$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13aae7f4-cc38-450a-8fe2-e98223497aef.roa File: 13aae7f4-cc38-450a-8fe2-e98223497aef.roa (raw, json) Hash identifier: DfB3L+Xm3fdWG+WlYJNHPMiVAP4zWYKOi6LkJYgrB/s= Subject key identifier: 7E:8C:BD:B4:CE:71:E7:AC:A1:35:78:32:30:75:9E:9D:1C:48:D2:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EC4E7717D5A5EA85B08C16AE4387C077DA622BF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13aae7f4-cc38-450a-8fe2-e98223497aef.roa Signing time: Sun 01 Mar 2026 00:00:10 +0000 ROA not before: Sun 01 Mar 2026 00:00:10 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.6.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:c4:e7:71:7d:5a:5e:a8:5b:08:c1:6a:e4:38:7c:07:7d:a6:22:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:00:10 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=315bd6642c5e05a589cc692fd6ce28df3550125aadc7fa4184675b45e718076d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:03:cc:f1:bb:b6:69:9a:bf:8f:b4:04:21:f5: c5:b6:66:e0:c0:28:98:2c:89:bb:18:c5:7f:8c:47: c0:a3:3c:02:04:04:7a:e5:37:d6:6b:12:6d:4d:0e: df:a9:24:78:a0:00:bf:73:39:37:3d:f6:27:8c:3a: a9:ad:f4:b1:91:31:cf:43:db:44:10:d0:d4:09:56: 37:41:57:b9:82:2d:72:79:b1:f8:93:a5:33:9a:9f: df:d5:f9:48:69:8c:29:02:e4:6c:75:c1:68:b9:64: 14:5e:ca:24:a9:5c:ff:08:08:4d:20:25:c9:f0:75: 36:84:68:96:b2:be:21:bf:00:1f:22:1a:c7:5a:2b: 07:a4:4f:da:6a:f3:25:87:7a:20:ed:ab:0f:06:f0: ec:84:df:a5:f4:19:f9:ec:90:2f:08:92:85:51:e3: 12:fe:4f:93:5c:95:6e:fe:ad:0a:6b:75:c2:46:9f: 64:8a:fc:e5:9c:92:46:1e:35:08:8a:52:cc:78:9d: 0f:e8:ec:17:7c:ae:1c:58:74:6f:f9:c2:26:3a:77: 1d:e5:c9:04:70:1f:93:da:82:44:88:4b:4c:c2:e5: 81:86:06:bb:4a:cf:81:4b:f0:df:5d:84:aa:ac:53: 50:24:08:09:c3:80:22:6e:3d:19:8e:c2:7d:15:50: 42:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:8C:BD:B4:CE:71:E7:AC:A1:35:78:32:30:75:9E:9D:1C:48:D2:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/13aae7f4-cc38-450a-8fe2-e98223497aef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.6.0.0/16 Signature Algorithm: sha256WithRSAEncryption a4:3a:90:68:31:e9:3b:9d:fe:2c:71:1f:00:8d:13:9d:9d:97: b4:e9:8a:c9:30:3a:b8:40:75:c3:f4:6a:6d:ee:9b:f8:f0:bb: 16:02:83:c6:9a:08:38:d4:ee:37:4e:e3:c4:6c:e9:d0:24:ab: 98:81:f0:25:03:46:fe:99:6d:02:7c:c4:72:69:8e:5e:e2:d1: b1:37:7f:65:ed:72:81:5a:f6:c0:37:b7:36:83:ca:9c:b4:1d: ef:e4:90:41:ca:a1:56:61:22:2b:af:87:88:06:23:bc:3d:ee: fd:1e:67:40:c7:9c:84:a0:c7:60:e9:0c:b9:34:44:62:97:7f: 17:61:5f:23:9d:b6:7d:a8:a2:ec:c3:43:99:07:0a:48:3d:2e: ca:44:f8:3e:ae:8b:85:1f:fb:2d:9e:b6:13:58:62:42:58:3c: 8b:81:09:33:6e:23:f1:e7:84:46:1f:27:f1:8f:ea:61:4c:80: 7f:74:df:48:8d:0d:6d:6a:62:96:1e:66:49:12:9d:1e:0e:a9: 92:0b:36:da:59:35:60:c6:18:5c:de:e9:08:a9:33:21:9f:f1: e4:e5:89:00:c8:62:f9:a7:3c:51:2c:b9:47:0e:c0:b5:3e:a8: f5:e6:0d:42:c9:e8:08:e1:99:95:37:88:c6:b3:bb:46:87:bb: fd:7a:fb:14 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPsTncX1aXqhbCMFq5Dh8B32mIr8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAwMDEwWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzMTViZDY2NDJjNWUwNWE1ODljYzY5MmZkNmNlMjhkZjM1 NTAxMjVhYWRjN2ZhNDE4NDY3NWI0NWU3MTgwNzZkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3A8zxu7Zpmr+PtAQh9cW2ZuDAKJgsibsYxX+MR8CjPAIE BHrlN9ZrEm1NDt+pJHigAL9zOTc99ieMOqmt9LGRMc9D20QQ0NQJVjdBV7mCLXJ5 sfiTpTOan9/V+UhpjCkC5Gx1wWi5ZBReyiSpXP8ICE0gJcnwdTaEaJayviG/AB8i GsdaKwekT9pq8yWHeiDtqw8G8OyE36X0GfnskC8IkoVR4xL+T5NclW7+rQprdcJG n2SK/OWckkYeNQiKUsx4nQ/o7Bd8rhxYdG/5wiY6dx3lyQRwH5PagkSIS0zC5YGG BrtKz4FL8N9dhKqsU1AkCAnDgCJuPRmOwn0VUEJ1AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUfoy9tM5x56yhNXgyMHWenRxI0pgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEzYWFlN2Y0LWNjMzgtNDUwYS04ZmUyLWU5ODIyMzQ5N2FlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2BjANBgkqhkiG9w0BAQsFAAOCAQEApDqQaDHpO53+LHEfAI0TnZ2XtOmK yTA6uEB1w/Rqbe6b+PC7FgKDxpoIONTuN07jxGzp0CSrmIHwJQNG/pltAnzEcmmO XuLRsTd/Ze1ygVr2wDe3NoPKnLQd7+SQQcqhVmEiK6+HiAYjvD3u/R5nQMechKDH YOkMuTREYpd/F2FfI522faii7MNDmQcKSD0uykT4Pq6LhR/7LZ62E1hiQlg8i4EJ M24j8eeERh8n8Y/qYUyAf3TfSI0NbWpilh5mSRKdHg6pkgs22lk1YMYYXN7pCKkz IZ/x5OWJAMhi+ac8USy5Rw7AtT6o9eYNQsnoCOGZlTeIxrO7Roe7/Xr7FA== -----END CERTIFICATE-----Generated at Mon Mar 2 03:06:25 2026 by rpki-client