$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa File: 1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa (raw, json) Hash identifier: t7/lOG+tE2d9RFcGlHR+Ac4UwRxUGVk3RW8i+ZvrXNk= Subject key identifier: 8C:6D:24:69:5A:B9:3E:08:DD:24:8E:31:A9:66:70:7D:36:84:05:7B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 112B42383E4BD43D86CB67272A2156EEEBFC9F7B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa Signing time: Sat 16 May 2026 02:10:44 +0000 ROA not before: Sat 16 May 2026 02:10:44 +0000 ROA not after: Fri 14 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.172.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:2b:42:38:3e:4b:d4:3d:86:cb:67:27:2a:21:56:ee:eb:fc:9f:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 16 02:10:44 2026 GMT Not After : Aug 14 23:59:59 2026 GMT Subject: serialNumber=4f24d83e123d8ff2461848d7f654f92f63965bb289f2226032a0fabf73993618, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:5f:c7:f6:8b:29:80:97:29:79:3b:6a:f2:34: 32:10:cb:20:57:27:05:fe:3e:af:e3:4a:1d:fd:a0: 65:b1:b4:96:4b:3c:f7:fa:06:cc:5e:1d:39:88:81: 74:14:31:6f:85:9a:df:80:50:bb:0a:58:ca:a0:e1: f0:39:e1:d3:42:33:9f:13:95:7e:34:63:35:c5:9c: 44:43:c5:bf:30:19:c0:61:d2:f2:ac:4d:94:3f:75: 70:e5:dc:e2:2c:d3:ff:ca:c9:8c:fa:d4:dd:13:e8: f4:a0:b3:22:5c:c7:91:29:36:90:f8:8b:58:7e:d5: e0:f4:91:27:09:d9:e8:a7:13:4e:d7:60:bb:2d:c9: d7:88:07:49:b7:1f:ac:f2:17:12:27:2e:76:02:7c: a3:59:31:e5:4b:ec:30:92:bb:c3:1f:25:df:be:eb: 4b:30:5c:85:1d:b7:ca:ad:e2:f7:fa:11:03:cb:84: f7:f6:9f:0d:35:49:73:15:87:d0:aa:91:b3:35:c4: ba:a0:79:09:e9:36:78:75:e7:0f:90:ba:c0:ee:e9: cb:fd:fd:ee:3c:b9:13:fa:5b:10:59:ce:50:d3:21: f9:13:1c:4e:b3:6f:3c:de:c2:51:9f:64:13:22:28: f9:53:0c:74:ba:c9:a8:b0:11:e6:54:79:78:89:60: e6:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:6D:24:69:5A:B9:3E:08:DD:24:8E:31:A9:66:70:7D:36:84:05:7B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d3cf071-15a1-4b52-be8f-53bd4a79df40.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.172.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2c:7e:d9:8f:0c:ad:c3:b6:b4:0d:07:d4:ed:15:db:7a:fc:ce: b1:b0:a8:9b:3c:95:50:67:98:e0:88:af:5d:9e:90:cd:32:e5: 4e:bd:73:66:08:11:3c:22:89:ee:f9:23:51:f1:94:2f:20:c4: d8:99:8a:0b:0e:33:3d:67:9d:d8:e9:9a:a0:ca:95:92:fd:0f: bd:b3:9d:06:b9:63:39:ec:72:a2:39:01:d6:2f:5a:7f:73:cb: 1f:75:d9:42:39:93:f0:ba:f7:3e:ec:4f:0d:8c:97:58:1d:73: e7:5e:2d:7d:3a:8f:31:74:b7:39:8a:a7:13:9a:3f:2b:30:a5: ca:c3:63:cb:d4:c9:f4:e2:22:53:16:d2:80:7d:03:ff:7b:66: 62:2b:9e:90:1c:70:b9:40:44:47:80:8a:f3:ad:25:37:3a:9f: 13:56:3d:28:f2:a0:05:14:c7:4a:53:4e:7d:bc:7f:9c:fa:bc: a9:af:6e:16:d8:42:95:e6:ae:ab:0b:60:bd:ad:4e:60:f9:4b: ba:31:c9:0f:4f:7a:05:4d:e7:8c:84:d4:a6:7f:9e:7f:0a:5b: 15:80:05:1f:fc:c8:9f:30:55:6e:ec:f9:ac:6c:5e:db:de:15: ea:1f:fc:46:a4:63:7c:c1:a7:2d:a6:cb:6b:85:5d:3b:07:66: fa:73:32:5a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEStCOD5L1D2Gy2cnKiFW7uv8n3swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE2MDIxMDQ0WhcNMjYwODE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A0ZjI0ZDgzZTEyM2Q4ZmYyNDYxODQ4ZDdmNjU0ZjkyZjYz OTY1YmIyODlmMjIyNjAzMmEwZmFiZjczOTkzNjE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmX8f2iymAlyl5O2ryNDIQyyBXJwX+Pq/jSh39oGWxtJZL PPf6BsxeHTmIgXQUMW+Fmt+AULsKWMqg4fA54dNCM58TlX40YzXFnERDxb8wGcBh 0vKsTZQ/dXDl3OIs0//KyYz61N0T6PSgsyJcx5EpNpD4i1h+1eD0kScJ2einE07X YLstydeIB0m3H6zyFxInLnYCfKNZMeVL7DCSu8MfJd++60swXIUdt8qt4vf6EQPL hPf2nw01SXMVh9CqkbM1xLqgeQnpNnh15w+QusDu6cv9/e48uRP6WxBZzlDTIfkT HE6zbzzewlGfZBMiKPlTDHS6yaiwEeZUeXiJYOadAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjG0kaVq5PgjdJI4xqWZwfTaEBXswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkM2NmMDcxLTE1YTEtNGI1Mi1iZThmLTUzYmQ0YTc5ZGY0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAorDANBgkqhkiG9w0BAQsFAAOCAQEALH7Zjwytw7a0DQfU7RXbevzOsbCo mzyVUGeY4IivXZ6QzTLlTr1zZggRPCKJ7vkjUfGULyDE2JmKCw4zPWed2OmaoMqV kv0PvbOdBrljOexyojkB1i9af3PLH3XZQjmT8Lr3PuxPDYyXWB1z514tfTqPMXS3 OYqnE5o/KzClysNjy9TJ9OIiUxbSgH0D/3tmYiuekBxwuUBER4CK860lNzqfE1Y9 KPKgBRTHSlNOfbx/nPq8qa9uFthCleauqwtgva1OYPlLujHJD096BU3njITUpn+e fwpbFYAFH/zInzBVbuz5rGxe294V6h/8RqRjfMGnLabLa4VdOwdm+nMyWg== -----END CERTIFICATE-----Generated at Sat Jun 13 05:48:43 2026 by rpki-client