$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5459b61-4765-4284-9582-9c6c304ff03b.roa File: a5459b61-4765-4284-9582-9c6c304ff03b.roa (raw, json) Hash identifier: V0konsYvmE7y2P7B5qm8148/PKvAFFDtngmQo0I2aTU= Subject key identifier: 4A:F7:AC:18:E0:E6:C3:7F:1B:04:2F:0F:79:92:BE:80:FB:D4:75:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 105123FD4074F31C5C0BADC65190794C9437F613 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5459b61-4765-4284-9582-9c6c304ff03b.roa Signing time: Wed 25 Feb 2026 00:50:45 +0000 ROA not before: Wed 25 Feb 2026 00:50:45 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 5.179.96.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 10:51:23:fd:40:74:f3:1c:5c:0b:ad:c6:51:90:79:4c:94:37:f6:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:50:45 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=ebd7bf15a0136494fe45a9f9f192d97d05553388a8b74264fe86c807ef829d2c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:61:c3:3f:8a:9a:73:96:79:bc:c5:ed:43:5e: a4:25:5e:b4:46:51:c0:b8:6f:aa:ed:d1:05:c0:6f: 9b:4f:5a:06:a0:14:d7:2a:52:bc:6a:76:06:6e:c9: f9:69:fd:fa:64:d4:e8:a1:7c:0d:bf:a6:64:74:97: fc:df:c8:02:92:36:bd:76:65:59:a3:32:59:d3:60: 4f:c5:19:94:43:69:fb:17:ee:d5:c0:df:91:f9:ad: 37:76:d5:5a:67:df:ca:65:bb:19:a2:81:09:a5:44: a3:2f:ff:cc:02:17:1e:80:14:ab:49:cc:1d:79:41: 44:88:82:e6:b2:91:b1:9b:a5:56:d8:13:60:68:c7: 99:06:63:04:a2:aa:42:0c:74:ba:87:38:52:b9:9c: 2a:83:bf:a3:f6:5b:0e:55:85:78:c7:85:c0:a9:c7: 9e:d3:01:7e:7d:f0:23:50:8c:13:7d:df:c9:4b:82: 40:33:0b:74:0a:05:af:d9:42:9d:fb:a7:6f:5b:63: 0c:c1:a9:36:39:32:d3:b5:cc:eb:de:ae:9d:df:0b: 74:f8:50:11:7f:3d:8e:1f:5f:3d:4a:43:65:8e:9a: 36:c7:36:80:76:77:e3:19:08:47:d1:63:e1:b6:e5: 59:6f:41:c3:7e:44:96:28:2d:8f:13:29:f6:a0:3c: 56:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:F7:AC:18:E0:E6:C3:7F:1B:04:2F:0F:79:92:BE:80:FB:D4:75:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5459b61-4765-4284-9582-9c6c304ff03b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.179.96.0/20 Signature Algorithm: sha256WithRSAEncryption 0c:89:25:3d:49:f7:57:11:f6:96:e2:6c:2b:53:59:3e:92:66: f9:e6:fe:d9:21:9b:3b:a1:9e:0f:07:be:c1:7e:e1:16:c4:82: b4:7f:62:99:76:62:1b:c8:f9:41:c9:f5:5b:2d:b8:fa:ce:3e: 2b:a7:83:e7:f9:66:58:41:67:1d:50:7b:17:1b:6e:82:b8:39: 97:5c:2b:1c:99:d1:62:88:66:18:91:19:85:f9:a4:3c:18:18: 48:8e:c1:9a:7d:bd:e8:e7:fb:d8:ae:91:b0:89:ec:a2:18:07: 7e:a9:b7:30:32:18:f5:9a:8d:71:88:72:7e:82:53:64:7b:ec: c4:b5:15:9c:47:fd:0d:d3:56:a5:3e:f8:51:2d:ed:3b:a6:34: 68:28:bc:ca:d3:b0:a5:7d:a4:ba:40:60:b4:e5:2d:4e:95:93: 02:96:b5:8e:32:00:b5:37:28:71:a2:48:af:68:52:6a:9c:d7: 88:9e:07:92:0f:ef:44:14:5c:60:7b:44:64:31:71:b6:ce:d1: d1:47:fc:92:06:bd:33:71:14:03:34:58:42:5f:50:75:10:6c: 83:c4:37:4a:a5:50:e4:65:ed:ad:eb:12:9a:60:cb:7d:2b:7e: fd:aa:3f:bb:7a:81:b4:ca:23:a9:c8:60:72:e9:8d:61:32:68: 03:c0:26:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEFEj/UB08xxcC63GUZB5TJQ39hMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDA1MDQ1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmQ3YmYxNWEwMTM2NDk0ZmU0NWE5ZjlmMTkyZDk3ZDA1 NTUzMzg4YThiNzQyNjRmZTg2YzgwN2VmODI5ZDJjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZYcM/ippzlnm8xe1DXqQlXrRGUcC4b6rt0QXAb5tPWgag FNcqUrxqdgZuyflp/fpk1OihfA2/pmR0l/zfyAKSNr12ZVmjMlnTYE/FGZRDafsX 7tXA35H5rTd21Vpn38pluxmigQmlRKMv/8wCFx6AFKtJzB15QUSIguaykbGbpVbY E2Box5kGYwSiqkIMdLqHOFK5nCqDv6P2Ww5VhXjHhcCpx57TAX598CNQjBN938lL gkAzC3QKBa/ZQp37p29bYwzBqTY5MtO1zOverp3fC3T4UBF/PY4fXz1KQ2WOmjbH NoB2d+MZCEfRY+G25VlvQcN+RJYoLY8TKfagPFZLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSvesGODmw38bBC8PeZK+gPvUdaUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1NDU5YjYxLTQ3NjUtNDI4NC05NTgyLTljNmMzMDRmZjAzYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFs2AwDQYJKoZIhvcNAQELBQADggEBAAyJJT1J91cR9pbibCtTWT6SZvnm /tkhmzuhng8HvsF+4RbEgrR/Ypl2YhvI+UHJ9VstuPrOPiung+f5ZlhBZx1Qexcb boK4OZdcKxyZ0WKIZhiRGYX5pDwYGEiOwZp9vejn+9iukbCJ7KIYB36ptzAyGPWa jXGIcn6CU2R77MS1FZxH/Q3TVqU++FEt7TumNGgovMrTsKV9pLpAYLTlLU6VkwKW tY4yALU3KHGiSK9oUmqc14ieB5IP70QUXGB7RGQxcbbO0dFH/JIGvTNxFAM0WEJf UHUQbIPEN0qlUORl7a3rEppgy30rfv2qP7t6gbTKI6nIYHLpjWEyaAPAJkY= -----END CERTIFICATE-----Generated at Mon Mar 2 02:06:56 2026 by rpki-client