$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa File: 17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa (raw, json) Hash identifier: rYDIGd8OUq3EOLj51MiYbwkWvhSu+dR+8bVd5V0ba8s= Subject key identifier: 46:44:68:96:BF:7F:52:D3:95:6C:90:A8:BA:E3:BD:43:D3:32:3F:9B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4E0FC872E34DF8AFB9B9A28F4C8DE6EB314379F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa Signing time: Sun 01 Mar 2026 00:30:45 +0000 ROA not before: Sun 01 Mar 2026 00:30:45 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 66.152.160.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4e:0f:c8:72:e3:4d:f8:af:b9:b9:a2:8f:4c:8d:e6:eb:31:43:79:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:30:45 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=59d37b568993075e25e5b86428b9a39326d12d295bf079a514929ceb72282561, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:0f:68:97:eb:ed:de:ec:cd:e6:fe:31:63:17: 53:d0:8b:5e:e6:37:c3:43:a4:a7:a2:35:32:00:b5: 9d:74:3c:4e:0f:fc:4b:80:4f:99:ef:f7:0c:c3:c6: dd:89:bb:bb:d8:28:52:f7:37:6e:9b:d8:04:cb:cc: 0f:5b:99:09:10:64:7c:a4:da:db:b1:b9:d3:f1:9a: b8:85:ac:01:80:c5:ad:b9:5c:87:24:80:91:44:76: c8:d3:26:6f:c5:64:f9:75:ef:83:1b:c1:40:3f:7f: 16:09:76:38:54:76:f8:04:03:56:6f:97:0f:cf:3b: 10:e4:e4:f9:c3:9d:a1:15:4d:ac:65:2b:21:e5:6d: 14:57:67:62:b4:ca:04:9b:65:64:0d:a4:73:56:bc: 05:b3:66:89:02:ed:fd:1d:d9:70:12:69:b7:78:23: 52:ae:20:02:d1:8a:1f:c5:b8:42:ff:ac:4f:93:e2: 1e:3c:83:ce:94:fb:86:7f:bb:13:0a:6e:75:d2:02: f3:25:db:5e:90:9c:c5:f8:a3:b0:56:1c:4b:c9:02: 7a:8e:ee:ae:b8:15:1b:74:2f:13:82:aa:74:90:ee: a9:57:4d:fd:da:8f:cc:95:dd:d5:d8:77:61:49:85: 2c:eb:3f:a1:cc:58:b1:d2:63:71:2e:04:7a:1f:c8: e0:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:44:68:96:BF:7F:52:D3:95:6C:90:A8:BA:E3:BD:43:D3:32:3F:9B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/17392cac-2ffa-4bbe-b29b-48b0dc375b57.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.152.160.0/19 Signature Algorithm: sha256WithRSAEncryption 92:e1:9e:c2:a0:23:27:5c:74:84:6b:07:64:33:f8:63:bc:fe: 01:d2:ec:ad:e9:28:d8:3f:6b:e5:27:fc:db:ca:02:54:46:2e: e2:40:93:5a:67:3f:97:72:47:64:f5:24:61:ad:c8:2c:81:55: a2:66:93:27:4a:02:86:90:0f:af:8f:70:bc:fe:6e:88:5a:d7: 92:2a:94:37:93:a5:42:3a:1a:13:9a:90:24:ec:bd:a1:b2:e6: cd:ae:a0:f8:7d:2a:ce:91:a6:7e:4f:02:d0:06:4c:f7:d3:0f: 6b:c1:93:d6:07:a2:b6:d5:af:5d:51:07:d9:a7:be:04:ad:9a: 3d:3f:d4:91:6f:03:34:4e:1b:0a:f8:df:ae:9f:62:a9:75:cd: 7f:ba:36:28:13:3b:31:eb:0b:0d:aa:48:53:67:ad:18:2f:8b: e3:c9:d3:90:9e:29:5a:30:4f:79:6e:eb:0a:2b:ed:b7:1f:e4: 32:5c:74:f0:5b:b3:f9:9d:04:bd:33:62:fe:1f:79:e0:b7:a1: f6:e0:8f:a3:15:3a:a5:84:ae:84:fe:fa:64:b1:48:0b:9b:b7: 01:3e:69:2c:3c:53:0e:30:59:d5:56:ad:1b:ef:bc:89:76:2b: 95:86:15:4c:75:55:48:e6:a3:e0:4d:1b:61:71:34:87:e4:e8: 94:2f:1f:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTg/IcuNN+K+5uaKPTI3m6zFDefYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMDQ1WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWQzN2I1Njg5OTMwNzVlMjVlNWI4NjQyOGI5YTM5MzI2 ZDEyZDI5NWJmMDc5YTUxNDkyOWNlYjcyMjgyNTYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSD2iX6+3e7M3m/jFjF1PQi17mN8NDpKeiNTIAtZ10PE4P /EuAT5nv9wzDxt2Ju7vYKFL3N26b2ATLzA9bmQkQZHyk2tuxudPxmriFrAGAxa25 XIckgJFEdsjTJm/FZPl174MbwUA/fxYJdjhUdvgEA1Zvlw/POxDk5PnDnaEVTaxl KyHlbRRXZ2K0ygSbZWQNpHNWvAWzZokC7f0d2XASabd4I1KuIALRih/FuEL/rE+T 4h48g86U+4Z/uxMKbnXSAvMl216QnMX4o7BWHEvJAnqO7q64FRt0LxOCqnSQ7qlX Tf3aj8yV3dXYd2FJhSzrP6HMWLHSY3EuBHofyOALAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURkRolr9/UtOVbJCouuO9Q9MyP5swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE3MzkyY2FjLTJmZmEtNGJiZS1iMjliLTQ4YjBkYzM3NWI1Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVCmKAwDQYJKoZIhvcNAQELBQADggEBAJLhnsKgIydcdIRrB2Qz+GO8/gHS 7K3pKNg/a+Un/NvKAlRGLuJAk1pnP5dyR2T1JGGtyCyBVaJmkydKAoaQD6+PcLz+ boha15IqlDeTpUI6GhOakCTsvaGy5s2uoPh9Ks6Rpn5PAtAGTPfTD2vBk9YHorbV r11RB9mnvgStmj0/1JFvAzROGwr4366fYql1zX+6NigTOzHrCw2qSFNnrRgvi+PJ 05CeKVowT3lu6wor7bcf5DJcdPBbs/mdBL0zYv4feeC3ofbgj6MVOqWEroT++mSx SAubtwE+aSw8Uw4wWdVWrRvvvIl2K5WGFUx1VUjmo+BNG2FxNIfk6JQvH6U= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:01 2026 by rpki-client