$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d9802f5-2b41-4e83-b0d2-b35ec68f6bb8.roa File: 1d9802f5-2b41-4e83-b0d2-b35ec68f6bb8.roa (raw, json) Hash identifier: dAmVt2QYhrP+oWglRKoiPxqWZNVAGlneJz4/QNBbX1U= Subject key identifier: 6A:82:DF:ED:80:C7:EE:B6:4C:E0:1D:E0:A6:51:B2:73:0F:44:CA:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5E246EC504B87006BE56776E56FD3AD72048A911 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d9802f5-2b41-4e83-b0d2-b35ec68f6bb8.roa Signing time: Tue 24 Feb 2026 00:51:11 +0000 ROA not before: Tue 24 Feb 2026 00:51:11 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 161.178.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:24:6e:c5:04:b8:70:06:be:56:77:6e:56:fd:3a:d7:20:48:a9:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:51:11 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=5219f7b45cacd5b8f7d752e0927a466c32dd34152448dc41d0d09e89d5e9d82b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f4:33:43:88:03:41:96:31:f6:ed:77:e0:89:1b: 1e:7b:1a:a0:24:78:fb:87:1c:b4:82:3f:11:0d:4d: 8e:c6:e1:16:37:6b:b7:e9:b4:13:47:f6:91:83:4d: 3c:06:dd:4d:f9:b6:60:80:af:af:37:4c:cd:8b:00: db:07:5c:e6:a5:99:82:71:ea:49:55:30:d5:38:01: 73:36:5c:6a:19:49:ee:de:eb:d5:8e:19:b2:87:c1: 9f:1b:39:9e:b7:52:9b:93:5e:b6:f0:1a:84:6c:97: 9c:09:8a:db:fb:3d:3b:ac:28:60:2f:df:bb:ce:e9: 62:bf:29:f3:a8:a9:e2:1a:a3:3b:08:fb:db:91:a0: e0:6b:dd:b3:40:dc:e8:c1:de:4e:e4:15:93:8e:51: ab:63:d1:60:65:16:a7:36:25:f9:9c:ed:24:d1:b7: 01:41:90:af:0b:63:99:7d:cd:64:29:19:a6:1a:2d: 25:cd:9c:37:8a:26:fb:51:85:0f:c8:8f:74:c3:21: 45:e9:9b:6c:95:5d:05:f9:90:2d:92:90:7c:54:93: c1:2c:bf:d5:c5:1c:c7:52:0a:46:c8:f5:de:87:88: fd:7a:97:58:83:7a:87:43:b1:8f:66:d6:4d:d9:b3: ac:b0:9e:d5:4b:13:9f:e5:0e:c2:39:a9:e6:a1:a8: a4:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6A:82:DF:ED:80:C7:EE:B6:4C:E0:1D:E0:A6:51:B2:73:0F:44:CA:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1d9802f5-2b41-4e83-b0d2-b35ec68f6bb8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.178.128.0/18 Signature Algorithm: sha256WithRSAEncryption 19:87:5f:6b:37:97:e0:c9:dd:c6:6e:e2:2d:59:7a:16:2f:34: 46:b8:9f:91:4a:03:23:b9:69:64:a8:45:21:58:48:55:31:8e: 01:1b:57:e2:2b:71:aa:66:be:42:49:df:85:8c:66:df:32:5d: 06:d4:9f:44:8c:70:0f:5c:74:a3:cd:e7:03:37:f2:e3:2a:04: 2d:43:16:78:5d:0b:79:38:dc:e4:24:04:73:e8:c0:db:49:92: 7d:92:49:cb:75:e9:b0:bd:53:bd:d7:f8:5e:78:c8:93:9b:f1: b7:a1:d9:9e:b0:4a:da:2c:79:aa:12:00:ab:80:d3:41:63:8b: 06:23:cb:81:ab:d3:eb:67:05:7c:38:df:19:1d:0b:48:ed:08: b3:98:18:c9:f7:46:64:79:26:b7:19:f0:60:b0:cf:a0:0c:e3: 4f:bb:41:69:92:d7:11:43:23:76:bb:ff:08:4b:82:d6:0b:fe: 94:08:09:bb:ac:e3:55:a5:ab:3a:10:68:b9:43:49:bb:1a:4f: 79:da:e7:24:11:5e:b8:f4:ef:be:c0:f5:76:c2:5d:b8:6b:ac: 87:31:e4:fe:af:19:64:15:a3:ba:4f:db:f7:f8:12:9d:92:4c: 5a:2e:83:4d:a5:5a:7d:02:d4:82:74:9b:b6:ed:20:b7:47:f2: 5c:80:7a:e2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXiRuxQS4cAa+VnduVv061yBIqREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA1MTExWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MjE5ZjdiNDVjYWNkNWI4ZjdkNzUyZTA5MjdhNDY2YzMy ZGQzNDE1MjQ0OGRjNDFkMGQwOWU4OWQ1ZTlkODJiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQD0M0OIA0GWMfbtd+CJGx57GqAkePuHHLSCPxENTY7G4RY3 a7fptBNH9pGDTTwG3U35tmCAr683TM2LANsHXOalmYJx6klVMNU4AXM2XGoZSe7e 69WOGbKHwZ8bOZ63UpuTXrbwGoRsl5wJitv7PTusKGAv37vO6WK/KfOoqeIaozsI +9uRoOBr3bNA3OjB3k7kFZOOUatj0WBlFqc2Jfmc7STRtwFBkK8LY5l9zWQpGaYa LSXNnDeKJvtRhQ/Ij3TDIUXpm2yVXQX5kC2SkHxUk8Esv9XFHMdSCkbI9d6HiP16 l1iDeodDsY9m1k3Zs6ywntVLE5/lDsI5qeahqKStAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUaoLf7YDH7rZM4B3gplGycw9EyvswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFkOTgwMmY1LTJiNDEtNGU4My1iMGQyLWIzNWVjNjhmNmJiOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAahsoAwDQYJKoZIhvcNAQELBQADggEBABmHX2s3l+DJ3cZu4i1ZehYvNEa4 n5FKAyO5aWSoRSFYSFUxjgEbV+IrcapmvkJJ34WMZt8yXQbUn0SMcA9cdKPN5wM3 8uMqBC1DFnhdC3k43OQkBHPowNtJkn2SSct16bC9U73X+F54yJOb8beh2Z6wStos eaoSAKuA00FjiwYjy4Gr0+tnBXw43xkdC0jtCLOYGMn3RmR5JrcZ8GCwz6AM40+7 QWmS1xFDI3a7/whLgtYL/pQICbus41WlqzoQaLlDSbsaT3na5yQRXrj0777A9XbC XbhrrIcx5P6vGWQVo7pP2/f4Ep2STFoug02lWn0C1IJ0m7btILdH8lyAeuI= -----END CERTIFICATE-----Generated at Sun Mar 1 23:49:34 2026 by rpki-client