$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/189cda02-e63e-41ac-b055-3f668b5522d4.roa File: 189cda02-e63e-41ac-b055-3f668b5522d4.roa (raw, json) Hash identifier: sufw90nylaHOeaoTK2yQWrkgJ2aGRiWt3YDLa5DqbmU= Subject key identifier: B6:4F:27:E1:64:AB:B5:01:3C:D8:78:74:C1:2F:4B:CA:C5:86:65:B9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7DE7365762E9122684F15EA71B97F4A5D5B112A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/189cda02-e63e-41ac-b055-3f668b5522d4.roa Signing time: Tue 10 Feb 2026 00:20:44 +0000 ROA not before: Tue 10 Feb 2026 00:20:44 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.8.120.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:e7:36:57:62:e9:12:26:84:f1:5e:a7:1b:97:f4:a5:d5:b1:12:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:20:44 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=810f1b70c1e57b13cd3e750b3e64feec9f9296323b953ee9b9d11c86cade09d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:07:c7:b5:89:6e:dd:7f:fe:fc:4b:39:3a:43: 8d:4d:04:02:cc:1b:6f:72:73:73:df:03:57:a0:d5: aa:da:32:4b:a6:e3:df:a5:27:33:7b:1f:20:e7:27: 04:e5:e2:b3:32:88:20:59:db:63:87:30:27:a0:8a: 5c:be:a2:4a:0a:9e:a1:1c:70:37:3c:d3:42:98:2b: f1:b2:cd:2e:b6:ef:1b:fe:ec:0d:08:14:2f:5c:00: 64:d3:90:dc:db:13:ca:2e:85:a9:d2:74:ba:f2:41: 9a:63:52:42:91:75:48:9b:6f:a3:61:85:8a:44:82: 7f:6d:6b:dc:36:da:af:15:18:47:01:de:94:42:47: 00:60:ec:78:7d:f0:74:26:ea:53:7c:8f:b6:19:76: 3b:80:a8:4a:0d:51:66:0c:a0:12:8d:db:31:fc:19: ed:9d:9a:1c:f0:9c:3a:38:ab:7c:09:12:49:87:f1: 0b:cc:24:1f:da:2a:75:a7:a1:2d:a1:2d:5c:00:08: 65:ca:f9:c8:66:8e:27:31:fb:b8:aa:cf:1a:a7:d0: 67:ef:da:19:0f:4c:71:cc:18:6d:53:61:15:af:33: 53:4c:3f:29:c2:2d:84:c6:13:67:ea:f0:70:29:ac: 00:25:ed:41:4d:9c:87:23:d5:eb:0d:82:3c:e3:5d: 0c:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B6:4F:27:E1:64:AB:B5:01:3C:D8:78:74:C1:2F:4B:CA:C5:86:65:B9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/189cda02-e63e-41ac-b055-3f668b5522d4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.8.120.0/21 Signature Algorithm: sha256WithRSAEncryption a7:cb:14:00:f4:56:a6:0c:d8:75:51:39:05:45:1a:e9:b8:82: 17:8a:52:b6:23:2e:a3:49:40:cf:5a:8b:ac:52:fb:9d:76:31: fe:dc:a6:16:5e:4c:4b:5b:5b:3b:1c:fb:0f:f4:0a:0d:55:63: d4:93:ba:c2:d5:84:05:b1:d2:b2:19:c5:5a:d5:61:76:22:e4: cb:96:92:6a:ce:dc:d1:eb:a4:0b:de:50:6d:4d:89:52:c2:70: a1:2f:8b:f0:02:4a:3e:ca:2b:f3:8f:aa:47:d7:4f:b0:08:f7: 0a:d8:0c:28:20:a8:13:b0:9f:3d:e7:15:53:23:14:31:2f:29: 9e:60:95:1e:c7:88:db:5b:8d:c6:0f:64:95:36:40:aa:cd:1f: 0f:56:8d:a6:cc:1d:96:08:52:51:11:5c:5e:77:69:a8:f7:9e: b6:3e:b7:34:3a:af:14:3a:70:e9:42:ef:59:cf:ca:89:16:cd: d5:50:8c:7f:eb:54:96:f2:24:f2:19:fe:a6:fd:68:e1:6d:b6: 7f:2a:82:41:a7:9c:da:a9:3b:72:fd:2f:d9:a6:40:1b:5e:39: cb:69:8a:7e:19:49:50:9c:7d:d3:fd:d2:75:db:75:13:10:ec: e8:cf:ae:3c:88:42:ed:8e:b8:80:0e:9d:03:6f:fa:e0:12:ea: c4:ab:a3:0f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfec2V2LpEiaE8V6nG5f0pdWxEqAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAyMDQ0WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTBmMWI3MGMxZTU3YjEzY2QzZTc1MGIzZTY0ZmVlYzlm OTI5NjMyM2I5NTNlZTliOWQxMWM4NmNhZGUwOWQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCcB8e1iW7df/78Szk6Q41NBALMG29yc3PfA1eg1araMkum 49+lJzN7HyDnJwTl4rMyiCBZ22OHMCegily+okoKnqEccDc800KYK/GyzS627xv+ 7A0IFC9cAGTTkNzbE8ouhanSdLryQZpjUkKRdUibb6NhhYpEgn9ta9w22q8VGEcB 3pRCRwBg7Hh98HQm6lN8j7YZdjuAqEoNUWYMoBKN2zH8Ge2dmhzwnDo4q3wJEkmH 8QvMJB/aKnWnoS2hLVwACGXK+chmjicx+7iqzxqn0Gfv2hkPTHHMGG1TYRWvM1NM PynCLYTGE2fq8HAprAAl7UFNnIcj1esNgjzjXQz7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtk8n4WSrtQE82Hh0wS9LysWGZbkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE4OWNkYTAyLWU2M2UtNDFhYy1iMDU1LTNmNjY4YjU1MjJkNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPMCHgwDQYJKoZIhvcNAQELBQADggEBAKfLFAD0VqYM2HVROQVFGum4gheK UrYjLqNJQM9ai6xS+512Mf7cphZeTEtbWzsc+w/0Cg1VY9STusLVhAWx0rIZxVrV YXYi5MuWkmrO3NHrpAveUG1NiVLCcKEvi/ACSj7KK/OPqkfXT7AI9wrYDCggqBOw nz3nFVMjFDEvKZ5glR7HiNtbjcYPZJU2QKrNHw9WjabMHZYIUlERXF53aaj3nrY+ tzQ6rxQ6cOlC71nPyokWzdVQjH/rVJbyJPIZ/qb9aOFttn8qgkGnnNqpO3L9L9mm QBteOctpin4ZSVCcfdP90nXbdRMQ7OjPrjyIQu2OuIAOnQNv+uAS6sSrow8= -----END CERTIFICATE-----Generated at Mon Mar 2 07:25:54 2026 by rpki-client