$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc2c70b-2c53-4001-8560-44ed39824c11.roa File: 1fc2c70b-2c53-4001-8560-44ed39824c11.roa (raw, json) Hash identifier: 8fWCrSA6OsPIa5w1JtKZexrN/wZIzMr3XUPkudeLubc= Subject key identifier: 59:2D:63:F4:5E:EC:09:A3:BF:D8:EB:76:B6:45:B1:2A:24:B7:F2:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7904B381A221F7C84CE496A3CBEA5F1FCCFF7E61 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc2c70b-2c53-4001-8560-44ed39824c11.roa Signing time: Sun 01 Mar 2026 00:20:11 +0000 ROA not before: Sun 01 Mar 2026 00:20:11 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.133.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:04:b3:81:a2:21:f7:c8:4c:e4:96:a3:cb:ea:5f:1f:cc:ff:7e:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:20:11 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=9233f884d734971819439509d619c6d774e20b821b438d84f78d6868847791cf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:43:ed:04:b5:7e:6d:ed:4c:bf:7c:59:2d:57: 25:d6:81:72:93:ab:3d:ab:d7:7d:6c:00:39:58:0f: 2a:a6:a2:16:7d:66:af:b0:a1:eb:ed:24:e0:94:b0: 2b:bf:a3:77:4f:01:41:76:79:b3:97:ed:6b:38:fa: 84:fe:fe:28:d7:1e:d7:7b:ef:af:15:b6:d3:c5:54: 5c:4f:f3:d9:00:da:5b:09:42:00:68:a3:e4:65:2f: 1a:b0:20:a1:a1:7e:39:9f:ef:24:c9:49:ac:10:66: f5:71:99:28:cb:26:f2:92:ee:dc:67:b7:dd:0c:b9: d0:21:83:e4:ac:09:c8:05:a1:7c:f9:79:4a:a1:58: 42:95:b7:d1:ea:c0:9b:d9:76:c1:57:f3:c7:3c:4c: c0:3c:6a:23:78:a0:9a:dd:68:84:e1:bf:65:82:a0: 38:63:5b:91:83:30:d4:e6:ac:ed:4d:e8:d3:b0:c9: 00:40:89:ed:68:dd:ca:c1:9a:4f:ba:fa:2d:e6:cd: 0d:b5:9b:b1:41:d9:85:7b:34:cf:7b:54:b1:21:83: 0c:ce:09:4e:6d:60:7a:16:7d:00:25:06:82:8d:cc: b5:ea:a5:cc:8a:92:9b:8c:7b:79:26:e3:bc:2a:5c: 93:8f:b7:f4:46:c9:cb:b4:03:9b:2d:50:d2:ca:1e: 39:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2D:63:F4:5E:EC:09:A3:BF:D8:EB:76:B6:45:B1:2A:24:B7:F2:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fc2c70b-2c53-4001-8560-44ed39824c11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.133.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:e5:ac:73:a6:6c:5c:c1:c7:bf:a6:56:c3:ba:0d:6a:70:2d: 39:11:a6:5f:06:c0:6b:e1:71:94:26:a9:b3:c2:e3:3c:a5:73: 54:d0:da:94:24:81:f8:0e:84:d9:2b:69:5e:bd:fe:a8:e2:ba: 70:ee:b8:41:65:69:ca:ac:4d:dd:c9:fb:6b:9e:5b:07:ba:64: 8e:56:6d:a7:27:cf:2e:58:57:bd:38:81:f7:5e:5b:15:d9:5a: 5f:d5:14:d6:59:b8:0a:b4:1a:d4:d8:cd:f4:d3:2e:ed:ea:60: 14:31:f2:89:a5:a9:39:3b:fb:c7:c5:55:29:7b:d1:bf:71:da: e0:13:fa:5d:59:b4:a6:1a:13:96:04:f0:af:50:00:f0:fd:5c: bf:51:93:03:8c:ca:38:42:ea:11:da:68:3f:a7:17:2f:68:a2: 4d:ff:44:20:56:d6:31:70:41:ee:ff:8e:65:23:68:37:97:4f: ae:c8:d2:39:d0:0c:fa:a6:1e:00:54:bb:b8:a4:64:a8:14:b6: 04:3d:3e:51:50:aa:36:da:a8:91:48:52:44:31:1e:e0:9a:6d: a9:18:d7:dc:fc:99:db:58:0b:4d:67:f4:ca:be:33:28:95:82: eb:89:ba:59:2d:66:4f:11:36:df:97:78:82:e6:2b:3e:3a:2f: 71:18:fd:4a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeQSzgaIh98hM5Jajy+pfH8z/fmEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMDExWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjMzZjg4NGQ3MzQ5NzE4MTk0Mzk1MDlkNjE5YzZkNzc0 ZTIwYjgyMWI0MzhkODRmNzhkNjg2ODg0Nzc5MWNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiQ+0EtX5t7Uy/fFktVyXWgXKTqz2r131sADlYDyqmohZ9 Zq+woevtJOCUsCu/o3dPAUF2ebOX7Ws4+oT+/ijXHtd7768VttPFVFxP89kA2lsJ QgBoo+RlLxqwIKGhfjmf7yTJSawQZvVxmSjLJvKS7txnt90MudAhg+SsCcgFoXz5 eUqhWEKVt9HqwJvZdsFX88c8TMA8aiN4oJrdaIThv2WCoDhjW5GDMNTmrO1N6NOw yQBAie1o3crBmk+6+i3mzQ21m7FB2YV7NM97VLEhgwzOCU5tYHoWfQAlBoKNzLXq pcyKkpuMe3km47wqXJOPt/RGycu0A5stUNLKHjkFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWS1j9F7sCaO/2Ot2tkWxKiS38jIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYzJjNzBiLTJjNTMtNDAwMS04NTYwLTQ0ZWQzOTgyNGMxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQhTANBgkqhkiG9w0BAQsFAAOCAQEAkuWsc6ZsXMHHv6ZWw7oNanAtORGm XwbAa+FxlCaps8LjPKVzVNDalCSB+A6E2StpXr3+qOK6cO64QWVpyqxN3cn7a55b B7pkjlZtpyfPLlhXvTiB915bFdlaX9UU1lm4CrQa1NjN9NMu7epgFDHyiaWpOTv7 x8VVKXvRv3Ha4BP6XVm0phoTlgTwr1AA8P1cv1GTA4zKOELqEdpoP6cXL2iiTf9E IFbWMXBB7v+OZSNoN5dPrsjSOdAM+qYeAFS7uKRkqBS2BD0+UVCqNtqokUhSRDEe 4JptqRjX3PyZ21gLTWf0yr4zKJWC64m6WS1mTxE235d4guYrPjovcRj9Sg== -----END CERTIFICATE-----Generated at Mon Mar 2 06:37:14 2026 by rpki-client