$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1849f94f-427d-42b2-9481-ebb397a6c8ba.roa File: 1849f94f-427d-42b2-9481-ebb397a6c8ba.roa (raw, json) Hash identifier: Grw4fR6fvoG72Xr8KWVM/FpOwdMX3QHuKv9X+H5pLmQ= Subject key identifier: 39:DD:28:73:83:B7:5C:DE:C5:02:81:12:42:91:31:A6:A6:3D:A0:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5025FEC958826080FAE3A2B3382A712CC1A474B2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1849f94f-427d-42b2-9481-ebb397a6c8ba.roa Signing time: Tue 24 Feb 2026 00:50:44 +0000 ROA not before: Tue 24 Feb 2026 00:50:44 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 161.178.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:25:fe:c9:58:82:60:80:fa:e3:a2:b3:38:2a:71:2c:c1:a4:74:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:50:44 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=7fd0705f542f433a5bb9da70a3f4aaaad79e072fc95209b6a360911397fcdcec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:a5:c7:92:07:a8:e0:89:fe:13:d8:c1:72:83: 75:d2:d7:84:3b:69:c5:18:45:f8:8d:e7:2f:64:48: cd:31:55:1c:c3:af:8d:f8:a4:ed:5e:8e:37:d3:65: b8:a4:9d:ff:02:83:26:4a:8d:b7:1e:f6:73:bd:37: c4:d6:1d:77:fc:5f:ff:75:c0:13:d8:71:9f:5c:91: 4c:45:8b:b6:3c:bc:aa:05:67:88:19:64:7c:a9:a5: c3:6b:ad:c7:31:25:83:a5:7f:c0:3d:ba:60:29:61: b4:51:78:63:93:df:d1:b8:d2:cf:71:20:13:5f:4b: 30:44:09:28:6a:a0:c1:1b:46:f0:43:27:f9:75:80: 43:02:d9:a3:f6:97:7b:7c:d1:2f:67:2c:86:6c:31: 2e:56:6d:7f:af:bf:d5:31:7c:c5:51:b8:a8:5b:fd: 57:a6:d1:be:3a:93:80:f0:86:cf:cd:4b:cc:34:d0: 35:11:b3:05:f4:42:95:08:fe:57:46:23:f9:ca:5b: 2b:5f:ae:29:4e:63:f9:0d:22:1b:64:20:59:e0:bf: 6d:67:be:d2:12:9b:cc:0b:f0:eb:4a:f4:98:11:35: f3:cf:b2:bb:e6:c0:83:e5:01:74:46:3c:50:44:ed: a0:28:d5:33:16:ef:d4:3c:04:54:25:83:72:f4:da: 2e:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:DD:28:73:83:B7:5C:DE:C5:02:81:12:42:91:31:A6:A6:3D:A0:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1849f94f-427d-42b2-9481-ebb397a6c8ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.160.0/19 Signature Algorithm: sha256WithRSAEncryption d0:18:b2:6d:02:68:a1:47:a4:8c:31:3b:14:7d:f9:45:7e:2c: 8f:07:40:9e:f0:51:79:3f:a9:66:4e:19:62:79:2a:69:92:d0: 06:72:a2:d8:75:55:11:b1:29:9e:7a:13:e5:7b:dc:98:56:b0: d5:eb:c0:ef:c2:0b:2d:b2:da:ed:70:0c:08:a9:1a:8f:ad:68: 31:a7:1f:cc:b1:dd:1e:65:2d:42:f1:48:68:a2:00:ea:3c:35: da:fa:4e:73:a9:7d:ec:f7:6f:50:d0:91:f8:04:30:7d:09:b8: bc:1f:75:da:9d:9c:96:71:58:5a:1f:e4:e4:a4:e2:de:78:9b: 8b:c4:ff:d4:78:c7:58:d1:43:fc:3d:ff:61:5b:2a:99:b9:fb: f4:40:12:5a:eb:dd:f5:11:40:d7:f8:2b:d1:f5:a2:4b:5e:8a: 14:05:33:8b:86:1b:f7:70:db:61:21:b2:d9:d4:9f:2f:0d:21: 94:10:a9:8a:6e:fc:2e:6b:4c:4a:53:18:06:43:02:4d:51:35: f2:a9:99:3e:75:8f:bb:4d:fe:5c:c2:e9:1a:0e:85:78:2c:fb: 40:60:fa:4b:6c:6b:70:db:81:dc:4f:f3:35:85:ba:cc:31:f1: c0:7a:3f:68:17:93:c7:b6:49:70:8f:b7:b8:ff:b1:26:22:0d: 36:09:39:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUCX+yViCYID646KzOCpxLMGkdLIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA1MDQ0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZmQwNzA1ZjU0MmY0MzNhNWJiOWRhNzBhM2Y0YWFhYWQ3 OWUwNzJmYzk1MjA5YjZhMzYwOTExMzk3ZmNkY2VjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSpceSB6jgif4T2MFyg3XS14Q7acUYRfiN5y9kSM0xVRzD r434pO1ejjfTZbiknf8CgyZKjbce9nO9N8TWHXf8X/91wBPYcZ9ckUxFi7Y8vKoF Z4gZZHyppcNrrccxJYOlf8A9umApYbRReGOT39G40s9xIBNfSzBECShqoMEbRvBD J/l1gEMC2aP2l3t80S9nLIZsMS5WbX+vv9UxfMVRuKhb/Vem0b46k4Dwhs/NS8w0 0DURswX0QpUI/ldGI/nKWytfrilOY/kNIhtkIFngv21nvtISm8wL8OtK9JgRNfPP srvmwIPlAXRGPFBE7aAo1TMW79Q8BFQlg3L02i47AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOd0oc4O3XN7FAoESQpExpqY9oEcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4NDlmOTRmLTQyN2QtNDJiMi05NDgxLWViYjM5N2E2YzhiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWhsqAwDQYJKoZIhvcNAQELBQADggEBANAYsm0CaKFHpIwxOxR9+UV+LI8H QJ7wUXk/qWZOGWJ5KmmS0AZyoth1VRGxKZ56E+V73JhWsNXrwO/CCy2y2u1wDAip Go+taDGnH8yx3R5lLULxSGiiAOo8Ndr6TnOpfez3b1DQkfgEMH0JuLwfddqdnJZx WFof5OSk4t54m4vE/9R4x1jRQ/w9/2FbKpm5+/RAElrr3fURQNf4K9H1okteihQF M4uGG/dw22EhstnUny8NIZQQqYpu/C5rTEpTGAZDAk1RNfKpmT51j7tN/lzC6RoO hXgs+0Bg+ktsa3DbgdxP8zWFuswx8cB6P2gXk8e2SXCPt7j/sSYiDTYJOfg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:33 2026 by rpki-client