrM3HuRIEgAan3q8dFCrOSRHQmCTdad7Ba/7GPUU= -----END CERTIFICATE-----Generated at Mon Mar 2 00:16:50 2026 by rpki-client