$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1923a56c-3eda-41d9-895a-e345ae9611d0.roa File: 1923a56c-3eda-41d9-895a-e345ae9611d0.roa (raw, json) Hash identifier: ycMV30iIZExdqQEjhEs3UbGe4WMrgkJnCNWuqr+MSrE= Subject key identifier: 59:40:61:93:3E:9F:1F:7A:7B:95:D6:02:94:01:2F:F5:88:E5:B5:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7ED37B416001019B405A68CDBC5B0219624D2701 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1923a56c-3eda-41d9-895a-e345ae9611d0.roa Signing time: Sun 08 Feb 2026 00:40:52 +0000 ROA not before: Sun 08 Feb 2026 00:40:52 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.205.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:d3:7b:41:60:01:01:9b:40:5a:68:cd:bc:5b:02:19:62:4d:27:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:40:52 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=5fdbe7aab63105ba2c9b1510a47a89081bd82ab2138a3669a693ee195efdc7a8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:ef:bf:1c:0e:5a:4d:54:25:c4:2b:94:19:c4: fe:71:4f:02:28:c0:56:cc:76:2c:74:9e:f1:bc:ac: 64:fa:11:e2:21:ba:5c:9e:46:92:d3:df:8d:6c:6a: 00:77:58:dd:24:d1:d0:c8:a4:8d:2e:e9:4a:ce:3e: 26:db:28:77:12:16:6b:7d:0d:22:7d:39:4a:c5:bf: 9f:3b:2e:45:c0:08:04:5b:c1:f4:5e:4b:48:61:eb: 1f:0f:bb:75:fe:b3:48:39:c5:4a:cf:5e:ba:45:13: d2:87:9f:06:f3:d9:49:1d:1f:0d:d5:f1:37:0c:39: d5:8f:d9:b1:28:79:b7:6e:6c:04:79:59:0d:f9:e9: 48:e3:dc:64:4f:24:4a:be:d1:4b:db:9a:e9:30:c4: 8b:e9:8b:46:ef:11:1f:40:e3:81:de:99:f1:78:48: 55:1d:f9:f0:ee:9e:3b:ec:15:fd:4a:41:e9:9e:b0: c6:5f:6d:97:cc:39:16:dc:54:e4:28:6e:a4:6d:79: 2a:23:1e:22:9b:ad:d2:d8:da:ec:c8:8c:20:83:93: ca:79:30:ac:ee:a0:c7:83:ad:cf:d8:35:24:6e:1d: b1:0a:ab:23:8e:62:d9:a4:44:02:51:46:56:23:f2: 23:40:a4:85:ed:02:8c:e7:24:c3:e1:e6:93:18:db: e3:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:40:61:93:3E:9F:1F:7A:7B:95:D6:02:94:01:2F:F5:88:E5:B5:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1923a56c-3eda-41d9-895a-e345ae9611d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.205.64.0/18 Signature Algorithm: sha256WithRSAEncryption 22:47:5d:cf:29:6b:39:f8:57:14:02:92:5b:ea:f8:5b:04:bf: 9c:c5:89:01:11:21:2b:a1:07:14:b4:f2:6c:9a:33:9c:f6:1d: 40:cf:87:93:06:67:e8:da:f3:03:82:73:f7:59:f7:59:50:50: 64:d7:cf:64:de:20:1f:1e:c8:ed:fd:7b:d9:1c:92:50:82:df: fe:65:f3:86:92:f2:10:cb:1d:d1:d4:31:ad:90:c5:da:6c:f0: f3:d6:23:3e:cf:07:4b:5f:0c:a1:a0:c2:44:29:d3:47:58:d0: 09:6c:72:45:d6:27:57:6a:c8:c0:07:ef:78:4e:c5:43:d7:fe: 1c:3b:95:ae:cb:c1:77:64:52:0d:ea:f5:0b:fd:3e:6e:a3:c9: a2:ea:4e:fd:35:70:87:ac:95:ff:90:c7:b8:79:2d:0c:3f:61: e4:8d:2d:00:40:66:9f:31:bb:16:dc:39:d5:bb:8d:5c:28:30: 9c:66:26:6b:90:20:73:70:84:df:68:47:57:b3:07:e2:e9:0f: 74:c5:a5:cc:0f:33:40:62:3f:33:9b:2d:d2:d8:ef:32:b9:b1: b2:c3:15:37:f4:e6:be:14:10:4c:79:1f:ad:9e:78:38:d6:25: d1:25:0a:e1:33:31:45:91:93:f8:b5:10:3c:ba:70:d7:eb:33: 2f:b9:a1:e8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUftN7QWABAZtAWmjNvFsCGWJNJwEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDA0MDUyWhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ZmRiZTdhYWI2MzEwNWJhMmM5YjE1MTBhNDdhODkwODFi ZDgyYWIyMTM4YTM2NjlhNjkzZWUxOTVlZmRjN2E4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7778cDlpNVCXEK5QZxP5xTwIowFbMdix0nvG8rGT6EeIh ulyeRpLT341sagB3WN0k0dDIpI0u6UrOPibbKHcSFmt9DSJ9OUrFv587LkXACARb wfReS0hh6x8Pu3X+s0g5xUrPXrpFE9KHnwbz2UkdHw3V8TcMOdWP2bEoebdubAR5 WQ356Ujj3GRPJEq+0UvbmukwxIvpi0bvER9A44HemfF4SFUd+fDunjvsFf1KQeme sMZfbZfMORbcVOQobqRteSojHiKbrdLY2uzIjCCDk8p5MKzuoMeDrc/YNSRuHbEK qyOOYtmkRAJRRlYj8iNApIXtAoznJMPh5pMY2+PBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWUBhkz6fH3p7ldYClAEv9YjltcowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5MjNhNTZjLTNlZGEtNDFkOS04OTVhLWUzNDVhZTk2MTFkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZMzUAwDQYJKoZIhvcNAQELBQADggEBACJHXc8pazn4VxQCklvq+FsEv5zF iQERISuhBxS08myaM5z2HUDPh5MGZ+ja8wOCc/dZ91lQUGTXz2TeIB8eyO39e9kc klCC3/5l84aS8hDLHdHUMa2Qxdps8PPWIz7PB0tfDKGgwkQp00dY0AlsckXWJ1dq yMAH73hOxUPX/hw7la7LwXdkUg3q9Qv9Pm6jyaLqTv01cIeslf+Qx7h5LQw/YeSN LQBAZp8xuxbcOdW7jVwoMJxmJmuQIHNwhN9oR1ezB+LpD3TFpcwPM0BiPzObLdLY 7zK5sbLDFTf05r4UEEx5H62eeDjWJdElCuEzMUWRk/i1EDy6cNfrMy+5oeg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:14 2026 by rpki-client