$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa File: 11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa (raw, json) Hash identifier: gPrlnsBsfnY8mym6V/vmnajk3EYhc3otAEEacezxLFg= Subject key identifier: 0E:E3:2F:9B:87:2E:75:E0:EE:E1:99:D6:73:8A:E7:F5:4F:C5:CF:65 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 39D7163B389184777714CEEB77D5FF1E2F9085AC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa Signing time: Tue 24 Feb 2026 00:20:07 +0000 ROA not before: Tue 24 Feb 2026 00:20:07 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:d7:16:3b:38:91:84:77:77:14:ce:eb:77:d5:ff:1e:2f:90:85:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:20:07 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=aa3dcb4e8e254825b32df6c78e813d0712dec166775f51b62c434925b6832c99, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:e1:de:f9:3b:bd:b6:2f:03:c8:16:fb:12:41: 45:9b:b7:34:55:90:5c:65:0e:c8:d7:1c:7c:cf:63: c2:35:5f:42:1f:53:73:88:ee:5d:b5:c3:f3:7b:38: 44:18:72:b9:25:50:c1:7b:13:d9:d5:29:90:b6:74: 3e:e5:a5:88:63:21:e5:2e:05:ba:ae:c4:9c:6f:89: 51:d5:69:c4:f0:3b:23:47:ac:d6:36:6d:b8:64:9c: 5c:3a:ff:17:4b:23:e1:80:36:c2:44:b0:c2:06:20: 17:98:1f:6d:b4:48:dd:b3:3e:b7:51:50:15:e8:eb: 12:69:68:b4:46:c8:ac:49:e9:0f:48:f3:8b:ce:4c: 68:04:d5:c5:06:0c:17:f8:d2:60:67:36:69:aa:c0: 61:0f:bc:47:ed:f1:96:88:50:ec:33:ee:b6:20:45: 83:4c:56:b5:bd:b8:5d:68:c5:4c:8b:6d:f9:c6:2b: 17:24:b2:ef:ee:f7:c0:cf:ed:3c:02:33:76:df:6b: 9d:aa:51:8b:7c:d8:91:7d:b4:0d:72:ac:6f:08:5a: c4:cc:63:3f:fa:fe:8a:5f:e8:60:99:cb:40:f8:16: ae:85:f4:23:04:3f:71:62:bf:d5:bf:8f:18:8a:ee: b5:30:98:c4:b0:9d:7e:dc:d8:0c:0e:4e:5b:68:60: cf:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E3:2F:9B:87:2E:75:E0:EE:E1:99:D6:73:8A:E7:F5:4F:C5:CF:65 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/11b6d8d5-1cfc-48ae-8156-332dde92d52e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.160.0/19 Signature Algorithm: sha256WithRSAEncryption 96:43:a6:07:71:ba:b3:8c:88:46:b6:f4:c8:17:67:3d:68:b9: b9:c6:6a:99:10:19:70:29:37:6e:9a:cc:c4:24:89:20:3b:b4: 84:cf:87:87:1c:b9:c3:83:b7:67:58:13:52:b9:d1:35:4a:aa: 30:ec:89:cd:32:05:ad:99:83:b4:b8:00:2d:15:63:52:2d:17: c7:bc:e9:71:46:17:cf:d0:27:ce:c4:c9:be:a3:89:47:16:e4: 9e:c4:51:33:31:17:8c:a7:46:43:25:0a:a3:a7:1b:3a:e0:27: e8:48:5f:17:6f:80:74:d5:c6:0f:9e:3f:b6:fe:89:c6:15:5e: 07:c2:da:dd:b5:f4:68:fd:80:69:d6:47:15:df:39:91:77:30: 10:84:43:5a:4e:21:fb:2c:17:03:59:d6:18:ee:d3:b1:0c:95: 64:3b:d0:f7:32:bc:f9:14:e8:2e:2e:0b:12:c8:58:9f:0e:38: cb:88:ca:ba:b7:9e:90:d4:b3:92:77:d0:c9:a1:8c:b0:97:2b: 41:a9:09:d0:be:0b:ab:2d:52:0d:0b:c9:2e:91:ec:f9:bf:19: f2:3f:70:d8:3d:d6:8f:20:33:b3:e9:4b:ad:53:34:d6:7a:02: a2:d7:24:8b:e6:43:8f:41:3f:37:5c:de:b0:5c:01:f5:05:90: be:d8:b6:0a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOdcWOziRhHd3FM7rd9X/Hi+QhawwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAyMDA3WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYTNkY2I0ZThlMjU0ODI1YjMyZGY2Yzc4ZTgxM2QwNzEy ZGVjMTY2Nzc1ZjUxYjYyYzQzNDkyNWI2ODMyYzk5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCa4d75O722LwPIFvsSQUWbtzRVkFxlDsjXHHzPY8I1X0If U3OI7l21w/N7OEQYcrklUMF7E9nVKZC2dD7lpYhjIeUuBbquxJxviVHVacTwOyNH rNY2bbhknFw6/xdLI+GANsJEsMIGIBeYH220SN2zPrdRUBXo6xJpaLRGyKxJ6Q9I 84vOTGgE1cUGDBf40mBnNmmqwGEPvEft8ZaIUOwz7rYgRYNMVrW9uF1oxUyLbfnG Kxcksu/u98DP7TwCM3bfa52qUYt82JF9tA1yrG8IWsTMYz/6/opf6GCZy0D4Fq6F 9CMEP3Fiv9W/jxiK7rUwmMSwnX7c2AwOTltoYM8LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDuMvm4cudeDu4ZnWc4rn9U/Fz2UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzExYjZkOGQ1LTFjZmMtNDhhZS04MTU2LTMzMmRkZTkyZDUyZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUQOKAwDQYJKoZIhvcNAQELBQADggEBAJZDpgdxurOMiEa29MgXZz1oubnG apkQGXApN26azMQkiSA7tITPh4ccucODt2dYE1K50TVKqjDsic0yBa2Zg7S4AC0V Y1ItF8e86XFGF8/QJ87Eyb6jiUcW5J7EUTMxF4ynRkMlCqOnGzrgJ+hIXxdvgHTV xg+eP7b+icYVXgfC2t219Gj9gGnWRxXfOZF3MBCEQ1pOIfssFwNZ1hju07EMlWQ7 0PcyvPkU6C4uCxLIWJ8OOMuIyrq3npDUs5J30MmhjLCXK0GpCdC+C6stUg0LyS6R 7Pm/GfI/cNg91o8gM7PpS61TNNZ6AqLXJIvmQ49BPzdc3rBcAfUFkL7Ytgo= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:58 2026 by rpki-client