$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b3352c2-ebbd-4dcd-85d6-ab8d23f1d4e6.roa File: 0b3352c2-ebbd-4dcd-85d6-ab8d23f1d4e6.roa (raw, json) Hash identifier: 1gh/FnIhHuu5ZbMyZi0IXlgcJJyJk57t4plvENTh55Y= Subject key identifier: FC:B3:44:4D:EB:7A:F8:33:E2:01:CD:2A:41:0B:6D:70:BC:47:C8:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 509326B3BD34AE615C8915D45DBFBBE4D000A1CE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b3352c2-ebbd-4dcd-85d6-ab8d23f1d4e6.roa Signing time: Tue 10 Feb 2026 01:01:54 +0000 ROA not before: Tue 10 Feb 2026 01:01:54 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.67.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:93:26:b3:bd:34:ae:61:5c:89:15:d4:5d:bf:bb:e4:d0:00:a1:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 01:01:54 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=cacc777bf548d41a4f18dc805b6fdcc79f66e684e78f7775dbb7c66e22c86a01, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:0f:f1:63:64:57:e1:aa:39:d2:9c:cc:30:51: b9:d7:b8:21:c4:dc:91:d0:2b:d7:cd:a5:f0:4f:52: 09:ad:56:18:98:a2:82:e0:5b:d0:14:32:c3:01:30: 43:71:e4:6f:60:6d:55:e0:a0:f5:dd:13:54:d5:ea: 59:6f:73:55:1d:a9:6e:ee:1a:39:1a:b8:69:cd:29: df:d8:f3:f8:32:65:89:02:30:68:49:b1:8c:de:e8: 24:a6:3d:82:c6:90:e3:76:c1:05:9e:fa:f8:47:83: 97:cd:8e:50:22:4d:43:e4:dc:6c:71:51:87:6f:94: fc:3c:b3:44:92:11:c3:42:e7:b0:88:37:54:ba:ce: 84:11:91:08:ee:d9:fb:2f:fd:70:fe:24:08:5a:6e: e4:fb:fd:94:f4:a9:43:5c:4f:f1:7c:cb:be:13:5c: 9a:03:03:b4:b4:ec:97:3e:24:d1:f9:de:35:d8:57: 79:f5:b6:06:90:77:30:f3:3d:99:5d:0b:1a:02:1f: 57:9d:de:38:44:f9:5d:f1:dc:f1:77:29:41:22:9a: 97:b9:9d:f8:67:a7:73:68:8c:93:d3:45:10:d9:4d: 5a:45:c1:d8:ca:f1:04:fd:4c:ec:5b:06:9a:88:db: ba:9c:7a:9c:e3:b7:bc:f5:70:59:22:3b:da:3c:7d: be:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:B3:44:4D:EB:7A:F8:33:E2:01:CD:2A:41:0B:6D:70:BC:47:C8:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0b3352c2-ebbd-4dcd-85d6-ab8d23f1d4e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.67.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4a:34:99:6e:d5:7e:37:5f:6b:a8:7d:59:b8:81:29:7d:2b:9f: a7:4c:93:41:e0:24:dc:2c:b4:98:92:74:a2:70:8f:9f:7d:fd: 02:e0:5f:ba:c5:fc:3a:7b:fc:dc:a5:1a:b6:52:90:6a:32:55: c3:1c:51:62:0d:42:ce:6c:08:5a:d4:70:df:73:66:0b:21:22: 1c:ad:67:96:15:53:80:5a:7f:0d:4a:1d:ec:5e:a0:43:d8:b4: 1a:c6:d6:12:42:97:16:4b:4e:9d:dc:c6:8a:ca:e9:0b:6c:75: f1:38:78:74:37:35:13:f5:0a:87:1c:4c:45:dd:62:0a:39:77: a2:ae:6a:02:4f:00:6d:4b:4c:cc:08:b3:9a:e6:cd:4b:7c:5c: b7:79:6f:0c:0c:db:98:61:c4:94:35:fb:9b:bb:6b:a3:5a:75: 9a:07:11:7e:83:f5:ba:35:6b:18:8c:98:3e:6c:ab:70:a3:c0: d7:31:c3:5c:22:b4:bf:b4:54:ae:39:a0:48:75:84:09:9d:fc: ca:72:df:86:29:64:b5:a5:ff:58:3c:7d:06:e6:eb:86:2e:0b: c3:60:67:f9:ad:9e:9d:aa:4e:ed:4d:09:30:aa:36:d6:0d:4d: 38:95:d6:d4:5f:cb:c4:ae:d1:ff:a1:ee:c2:af:6c:c7:e6:3d: 99:73:ae:90 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUUJMms700rmFciRXUXb+75NAAoc4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDEwMTU0WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWNjNzc3YmY1NDhkNDFhNGYxOGRjODA1YjZmZGNjNzlm NjZlNjg0ZTc4Zjc3NzVkYmI3YzY2ZTIyYzg2YTAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTD/FjZFfhqjnSnMwwUbnXuCHE3JHQK9fNpfBPUgmtVhiY ooLgW9AUMsMBMENx5G9gbVXgoPXdE1TV6llvc1UdqW7uGjkauGnNKd/Y8/gyZYkC MGhJsYze6CSmPYLGkON2wQWe+vhHg5fNjlAiTUPk3GxxUYdvlPw8s0SSEcNC57CI N1S6zoQRkQju2fsv/XD+JAhabuT7/ZT0qUNcT/F8y74TXJoDA7S07Jc+JNH53jXY V3n1tgaQdzDzPZldCxoCH1ed3jhE+V3x3PF3KUEimpe5nfhnp3NojJPTRRDZTVpF wdjK8QT9TOxbBpqI27qcepzjt7z1cFkiO9o8fb7hAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/LNETet6+DPiAc0qQQttcLxHyD8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBiMzM1MmMyLWViYmQtNGRjZC04NWQ2LWFiOGQyM2YxZDRlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QzANBgkqhkiG9w0BAQsFAAOCAQEASjSZbtV+N19rqH1ZuIEpfSufp0yT QeAk3Cy0mJJ0onCPn339AuBfusX8Onv83KUatlKQajJVwxxRYg1CzmwIWtRw33Nm CyEiHK1nlhVTgFp/DUod7F6gQ9i0GsbWEkKXFktOndzGisrpC2x18Th4dDc1E/UK hxxMRd1iCjl3oq5qAk8AbUtMzAizmubNS3xct3lvDAzbmGHElDX7m7tro1p1mgcR foP1ujVrGIyYPmyrcKPA1zHDXCK0v7RUrjmgSHWECZ38ynLfhilktaX/WDx9Bubr hi4Lw2Bn+a2enapO7U0JMKo21g1NOJXW1F/LxK7R/6Huwq9sx+Y9mXOukA== -----END CERTIFICATE-----Generated at Sun Mar 1 23:47:31 2026 by rpki-client