$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ebe663e-d582-4b76-9fdf-0f6029f48820.roa File: 1ebe663e-d582-4b76-9fdf-0f6029f48820.roa (raw, json) Hash identifier: vJsgSncWoH0g/TDtwRXjfDc386Z0u86JTIqzt2zP5wY= Subject key identifier: 8A:72:43:DF:28:8F:3C:95:02:23:DF:75:37:F5:A7:3B:14:05:A8:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01AA14CA7BDA5E843F847856821792024963ABF6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ebe663e-d582-4b76-9fdf-0f6029f48820.roa Signing time: Fri 13 Feb 2026 01:00:04 +0000 ROA not before: Fri 13 Feb 2026 01:00:04 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 166.117.176.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:aa:14:ca:7b:da:5e:84:3f:84:78:56:82:17:92:02:49:63:ab:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 01:00:04 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=09b8ac8bd61f20fd5ee1f6680723bb0afbe1d1c7fcb9099deb059115e98bccf0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1a:04:61:50:c9:ee:9a:c0:19:c8:c5:47:b0: 11:80:51:e3:02:05:13:e1:e6:1d:9d:53:97:5e:69: 6a:ba:ed:6a:44:c1:d5:bf:d1:b6:48:63:03:12:06: a8:ec:58:92:7c:a6:5b:01:d8:46:02:9c:d7:ba:e7: 23:80:f7:e4:58:50:a6:41:a2:7f:cc:90:81:b7:8f: 8d:d5:db:5f:6d:90:f6:6f:11:89:e3:36:ca:11:5d: 30:12:f9:6f:7a:41:56:76:d6:1f:8c:23:e1:05:3b: fb:86:41:70:fa:e6:27:d5:cd:23:8f:18:52:ce:e5: eb:ee:91:d5:f5:45:d7:6b:56:ee:09:bd:e9:52:4c: 7a:46:8b:0c:78:d5:ab:c8:37:38:36:62:8c:5b:d2: 5a:7e:40:88:89:84:b9:5e:23:1c:4a:a8:67:78:01: 5f:d5:b8:97:da:d3:a8:43:64:ca:31:49:fa:a5:ab: b2:5a:47:5b:0f:97:5a:c4:a9:b7:27:51:0e:f1:6d: 7c:60:76:30:ce:9b:83:40:f2:ee:89:e6:24:2a:a3: c8:6f:73:7e:a6:a7:f7:b3:f0:42:15:58:ec:5c:47: e5:69:7e:af:49:09:00:ef:e9:a8:13:95:26:92:54: b9:33:49:1a:26:e3:42:6c:0a:15:c6:4c:87:ad:c4: eb:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:72:43:DF:28:8F:3C:95:02:23:DF:75:37:F5:A7:3B:14:05:A8:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ebe663e-d582-4b76-9fdf-0f6029f48820.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.117.176.0/20 Signature Algorithm: sha256WithRSAEncryption b3:a5:5c:26:76:53:75:44:d8:50:83:b3:14:ec:fa:08:5d:8b: 39:8a:7a:3c:43:b1:91:a6:1d:39:4e:59:3b:49:67:92:91:ac: 0d:a9:d9:44:58:ac:02:e7:70:94:39:0e:f3:24:d2:77:e6:3e: 3f:bf:27:c0:fb:f4:ff:3b:22:92:11:f3:e6:d5:2f:86:47:d0: 34:00:2a:1d:91:4e:bd:b4:e3:83:00:ee:55:41:97:75:36:67: a8:26:51:1c:b9:f6:bc:93:37:38:83:44:4f:56:df:ac:c8:b8: d4:8d:08:eb:a9:e5:3f:45:b0:a1:5f:82:2f:92:68:21:91:2a: 8b:60:03:29:f7:17:3c:63:e1:90:fb:21:22:5e:b9:23:e5:ca: 0c:af:0e:02:3d:a4:3e:2e:90:a2:c3:27:d3:6a:09:34:10:b1: f6:b8:cd:6c:00:c9:a6:7e:4f:e7:c4:aa:73:f6:98:05:23:7b: 29:aa:cd:ab:f0:de:1d:11:0f:8f:9f:7b:30:4a:6f:9a:ef:e9: 75:dd:25:cb:99:71:a7:7d:bc:46:76:e8:82:18:58:6e:86:39: 7d:b7:0e:69:36:85:9b:6b:3b:9b:a6:cf:66:6f:94:de:8b:b9: af:d7:b2:16:f6:68:3a:24:73:4f:3d:f4:1a:5a:6a:9d:0c:09: 1c:be:a0:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAaoUynvaXoQ/hHhWgheSAkljq/YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDEwMDA0WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOWI4YWM4YmQ2MWYyMGZkNWVlMWY2NjgwNzIzYmIwYWZi ZTFkMWM3ZmNiOTA5OWRlYjA1OTExNWU5OGJjY2YwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCyGgRhUMnumsAZyMVHsBGAUeMCBRPh5h2dU5deaWq67WpE wdW/0bZIYwMSBqjsWJJ8plsB2EYCnNe65yOA9+RYUKZBon/MkIG3j43V219tkPZv EYnjNsoRXTAS+W96QVZ21h+MI+EFO/uGQXD65ifVzSOPGFLO5evukdX1RddrVu4J velSTHpGiwx41avINzg2Yoxb0lp+QIiJhLleIxxKqGd4AV/VuJfa06hDZMoxSfql q7JaR1sPl1rEqbcnUQ7xbXxgdjDOm4NA8u6J5iQqo8hvc36mp/ez8EIVWOxcR+Vp fq9JCQDv6agTlSaSVLkzSRom40JsChXGTIetxOttAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUinJD3yiPPJUCI991N/WnOxQFqDswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlYmU2NjNlLWQ1ODItNGI3Ni05ZmRmLTBmNjAyOWY0ODgyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASmdbAwDQYJKoZIhvcNAQELBQADggEBALOlXCZ2U3VE2FCDsxTs+ghdizmK ejxDsZGmHTlOWTtJZ5KRrA2p2URYrALncJQ5DvMk0nfmPj+/J8D79P87IpIR8+bV L4ZH0DQAKh2RTr2044MA7lVBl3U2Z6gmURy59ryTNziDRE9W36zIuNSNCOup5T9F sKFfgi+SaCGRKotgAyn3Fzxj4ZD7ISJeuSPlygyvDgI9pD4ukKLDJ9NqCTQQsfa4 zWwAyaZ+T+fEqnP2mAUjeymqzavw3h0RD4+fezBKb5rv6XXdJcuZcad9vEZ26IIY WG6GOX23Dmk2hZtrO5umz2ZvlN6Lua/Xshb2aDokc0899Bpaap0MCRy+oHA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:33 2026 by rpki-client