$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa File: 1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa (raw, json) Hash identifier: 3HfS01R49Xh1zVmt2E1LIbmy5Y46mzlmhSw1n7Hce9Y= Subject key identifier: 5A:C4:61:CB:88:6B:34:5E:A6:08:1D:9D:16:AC:91:6E:14:04:9C:A7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 74D5BF69E9611D5768E95BE2FA6ECFEC22E512F5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa Signing time: Thu 26 Feb 2026 00:21:20 +0000 ROA not before: Thu 26 Feb 2026 00:21:20 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 26982 IP address blocks: 192.31.212.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 74:d5:bf:69:e9:61:1d:57:68:e9:5b:e2:fa:6e:cf:ec:22:e5:12:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:21:20 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=680cb94c4b19e8f56406b2f72b0d67746e11cfe43f40afd2476bcb8737a86f55, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:ba:3a:3b:97:19:2c:31:18:35:84:45:56:ca: d9:20:02:10:a7:c9:27:78:c8:94:1f:10:9c:a5:16: 79:8c:10:de:63:db:a7:53:3d:97:6a:1f:41:d9:00: db:df:66:cc:29:d3:79:40:41:47:00:e7:72:0a:21: 09:20:04:2c:0f:c5:bd:67:f2:4b:c1:7a:98:57:34: cd:45:9d:9f:e7:69:a2:95:e6:6f:b2:d4:6a:49:33: 38:65:94:2c:a6:47:15:af:13:47:8e:3d:f2:29:bd: c1:af:15:c7:ef:a6:91:67:08:30:89:eb:8f:54:b8: de:e0:ad:8d:90:4d:98:cd:48:85:df:c1:88:43:6c: ee:93:6c:56:b8:87:87:09:eb:8c:31:45:ce:f6:76: 6b:3a:33:3d:24:e3:00:1a:f7:62:a3:de:3b:f5:6d: bf:21:ed:9b:09:7f:77:58:bc:60:e6:0b:a1:65:6b: eb:44:13:41:83:2b:b9:74:14:f7:0b:9d:29:75:77: cb:ab:2e:6c:45:d2:fa:4d:a5:5e:4c:3e:cd:19:b4: 6f:24:f1:d2:95:6c:26:c8:d3:40:ec:dc:df:90:19: cb:46:25:7a:ee:88:ea:3d:d3:81:8e:3d:22:1f:75: ba:2e:61:fa:a3:34:6c:21:58:be:52:c5:44:24:72: f7:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:C4:61:CB:88:6B:34:5E:A6:08:1D:9D:16:AC:91:6E:14:04:9C:A7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1adf4d9d-eda9-4fe8-8f93-4b6c05e8aba4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.212.0/24 Signature Algorithm: sha256WithRSAEncryption 5d:8d:b9:9c:41:19:be:de:56:00:e4:3c:61:16:92:a1:93:94: c0:50:21:75:51:0f:80:0f:39:63:23:0b:5f:c6:f1:b2:e6:0a: 6c:41:9e:7e:0b:09:09:7f:5e:30:37:c3:14:d9:87:1e:f8:ed: 8c:cc:87:31:6f:d0:9d:a4:7e:50:a1:81:d8:cb:92:20:37:78: 86:51:ef:a4:a2:b2:98:87:0a:76:00:f7:17:3a:44:05:9c:ef: 62:ef:7b:16:20:89:68:86:d4:00:05:d7:50:e6:b0:18:e8:f5: fc:df:7b:86:68:ad:e9:85:51:d7:6c:fc:d7:7b:f5:13:7b:c0: 0a:0e:d9:0c:44:61:0e:34:9d:7d:de:e0:51:40:62:ff:bd:5b: 05:97:ca:f7:26:16:f0:a6:f5:77:cf:05:68:47:02:32:a3:c6: 11:9d:83:b6:15:96:cf:5c:05:7f:93:92:30:11:0b:bd:7e:7a: cb:a3:c6:33:b4:92:50:67:1e:ad:1f:cf:c7:96:29:a9:a3:24: 0e:fa:f7:e1:ae:ca:60:cc:a0:b1:fb:fe:ec:c0:55:1b:1f:7d: 62:7f:e5:1b:79:cd:08:d2:02:b6:41:35:a1:44:f9:35:17:16: f4:9b:3c:c8:3a:53:a0:3b:e5:51:cb:81:49:50:18:67:04:fa: c5:08:b5:ab -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdNW/aelhHVdo6Vvi+m7P7CLlEvUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAyMTIwWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ODBjYjk0YzRiMTllOGY1NjQwNmIyZjcyYjBkNjc3NDZl MTFjZmU0M2Y0MGFmZDI0NzZiY2I4NzM3YTg2ZjU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpujo7lxksMRg1hEVWytkgAhCnySd4yJQfEJylFnmMEN5j 26dTPZdqH0HZANvfZswp03lAQUcA53IKIQkgBCwPxb1n8kvBephXNM1FnZ/naaKV 5m+y1GpJMzhllCymRxWvE0eOPfIpvcGvFcfvppFnCDCJ649UuN7grY2QTZjNSIXf wYhDbO6TbFa4h4cJ64wxRc72dms6Mz0k4wAa92Kj3jv1bb8h7ZsJf3dYvGDmC6Fl a+tEE0GDK7l0FPcLnSl1d8urLmxF0vpNpV5MPs0ZtG8k8dKVbCbI00Ds3N+QGctG JXruiOo904GOPSIfdbouYfqjNGwhWL5SxUQkcveRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWsRhy4hrNF6mCB2dFqyRbhQEnKcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFhZGY0ZDlkLWVkYTktNGZlOC04ZjkzLTRiNmMwNWU4YWJhNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9QwDQYJKoZIhvcNAQELBQADggEBAF2NuZxBGb7eVgDkPGEWkqGTlMBQ IXVRD4APOWMjC1/G8bLmCmxBnn4LCQl/XjA3wxTZhx747YzMhzFv0J2kflChgdjL kiA3eIZR76SispiHCnYA9xc6RAWc72LvexYgiWiG1AAF11DmsBjo9fzfe4ZoremF Udds/Nd79RN7wAoO2QxEYQ40nX3e4FFAYv+9WwWXyvcmFvCm9XfPBWhHAjKjxhGd g7YVls9cBX+TkjARC71+esujxjO0klBnHq0fz8eWKamjJA769+GuymDMoLH7/uzA VRsffWJ/5Rt5zQjSArZBNaFE+TUXFvSbPMg6U6A75VHLgUlQGGcE+sUItas= -----END CERTIFICATE-----Generated at Mon Mar 2 03:05:56 2026 by rpki-client