$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa File: ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa (raw, json) Hash identifier: N9gfGW2VbbWsJuQ2GDRbQAedfh6E9rAdU7I++hUDpbY= Subject key identifier: B3:DD:0D:98:05:04:7B:08:B3:D3:7B:79:DD:95:36:9B:9F:8D:60:CE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 144E1F4E134BBE05CF16D339CA75B238377BBA78 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa Signing time: Tue 19 May 2026 00:42:07 +0000 ROA not before: Tue 19 May 2026 00:42:07 +0000 ROA not after: Mon 17 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 149.164.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:4e:1f:4e:13:4b:be:05:cf:16:d3:39:ca:75:b2:38:37:7b:ba:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 19 00:42:07 2026 GMT Not After : Aug 17 23:59:59 2026 GMT Subject: serialNumber=1edb80d7371f0710e6d41261db378376bb6899f8bfcf4bfefcf0ec9717c52022, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:55:5d:6d:01:ab:41:5c:0d:4a:be:0e:35:b8: e3:66:e7:84:7f:0b:50:ed:b7:97:63:1d:ca:48:3c: a8:43:40:d1:54:53:0d:4c:a1:04:8f:9e:53:0d:16: 48:a7:88:00:0a:6b:25:07:ee:94:c4:15:e0:aa:00: 75:85:3b:c3:d1:2b:c1:ad:cb:25:e6:65:f5:d1:0e: cc:5a:81:d2:ae:e5:4e:fd:28:f1:18:12:b4:07:eb: 83:d3:3b:44:d6:1b:9a:5f:6d:4e:db:fa:32:e0:54: ef:ff:f7:d3:9f:d5:18:5d:3c:1a:39:95:29:10:89: 41:9e:1c:85:75:1b:0e:1e:85:34:e6:58:f3:49:b3: f4:2c:f2:37:49:e1:28:db:2d:2f:ca:9e:56:4f:23: 82:7c:17:88:0e:9e:6c:81:27:fb:56:c6:00:3e:6f: 16:80:e3:01:ce:78:14:a0:49:7d:3d:93:87:d4:63: 57:7b:d7:6f:e2:d7:6e:b0:e2:0e:19:80:66:53:55: 9d:79:42:2c:23:14:9c:12:ee:30:13:bd:de:d1:73: 28:96:41:30:fd:a7:78:cf:79:ec:09:de:0d:f9:56: 00:1b:74:8a:c6:65:bc:3d:d5:a3:84:2f:e1:2e:21: 48:70:0f:3d:bf:54:bb:18:ca:82:83:55:d4:78:69: 2a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:DD:0D:98:05:04:7B:08:B3:D3:7B:79:DD:95:36:9B:9F:8D:60:CE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ace3d51c-13c6-430f-888f-9ebf032c0bb9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.164.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:ea:2a:a2:25:3b:21:11:91:ae:f6:43:a3:8d:cd:51:c4:29: 2e:f2:df:90:60:5f:c3:a3:08:50:03:a7:87:22:9a:95:a9:1b: ba:33:82:f3:f3:0c:4a:a2:0a:8a:da:bf:44:bd:47:9a:44:bb: f7:04:82:97:30:7b:6f:2c:d5:74:e1:a4:12:04:20:7b:cf:4a: ac:ed:e5:01:83:55:69:85:e8:92:7b:00:d2:8f:a6:f5:78:cb: d3:3b:76:86:3d:cb:b5:a9:76:f1:55:e3:81:b2:9f:d4:88:96: 46:2c:b3:0a:0a:1f:72:f3:05:5b:3e:90:24:82:bb:95:b4:2a: cc:50:a7:58:3b:34:46:45:06:08:43:13:00:60:5c:00:36:f2: 49:29:18:04:c5:54:a9:32:94:6e:44:cf:49:51:f4:7e:da:ff: bb:da:28:0c:a3:91:79:75:b8:c9:2c:dc:0b:ab:ea:d5:95:fb: d2:a8:37:8d:69:0a:1c:11:44:c3:e7:85:77:74:0c:45:09:f6: b2:75:ae:af:36:b6:8e:e2:0a:29:27:61:c0:92:41:7f:79:fc: 26:f9:37:5e:a4:2d:7c:ca:25:2e:b8:4a:66:ad:2c:51:9f:e5: 39:99:6e:ab:5e:e8:78:6e:ce:f7:d3:b9:d6:b8:1f:3a:08:45: bb:43:ed:29 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFE4fThNLvgXPFtM5ynWyODd7ungwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE5MDA0MjA3WhcNMjYwODE3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZWRiODBkNzM3MWYwNzEwZTZkNDEyNjFkYjM3ODM3NmJi Njg5OWY4YmZjZjRiZmVmY2YwZWM5NzE3YzUyMDIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0VV1tAatBXA1Kvg41uONm54R/C1Dtt5djHcpIPKhDQNFU Uw1MoQSPnlMNFkiniAAKayUH7pTEFeCqAHWFO8PRK8GtyyXmZfXRDsxagdKu5U79 KPEYErQH64PTO0TWG5pfbU7b+jLgVO//99Of1RhdPBo5lSkQiUGeHIV1Gw4ehTTm WPNJs/Qs8jdJ4SjbLS/KnlZPI4J8F4gOnmyBJ/tWxgA+bxaA4wHOeBSgSX09k4fU Y1d712/i126w4g4ZgGZTVZ15QiwjFJwS7jATvd7RcyiWQTD9p3jPeewJ3g35VgAb dIrGZbw91aOEL+EuIUhwDz2/VLsYyoKDVdR4aSoDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUs90NmAUEewiz03t53ZU2m5+NYM4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZTNkNTFjLTEzYzYtNDMwZi04ODhmLTllYmYwMzJjMGJiOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCVpDANBgkqhkiG9w0BAQsFAAOCAQEAXeoqoiU7IRGRrvZDo43NUcQpLvLf kGBfw6MIUAOnhyKalakbujOC8/MMSqIKitq/RL1HmkS79wSClzB7byzVdOGkEgQg e89KrO3lAYNVaYXoknsA0o+m9XjL0zt2hj3Ltal28VXjgbKf1IiWRiyzCgofcvMF Wz6QJIK7lbQqzFCnWDs0RkUGCEMTAGBcADbySSkYBMVUqTKUbkTPSVH0ftr/u9oo DKOReXW4ySzcC6vq1ZX70qg3jWkKHBFEw+eFd3QMRQn2snWurza2juIKKSdhwJJB f3n8Jvk3XqQtfMolLrhKZq0sUZ/lOZluq17oeG7O99O51rgfOghFu0PtKQ== -----END CERTIFICATE-----Generated at Sat Jun 13 08:19:48 2026 by rpki-client