$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa File: 683f0f25-6fc4-4076-b464-0eae077d79de.roa (raw, json) Hash identifier: SCure8W0dg6xurpt1H2O2SyLtag4wmgFmNdv2uEHwBE= Subject key identifier: CE:1A:23:AB:43:5C:BD:C7:BB:C7:13:2A:A6:47:69:01:64:3B:9E:A3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1315557BD701CC958E1B224B408970F668491E79 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa Signing time: Wed 20 May 2026 00:20:48 +0000 ROA not before: Wed 20 May 2026 00:20:48 +0000 ROA not after: Tue 18 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:15:55:7b:d7:01:cc:95:8e:1b:22:4b:40:89:70:f6:68:49:1e:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 20 00:20:48 2026 GMT Not After : Aug 18 23:59:59 2026 GMT Subject: serialNumber=7c9ae0b444a9bf392d91d1f1428ff8e82293e063e59b27599ec600ce9654eb60, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:39:30:7f:ef:a0:f4:c2:57:95:a6:a1:a1:d3: 33:60:82:22:99:9b:08:ee:4c:62:7a:66:ce:10:33: 2e:e2:ac:23:10:ca:00:e9:bf:d0:36:1a:d3:27:38: 4e:14:3d:59:10:23:ad:d4:00:3d:b2:04:3a:4c:36: eb:34:5f:54:03:71:d9:d4:b5:4c:15:2c:6f:c3:d5: ba:4f:fd:c3:80:a8:e8:ed:2e:1f:ae:f2:b4:23:12: 86:2e:92:ab:ee:33:b7:aa:47:5e:a8:b6:08:68:51: de:77:75:de:f5:38:6b:45:77:73:f0:e4:80:85:aa: ab:01:d1:89:de:d0:5d:9e:df:a2:ec:b9:36:03:7d: 97:e3:d3:fc:90:2b:1c:60:ae:56:31:d4:ac:01:22: d2:84:44:17:b5:56:8e:5d:61:93:b3:b0:76:1b:f5: 33:7f:51:b0:b0:5e:3d:51:d7:43:40:87:ab:f4:51: 59:4d:83:cb:6f:24:9d:4e:44:56:40:4a:9c:1b:88: 0b:94:c6:aa:2c:6e:98:1c:81:ed:67:83:23:a1:57: 36:f1:b2:8a:7d:f1:75:77:34:90:b1:1c:0c:fd:69: d0:2d:0b:6c:72:4a:33:97:4a:53:63:3c:98:81:b1: d4:5d:52:7e:6d:3c:bd:e4:b5:44:c5:42:e7:91:cb: 47:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:1A:23:AB:43:5C:BD:C7:BB:C7:13:2A:A6:47:69:01:64:3B:9E:A3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.57.0/24 Signature Algorithm: sha256WithRSAEncryption 44:c4:4d:a0:27:6c:f7:f1:0b:19:c2:e9:00:50:b5:77:fd:30: d0:21:a6:ae:ea:97:5d:00:11:c9:95:33:7c:a5:ae:03:db:73: e6:98:d9:55:aa:2b:df:10:08:44:ea:05:e4:c1:43:5c:7e:fd: 84:dc:33:5a:03:25:72:86:73:d3:a1:74:3c:ec:bd:42:9c:38: 27:64:bf:a0:93:9c:01:34:96:ea:09:b3:e7:97:5a:38:be:68: b6:00:be:70:d0:ae:8c:0e:da:f6:39:c7:09:dd:7c:7e:84:a3: 38:7a:13:27:ca:28:8e:74:70:51:a0:f9:e6:7a:65:4f:33:dd: ad:00:90:ba:c7:84:2f:9f:d7:5c:f2:35:3e:b6:67:43:d8:05: f1:98:3c:32:a6:56:50:a5:16:56:93:6b:8f:b1:51:5f:18:1c: a5:2c:62:28:f8:33:1e:b3:19:f4:6c:e5:7b:3a:b2:48:fe:42: c9:43:2d:93:e2:ab:38:6e:41:32:cd:a8:40:01:2e:8a:4d:11: 23:df:16:21:34:4f:d3:35:aa:c6:54:d0:a8:66:49:6b:76:2d: 95:1f:c2:f1:b5:50:94:0b:49:22:d7:78:8c:b7:3a:c4:90:1f: cf:fc:79:96:fe:b7:d9:84:c1:7a:9d:79:07:96:6c:09:3c:6b: 9f:48:b7:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUExVVe9cBzJWOGyJLQIlw9mhJHnkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTIwMDAyMDQ4WhcNMjYwODE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YzlhZTBiNDQ0YTliZjM5MmQ5MWQxZjE0MjhmZjhlODIy OTNlMDYzZTU5YjI3NTk5ZWM2MDBjZTk2NTRlYjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5OTB/76D0wleVpqGh0zNggiKZmwjuTGJ6Zs4QMy7irCMQ ygDpv9A2GtMnOE4UPVkQI63UAD2yBDpMNus0X1QDcdnUtUwVLG/D1bpP/cOAqOjt Lh+u8rQjEoYukqvuM7eqR16otghoUd53dd71OGtFd3Pw5ICFqqsB0Yne0F2e36Ls uTYDfZfj0/yQKxxgrlYx1KwBItKERBe1Vo5dYZOzsHYb9TN/UbCwXj1R10NAh6v0 UVlNg8tvJJ1ORFZASpwbiAuUxqosbpgcge1ngyOhVzbxsop98XV3NJCxHAz9adAt C2xySjOXSlNjPJiBsdRdUn5tPL3ktUTFQueRy0e5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUzhojq0Ncvce7xxMqpkdpAWQ7nqMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4M2YwZjI1LTZmYzQtNDA3Ni1iNDY0LTBlYWUwNzdkNzlkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjNjkwDQYJKoZIhvcNAQELBQADggEBAETETaAnbPfxCxnC6QBQtXf9MNAh pq7ql10AEcmVM3ylrgPbc+aY2VWqK98QCETqBeTBQ1x+/YTcM1oDJXKGc9OhdDzs vUKcOCdkv6CTnAE0luoJs+eXWji+aLYAvnDQrowO2vY5xwndfH6Eozh6EyfKKI50 cFGg+eZ6ZU8z3a0AkLrHhC+f11zyNT62Z0PYBfGYPDKmVlClFlaTa4+xUV8YHKUs Yij4Mx6zGfRs5Xs6skj+QslDLZPiqzhuQTLNqEABLopNESPfFiE0T9M1qsZU0Khm SWt2LZUfwvG1UJQLSSLXeIy3OsSQH8/8eZb+t9mEwXqdeQeWbAk8a59Itzk= -----END CERTIFICATE-----Generated at Sat Jun 13 05:48:59 2026 by rpki-client