$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10f66a13-5879-48bb-b275-10276fd2b586.roa File: 10f66a13-5879-48bb-b275-10276fd2b586.roa (raw, json) Hash identifier: 8GAmvRnpef7CBv/oKkZdmbnEnq3wPCDyXwJ+qu4CW4U= Subject key identifier: AD:50:6D:B3:C4:45:2D:A8:7B:78:38:B9:61:FC:12:AB:FB:68:18:6A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3FD70A0782B621FEFB7778FCBE5E3EEE78D14ECA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10f66a13-5879-48bb-b275-10276fd2b586.roa Signing time: Sun 08 Feb 2026 00:10:29 +0000 ROA not before: Sun 08 Feb 2026 00:10:29 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.161.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:d7:0a:07:82:b6:21:fe:fb:77:78:fc:be:5e:3e:ee:78:d1:4e:ca Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:29 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=ce3edabe475543f9f3e3d9aa26a009f0c29f4932d0588072f27c9a89b0f4647c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:41:c0:8a:43:91:f7:4e:5e:74:9b:a2:6b:21: d5:06:9d:3f:41:80:70:fe:57:5d:1c:70:9b:f4:80: 10:44:33:4f:ca:d3:cb:4f:9f:f5:0b:19:24:0a:c3: 6e:b3:a8:9c:06:c0:30:c2:16:6f:e2:4b:a3:bb:9a: c0:59:65:19:de:3e:ac:7c:31:cd:ec:53:de:c2:0f: 9e:aa:c9:30:f2:bc:36:e8:4d:d1:2a:02:af:90:a1: 5d:4b:c9:7b:f5:a2:26:ab:a6:d9:7b:6c:53:54:88: d0:a3:c9:0b:b4:95:79:b2:be:51:7e:c9:2a:8b:8a: 08:af:23:8b:cb:38:d8:1a:b0:8a:be:06:3c:2d:4d: 9c:bd:19:f1:c7:05:31:d7:34:74:9a:59:9f:7a:6b: 2c:bc:7e:3c:4f:23:17:ce:c5:d4:e2:01:ec:42:7b: 77:64:28:1d:0d:fe:53:31:0d:62:0a:cb:a9:0c:c7: dd:9e:85:db:6c:db:48:a5:0e:94:c8:4a:94:03:75: 4c:7c:9c:25:54:9b:d4:43:18:58:c8:9d:1b:1c:04: a1:9b:84:43:20:37:42:15:df:bc:5b:93:0d:ad:2f: c7:96:93:44:ae:82:72:ad:4c:16:0e:84:a1:17:54: a0:34:a9:b4:ce:14:d1:ad:59:f9:c1:94:1b:51:18: 4e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:50:6D:B3:C4:45:2D:A8:7B:78:38:B9:61:FC:12:AB:FB:68:18:6A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10f66a13-5879-48bb-b275-10276fd2b586.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.161.0/24 Signature Algorithm: sha256WithRSAEncryption 4c:f5:3c:5b:5a:d3:43:30:58:de:ef:c6:dc:6e:9e:e9:12:79: 3f:10:57:b4:b5:9f:87:9c:20:f5:6c:03:d5:3b:33:d4:14:7e: 32:30:09:a4:2f:40:2a:b5:de:0e:cb:d8:43:be:f8:bd:b3:88: ce:86:4a:4c:f3:04:f1:48:ec:e1:eb:5c:a9:e8:e7:3e:01:3e: a7:d5:7c:95:1e:b3:c4:bd:d9:3e:66:55:10:e7:40:e7:ac:84: 17:62:f1:cf:c9:aa:42:59:2c:e6:8e:c2:42:5b:96:a4:86:39: c8:62:8f:dd:14:98:59:7f:28:73:8c:d8:13:62:cb:a1:65:c4: a9:75:f3:c5:ab:f5:bb:bb:d5:5a:b4:23:2e:97:94:f5:9a:18: e1:c6:db:3d:00:c8:2c:98:4e:79:c8:c4:f7:51:90:9d:12:54: 32:d2:5f:48:b9:85:c2:39:1f:04:52:bf:79:d4:ad:68:a9:b3: eb:5d:22:9e:4a:dc:9c:fd:81:c4:8c:17:9a:57:66:b5:fe:bc: 18:81:84:c8:be:46:d4:57:49:38:b5:3f:74:7d:da:e0:a8:94: 11:91:7f:72:71:a3:b2:5f:54:7c:61:00:1e:5c:34:1e:17:72: 21:6f:df:bb:ff:e6:b5:1f:47:d5:8b:84:77:c0:77:3e:f9:67: 4e:99:fb:d7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUP9cKB4K2If77d3j8vl4+7njRTsowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDI5WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZTNlZGFiZTQ3NTU0M2Y5ZjNlM2Q5YWEyNmEwMDlmMGMy OWY0OTMyZDA1ODgwNzJmMjdjOWE4OWIwZjQ2NDdjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcQcCKQ5H3Tl50m6JrIdUGnT9BgHD+V10ccJv0gBBEM0/K 08tPn/ULGSQKw26zqJwGwDDCFm/iS6O7msBZZRnePqx8Mc3sU97CD56qyTDyvDbo TdEqAq+QoV1LyXv1oiarptl7bFNUiNCjyQu0lXmyvlF+ySqLigivI4vLONgasIq+ BjwtTZy9GfHHBTHXNHSaWZ96ayy8fjxPIxfOxdTiAexCe3dkKB0N/lMxDWIKy6kM x92ehdts20ilDpTISpQDdUx8nCVUm9RDGFjInRscBKGbhEMgN0IV37xbkw2tL8eW k0SugnKtTBYOhKEXVKA0qbTOFNGtWfnBlBtRGE59AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUrVBts8RFLah7eDi5YfwSq/toGGowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZjY2YTEzLTU4NzktNDhiYi1iMjc1LTEwMjc2ZmQyYjU4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTaEwDQYJKoZIhvcNAQELBQADggEBAEz1PFta00MwWN7vxtxunukSeT8Q V7S1n4ecIPVsA9U7M9QUfjIwCaQvQCq13g7L2EO++L2ziM6GSkzzBPFI7OHrXKno 5z4BPqfVfJUes8S92T5mVRDnQOeshBdi8c/JqkJZLOaOwkJblqSGOchij90UmFl/ KHOM2BNiy6FlxKl188Wr9bu71Vq0Iy6XlPWaGOHG2z0AyCyYTnnIxPdRkJ0SVDLS X0i5hcI5HwRSv3nUrWips+tdIp5K3Jz9gcSMF5pXZrX+vBiBhMi+RtRXSTi1P3R9 2uColBGRf3Jxo7JfVHxhAB5cNB4XciFv37v/5rUfR9WLhHfAdz75Z06Z+9c= -----END CERTIFICATE-----Generated at Mon Mar 2 00:17:54 2026 by rpki-client