$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa File: 1ff67b07-091b-43da-9723-1a94e29d65e8.roa (raw, json) Hash identifier: 9iVV78tQXn5J+sN4hR0Fa+MTTDyn/a9Jv0YpHwrd0sw= Subject key identifier: 06:6E:0B:AD:FC:C9:87:E5:E7:77:73:04:84:00:8D:39:2D:2D:62:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 482BA976519249ABD8125658A1485D01F7EFDD5B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa Signing time: Sat 28 Feb 2026 00:40:41 +0000 ROA not before: Sat 28 Feb 2026 00:40:41 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.43.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:2b:a9:76:51:92:49:ab:d8:12:56:58:a1:48:5d:01:f7:ef:dd:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:40:41 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=e6871ec279c62412d9af65dbf3c1f571db9292c52dd494da123850d8cb67762e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:a4:55:ac:52:5d:d4:5c:4c:01:35:6f:d1:04: 01:4f:68:75:33:6f:d6:c8:4d:5b:62:87:30:49:98: 2a:a6:5c:7b:52:49:82:60:d0:f1:4a:43:e5:48:8f: 25:5c:ce:70:98:0f:cb:ac:28:09:31:6a:7d:d2:e5: de:46:53:3b:32:53:24:95:87:8b:cb:94:21:10:aa: 17:05:b1:87:35:1f:b0:0a:00:69:f6:6b:b5:40:43: d8:89:3d:b3:62:20:72:50:9c:49:21:93:4b:21:df: 84:c6:a8:97:91:3a:77:00:c6:f9:db:a7:1d:c6:21: a0:67:7b:b1:7f:6c:94:31:a2:3a:0e:fd:66:eb:2b: a3:41:1e:83:e7:49:5f:36:fc:70:81:40:7c:ad:85: 3e:7f:e2:86:d0:40:d1:d0:15:e9:01:42:07:c6:89: 8c:ea:7e:f1:db:99:e2:f3:35:0a:1b:b5:e7:b7:50: 85:93:7b:c7:e0:9b:0f:31:a0:21:8c:25:f4:fc:5b: 93:df:d1:8c:e8:6a:6e:ee:d1:9d:ec:6b:c9:1c:22: 09:e8:fc:1f:95:91:ae:19:d8:a1:49:7d:69:8f:f6: e5:6f:55:b7:6c:cf:73:1e:c0:d6:88:f8:5f:45:cf: 1b:f3:ae:88:09:09:0c:b9:a6:78:be:b8:c6:64:81: 77:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6E:0B:AD:FC:C9:87:E5:E7:77:73:04:84:00:8D:39:2D:2D:62:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1ff67b07-091b-43da-9723-1a94e29d65e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.43.0.0/16 Signature Algorithm: sha256WithRSAEncryption 04:57:37:a3:32:90:9d:ee:3b:53:54:ff:7b:84:ed:24:8c:14: 97:12:9a:5b:fc:de:e4:60:60:6b:87:28:b1:18:82:83:19:37: 86:78:70:13:2d:b4:59:a1:fc:8e:53:e9:38:3c:08:eb:0c:56: ef:0b:b9:1d:9e:c8:93:60:e8:14:e6:4f:54:40:3d:a7:eb:d4: be:c1:44:85:ae:38:24:01:ae:b2:74:1d:4c:81:f1:8b:1f:5e: cf:02:15:87:a0:0c:f8:4a:d5:68:2f:e1:70:3f:88:7f:2d:e9: b8:e6:5e:3b:61:ba:53:ce:9a:45:a0:3c:1b:67:01:d9:4a:a2: da:cb:ab:56:23:11:a3:ad:73:67:41:a0:67:71:b8:cc:a1:a2: b6:a1:c7:32:d4:f1:5e:46:6f:4b:c1:54:de:af:c7:e5:e6:f6: 45:0c:37:6c:f6:d7:3f:75:f6:5a:2d:d9:05:9d:33:cb:bf:6b: 23:58:ce:5c:4b:2b:86:ce:79:26:18:fc:f8:88:a9:a3:79:cc: 33:86:da:47:c4:b0:a3:25:a1:70:4b:b3:b1:1d:78:5d:76:b8: 93:d6:05:d7:c8:a4:63:e1:ab:a4:5c:77:01:5d:43:12:63:7e: 6b:06:68:e9:4f:83:c2:61:ec:2f:99:4e:4b:f5:be:bf:d1:14: fc:20:f4:b7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSCupdlGSSavYElZYoUhdAffv3VswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDA0MDQxWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNjg3MWVjMjc5YzYyNDEyZDlhZjY1ZGJmM2MxZjU3MWRi OTI5MmM1MmRkNDk0ZGExMjM4NTBkOGNiNjc3NjJlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCEpFWsUl3UXEwBNW/RBAFPaHUzb9bITVtihzBJmCqmXHtS SYJg0PFKQ+VIjyVcznCYD8usKAkxan3S5d5GUzsyUySVh4vLlCEQqhcFsYc1H7AK AGn2a7VAQ9iJPbNiIHJQnEkhk0sh34TGqJeROncAxvnbpx3GIaBne7F/bJQxojoO /WbrK6NBHoPnSV82/HCBQHythT5/4obQQNHQFekBQgfGiYzqfvHbmeLzNQobtee3 UIWTe8fgmw8xoCGMJfT8W5Pf0Yzoam7u0Z3sa8kcIgno/B+Vka4Z2KFJfWmP9uVv Vbdsz3MewNaI+F9FzxvzrogJCQy5pni+uMZkgXeLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUBm4LrfzJh+Xnd3MEhACNOS0tYocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmZjY3YjA3LTA5MWItNDNkYS05NzIzLTFhOTRlMjlkNjVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4KzANBgkqhkiG9w0BAQsFAAOCAQEABFc3ozKQne47U1T/e4TtJIwUlxKa W/ze5GBga4cosRiCgxk3hnhwEy20WaH8jlPpODwI6wxW7wu5HZ7Ik2DoFOZPVEA9 p+vUvsFEha44JAGusnQdTIHxix9ezwIVh6AM+ErVaC/hcD+Ify3puOZeO2G6U86a RaA8G2cB2Uqi2surViMRo61zZ0GgZ3G4zKGitqHHMtTxXkZvS8FU3q/H5eb2RQw3 bPbXP3X2Wi3ZBZ0zy79rI1jOXEsrhs55Jhj8+Iipo3nMM4baR8SwoyWhcEuzsR14 XXa4k9YF18ikY+GrpFx3AV1DEmN+awZo6U+DwmHsL5lOS/W+v9EU/CD0tw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:57 2026 by rpki-client