$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8bbe60-fea7-42d1-a045-90021977a902.roa File: ae8bbe60-fea7-42d1-a045-90021977a902.roa (raw, json) Hash identifier: d6nwwMw/357mY2pALK8VTcbtLjOgEXxsZ7lC/Mhbybo= Subject key identifier: AB:1C:16:B5:48:91:36:7B:FA:0D:8B:46:1A:00:66:F2:6F:15:96:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73641C0A360C58E9DC0B709781E973BE1B3BB415 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8bbe60-fea7-42d1-a045-90021977a902.roa Signing time: Fri 15 May 2026 00:10:13 +0000 ROA not before: Fri 15 May 2026 00:10:13 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.0.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:64:1c:0a:36:0c:58:e9:dc:0b:70:97:81:e9:73:be:1b:3b:b4:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 00:10:13 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=439128e95c380ee50f936925d42648f7747e2c2c124313f6523e96011af38599, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:2f:3d:6a:b1:32:9e:42:84:12:ec:b5:ff:e3: 72:fd:de:67:18:f1:79:cd:7f:a0:6e:12:2f:dd:eb: 1d:f2:73:dd:87:91:b8:05:5d:43:47:c5:31:7f:ed: dc:b6:9c:0a:4a:85:82:e2:50:94:0c:a3:12:e0:11: 83:c1:57:c8:7c:84:2f:1b:b3:20:09:d0:89:89:e8: 9b:b9:23:d6:0b:7f:c7:fe:d8:42:c0:5e:ee:43:96: f6:a6:d1:a6:23:11:fa:d1:c4:44:38:ed:de:dc:55: 88:72:86:32:c0:e5:90:3d:96:88:ec:8a:7d:3b:a2: fd:f3:50:41:3c:74:0c:c0:bf:ae:66:a2:09:8d:96: e3:fe:9f:86:17:20:5a:89:1d:04:94:0d:41:de:56: 2f:47:0f:73:c4:70:64:7d:a6:a5:41:96:54:49:0a: 73:a2:5d:d6:ed:18:39:16:ef:ba:91:06:1c:1d:9c: c1:49:c1:1b:54:06:ef:27:99:f0:68:04:19:a5:ab: 80:1b:ea:9f:5f:1e:44:d2:d2:97:e7:75:ed:6e:98: 8b:e4:93:f3:2b:3c:bb:cd:cc:39:bb:cb:80:98:3c: 35:3d:55:c5:50:14:36:26:e1:2f:6d:45:71:2b:60: ef:a2:ca:36:7a:96:a1:12:37:79:2a:66:f4:c8:38: 69:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:1C:16:B5:48:91:36:7B:FA:0D:8B:46:1A:00:66:F2:6F:15:96:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ae8bbe60-fea7-42d1-a045-90021977a902.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.0.0/18 Signature Algorithm: sha256WithRSAEncryption b5:48:ff:57:36:ff:77:08:15:20:37:9b:f0:c4:01:2f:f5:f1: be:d9:02:01:cd:30:22:8b:ad:88:7e:20:33:b6:ad:a0:39:c0: 78:c1:47:5e:25:fe:09:df:c7:22:b2:a3:86:3c:9e:00:a4:09: b2:27:2e:ed:62:fc:0f:a4:75:99:65:56:76:78:e8:5c:23:c0: 33:23:81:9d:14:3c:8b:4a:df:d1:01:f4:e5:62:e7:aa:24:5b: 2e:ea:22:86:d6:6a:c0:e6:2c:ee:4e:be:f8:36:e3:eb:29:87: 97:2f:16:ee:01:91:34:f9:e3:47:98:3d:d8:38:ed:c4:2a:7e: 94:ca:1e:d8:8c:24:8d:f4:07:5c:3c:6b:0a:df:85:cc:5c:2d: da:b0:9c:5c:97:3d:a1:e6:e0:00:57:71:d2:e0:22:1d:2c:61: 22:1c:c4:31:d8:c7:23:21:77:f4:a0:1e:30:d3:ca:5f:90:b1: 01:37:0f:bf:d0:49:e0:72:19:7b:ce:8e:92:dc:09:70:d5:10: 76:11:fe:0f:42:ee:b4:36:f2:a4:2f:4f:03:b0:93:d2:54:af: 98:ec:ca:da:f5:15:a7:64:df:b3:69:ee:de:4e:03:06:0a:f4: b2:54:7a:46:3d:d8:68:5d:28:81:93:84:ad:74:fa:b5:47:04: d5:73:7a:13 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUc2QcCjYMWOncC3CXgelzvhs7tBUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDAxMDEzWhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzkxMjhlOTVjMzgwZWU1MGY5MzY5MjVkNDI2NDhmNzc0 N2UyYzJjMTI0MzEzZjY1MjNlOTYwMTFhZjM4NTk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtLz1qsTKeQoQS7LX/43L93mcY8XnNf6BuEi/d6x3yc92H kbgFXUNHxTF/7dy2nApKhYLiUJQMoxLgEYPBV8h8hC8bsyAJ0ImJ6Ju5I9YLf8f+ 2ELAXu5Dlvam0aYjEfrRxEQ47d7cVYhyhjLA5ZA9lojsin07ov3zUEE8dAzAv65m ogmNluP+n4YXIFqJHQSUDUHeVi9HD3PEcGR9pqVBllRJCnOiXdbtGDkW77qRBhwd nMFJwRtUBu8nmfBoBBmlq4Ab6p9fHkTS0pfnde1umIvkk/MrPLvNzDm7y4CYPDU9 VcVQFDYm4S9tRXErYO+iyjZ6lqESN3kqZvTIOGlFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqxwWtUiRNnv6DYtGGgBm8m8Vlt0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FlOGJiZTYwLWZlYTctNDJkMS1hMDQ1LTkwMDIxOTc3YTkwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFQAwDQYJKoZIhvcNAQELBQADggEBALVI/1c2/3cIFSA3m/DEAS/18b7Z AgHNMCKLrYh+IDO2raA5wHjBR14l/gnfxyKyo4Y8ngCkCbInLu1i/A+kdZllVnZ4 6FwjwDMjgZ0UPItK39EB9OVi56okWy7qIobWasDmLO5Ovvg24+sph5cvFu4BkTT5 40eYPdg47cQqfpTKHtiMJI30B1w8awrfhcxcLdqwnFyXPaHm4ABXcdLgIh0sYSIc xDHYxyMhd/SgHjDTyl+QsQE3D7/QSeByGXvOjpLcCXDVEHYR/g9C7rQ28qQvTwOw k9JUr5jsytr1Fadk37Np7t5OAwYK9LJUekY92GhdKIGThK10+rVHBNVzehM= -----END CERTIFICATE-----Generated at Sat Jun 13 05:49:21 2026 by rpki-client