$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a00bc02-51a6-4b0c-9420-80ae7a95e322.roa File: 0a00bc02-51a6-4b0c-9420-80ae7a95e322.roa (raw, json) Hash identifier: NXIIkrEK4sc4AJyNJYU1CZ3/ahB5dSv1lgIsDSSmY7s= Subject key identifier: C3:A1:A1:69:9D:9B:A0:09:E7:94:AE:91:D8:51:65:9A:0B:8B:E0:BA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F5210B70C1AE224703CC3A365DA06E4C34B4AC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a00bc02-51a6-4b0c-9420-80ae7a95e322.roa Signing time: Wed 11 Feb 2026 01:10:39 +0000 ROA not before: Wed 11 Feb 2026 01:10:39 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.125.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:52:10:b7:0c:1a:e2:24:70:3c:c3:a3:65:da:06:e4:c3:4b:4a:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 01:10:39 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=e0d2353feb2cc5bb1f179f9a7f900d647145192b8efb57b140d2f548676323c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:ae:89:95:70:cc:1d:1c:5f:19:ef:e7:3b:1c: 1d:85:68:29:32:e5:53:ef:dc:aa:3c:3d:cc:72:fc: 08:36:db:36:19:2d:3a:fb:76:72:1c:0d:37:d5:a4: 30:04:de:c4:3f:ad:1b:9f:f2:2b:b4:b3:a5:cf:01: 78:b4:c2:aa:f0:b2:1e:2f:34:99:d5:f9:b1:b3:e1: 4e:17:cc:45:17:2d:57:7a:8a:1f:7f:97:8e:7c:3a: bb:ce:53:7f:a4:af:b9:6d:a6:11:92:88:7c:0a:57: 84:88:c7:e6:f4:c5:6c:cb:8e:3e:11:b8:3f:d3:30: ac:a7:b5:fc:ad:ce:80:59:1f:d3:ab:46:d3:9e:78: 95:64:f2:a4:41:3b:05:a8:52:89:84:7c:1d:83:1d: 4a:a4:ba:f2:86:34:2d:d6:63:d7:e5:75:d9:2d:c7: 9a:7a:f4:e8:6b:9a:42:f7:be:ae:63:3f:9f:e6:22: ca:54:00:58:6f:48:82:73:7d:b4:fd:e9:ab:6b:4a: 98:6c:fe:1d:84:27:e3:48:39:10:60:06:52:61:3d: 77:f8:b4:02:1d:6b:31:93:47:d4:8e:67:86:9c:03: 86:56:2d:ed:41:0b:90:2c:0e:cd:af:d8:cf:58:53: d1:9b:73:6d:9b:1a:cc:87:2c:40:c9:37:bb:7c:47: ad:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:A1:A1:69:9D:9B:A0:09:E7:94:AE:91:D8:51:65:9A:0B:8B:E0:BA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0a00bc02-51a6-4b0c-9420-80ae7a95e322.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.125.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:c5:cf:75:f2:2d:a4:e1:b1:e3:6e:d0:be:81:bb:e4:4f:66: 09:8f:14:f3:1e:86:17:68:f8:ec:b6:80:c7:54:d6:2b:0e:c5: fc:00:01:16:7a:0d:93:42:46:47:de:12:78:2f:f4:b5:b6:4a: 59:d9:20:ad:fe:a6:82:79:f3:71:b3:e9:b8:84:4a:a3:8f:a3: c2:48:23:a4:9e:60:ca:f1:35:e8:ae:c2:8f:c7:08:78:e2:ec: f4:5b:78:d7:29:e6:17:ec:95:a1:1c:d8:4f:e5:40:93:03:97: 1a:4a:24:27:38:7a:34:a6:38:41:39:dd:06:41:61:ea:3f:12: 69:99:59:9c:60:58:a3:4b:80:1d:b2:d8:9f:8b:7b:be:03:12: b2:18:e0:98:6d:3e:96:e2:59:c8:8e:b7:49:b0:a5:39:12:82: 31:30:cf:bc:fc:4b:35:93:9a:f6:69:31:01:60:7d:0d:c2:fc: b2:36:68:d8:ff:c6:30:06:8d:f0:c9:76:cb:9c:27:47:51:fb: a6:63:20:f1:fa:e8:32:b4:af:49:fb:45:2c:a3:e3:29:9a:cf: ce:94:e0:6a:17:d8:4c:78:fb:4c:f9:f3:e9:2b:94:29:2b:39: 2c:6c:6b:f3:0a:52:0e:23:a3:b2:1e:14:e5:24:c7:6d:5b:50: 94:51:b3:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT1IQtwwa4iRwPMOjZdoG5MNLSsMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjExMDExMDM5WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BlMGQyMzUzZmViMmNjNWJiMWYxNzlmOWE3ZjkwMGQ2NDcx NDUxOTJiOGVmYjU3YjE0MGQyZjU0ODY3NjMyM2M1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtromVcMwdHF8Z7+c7HB2FaCky5VPv3Ko8Pcxy/Ag22zYZ LTr7dnIcDTfVpDAE3sQ/rRuf8iu0s6XPAXi0wqrwsh4vNJnV+bGz4U4XzEUXLVd6 ih9/l458OrvOU3+kr7ltphGSiHwKV4SIx+b0xWzLjj4RuD/TMKyntfytzoBZH9Or RtOeeJVk8qRBOwWoUomEfB2DHUqkuvKGNC3WY9flddktx5p69OhrmkL3vq5jP5/m IspUAFhvSIJzfbT96atrSphs/h2EJ+NIORBgBlJhPXf4tAIdazGTR9SOZ4acA4ZW Le1BC5AsDs2v2M9YU9Gbc22bGsyHLEDJN7t8R60RAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUw6GhaZ2boAnnlK6R2FFlmguL4LowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhMDBiYzAyLTUxYTYtNGIwYy05NDIwLTgwYWU3YTk1ZTMyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/H0wDQYJKoZIhvcNAQELBQADggEBAEzFz3XyLaThseNu0L6Bu+RPZgmP FPMehhdo+Oy2gMdU1isOxfwAARZ6DZNCRkfeEngv9LW2SlnZIK3+poJ583Gz6biE SqOPo8JII6SeYMrxNeiuwo/HCHji7PRbeNcp5hfslaEc2E/lQJMDlxpKJCc4ejSm OEE53QZBYeo/EmmZWZxgWKNLgB2y2J+Le74DErIY4JhtPpbiWciOt0mwpTkSgjEw z7z8SzWTmvZpMQFgfQ3C/LI2aNj/xjAGjfDJdsucJ0dR+6ZjIPH66DK0r0n7RSyj 4ymaz86U4GoX2Ex4+0z58+krlCkrOSxsa/MKUg4jo7IeFOUkx21bUJRRs5U= -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:34 2026 by rpki-client