$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa File: 0cafe4c1-68f8-4701-986b-5ec06431a231.roa (raw, json) Hash identifier: Q4Rgveizgeab+g1zG1zEbadzlJ10zzm7SVzoFCLAwS0= Subject key identifier: 7F:C5:DD:41:F9:25:2B:0E:09:F6:07:EC:60:E4:10:6F:A5:39:02:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 365A8750EF474AE1171920A1E60F56055959A498 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa Signing time: Wed 25 Feb 2026 01:20:55 +0000 ROA not before: Wed 25 Feb 2026 01:20:55 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.25.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:5a:87:50:ef:47:4a:e1:17:19:20:a1:e6:0f:56:05:59:59:a4:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:20:55 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=19c8b97d45a8b98e0cb5a15b1b670336ebe8e9eac251d95647e2d18cb2628d87, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:02:86:b0:a3:59:4c:e4:a4:d7:72:8d:58:60: 98:11:03:de:59:e2:06:9d:9f:03:39:16:69:b1:79: 51:80:54:1b:f3:c3:97:b5:35:34:fb:a1:82:82:7f: 72:10:a1:3a:c6:44:ad:70:63:61:fc:6c:c2:fc:e8: 3e:b2:c1:b6:d5:5c:62:82:6d:42:a7:a0:81:e8:15: 0e:b6:e6:33:59:3e:30:54:db:8b:c9:8c:94:ae:b8: 18:c5:26:27:43:97:0f:b7:3c:04:c0:2f:b9:39:6a: a9:24:45:0b:cb:e8:24:ae:99:48:a4:c2:2e:00:dc: 84:4c:62:72:fa:b9:7c:57:e5:a2:f0:8a:23:5f:b1: 21:dd:9a:f2:bb:5f:e5:9a:05:ec:9a:56:98:76:90: ff:15:bc:8d:88:92:af:ec:cd:49:37:0f:d5:8e:7e: c2:d3:de:44:e4:17:01:23:75:5d:27:48:63:4c:37: c2:5f:08:00:c2:59:b1:ee:06:83:88:95:d4:bc:b6: bf:59:3d:2d:be:77:8c:c2:65:57:2e:55:2c:41:12: 0f:8d:40:72:90:70:98:f6:fb:8d:fa:3b:30:fa:e1: 83:f3:c5:83:a9:6a:92:a3:46:6a:e1:19:ff:b4:ab: 05:a1:ed:38:31:34:98:9f:4c:1b:6b:1f:82:13:7a: fe:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:C5:DD:41:F9:25:2B:0E:09:F6:07:EC:60:E4:10:6F:A5:39:02:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0cafe4c1-68f8-4701-986b-5ec06431a231.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.25.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:1e:47:3a:c9:8d:3f:53:46:51:d6:ae:5a:84:93:ab:bd:d2: 28:e0:30:be:61:4e:5a:96:88:70:0f:08:a2:62:d0:b8:e0:34: 08:c5:c9:e1:86:55:83:65:6b:44:92:d0:0f:59:59:71:d2:68: d6:88:95:bb:0c:2e:dc:11:04:cc:38:7d:5f:c0:85:88:71:20: ea:25:35:d6:68:4f:10:75:7e:e4:d2:f6:41:5d:ba:fb:ab:05: f9:d6:0b:98:22:f7:01:0f:10:b2:51:3d:a6:11:d1:b4:3e:6d: 65:52:ba:bd:ef:de:f9:c8:5f:fa:80:9d:e5:3c:92:80:01:99: c9:d2:d0:24:e5:d4:68:6f:a8:80:ff:ba:5d:b9:86:04:f6:1f: 70:26:b3:a7:eb:f1:8f:b8:1c:e9:c5:5f:bf:bc:bd:91:2c:5b: 93:22:13:a1:91:9c:e9:da:83:22:0f:ba:eb:83:31:da:ca:88: 8a:27:b1:6f:de:82:c8:e5:c3:83:16:3b:a1:fb:c4:2c:69:9f: c3:94:14:91:d4:9d:a1:a4:f5:a4:a0:cd:55:35:a8:16:e2:d6: 8b:ca:17:03:26:49:7d:14:cc:7b:c6:06:eb:95:7a:92:c1:d2: 85:14:3e:53:59:93:1b:61:32:b7:a7:e2:1f:2b:a5:13:9e:2f: ce:ea:ad:51 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNlqHUO9HSuEXGSCh5g9WBVlZpJgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMDU1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWM4Yjk3ZDQ1YThiOThlMGNiNWExNWIxYjY3MDMzNmVi ZThlOWVhYzI1MWQ5NTY0N2UyZDE4Y2IyNjI4ZDg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiAoawo1lM5KTXco1YYJgRA95Z4gadnwM5FmmxeVGAVBvz w5e1NTT7oYKCf3IQoTrGRK1wY2H8bML86D6ywbbVXGKCbUKnoIHoFQ625jNZPjBU 24vJjJSuuBjFJidDlw+3PATAL7k5aqkkRQvL6CSumUikwi4A3IRMYnL6uXxX5aLw iiNfsSHdmvK7X+WaBeyaVph2kP8VvI2Ikq/szUk3D9WOfsLT3kTkFwEjdV0nSGNM N8JfCADCWbHuBoOIldS8tr9ZPS2+d4zCZVcuVSxBEg+NQHKQcJj2+436OzD64YPz xYOpapKjRmrhGf+0qwWh7TgxNJifTBtrH4ITev5xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUf8XdQfklKw4J9gfsYOQQb6U5AvAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBjYWZlNGMxLTY4ZjgtNDcwMS05ODZiLTVlYzA2NDMxYTIzMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2GTANBgkqhkiG9w0BAQsFAAOCAQEAeR5HOsmNP1NGUdauWoSTq73SKOAw vmFOWpaIcA8IomLQuOA0CMXJ4YZVg2VrRJLQD1lZcdJo1oiVuwwu3BEEzDh9X8CF iHEg6iU11mhPEHV+5NL2QV26+6sF+dYLmCL3AQ8QslE9phHRtD5tZVK6ve/e+chf +oCd5TySgAGZydLQJOXUaG+ogP+6XbmGBPYfcCazp+vxj7gc6cVfv7y9kSxbkyIT oZGc6dqDIg+664Mx2sqIiiexb96CyOXDgxY7ofvELGmfw5QUkdSdoaT1pKDNVTWo FuLWi8oXAyZJfRTMe8YG65V6ksHShRQ+U1mTG2Eyt6fiHyulE54vzuqtUQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:19 2026 by rpki-client