$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa File: d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa (raw, json) Hash identifier: gxGhe31hO5swCy1pSWqxYHqewbCigwCGVvycXma1xgc= Subject key identifier: 42:98:85:38:43:74:FD:F4:12:22:5F:8C:58:56:96:2A:0A:6B:69:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C3D58D8F8025B66260C87BC96591B6E3C405020 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa Signing time: Fri 15 May 2026 01:01:24 +0000 ROA not before: Fri 15 May 2026 01:01:24 +0000 ROA not after: Thu 13 Aug 2026 23:59:59 +0000 asID: 14618 IP address blocks: 1.178.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 14 Jun 2026 14:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:3d:58:d8:f8:02:5b:66:26:0c:87:bc:96:59:1b:6e:3c:40:50:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: May 15 01:01:24 2026 GMT Not After : Aug 13 23:59:59 2026 GMT Subject: serialNumber=948167f65dba642449db2cddd3c437853f127f0933902adb200b203a5ec4e9e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:75:47:c0:d8:7c:73:f7:47:4a:0c:d8:0c:42: fe:33:3c:51:98:93:e3:1c:91:58:ca:19:90:28:65: 1a:e3:2a:76:19:6c:b9:92:05:28:db:41:58:28:93: 6f:b2:2a:73:3c:42:83:ff:fc:ae:c5:06:48:bf:4c: 27:6c:51:a7:de:4a:84:48:f6:df:68:cd:1a:d9:80: 67:ca:23:39:11:63:84:7e:2a:ef:b7:24:d7:d0:d9: dc:8d:93:e7:18:8c:09:24:0f:ad:c2:d6:b7:42:97: ff:52:96:58:70:f4:59:6b:b1:d4:48:b6:5d:15:58: 2b:37:9b:27:fe:5b:c5:3d:9c:a1:d3:85:77:08:ab: 69:3a:77:33:03:59:2c:13:db:21:64:78:95:73:8e: 5b:c2:cb:eb:20:dd:fc:2b:8b:9d:30:93:3d:e4:cb: 99:c7:92:ff:42:4c:64:eb:02:c8:4e:92:d7:07:f8: 0f:10:53:77:4b:fc:0b:7f:a3:66:55:af:a0:12:7f: 09:5e:2f:e2:25:ec:db:8e:f8:f0:64:ac:1c:09:de: ee:af:10:ad:b9:3f:c9:e2:2f:80:4e:08:76:8e:0f: aa:75:07:52:5d:ee:87:22:68:25:b0:f7:ac:30:ba: bd:83:75:4d:81:e1:2b:69:1f:68:eb:d0:65:64:71: 6c:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:98:85:38:43:74:FD:F4:12:22:5F:8C:58:56:96:2A:0A:6B:69:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.88.0/21 Signature Algorithm: sha256WithRSAEncryption 23:df:b3:02:22:e9:5c:87:c5:02:17:50:7c:71:10:27:de:c7: d9:2e:45:00:55:37:53:f8:c3:3d:15:c0:b8:e6:1d:33:40:eb: 29:5d:7f:1e:75:a7:8a:8b:4e:b9:08:d2:d9:e2:ed:aa:f4:b6: a6:50:2e:29:b7:7c:90:40:f0:35:40:46:c8:a9:81:3a:2c:3e: 7a:9f:88:35:15:38:69:3a:b8:35:58:34:d1:b8:a4:0d:15:e1: 36:06:fe:a7:3b:45:52:9b:7a:bb:df:c2:03:99:79:cf:39:18: 92:ac:06:f3:90:fd:0d:78:5d:b5:8f:20:55:af:2e:37:76:74: c5:44:e8:9c:a3:32:01:af:96:5f:33:ee:43:0b:e3:50:c0:60: ae:01:c0:25:1d:89:ae:4a:5a:f0:f4:48:ff:a8:15:16:1f:fe: fb:dc:1c:6b:01:a8:21:fe:6c:40:a9:a4:d0:95:03:ec:22:7b: 06:71:6f:1a:44:45:0d:db:3a:6d:00:f9:d7:9f:b4:6f:1e:e5: a3:6f:e9:5a:93:35:97:6f:ac:4f:55:b5:05:af:e5:b2:83:41: 48:bd:1d:cb:9e:e0:d3:7f:cf:4c:9f:a1:6d:03:b1:33:09:68: ce:ff:3e:c2:54:ed:9c:8d:86:ba:38:35:33:22:d7:6d:98:c0: c6:a0:b5:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPD1Y2PgCW2YmDIe8llkbbjxAUCAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwNTE1MDEwMTI0WhcNMjYwODEzMjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDgxNjdmNjVkYmE2NDI0NDlkYjJjZGRkM2M0Mzc4NTNm MTI3ZjA5MzM5MDJhZGIyMDBiMjAzYTVlYzRlOWUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJdUfA2Hxz90dKDNgMQv4zPFGYk+MckVjKGZAoZRrjKnYZ bLmSBSjbQVgok2+yKnM8QoP//K7FBki/TCdsUafeSoRI9t9ozRrZgGfKIzkRY4R+ Ku+3JNfQ2dyNk+cYjAkkD63C1rdCl/9Sllhw9FlrsdRItl0VWCs3myf+W8U9nKHT hXcIq2k6dzMDWSwT2yFkeJVzjlvCy+sg3fwri50wkz3ky5nHkv9CTGTrAshOktcH +A8QU3dL/At/o2ZVr6ASfwleL+Il7NuO+PBkrBwJ3u6vEK25P8niL4BOCHaOD6p1 B1Jd7ociaCWw96wwur2DdU2B4StpH2jr0GVkcWx7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQpiFOEN0/fQSIl+MWFaWKgpraaYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzOGFjYjFkLTc4MDUtNDNlNS05YThkLTFjMDRkM2UzZDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBslgwDQYJKoZIhvcNAQELBQADggEBACPfswIi6VyHxQIXUHxxECfex9ku RQBVN1P4wz0VwLjmHTNA6yldfx51p4qLTrkI0tni7ar0tqZQLim3fJBA8DVARsip gTosPnqfiDUVOGk6uDVYNNG4pA0V4TYG/qc7RVKbervfwgOZec85GJKsBvOQ/Q14 XbWPIFWvLjd2dMVE6JyjMgGvll8z7kML41DAYK4BwCUdia5KWvD0SP+oFRYf/vvc HGsBqCH+bECppNCVA+wiewZxbxpERQ3bOm0A+deftG8e5aNv6VqTNZdvrE9VtQWv 5bKDQUi9Hcue4NN/z0yfoW0DsTMJaM7/PsJU7ZyNhro4NTMi122YwMagtWE= -----END CERTIFICATE-----Generated at Sat Jun 13 08:15:41 2026 by rpki-client