$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa File: 1c9d5620-aeb3-442d-ac52-b345961602c4.roa (raw, json) Hash identifier: 1ClEff336yQJEJzIl6pVn0+6Her8cZMjy/MtKErbjRU= Subject key identifier: 20:BD:4C:58:3D:4A:C3:27:3F:5F:DC:E5:16:A8:7C:59:68:82:9C:1E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C1A842A0870A3BC19F56EDEE2E9543BB2CD2600 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa Signing time: Thu 26 Feb 2026 00:00:45 +0000 ROA not before: Thu 26 Feb 2026 00:00:45 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:1a:84:2a:08:70:a3:bc:19:f5:6e:de:e2:e9:54:3b:b2:cd:26:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:00:45 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=b1320a7285cd5b9d9b295a27fd1d5b31b3eb3f320807e7221cd117320cbe50dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:6f:27:e7:3e:51:e6:27:bb:c0:ea:69:eb:ce: 45:da:a4:64:e6:03:49:82:2f:f8:d9:86:d9:1e:84: ab:85:88:fa:dc:d7:93:08:03:22:df:1f:c5:e6:62: 7b:a0:53:91:df:97:69:91:60:2f:b9:92:3c:93:63: 63:78:cc:8f:e7:35:aa:bb:3d:6f:ec:37:9e:1d:7d: 53:e8:14:dd:47:26:5a:6b:c6:5f:5e:1c:f4:48:f9: d8:af:63:9a:87:79:c4:0e:0f:ee:39:b5:63:01:47: bc:6f:22:ca:bb:33:94:f3:c7:b0:22:cd:5c:9d:64: e2:86:0d:b7:f1:92:42:b2:e4:db:25:6c:86:17:86: b0:7f:de:f9:68:49:bc:08:3b:8e:27:cb:d7:de:cf: c5:1f:20:38:ba:91:bb:79:a1:8b:29:e6:37:62:22: de:a9:e9:9d:a3:40:d2:ea:15:92:44:17:d9:74:e3: 8f:6d:38:67:cb:fb:09:6b:73:a8:92:6b:8a:ea:bb: 32:42:6b:10:36:70:a0:a6:47:2c:5a:79:e5:87:26: b7:de:ee:f9:ef:9a:c2:68:dd:62:90:28:2c:ce:9a: a5:bd:89:f0:8d:d4:ab:d4:a4:27:ad:a1:9a:ab:30: 6b:ce:94:19:fd:86:8b:f6:df:d1:21:58:d9:f6:e6: ac:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BD:4C:58:3D:4A:C3:27:3F:5F:DC:E5:16:A8:7C:59:68:82:9C:1E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c9d5620-aeb3-442d-ac52-b345961602c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 45:12:78:a2:b6:71:a9:bf:e5:ff:bf:ab:48:06:9d:53:b6:b2: 75:e0:a0:63:e6:b9:58:3a:bf:5e:1e:95:d0:3c:e6:40:27:3c: 2d:61:da:a7:a8:81:13:a4:b9:4f:52:37:f7:29:28:d1:97:7f: 80:fb:4f:ab:33:cd:ab:55:0f:8e:27:13:ab:0a:8d:28:01:a3: 52:73:a9:a2:f9:54:cb:3b:29:f6:60:25:f5:82:d7:57:cc:b1: 9d:29:09:fd:4b:4d:43:d4:96:8f:d5:2f:a1:4a:b2:18:e3:25: f5:ca:11:9e:dc:27:18:7e:93:df:79:35:ed:d2:c4:71:3b:fd: ed:e9:28:ef:e9:94:59:5b:d5:a6:aa:ba:7d:e3:19:82:a0:0f: 20:7c:ad:78:bf:17:04:86:c0:e7:8c:35:7a:46:30:c2:e3:03: 4b:fa:59:47:ed:c3:5b:61:94:15:0d:29:fc:09:07:bd:63:af: 5c:af:cc:80:4f:fb:55:c8:8b:21:1c:56:2c:88:d3:8b:e4:16: a6:1c:cc:76:18:d5:dc:bf:2f:33:7d:23:04:af:49:be:0b:6f: 27:5c:4b:75:1b:5a:84:b7:18:c3:d4:7c:5b:4d:ef:aa:db:d5: 68:24:c5:13:21:bb:66:38:e1:34:65:c3:80:d0:a8:da:e8:5b: 66:d7:22:0c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHBqEKghwo7wZ9W7e4ulUO7LNJgAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAwMDQ1WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMTMyMGE3Mjg1Y2Q1YjlkOWIyOTVhMjdmZDFkNWIzMWIz ZWIzZjMyMDgwN2U3MjIxY2QxMTczMjBjYmU1MGRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEbyfnPlHmJ7vA6mnrzkXapGTmA0mCL/jZhtkehKuFiPrc 15MIAyLfH8XmYnugU5Hfl2mRYC+5kjyTY2N4zI/nNaq7PW/sN54dfVPoFN1HJlpr xl9eHPRI+divY5qHecQOD+45tWMBR7xvIsq7M5Tzx7AizVydZOKGDbfxkkKy5Nsl bIYXhrB/3vloSbwIO44ny9fez8UfIDi6kbt5oYsp5jdiIt6p6Z2jQNLqFZJEF9l0 449tOGfL+wlrc6iSa4rquzJCaxA2cKCmRyxaeeWHJrfe7vnvmsJo3WKQKCzOmqW9 ifCN1KvUpCetoZqrMGvOlBn9hov239EhWNn25qwXAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUIL1MWD1Kwyc/X9zlFqh8WWiCnB4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjOWQ1NjIwLWFlYjMtNDQyZC1hYzUyLWIzNDU5NjE2MDJjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4ODANBgkqhkiG9w0BAQsFAAOCAQEARRJ4orZxqb/l/7+rSAadU7aydeCg Y+a5WDq/Xh6V0DzmQCc8LWHap6iBE6S5T1I39yko0Zd/gPtPqzPNq1UPjicTqwqN KAGjUnOpovlUyzsp9mAl9YLXV8yxnSkJ/UtNQ9SWj9UvoUqyGOMl9coRntwnGH6T 33k17dLEcTv97eko7+mUWVvVpqq6feMZgqAPIHyteL8XBIbA54w1ekYwwuMDS/pZ R+3DW2GUFQ0p/AkHvWOvXK/MgE/7VciLIRxWLIjTi+QWphzMdhjV3L8vM30jBK9J vgtvJ1xLdRtahLcYw9R8W03vqtvVaCTFEyG7ZjjhNGXDgNCo2uhbZtciDA== -----END CERTIFICATE-----Generated at Mon Mar 2 06:37:21 2026 by rpki-client