$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ec09901-70fe-41c3-8b4b-3f50242b9056.roa File: 1ec09901-70fe-41c3-8b4b-3f50242b9056.roa (raw, json) Hash identifier: o2mURFEmIldEd9hSQxFhgArawY6nSx3HWHiBeNpjowI= Subject key identifier: 4F:18:CE:D1:A3:B9:98:4D:08:0A:3D:D6:9C:B1:F5:5B:2C:B6:26:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 285D2322A974B1AFFE78E3AF79CEBCA65796945D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ec09901-70fe-41c3-8b4b-3f50242b9056.roa Signing time: Sun 01 Mar 2026 00:10:41 +0000 ROA not before: Sun 01 Mar 2026 00:10:41 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.16.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:5d:23:22:a9:74:b1:af:fe:78:e3:af:79:ce:bc:a6:57:96:94:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:10:41 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=28e9db146d6d25571a5182487d3c21694d8c2a700d773e111c3229e2eb5154c4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:8f:24:79:61:65:15:a8:37:a0:06:a5:03:d3: 26:6f:05:bf:72:31:92:d1:ae:61:65:88:2d:e4:c6: 14:ca:a5:ff:24:3b:d5:66:fd:ac:91:bf:77:10:0f: 41:6a:48:26:a7:e2:2a:ee:d1:dc:79:6e:28:3c:2b: 56:d2:87:a2:e2:99:07:ca:be:92:79:0a:d1:d4:e4: db:cc:ab:86:d1:69:10:99:21:d5:b7:72:a8:24:66: 40:cc:16:5a:54:fa:f0:6a:17:d5:93:fa:ff:e8:70: 7d:29:6d:d5:74:c8:c6:a2:37:db:d7:1d:48:84:ad: 6f:22:b8:bd:50:d7:3f:02:2d:04:5a:0f:41:24:85: 61:2a:29:3f:27:3f:18:ba:8c:51:a5:31:7c:7a:84: f2:6c:b2:68:bb:34:da:ca:c4:a6:45:fa:f6:4c:3f: 6d:f9:e7:81:82:0b:10:10:43:76:71:d1:e6:bc:e3: 2e:d0:26:ce:e2:63:76:d6:00:e5:0e:5b:2e:74:81: 1e:7d:c8:97:e4:1c:49:ce:31:a5:ea:3f:79:cf:96: 30:da:67:57:82:56:ee:77:43:17:92:a5:e9:15:f9: 48:2a:23:81:0e:40:66:64:dc:89:25:2c:91:22:0f: b6:03:83:17:7a:b0:cd:40:2b:b8:2f:48:08:e1:b4: c0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:18:CE:D1:A3:B9:98:4D:08:0A:3D:D6:9C:B1:F5:5B:2C:B6:26:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ec09901-70fe-41c3-8b4b-3f50242b9056.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.16.0/21 Signature Algorithm: sha256WithRSAEncryption c4:3b:65:60:9f:47:01:e3:90:31:41:23:db:2e:63:5c:9e:67: b0:66:16:98:ca:76:47:63:23:0f:c7:35:14:d0:92:cd:5b:68: f0:53:9f:f2:55:51:3b:f1:8c:8e:92:65:9c:2a:23:ac:02:c2: 9d:1e:ec:b2:35:68:d7:c3:8a:4b:ad:9c:f6:89:cd:40:8d:4e: 71:95:02:60:fe:28:fb:55:91:f8:83:ef:38:e5:81:e8:6e:eb: 22:84:c8:4c:13:69:fa:dd:aa:57:2c:0a:5b:28:79:47:c6:7d: 98:59:9e:8c:7f:c9:bb:6d:b8:13:32:10:ad:44:3f:2d:2a:68: 32:9c:e9:64:c9:20:2c:37:20:ae:83:8a:85:02:ce:ab:3e:35: e1:34:e9:0b:cb:12:6d:ae:ed:f6:5d:74:20:45:28:3c:dc:ee: 8b:f7:ae:33:e6:7e:06:b8:50:64:a6:51:4f:32:d7:5d:3a:ce: d5:67:5e:f2:f3:0a:c9:d6:35:0a:ca:c6:ff:49:ab:5c:54:05: 08:a6:ad:58:a2:98:f0:ba:c8:99:db:eb:73:d9:ef:31:be:5e: 62:b8:47:16:6c:4d:d2:e1:f4:32:5e:b3:e5:90:a0:d9:2f:1b: 20:f8:e9:d9:9a:a3:a1:cb:ce:6b:88:4e:f6:f2:bd:9a:ac:80: aa:00:e2:a4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKF0jIql0sa/+eOOvec68pleWlF0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAxMDQxWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGU5ZGIxNDZkNmQyNTU3MWE1MTgyNDg3ZDNjMjE2OTRk OGMyYTcwMGQ3NzNlMTExYzMyMjllMmViNTE1NGM0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDqjyR5YWUVqDegBqUD0yZvBb9yMZLRrmFliC3kxhTKpf8k O9Vm/ayRv3cQD0FqSCan4iru0dx5big8K1bSh6LimQfKvpJ5CtHU5NvMq4bRaRCZ IdW3cqgkZkDMFlpU+vBqF9WT+v/ocH0pbdV0yMaiN9vXHUiErW8iuL1Q1z8CLQRa D0EkhWEqKT8nPxi6jFGlMXx6hPJssmi7NNrKxKZF+vZMP23554GCCxAQQ3Zx0ea8 4y7QJs7iY3bWAOUOWy50gR59yJfkHEnOMaXqP3nPljDaZ1eCVu53QxeSpekV+Ugq I4EOQGZk3IklLJEiD7YDgxd6sM1AK7gvSAjhtMAVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTxjO0aO5mE0ICj3WnLH1Wyy2JlswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFlYzA5OTAxLTcwZmUtNDFjMy04YjRiLTNmNTAyNDJiOTA1Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANgABAwDQYJKoZIhvcNAQELBQADggEBAMQ7ZWCfRwHjkDFBI9suY1yeZ7Bm FpjKdkdjIw/HNRTQks1baPBTn/JVUTvxjI6SZZwqI6wCwp0e7LI1aNfDikutnPaJ zUCNTnGVAmD+KPtVkfiD7zjlgehu6yKEyEwTafrdqlcsClsoeUfGfZhZnox/ybtt uBMyEK1EPy0qaDKc6WTJICw3IK6DioUCzqs+NeE06QvLEm2u7fZddCBFKDzc7ov3 rjPmfga4UGSmUU8y1106ztVnXvLzCsnWNQrKxv9Jq1xUBQimrViimPC6yJnb63PZ 7zG+XmK4RxZsTdLh9DJes+WQoNkvGyD46dmao6HLzmuITvbyvZqsgKoA4qQ= -----END CERTIFICATE-----Generated at Mon Mar 2 04:55:44 2026 by rpki-client