$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/551a8cec-52d6-4dbd-88f2-983bdf3935b2.roa File: 551a8cec-52d6-4dbd-88f2-983bdf3935b2.roa (raw, json) Hash identifier: fTCeIBYJxHpc5VcMHXrur9ThJwGxi0LZophoWTSyMJg= Subject key identifier: B5:6C:76:6B:55:BE:C7:E1:D7:30:50:3A:62:9E:B3:23:80:03:8F:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2356CE5FCBB5D627D41E5499B17E23D203843136 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/551a8cec-52d6-4dbd-88f2-983bdf3935b2.roa Signing time: Fri 17 Apr 2026 00:00:14 +0000 ROA not before: Fri 17 Apr 2026 00:00:14 +0000 ROA not after: Thu 16 Jul 2026 23:59:59 +0000 asID: 16509 IP address blocks: 205.185.200.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 20 Apr 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:56:ce:5f:cb:b5:d6:27:d4:1e:54:99:b1:7e:23:d2:03:84:31:36 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Apr 17 00:00:14 2026 GMT Not After : Jul 16 23:59:59 2026 GMT Subject: serialNumber=200cb6b2ae49ec049732a52c1192b145ddd09ee42c7219fd1647ad1b7326f54a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:4b:89:35:ff:bd:42:ae:e0:8e:8a:4f:c7:2c: 32:bc:ca:0a:95:4f:31:ff:fe:5c:d5:02:f7:0d:14: 2c:84:a7:b5:71:41:c0:01:5e:00:2e:76:9e:e6:ec: 5e:16:09:d3:63:e3:ea:b7:00:6b:d6:34:f2:08:9b: bb:8a:14:b5:3a:02:7c:89:ea:6c:09:34:aa:5d:2b: a9:fa:d6:32:84:b3:44:38:dd:57:38:53:4c:23:23: 60:4e:93:c3:32:7c:03:eb:91:43:7b:86:bc:3a:b2: c2:b8:72:11:1b:f8:40:59:8b:06:0c:3a:36:27:71: 56:06:8e:63:f8:4f:94:59:cc:7b:c5:a8:8e:10:a3: 3b:41:34:6c:16:0d:16:a4:88:00:a0:00:cd:47:10: d8:b1:75:4b:d5:4c:ec:68:bb:c3:53:01:c5:f4:78: a8:7e:35:21:b5:6e:bc:86:7e:3e:50:c0:1c:9b:12: cf:d9:77:d2:bc:33:67:f0:d6:d9:be:1b:ac:38:8e: 47:20:e2:72:ec:76:31:4a:14:ee:41:28:9f:62:86: c8:93:72:69:4f:c2:38:3c:c9:1e:91:a8:3a:4c:30: df:06:e1:b2:bd:6e:a4:d8:9b:ad:d6:66:e9:00:9d: d6:a1:85:1d:10:10:c9:a0:8f:28:0e:23:11:d0:e2: 54:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:6C:76:6B:55:BE:C7:E1:D7:30:50:3A:62:9E:B3:23:80:03:8F:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/551a8cec-52d6-4dbd-88f2-983bdf3935b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 205.185.200.0/21 Signature Algorithm: sha256WithRSAEncryption 3c:14:a3:90:8c:98:3f:c8:84:fb:f1:4b:44:61:49:eb:1f:48: 95:29:34:d9:11:b2:90:53:40:2a:3f:af:66:f0:67:06:1f:65: 69:a3:a0:a1:0d:2c:1f:56:52:53:df:6b:07:a4:b9:fd:cf:ef: cb:d7:96:38:11:f3:73:00:8a:9a:24:df:ee:11:ff:36:a0:1a: da:83:69:44:7d:28:e4:0c:0f:26:62:d7:73:94:b5:df:84:39: 77:d2:53:4b:31:8a:09:ac:6f:2e:d7:c9:e8:6c:03:fd:09:ae: 2c:b5:93:b9:0c:d8:66:0f:71:11:38:37:8b:61:25:2a:81:f0: 4e:7b:8f:32:c2:fb:eb:14:cd:7a:e9:d3:36:1c:2b:02:62:7d: 87:cb:bd:02:53:e3:82:9d:09:dc:3a:6a:b2:e1:ca:35:ed:e1: 28:dd:37:4a:67:bf:5f:1c:de:ab:b9:b4:4c:8d:a8:f2:d0:9a: 26:b4:ee:6f:47:43:b6:bd:4e:65:29:18:c8:c8:80:4f:d8:0c: 60:d0:1b:fa:46:62:24:27:73:e9:f2:61:b1:55:80:6d:64:3d: e0:f2:8b:c7:61:d0:51:0e:68:4b:e9:6f:07:ab:05:10:0b:01: ab:0f:bc:18:c5:ed:3d:6c:35:cd:fa:69:15:be:25:42:99:16: d5:b9:16:d6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI1bOX8u11ifUHlSZsX4j0gOEMTYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNDE3MDAwMDE0WhcNMjYwNzE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyMDBjYjZiMmFlNDllYzA0OTczMmE1MmMxMTkyYjE0NWRk ZDA5ZWU0MmM3MjE5ZmQxNjQ3YWQxYjczMjZmNTRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDnS4k1/71CruCOik/HLDK8ygqVTzH//lzVAvcNFCyEp7Vx QcABXgAudp7m7F4WCdNj4+q3AGvWNPIIm7uKFLU6AnyJ6mwJNKpdK6n61jKEs0Q4 3Vc4U0wjI2BOk8MyfAPrkUN7hrw6ssK4chEb+EBZiwYMOjYncVYGjmP4T5RZzHvF qI4QoztBNGwWDRakiACgAM1HENixdUvVTOxou8NTAcX0eKh+NSG1bryGfj5QwByb Es/Zd9K8M2fw1tm+G6w4jkcg4nLsdjFKFO5BKJ9ihsiTcmlPwjg8yR6RqDpMMN8G 4bK9bqTYm63WZukAndahhR0QEMmgjygOIxHQ4lQtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtWx2a1W+x+HXMFA6Yp6zI4ADjwYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU1MWE4Y2VjLTUyZDYtNGRiZC04OGYyLTk4M2JkZjM5MzViMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPNucgwDQYJKoZIhvcNAQELBQADggEBADwUo5CMmD/IhPvxS0RhSesfSJUp NNkRspBTQCo/r2bwZwYfZWmjoKENLB9WUlPfawekuf3P78vXljgR83MAipok3+4R /zagGtqDaUR9KOQMDyZi13OUtd+EOXfSU0sxigmsby7XyehsA/0Jriy1k7kM2GYP cRE4N4thJSqB8E57jzLC++sUzXrp0zYcKwJifYfLvQJT44KdCdw6arLhyjXt4Sjd N0pnv18c3qu5tEyNqPLQmia07m9HQ7a9TmUpGMjIgE/YDGDQG/pGYiQnc+nyYbFV gG1kPeDyi8dh0FEOaEvpbwerBRALAasPvBjF7T1sNc36aRW+JUKZFtW5FtY= -----END CERTIFICATE-----Generated at Sun Apr 19 11:48:08 2026 by rpki-client