$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa File: 8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa (raw, json) Hash identifier: l2MQcPndh2GkONZjZDkXFOmSeJXJ1zNnAMyaYbVsaI0= Subject key identifier: 97:70:A0:8E:45:66:F7:19:63:1F:50:C8:91:66:7E:0D:7D:51:A4:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 030D1F4EE4803857B802CBAD497F938C0EB324F6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa Signing time: Sun 17 May 2026 00:30:12 +0000 ROA not before: Sun 17 May 2026 00:30:12 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.178.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 15 Jun 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:0d:1f:4e:e4:80:38:57:b8:02:cb:ad:49:7f:93:8c:0e:b3:24:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 00:30:12 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=c15a5ac9c3cec1aae56128d294731b16e1d359319d750885eebd63fa9dc6c92d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:87:65:e0:44:2a:ab:25:af:b1:48:d8:7d:70:0b: c2:30:78:dc:20:a0:94:87:b2:8d:bf:af:0f:ae:d3: 93:ef:8f:55:5a:41:b0:15:d6:a3:83:30:19:8a:8a: de:56:19:68:cc:5d:85:93:72:2e:a1:cd:a5:78:df: 4d:20:b5:ef:3b:84:d7:05:e6:dc:08:49:f7:82:5e: c9:73:83:f5:56:50:62:ca:07:86:f5:cc:5f:45:d6: bd:12:88:ba:fc:a4:56:27:08:44:c7:31:df:3f:5e: b7:04:55:a4:61:a9:c8:b9:6f:13:2f:59:94:b0:19: fd:88:04:5e:3e:01:e0:a2:51:72:51:c0:7a:53:fd: c8:4c:3d:ef:ee:86:6f:e3:43:d4:9e:91:65:7e:e6: 96:18:75:7c:7c:04:22:cd:4e:00:6a:26:2a:46:ff: 57:7d:10:d1:11:0b:64:62:53:42:db:3d:8a:4a:f9: 52:ee:6f:50:37:63:25:e7:96:cd:24:1f:62:26:b3: 89:65:f1:d7:ad:40:26:04:71:a5:b6:35:78:d3:9c: 47:ee:d6:ec:6e:30:4a:b9:9a:8f:74:02:61:f0:e9: 89:b0:de:40:fa:01:a9:69:cd:7f:84:67:91:12:6d: 17:8d:51:13:da:65:65:70:ec:15:33:81:2a:43:e7: 7f:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:70:A0:8E:45:66:F7:19:63:1F:50:C8:91:66:7E:0D:7D:51:A4:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f8be97b-27d6-4b35-9036-8e015c6e63f2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.178.0.0/16 Signature Algorithm: sha256WithRSAEncryption 84:0b:03:c7:44:3d:94:51:43:46:9b:16:af:f7:9d:5d:c4:ef: c0:1e:62:ac:b6:9a:64:bf:07:52:b4:ce:c3:95:cf:8d:2e:7d: 19:26:b5:48:2f:e8:51:8f:e6:bf:26:a9:07:43:d1:64:19:24: b3:ed:22:ad:97:33:df:80:48:eb:77:a3:f1:16:0a:78:29:9e: 9b:dc:67:b7:64:e5:56:3f:ca:9a:d5:e2:e6:97:74:00:b1:79: 53:3d:18:6a:26:23:31:0c:63:ef:42:cd:2b:13:49:41:fe:fb: 76:6b:66:fa:de:2b:7e:6c:cd:3d:ac:26:04:a8:24:f2:49:fe: b8:3c:7b:b5:ea:53:8c:5f:08:34:23:73:9b:df:ac:98:f1:8b: 79:88:00:28:cb:5b:6a:a0:28:a1:60:be:5c:c1:cb:3c:6c:ff: 29:42:ee:bb:46:2a:eb:f3:b0:a8:76:cc:b2:5e:04:56:85:30: 08:4b:6f:3f:f8:62:82:53:1c:35:ec:d7:d1:35:cc:b9:c2:95: 69:48:9e:49:82:b7:41:99:18:e2:e3:84:32:cf:ab:bb:12:77: ec:ec:2f:cc:23:6e:97:eb:2e:e4:6f:e4:41:4e:30:13:a4:db: 57:d3:80:b1:4d:45:0a:5a:69:b5:20:46:d6:3d:ee:21:74:b7: 22:9a:50:b5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAw0fTuSAOFe4AsutSX+TjA6zJPYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDAzMDEyWhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTVhNWFjOWMzY2VjMWFhZTU2MTI4ZDI5NDczMWIxNmUx ZDM1OTMxOWQ3NTA4ODVlZWJkNjNmYTlkYzZjOTJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCHZeBEKqslr7FI2H1wC8IweNwgoJSHso2/rw+u05Pvj1Va QbAV1qODMBmKit5WGWjMXYWTci6hzaV4300gte87hNcF5twISfeCXslzg/VWUGLK B4b1zF9F1r0SiLr8pFYnCETHMd8/XrcEVaRhqci5bxMvWZSwGf2IBF4+AeCiUXJR wHpT/chMPe/uhm/jQ9SekWV+5pYYdXx8BCLNTgBqJipG/1d9ENERC2RiU0LbPYpK +VLub1A3YyXnls0kH2Ims4ll8detQCYEcaW2NXjTnEfu1uxuMEq5mo90AmHw6Ymw 3kD6AalpzX+EZ5ESbReNURPaZWVw7BUzgSpD5391AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUl3CgjkVm9xljH1DIkWZ+DX1RpFswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmOGJlOTdiLTI3ZDYtNGIzNS05MDM2LThlMDE1YzZlNjNmMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4sjANBgkqhkiG9w0BAQsFAAOCAQEAhAsDx0Q9lFFDRpsWr/edXcTvwB5i rLaaZL8HUrTOw5XPjS59GSa1SC/oUY/mvyapB0PRZBkks+0irZcz34BI63ej8RYK eCmem9xnt2TlVj/KmtXi5pd0ALF5Uz0YaiYjMQxj70LNKxNJQf77dmtm+t4rfmzN PawmBKgk8kn+uDx7tepTjF8INCNzm9+smPGLeYgAKMtbaqAooWC+XMHLPGz/KULu u0Yq6/OwqHbMsl4EVoUwCEtvP/higlMcNezX0TXMucKVaUieSYK3QZkY4uOEMs+r uxJ37OwvzCNul+su5G/kQU4wE6TbV9OAsU1FClpptSBG1j3uIXS3IppQtQ== -----END CERTIFICATE-----Generated at Sat Jun 13 17:06:39 2026 by rpki-client