$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa File: 05d4d2f7-1a78-4934-8b97-d3baee111a75.roa (raw, json) Hash identifier: 7MKMGHpFbN2xQPNzwFhKJdUih9/a+xRJQ749rm2blVo= Subject key identifier: F3:83:95:58:48:DD:BA:A8:6A:9B:D8:BE:71:1D:99:4B:B0:96:F7:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3039B8F55DF9AEE8B83919608D5A6892C9AFD84A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa Signing time: Sat 28 Feb 2026 00:41:48 +0000 ROA not before: Sat 28 Feb 2026 00:41:48 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 202.5.165.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:39:b8:f5:5d:f9:ae:e8:b8:39:19:60:8d:5a:68:92:c9:af:d8:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:41:48 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=b5a2813cd9f46e387fd32d38c7249984e13a347a3fa8ecb7ef9adeec96b8285c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:04:0d:e1:6e:cc:db:a9:a5:50:9e:25:2b:1a: a6:ee:58:81:29:5a:ca:42:fd:4b:3a:db:fa:3e:f1: 85:27:1d:65:6e:55:64:66:37:ee:e2:30:a7:74:c8: ee:b3:f9:da:c9:17:fb:ed:eb:20:a1:d9:b1:f7:d5: 00:e3:f2:0a:41:b0:ca:04:7a:1c:e6:ef:8a:3a:6c: 42:74:42:ec:ba:cf:c0:53:a0:ff:a1:cb:22:46:05: ec:10:1a:24:e7:28:ba:22:f8:e5:ec:30:45:79:7e: e9:5d:1f:12:c0:c1:a9:68:e2:38:48:89:f6:28:59: 77:28:da:54:d8:46:91:9a:79:3c:f7:75:ad:4e:4b: ce:17:f4:18:e8:ce:32:22:da:c3:8c:48:8c:ae:bc: f7:92:4b:26:1d:c3:17:69:cb:f2:d6:ec:40:25:4b: 96:ce:5e:d0:5f:fd:2a:4b:e0:6c:d8:15:52:44:69: f6:00:89:9d:a5:bf:84:f3:82:55:a2:75:89:db:86: aa:86:2f:bb:27:a7:84:28:e8:33:4a:3d:a2:78:4e: a3:51:8c:37:5f:c2:0a:3c:38:7f:7a:47:26:9a:ab: d4:55:98:ba:71:5a:62:4f:b7:15:94:7a:df:e0:a2: 46:af:b8:b1:64:23:86:22:78:74:9a:8a:ee:07:7e: 05:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:83:95:58:48:DD:BA:A8:6A:9B:D8:BE:71:1D:99:4B:B0:96:F7:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/05d4d2f7-1a78-4934-8b97-d3baee111a75.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.5.165.0/24 Signature Algorithm: sha256WithRSAEncryption 65:64:dd:0c:10:cf:a1:e3:45:82:a8:81:d8:6e:5d:ea:3a:d8: 31:14:95:9a:63:f7:8f:93:6a:ee:e8:7e:e2:3f:2b:17:5e:e9: fb:d2:3b:8e:63:51:85:3d:83:d7:5d:18:39:7f:a4:00:62:cd: b9:5e:7b:4e:5f:f0:94:85:da:a3:01:40:7d:a5:54:be:01:d4: 62:08:4e:d7:6f:68:3c:d0:f7:d5:00:1e:be:16:36:7a:fe:6a: 15:d2:65:41:91:a6:71:85:c9:35:f3:3f:bc:ad:fc:32:7a:bc: 1c:d1:09:ad:c1:3d:53:93:d5:a3:dc:ee:12:e6:b6:f5:09:f1: 86:87:3b:3a:38:b8:8f:e2:b3:b3:d9:99:1f:b9:79:27:17:7a: c8:c3:b6:4b:6a:68:e1:fc:f5:9f:5c:dd:e5:32:fc:d9:93:cf: a3:f8:b6:7a:92:93:11:3e:dc:bc:7e:0f:3c:71:0f:24:9d:af: 56:ed:14:ac:14:81:9c:c3:8a:3b:06:ee:30:96:89:27:96:83: 99:c2:98:3f:20:dd:85:f7:6f:b1:3c:a6:97:76:d3:0f:6f:51: f9:e5:ad:d7:e5:8f:59:30:9d:4a:35:04:5d:04:6c:f3:f7:62: 7c:47:fc:fd:e9:7a:f7:05:cd:d7:96:71:d3:99:57:c6:64:02: 3e:ea:49:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMDm49V35rui4ORlgjVpoksmv2EowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDA0MTQ4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNWEyODEzY2Q5ZjQ2ZTM4N2ZkMzJkMzhjNzI0OTk4NGUx M2EzNDdhM2ZhOGVjYjdlZjlhZGVlYzk2YjgyODVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7BA3hbszbqaVQniUrGqbuWIEpWspC/Us62/o+8YUnHWVu VWRmN+7iMKd0yO6z+drJF/vt6yCh2bH31QDj8gpBsMoEehzm74o6bEJ0Quy6z8BT oP+hyyJGBewQGiTnKLoi+OXsMEV5fuldHxLAwalo4jhIifYoWXco2lTYRpGaeTz3 da1OS84X9BjozjIi2sOMSIyuvPeSSyYdwxdpy/LW7EAlS5bOXtBf/SpL4GzYFVJE afYAiZ2lv4TzglWidYnbhqqGL7snp4Qo6DNKPaJ4TqNRjDdfwgo8OH96Ryaaq9RV mLpxWmJPtxWUet/gokavuLFkI4YieHSaiu4HfgV1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU84OVWEjduqhqm9i+cR2ZS7CW9wswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA1ZDRkMmY3LTFhNzgtNDkzNC04Yjk3LWQzYmFlZTExMWE3NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKBaUwDQYJKoZIhvcNAQELBQADggEBAGVk3QwQz6HjRYKogdhuXeo62DEU lZpj94+Tau7ofuI/Kxde6fvSO45jUYU9g9ddGDl/pABizblee05f8JSF2qMBQH2l VL4B1GIITtdvaDzQ99UAHr4WNnr+ahXSZUGRpnGFyTXzP7yt/DJ6vBzRCa3BPVOT 1aPc7hLmtvUJ8YaHOzo4uI/is7PZmR+5eScXesjDtktqaOH89Z9c3eUy/NmTz6P4 tnqSkxE+3Lx+DzxxDySdr1btFKwUgZzDijsG7jCWiSeWg5nCmD8g3YX3b7E8ppd2 0w9vUfnlrdflj1kwnUo1BF0EbPP3YnxH/P3pevcFzdeWcdOZV8ZkAj7qSeI= -----END CERTIFICATE-----Generated at Mon Mar 2 03:40:01 2026 by rpki-client