$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/19942597-bc32-40b1-ac29-c19e9c9fd9ce.roa File: 19942597-bc32-40b1-ac29-c19e9c9fd9ce.roa (raw, json) Hash identifier: bF3Tt3BB4INru8mcnIoG6TIEYRnUeZdt1UCs0qGVzQc= Subject key identifier: 47:2F:7B:E6:3E:FC:A5:DC:6A:C8:48:8E:FD:8F:E2:A8:AA:AD:3C:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0FF06149FC6139636C8C9B5FAA068FAECE04F790 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/19942597-bc32-40b1-ac29-c19e9c9fd9ce.roa Signing time: Tue 24 Feb 2026 21:36:35 +0000 ROA not before: Tue 24 Feb 2026 21:36:35 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.19.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:f0:61:49:fc:61:39:63:6c:8c:9b:5f:aa:06:8f:ae:ce:04:f7:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 21:36:35 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=e25bb3b2e5fcd4c9716c51e6a71989a7cdc3722aa405f74bbbfd8f62596cf688, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:7b:68:fb:1c:48:43:c9:c6:17:5a:f2:bb:c5: f0:f9:86:60:e2:72:49:34:07:da:f9:0c:9f:51:36: 4d:a7:8a:2a:72:55:b2:fa:f7:0d:92:29:dd:fa:ce: 22:c2:f1:0a:7f:3f:a4:2c:86:5a:03:7a:1a:56:90: ae:05:88:d2:0b:3a:da:0e:67:a0:4d:19:b5:72:33: 1d:90:95:3b:27:bb:ed:6a:0c:2f:1f:52:5d:fd:4a: 9f:91:73:9d:2a:2a:34:1b:a8:96:a6:ae:3c:78:4e: 51:18:66:04:ae:b3:19:37:57:d7:f0:98:53:64:4f: cc:9c:57:80:41:d0:bf:99:00:5d:e5:10:c5:2e:27: fd:42:d7:dc:48:9a:2f:d3:62:91:7f:59:95:a5:2c: 98:6b:76:68:ae:ca:49:da:79:75:61:01:27:a9:d6: e7:11:04:9b:ca:fa:9a:4a:17:70:c6:e9:34:e5:a5: 85:df:02:3c:7a:54:3f:46:3a:19:36:42:47:cf:a1: dd:8b:df:a8:76:a1:14:bc:47:a3:33:ca:b3:3b:86: 78:07:b4:b1:b1:94:d2:65:bb:08:f1:67:a9:cc:56: 1b:56:d1:f9:f1:6f:17:16:0b:2b:fc:29:73:53:00: e1:a7:9d:fb:cb:9b:4c:86:33:df:a4:a9:91:90:44: fb:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:2F:7B:E6:3E:FC:A5:DC:6A:C8:48:8E:FD:8F:E2:A8:AA:AD:3C:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/19942597-bc32-40b1-ac29-c19e9c9fd9ce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.19.0.0/17 Signature Algorithm: sha256WithRSAEncryption 1e:a4:40:df:8e:1b:51:8e:7c:11:c4:5b:3c:95:78:0f:25:7d: 1d:9c:b9:7b:2f:9f:0f:72:f9:53:d5:a0:03:2a:46:02:84:a4: 60:c8:e4:38:4f:06:88:bf:88:1e:16:49:4a:35:60:33:8a:88: e0:9d:50:d1:01:48:11:71:9a:6b:ac:00:ae:2d:f2:96:31:eb: ae:5b:31:a4:28:40:38:f0:9f:0e:26:b1:3a:bd:e1:52:a7:04: f8:0a:d1:7d:9f:3a:aa:68:16:ba:32:de:f3:49:c1:e7:48:a4: 93:ff:99:13:76:68:87:5c:2f:b8:45:e0:b7:a8:bd:dc:dd:45: 7c:57:0d:30:06:0a:aa:4b:a2:05:25:cb:31:4a:c1:59:80:cd: f9:13:ab:f2:1b:2a:b0:37:5d:39:e9:0c:a7:eb:fc:db:8d:a9: 36:c1:e8:d2:d2:d2:5c:fb:76:14:84:d1:77:83:71:17:e1:4e: 5f:4a:cb:51:5f:fe:0d:2b:f2:dc:bc:72:74:37:c7:4c:f1:87: c7:e5:23:14:fb:56:70:f3:6f:8e:d6:01:40:26:6e:76:55:ee: e6:ac:0a:66:0f:23:94:ef:c1:a7:9e:53:3d:bb:84:82:87:e5: 99:15:66:ba:18:49:8a:6a:e2:00:0a:0d:69:91:63:b5:e8:6e: 0f:1a:26:42 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUD/BhSfxhOWNsjJtfqgaPrs4E95AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MjEzNjM1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMjViYjNiMmU1ZmNkNGM5NzE2YzUxZTZhNzE5ODlhN2Nk YzM3MjJhYTQwNWY3NGJiYmZkOGY2MjU5NmNmNjg4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCue2j7HEhDycYXWvK7xfD5hmDickk0B9r5DJ9RNk2niipy VbL69w2SKd36ziLC8Qp/P6QshloDehpWkK4FiNILOtoOZ6BNGbVyMx2QlTsnu+1q DC8fUl39Sp+Rc50qKjQbqJamrjx4TlEYZgSusxk3V9fwmFNkT8ycV4BB0L+ZAF3l EMUuJ/1C19xImi/TYpF/WZWlLJhrdmiuyknaeXVhASep1ucRBJvK+ppKF3DG6TTl pYXfAjx6VD9GOhk2QkfPod2L36h2oRS8R6MzyrM7hngHtLGxlNJluwjxZ6nMVhtW 0fnxbxcWCyv8KXNTAOGnnfvLm0yGM9+kqZGQRPsxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURy975j78pdxqyEiO/Y/iqKqtPFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzE5OTQyNTk3LWJjMzItNDBiMS1hYzI5LWMxOWU5YzlmZDljZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQEwAwDQYJKoZIhvcNAQELBQADggEBAB6kQN+OG1GOfBHEWzyVeA8lfR2c uXsvnw9y+VPVoAMqRgKEpGDI5DhPBoi/iB4WSUo1YDOKiOCdUNEBSBFxmmusAK4t 8pYx665bMaQoQDjwnw4msTq94VKnBPgK0X2fOqpoFroy3vNJwedIpJP/mRN2aIdc L7hF4LeovdzdRXxXDTAGCqpLogUlyzFKwVmAzfkTq/IbKrA3XTnpDKfr/NuNqTbB 6NLS0lz7dhSE0XeDcRfhTl9Ky1Ff/g0r8ty8cnQ3x0zxh8flIxT7VnDzb47WAUAm bnZV7uasCmYPI5TvwaeeUz27hIKH5ZkVZroYSYpq4gAKDWmRY7Xobg8aJkI= -----END CERTIFICATE-----Generated at Sun Mar 1 21:47:01 2026 by rpki-client