$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/141a3dcb-7200-4b5d-b511-d7615134a807.roa File: 141a3dcb-7200-4b5d-b511-d7615134a807.roa (raw, json) Hash identifier: ZXlqvAlvECRJAkLiieRnVebKm08EzBqVLV1qn4nOj/E= Subject key identifier: FB:8D:57:4F:78:B0:3F:6E:34:74:43:C3:4B:6F:99:9E:40:12:75:F0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 45FFEF231F90940A4C343FBE73BB01F0D4FEC1B4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/141a3dcb-7200-4b5d-b511-d7615134a807.roa Signing time: Sat 21 Feb 2026 01:20:10 +0000 ROA not before: Sat 21 Feb 2026 01:20:10 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.5.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:ff:ef:23:1f:90:94:0a:4c:34:3f:be:73:bb:01:f0:d4:fe:c1:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:20:10 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=59b00f31f3332325fc5b3bc26bd2cbd6380db643b4a8e59a0ecbc8fbed33c3a5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:bd:50:e3:b8:d7:06:ac:cc:d7:49:c8:dd:a9: e1:05:70:53:cc:2c:9a:27:79:93:57:57:4a:7d:87: 8a:13:22:0e:ab:c6:3d:5d:18:54:34:8d:05:d7:ae: 78:25:69:5a:39:ae:3e:e1:b7:f6:ef:82:c1:2a:b9: c1:07:9b:d3:05:c8:cf:4e:3a:cb:53:45:3f:09:23: 46:aa:fa:28:eb:1d:c7:dc:1d:9d:53:f4:24:75:60: 72:49:f3:2a:09:ce:36:16:a3:20:57:b9:79:c5:c3: c3:68:c7:f3:e1:c0:b7:fb:1b:5b:e3:10:54:c8:53: 15:8d:91:d3:8b:b0:c6:78:5d:10:74:9c:7e:d5:fd: 59:22:38:e7:28:61:66:79:35:e3:e2:50:13:13:04: 19:e0:f2:bc:ba:b9:75:b2:a4:c7:ff:3a:24:9c:b7: b8:5d:ac:a5:48:6f:0c:54:4d:8e:f6:5d:0f:79:7a: e8:fc:eb:94:db:b5:38:3e:97:db:9e:4a:49:d4:f6: 0a:62:5d:a0:80:25:db:72:23:12:d0:e3:8e:f9:38: 21:c6:2e:eb:04:3c:1f:52:82:28:0f:4e:27:9e:cb: 19:d1:44:65:19:3d:c7:cc:bb:2e:96:98:b1:65:4a: 0a:f4:5e:64:a7:ee:f4:8e:77:af:fa:cc:fe:88:e0: 6f:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:8D:57:4F:78:B0:3F:6E:34:74:43:C3:4B:6F:99:9E:40:12:75:F0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/141a3dcb-7200-4b5d-b511-d7615134a807.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.5.0/24 Signature Algorithm: sha256WithRSAEncryption c7:50:3e:0c:f2:2c:8b:44:e4:35:7a:55:31:1a:c5:b8:11:48: 84:13:67:0c:52:47:cc:07:6e:85:62:1a:94:23:ac:49:ec:9e: 2f:a3:62:9b:8b:c6:e2:2c:d2:4e:b9:34:43:e1:8d:21:0c:53: 89:67:84:a9:ec:d8:f6:82:f9:49:f2:8e:87:8a:1d:0b:dc:1e: d3:ff:12:ab:9d:dc:57:b4:6f:73:df:d4:e1:62:15:ec:5e:be: 29:14:a6:cd:78:d1:b1:af:eb:fb:38:e8:f0:d7:e9:2b:e1:1b: 0d:61:39:10:93:f5:d1:a1:c7:f9:b6:16:b3:0c:8f:6e:1c:c2: a6:f8:bc:68:bd:39:1b:71:bc:2b:4f:8d:fd:eb:26:22:b0:fb: e0:46:55:6b:f0:d2:86:cf:c3:e1:bd:7b:fc:c2:5d:dc:7a:43: 9f:1c:97:05:cc:cb:01:5f:8c:99:3b:43:f9:8b:b0:24:55:6c: 1f:f6:5b:69:68:e1:6a:fb:47:6b:4f:6a:01:0a:aa:0e:d4:33: d2:27:2d:52:75:32:39:63:7f:b3:b4:7c:07:62:b4:22:35:f4: f9:30:36:d3:70:58:7a:d1:66:cc:7f:d2:b6:8b:84:3e:69:63: f2:24:5c:80:ca:06:19:fa:9d:64:97:48:35:22:69:cc:70:2c: 92:56:1e:bd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURf/vIx+QlApMND++c7sB8NT+wbQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEyMDEwWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OWIwMGYzMWYzMzMyMzI1ZmM1YjNiYzI2YmQyY2JkNjM4 MGRiNjQzYjRhOGU1OWEwZWNiYzhmYmVkMzNjM2E1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRvVDjuNcGrMzXScjdqeEFcFPMLJoneZNXV0p9h4oTIg6r xj1dGFQ0jQXXrnglaVo5rj7ht/bvgsEqucEHm9MFyM9OOstTRT8JI0aq+ijrHcfc HZ1T9CR1YHJJ8yoJzjYWoyBXuXnFw8Nox/PhwLf7G1vjEFTIUxWNkdOLsMZ4XRB0 nH7V/VkiOOcoYWZ5NePiUBMTBBng8ry6uXWypMf/OiSct7hdrKVIbwxUTY72XQ95 euj865TbtTg+l9ueSknU9gpiXaCAJdtyIxLQ4475OCHGLusEPB9SgigPTieeyxnR RGUZPcfMuy6WmLFlSgr0XmSn7vSOd6/6zP6I4G+zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU+41XT3iwP240dEPDS2+ZnkASdfAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE0MWEzZGNiLTcyMDAtNGI1ZC1iNTExLWQ3NjE1MTM0YTgwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmAUwDQYJKoZIhvcNAQELBQADggEBAMdQPgzyLItE5DV6VTEaxbgRSIQT ZwxSR8wHboViGpQjrEnsni+jYpuLxuIs0k65NEPhjSEMU4lnhKns2PaC+UnyjoeK HQvcHtP/Equd3Fe0b3Pf1OFiFexevikUps140bGv6/s46PDX6SvhGw1hORCT9dGh x/m2FrMMj24cwqb4vGi9ORtxvCtPjf3rJiKw++BGVWvw0obPw+G9e/zCXdx6Q58c lwXMywFfjJk7Q/mLsCRVbB/2W2lo4Wr7R2tPagEKqg7UM9InLVJ1Mjljf7O0fAdi tCI19PkwNtNwWHrRZsx/0raLhD5pY/IkXIDKBhn6nWSXSDUiacxwLJJWHr0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:16:38 2026 by rpki-client