$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0301e067-da19-4fd1-bbbc-72ecabcde612.roa File: 0301e067-da19-4fd1-bbbc-72ecabcde612.roa (raw, json) Hash identifier: 4c1MFB3NLXDGHBx+LLYk1+QoFhQmcXriMC/7CqUvRfE= Subject key identifier: 45:1B:73:2B:D3:FA:AC:88:02:15:EC:C4:D0:25:9B:31:EB:1E:07:73 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 130228D9AF77B843C2CA55F535C7377B677D2FB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0301e067-da19-4fd1-bbbc-72ecabcde612.roa Signing time: Tue 24 Feb 2026 00:31:01 +0000 ROA not before: Tue 24 Feb 2026 00:31:01 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 192.43.184.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:02:28:d9:af:77:b8:43:c2:ca:55:f5:35:c7:37:7b:67:7d:2f:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:31:01 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=1a1044afe22113d8ba56d68dcd7c24553c6af06b1452c6cff25da8696133443e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:9b:08:57:b5:ca:ef:09:d0:2e:41:27:14:5d: 8f:c7:b6:bd:55:8c:6f:0b:27:78:01:f8:ac:78:f3: cb:20:8e:c0:33:23:7c:52:4d:59:66:db:9d:9f:11: 02:df:78:81:74:b6:a6:e5:8d:0b:cd:a8:c0:bc:b5: a9:78:06:95:4b:4a:b1:b7:4e:f8:97:88:76:05:6f: 72:1a:51:31:1e:bc:ad:ac:23:16:3d:08:17:87:b3: 91:cd:a2:91:1f:67:53:7b:aa:1e:26:5d:1d:44:de: 7c:bb:4a:04:76:20:ed:12:80:a4:8e:37:69:86:4a: 46:72:b6:55:2a:68:4f:f6:78:11:dc:bc:45:06:42: a5:99:f4:a6:88:9e:9a:62:c6:67:a8:73:e6:a2:5d: ef:c7:ef:14:2f:aa:33:e9:cb:49:05:73:bf:d0:45: 44:fc:6f:dd:c4:56:89:4c:0d:6f:8b:47:3e:8e:5d: f0:1e:34:cb:8a:57:25:ca:f9:44:20:ef:55:eb:b9: 67:a2:d2:79:70:93:bf:30:05:8a:36:0f:da:99:45: b0:dc:d9:b5:a9:46:01:f9:91:a6:d8:c3:fd:07:1f: 73:86:ed:58:8c:13:8b:1d:46:35:1b:03:17:53:8f: 29:ec:0f:d1:2e:c1:10:33:a3:72:98:9d:e5:15:2e: 34:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:1B:73:2B:D3:FA:AC:88:02:15:EC:C4:D0:25:9B:31:EB:1E:07:73 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0301e067-da19-4fd1-bbbc-72ecabcde612.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.43.184.0/24 Signature Algorithm: sha256WithRSAEncryption 07:88:54:84:30:d7:95:54:cc:a3:e2:23:c6:24:56:66:b4:14: 32:04:12:86:0d:bf:42:5f:62:8c:96:3f:bb:c0:b2:c1:54:fa: 3d:66:a7:f0:9e:6a:20:4a:f7:2b:4f:dc:77:dd:14:ad:07:14: 50:0e:a9:69:e8:35:cf:64:02:92:b4:89:bf:4b:5e:f6:ee:3f: 4f:06:93:34:a5:f3:2f:7e:65:ee:06:7f:cf:8c:5c:22:aa:d7: 52:b5:ea:4f:0b:71:71:e4:1b:72:f2:dd:b2:2b:8d:a7:a5:67: 11:e2:20:49:04:c7:8b:c8:f3:49:e9:25:3c:19:3d:3d:68:f4: a7:ea:0b:07:38:d1:48:8f:26:a4:f8:72:6f:0f:95:de:fd:4c: 95:10:ef:e0:fd:82:6f:51:c7:f5:83:23:66:bb:67:e2:c3:1c: c7:45:7d:4c:3c:cc:20:bf:2a:8a:ff:14:91:50:91:71:e5:a8: b2:9d:ad:92:64:e9:62:a0:a0:b2:8a:c9:b7:71:69:7c:ec:d8: eb:67:3e:0f:b2:e0:2c:28:14:9c:14:6e:f1:17:4c:94:b2:b2: 2c:9b:68:6b:c9:e3:ac:f2:c5:36:5f:ab:80:ce:af:c1:26:b1: 42:95:66:30:f6:db:d0:df:16:d0:93:3c:73:ab:16:8d:50:a3: 69:9a:5b:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEwIo2a93uEPCylX1Ncc3e2d9L7YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAzMTAxWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxYTEwNDRhZmUyMjExM2Q4YmE1NmQ2OGRjZDdjMjQ1NTNj NmFmMDZiMTQ1MmM2Y2ZmMjVkYTg2OTYxMzM0NDNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCumwhXtcrvCdAuQScUXY/Htr1VjG8LJ3gB+Kx488sgjsAz I3xSTVlm252fEQLfeIF0tqbljQvNqMC8tal4BpVLSrG3TviXiHYFb3IaUTEevK2s IxY9CBeHs5HNopEfZ1N7qh4mXR1E3ny7SgR2IO0SgKSON2mGSkZytlUqaE/2eBHc vEUGQqWZ9KaInppixmeoc+aiXe/H7xQvqjPpy0kFc7/QRUT8b93EVolMDW+LRz6O XfAeNMuKVyXK+UQg71XruWei0nlwk78wBYo2D9qZRbDc2bWpRgH5kabYw/0HH3OG 7ViME4sdRjUbAxdTjynsD9EuwRAzo3KYneUVLjTjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURRtzK9P6rIgCFezE0CWbMeseB3MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzMDFlMDY3LWRhMTktNGZkMS1iYmJjLTcyZWNhYmNkZTYxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAK7gwDQYJKoZIhvcNAQELBQADggEBAAeIVIQw15VUzKPiI8YkVma0FDIE EoYNv0JfYoyWP7vAssFU+j1mp/CeaiBK9ytP3HfdFK0HFFAOqWnoNc9kApK0ib9L XvbuP08GkzSl8y9+Ze4Gf8+MXCKq11K16k8LcXHkG3Ly3bIrjaelZxHiIEkEx4vI 80npJTwZPT1o9KfqCwc40UiPJqT4cm8Pld79TJUQ7+D9gm9Rx/WDI2a7Z+LDHMdF fUw8zCC/Kor/FJFQkXHlqLKdrZJk6WKgoLKKybdxaXzs2OtnPg+y4CwoFJwUbvEX TJSysiybaGvJ46zyxTZfq4DOr8EmsUKVZjD229DfFtCTPHOrFo1Qo2maW6g= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:30 2026 by rpki-client