$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ca0e01a-25b3-4906-aea7-fabc4e6f6197.roa File: 0ca0e01a-25b3-4906-aea7-fabc4e6f6197.roa (raw, json) Hash identifier: IbafZvQXjOp8m4GpreNvURacN/muO7Ials3UwYsAbFQ= Subject key identifier: 5F:91:E8:4C:F6:E4:6C:07:E0:45:C0:4A:66:A0:A9:6B:8D:B0:E7:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 152E93DE9F7C81157C284826A4A6FED954C8E4A9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ca0e01a-25b3-4906-aea7-fabc4e6f6197.roa Signing time: Sat 21 Feb 2026 00:31:21 +0000 ROA not before: Sat 21 Feb 2026 00:31:21 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.35.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:2e:93:de:9f:7c:81:15:7c:28:48:26:a4:a6:fe:d9:54:c8:e4:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 00:31:21 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=4309c04da43c66f46d56d00ac3a4bf4e2d2564166a23568dff4cbfe39754dec5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:a5:a8:6e:2e:bb:9c:4e:a3:d3:c1:5e:7c:27: f4:74:cc:38:08:96:62:30:28:9b:42:61:23:5e:06: 9c:e4:3c:2b:a3:b4:7f:14:98:0a:36:2a:a5:2c:65: 5c:10:29:60:7f:d8:85:08:20:1d:8f:74:9a:83:53: a3:d4:33:e2:a9:0a:ba:5a:40:cd:d7:84:ee:a6:22: b1:19:6d:ff:32:63:a3:18:31:e6:d1:87:ca:ec:39: 14:0b:5f:05:f6:28:d5:da:1c:97:1a:de:68:14:a9: 48:87:97:bb:0b:d0:e7:4a:93:58:a4:4f:60:3d:8b: de:2a:b9:9d:0c:aa:ef:d8:00:af:52:df:e3:0e:63: bf:2d:41:5c:d1:c6:51:b4:00:57:33:2d:3a:e6:6f: 0d:aa:55:54:5b:e3:34:41:4b:89:71:c0:1c:c5:bc: 03:74:08:00:2c:15:33:2c:8a:4c:35:ba:44:c3:6a: fe:bf:ca:41:71:99:06:86:93:22:49:c7:24:4f:12: 3e:05:05:85:12:46:d9:ef:b6:3f:8f:76:3c:52:64: 14:10:d0:99:5f:af:11:c5:7f:2a:54:75:49:72:bf: ad:40:dc:9f:bd:1a:ba:4e:39:5d:69:2a:2a:81:66: 0f:a1:6c:b5:1f:a0:2c:45:3d:88:4f:68:fe:15:3e: fa:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:91:E8:4C:F6:E4:6C:07:E0:45:C0:4A:66:A0:A9:6B:8D:B0:E7:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0ca0e01a-25b3-4906-aea7-fabc4e6f6197.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.35.0/24 Signature Algorithm: sha256WithRSAEncryption 0d:f8:ed:fd:c2:f9:a1:e6:52:3f:16:f0:7f:c8:be:2c:38:59: 17:6f:71:14:d1:54:15:f9:a3:1e:bc:a3:74:71:e4:63:ee:6e: 77:37:b1:16:0b:22:52:53:5d:7d:46:16:0d:73:92:c0:b4:84: fc:5e:a2:f1:93:83:ff:32:2d:b4:37:d0:76:2d:62:9c:2d:f1: d5:5b:0e:34:24:2a:11:b3:83:df:c0:3b:a2:47:7b:eb:8d:87: 8b:34:1a:56:60:ee:e0:a5:8f:fa:a0:8e:6b:9b:85:2f:2f:44: e7:a0:f6:d5:23:be:2d:88:b5:a4:4c:9b:e9:02:af:7d:40:cf: ef:72:ee:bf:86:01:9a:a3:d7:2e:9a:e2:f2:35:eb:5a:88:53: 00:b4:b0:2e:a9:83:a3:5e:be:a2:28:8b:0f:91:f9:84:88:40: 38:aa:f6:2d:67:80:cf:92:b8:10:60:16:ef:a4:33:a0:bf:8a: 37:6e:e8:35:c4:19:cd:99:1a:2d:3a:9e:45:e7:8b:52:cd:cd: 5c:a7:45:7f:a1:c9:e6:27:d8:c2:3e:31:80:b6:29:32:1c:66: 58:5b:e4:2f:2c:f9:d3:db:89:91:42:39:aa:f3:49:05:77:10: d5:b2:2a:fd:b3:85:a6:56:9c:67:8c:a6:b9:e9:04:4f:55:ef: 67:92:27:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFS6T3p98gRV8KEgmpKb+2VTI5KkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDAzMTIxWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0MzA5YzA0ZGE0M2M2NmY0NmQ1NmQwMGFjM2E0YmY0ZTJk MjU2NDE2NmEyMzU2OGRmZjRjYmZlMzk3NTRkZWM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCApahuLrucTqPTwV58J/R0zDgIlmIwKJtCYSNeBpzkPCuj tH8UmAo2KqUsZVwQKWB/2IUIIB2PdJqDU6PUM+KpCrpaQM3XhO6mIrEZbf8yY6MY MebRh8rsORQLXwX2KNXaHJca3mgUqUiHl7sL0OdKk1ikT2A9i94quZ0Mqu/YAK9S 3+MOY78tQVzRxlG0AFczLTrmbw2qVVRb4zRBS4lxwBzFvAN0CAAsFTMsikw1ukTD av6/ykFxmQaGkyJJxyRPEj4FBYUSRtnvtj+PdjxSZBQQ0JlfrxHFfypUdUlyv61A 3J+9GrpOOV1pKiqBZg+hbLUfoCxFPYhPaP4VPvrFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUX5HoTPbkbAfgRcBKZqCpa42w59QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjYTBlMDFhLTI1YjMtNDkwNi1hZWE3LWZhYmM0ZTZmNjE5Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmCMwDQYJKoZIhvcNAQELBQADggEBAA347f3C+aHmUj8W8H/Iviw4WRdv cRTRVBX5ox68o3Rx5GPubnc3sRYLIlJTXX1GFg1zksC0hPxeovGTg/8yLbQ30HYt Ypwt8dVbDjQkKhGzg9/AO6JHe+uNh4s0GlZg7uClj/qgjmubhS8vROeg9tUjvi2I taRMm+kCr31Az+9y7r+GAZqj1y6a4vI161qIUwC0sC6pg6NevqIoiw+R+YSIQDiq 9i1ngM+SuBBgFu+kM6C/ijdu6DXEGc2ZGi06nkXni1LNzVynRX+hyeYn2MI+MYC2 KTIcZlhb5C8s+dPbiZFCOarzSQV3ENWyKv2zhaZWnGeMprnpBE9V72eSJ6g= -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:24 2026 by rpki-client