$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa File: cddc38a9-b919-4a54-aad6-1107e47d5499.roa (raw, json) Hash identifier: y4kNMfhzwAfbfqff+7G6tLXwtX0PH91kSaNSN7rVZiY= Subject key identifier: 53:DE:12:FE:21:6B:98:C9:99:62:25:63:0C:54:31:F6:B9:B2:8F:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 22EE07A0A47B1A5EEF09B21DD0C55D1CC532CE86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa Signing time: Sun 17 May 2026 01:00:54 +0000 ROA not before: Sun 17 May 2026 01:00:54 +0000 ROA not after: Sat 15 Aug 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 22:ee:07:a0:a4:7b:1a:5e:ef:09:b2:1d:d0:c5:5d:1c:c5:32:ce:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 17 01:00:54 2026 GMT Not After : Aug 15 23:59:59 2026 GMT Subject: serialNumber=c21aaa2b292b5b61fe8bd040cf59b7ef0f1af036a3f25185ac4c359474e1dd40, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:c5:6d:dc:61:b8:8c:e7:4c:42:6a:22:21:60: 8b:b0:66:6b:1d:b0:5d:fb:59:b9:56:ce:61:dd:85: 40:e6:a9:b3:f4:b9:33:7f:2d:c6:3d:da:3e:d0:24: 33:ee:58:c0:6d:d8:52:3f:39:1f:e5:7e:d2:84:02: ab:6c:47:da:87:b2:6b:fd:37:4e:f4:d6:06:51:d9: 1b:6a:f1:db:a0:db:e1:18:bc:7a:b7:4d:2c:ab:1b: 8a:46:a9:76:d9:83:c5:0a:66:10:c2:d7:15:2f:e6: c6:27:e7:80:70:24:c0:26:15:0a:67:cd:7a:7f:d2: 98:86:a5:3b:1a:7b:7b:d6:53:84:80:4b:23:b1:62: f8:59:ed:0e:24:12:45:6f:6d:c9:ca:1c:26:0c:ac: 40:11:13:7b:98:68:9e:4f:8e:03:74:25:c7:c2:8b: ab:f6:49:37:eb:0b:6c:9f:38:6e:18:73:82:a1:19: 0d:c3:ff:79:d1:a3:e7:a6:a5:77:69:b8:41:af:c1: 99:f4:c2:93:64:b9:7c:52:59:85:21:7f:9c:bd:80: 22:a8:2f:d2:ef:94:35:2b:77:08:94:f6:9e:62:01: 33:96:bb:c9:da:f5:8d:08:db:41:03:3d:18:25:e6: 0e:0f:73:de:ca:6a:a6:10:44:df:0a:0d:b5:c8:76: cd:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DE:12:FE:21:6B:98:C9:99:62:25:63:0C:54:31:F6:B9:B2:8F:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 64:82:4c:81:4a:ae:50:c7:9f:66:5d:a7:ef:9e:73:b1:f6:4d: 97:fc:48:2e:7a:2c:d8:6f:ea:66:7e:8a:fb:2e:29:ce:31:31: ae:7d:36:10:79:39:20:14:5e:fa:38:82:2f:c7:60:48:10:48: de:ad:6c:d1:4f:96:07:4b:a1:38:2d:4d:60:52:41:7c:c9:7a: c7:14:a6:bd:52:b7:55:1b:9c:6a:cc:5e:c2:80:52:d1:1d:cf: 2a:b3:5f:0a:82:7b:42:41:c1:ef:dd:22:b4:37:47:de:ef:c1: 82:ee:d4:ce:22:02:f5:ea:5d:24:04:b8:ff:58:a0:50:07:65: 81:f5:af:52:79:0e:8d:71:80:80:98:d9:4b:8f:a4:96:59:93: 2e:28:58:8b:18:48:2c:8d:f5:01:fd:5b:12:10:79:ba:03:f4: f1:5a:6a:c9:1b:17:7c:ef:7b:99:3f:24:11:af:36:c4:e0:ce: 6f:10:51:9a:c9:5f:c8:87:bd:f2:ee:f5:c7:16:69:6a:7c:f2: 3d:0d:5e:75:8d:30:8d:95:34:3d:e9:e1:f9:3d:0e:57:4f:ba: 4c:ea:0f:7a:49:ca:6d:02:1e:50:82:29:c2:d3:e4:90:e0:b6: 7f:94:9d:67:8f:ea:53:1e:f2:65:ca:75:94:32:97:02:a8:eb: 3b:4a:e8:7d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUIu4HoKR7Gl7vCbId0MVdHMUyzoYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE3MDEwMDU0WhcNMjYwODE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMjFhYWEyYjI5MmI1YjYxZmU4YmQwNDBjZjU5YjdlZjBm MWFmMDM2YTNmMjUxODVhYzRjMzU5NDc0ZTFkZDQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCSxW3cYbiM50xCaiIhYIuwZmsdsF37WblWzmHdhUDmqbP0 uTN/LcY92j7QJDPuWMBt2FI/OR/lftKEAqtsR9qHsmv9N0701gZR2Rtq8dug2+EY vHq3TSyrG4pGqXbZg8UKZhDC1xUv5sYn54BwJMAmFQpnzXp/0piGpTsae3vWU4SA SyOxYvhZ7Q4kEkVvbcnKHCYMrEARE3uYaJ5PjgN0JcfCi6v2STfrC2yfOG4Yc4Kh GQ3D/3nRo+empXdpuEGvwZn0wpNkuXxSWYUhf5y9gCKoL9LvlDUrdwiU9p5iATOW u8na9Y0I20EDPRgl5g4Pc97KaqYQRN8KDbXIds0TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUU94S/iFrmMmZYiVjDFQx9rmyj/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkZGMzOGE5LWI5MTktNGE1NC1hYWQ2LTExMDdlNDdkNTQ5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4FjANBgkqhkiG9w0BAQsFAAOCAQEAZIJMgUquUMefZl2n755zsfZNl/xI Lnos2G/qZn6K+y4pzjExrn02EHk5IBRe+jiCL8dgSBBI3q1s0U+WB0uhOC1NYFJB fMl6xxSmvVK3VRucasxewoBS0R3PKrNfCoJ7QkHB790itDdH3u/Bgu7UziIC9epd JAS4/1igUAdlgfWvUnkOjXGAgJjZS4+kllmTLihYixhILI31Af1bEhB5ugP08Vpq yRsXfO97mT8kEa82xODObxBRmslfyIe98u71xxZpanzyPQ1edY0wjZU0Penh+T0O V0+6TOoPeknKbQIeUIIpwtPkkOC2f5SdZ4/qUx7yZcp1lDKXAqjrO0rofQ== -----END CERTIFICATE-----Generated at Sat Jun 13 13:15:57 2026 by rpki-client