$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa File: 088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa (raw, json) Hash identifier: bYMiNsaGdWryuH8TYJvajwaBJFpXRiI34gFwoSbyLK0= Subject key identifier: 0D:35:13:E3:D9:56:9F:29:9B:BE:BC:F9:D5:5A:5D:84:A9:36:0D:E5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B1924DA2172E504BB6E7B1243B0A0D639E06B0E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa Signing time: Sun 08 Feb 2026 00:10:06 +0000 ROA not before: Sun 08 Feb 2026 00:10:06 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.81.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:19:24:da:21:72:e5:04:bb:6e:7b:12:43:b0:a0:d6:39:e0:6b:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:06 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=618d6a4af562005a62198127addbde6c9225edb7df55356270bf79b7b5a3dc07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:da:9e:c0:92:62:3b:6a:12:9f:36:05:58:14: de:7c:04:29:50:b7:1c:b6:b1:cb:e2:72:52:1b:0c: 16:54:73:95:23:5e:db:7b:02:fd:0e:5a:a8:6b:1b: 36:77:1d:47:4e:e6:39:6b:f5:c0:bf:67:c8:9f:5a: 95:ee:3c:06:0f:92:42:39:5f:89:6f:0b:36:61:68: 87:bf:0a:5e:83:94:e4:bd:95:ee:bf:87:21:c8:23: 68:af:09:31:46:bb:ae:5a:b4:34:b4:ea:01:39:6b: 66:78:a7:81:c4:e1:e9:2b:5a:1d:db:60:25:62:48: 74:21:c1:76:09:30:bc:b5:56:a7:74:2d:93:87:41: ec:bc:47:b4:0f:30:3d:0e:85:7f:32:34:29:b5:9b: d2:5b:bc:ae:bb:7c:00:fb:c1:61:5f:bc:93:82:9c: a6:2e:de:ec:40:4e:c2:3e:cb:76:23:ad:0e:ec:25: 1a:ac:b9:9f:d0:92:8c:7d:de:dd:69:b8:6b:ee:46: b8:c6:d9:74:05:a6:ae:9d:6b:b3:5f:a1:2d:75:6a: 0e:45:cf:32:88:34:d1:b9:d4:75:74:23:2a:67:7f: 6c:9e:4e:91:aa:23:97:91:6c:57:32:0d:80:2f:82: 94:ec:b8:b6:56:e6:85:b7:6f:01:3e:db:2e:e8:36: 1e:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:35:13:E3:D9:56:9F:29:9B:BE:BC:F9:D5:5A:5D:84:A9:36:0D:E5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/088fd3e6-5013-4c2c-bf46-1eb907f3520c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.81.0/24 Signature Algorithm: sha256WithRSAEncryption 33:21:8f:a1:b8:13:bc:00:cb:e9:36:43:90:b1:c5:31:38:c6: 4c:3d:61:1d:21:dc:3d:17:4f:21:4d:aa:94:98:69:8b:75:84: e7:38:76:2d:d4:21:d7:7c:cc:51:35:2f:ab:ef:40:d2:a3:4f: ab:de:58:c5:da:c3:06:0e:ce:43:f0:0a:d4:7d:ec:39:4d:1a: 0e:3c:7b:e0:84:fd:8e:4d:a8:c9:f3:37:48:de:52:b9:1c:72: 7e:d7:94:65:09:34:8b:29:a0:25:33:85:24:7c:7b:1f:34:34: 28:30:43:73:1c:4b:e2:40:ce:69:e8:ab:1b:ea:df:38:1b:d5: 7a:0e:09:20:e7:35:e6:eb:20:96:47:72:54:34:47:14:78:e5: 04:6f:fc:3f:37:0a:bc:76:1b:3b:78:0f:a5:83:25:99:3f:df: 5e:3d:94:f8:ac:39:5e:16:0c:48:3a:97:5a:b3:97:b5:8e:47: f1:fe:aa:a8:7a:e5:54:04:68:42:0f:5b:5e:0a:99:81:7f:a9: 71:8e:76:18:fa:71:d7:15:c0:85:4d:38:a7:84:fa:0b:e1:bb: 3a:d3:9f:3f:27:f3:e0:8f:ae:91:3f:09:0b:02:c6:ce:74:2b: 43:c3:2c:50:67:24:99:84:35:5f:b0:89:c7:20:0f:63:e8:06: e2:2a:03:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUexkk2iFy5QS7bnsSQ7Cg1jngaw4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDA2WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A2MThkNmE0YWY1NjIwMDVhNjIxOTgxMjdhZGRiZGU2Yzky MjVlZGI3ZGY1NTM1NjI3MGJmNzliN2I1YTNkYzA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC72p7AkmI7ahKfNgVYFN58BClQtxy2scviclIbDBZUc5Uj Xtt7Av0OWqhrGzZ3HUdO5jlr9cC/Z8ifWpXuPAYPkkI5X4lvCzZhaIe/Cl6DlOS9 le6/hyHII2ivCTFGu65atDS06gE5a2Z4p4HE4ekrWh3bYCViSHQhwXYJMLy1Vqd0 LZOHQey8R7QPMD0OhX8yNCm1m9JbvK67fAD7wWFfvJOCnKYu3uxATsI+y3YjrQ7s JRqsuZ/Qkox93t1puGvuRrjG2XQFpq6da7NfoS11ag5FzzKINNG51HV0Iypnf2ye TpGqI5eRbFcyDYAvgpTsuLZW5oW3bwE+2y7oNh4PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDTUT49lWnymbvrz51VpdhKk2DeUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA4OGZkM2U2LTUwMTMtNGMyYy1iZjQ2LTFlYjkwN2YzNTIwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/FEwDQYJKoZIhvcNAQELBQADggEBADMhj6G4E7wAy+k2Q5CxxTE4xkw9 YR0h3D0XTyFNqpSYaYt1hOc4di3UIdd8zFE1L6vvQNKjT6veWMXawwYOzkPwCtR9 7DlNGg48e+CE/Y5NqMnzN0jeUrkccn7XlGUJNIspoCUzhSR8ex80NCgwQ3McS+JA zmnoqxvq3zgb1XoOCSDnNebrIJZHclQ0RxR45QRv/D83Crx2Gzt4D6WDJZk/3149 lPisOV4WDEg6l1qzl7WOR/H+qqh65VQEaEIPW14KmYF/qXGOdhj6cdcVwIVNOKeE +gvhuzrTnz8n8+CPrpE/CQsCxs50K0PDLFBnJJmENV+wiccgD2PoBuIqA3g= -----END CERTIFICATE-----Generated at Mon Mar 2 04:55:01 2026 by rpki-client