$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2017c636-3c80-4aff-817c-ddf18477cc2b.roa File: 2017c636-3c80-4aff-817c-ddf18477cc2b.roa (raw, json) Hash identifier: wcInXH3rWqH8b562pZvPSO8LcbOOfzHFkT3b4nV6qZk= Subject key identifier: 0E:E5:AB:CD:8C:48:33:29:40:2F:90:33:99:1B:2B:28:E8:B8:CC:86 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78964B88B4ADBA11B0C1B3A3C9BF8B6B66B83C62 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2017c636-3c80-4aff-817c-ddf18477cc2b.roa Signing time: Sat 21 Feb 2026 00:41:25 +0000 ROA not before: Sat 21 Feb 2026 00:41:25 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.239.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:96:4b:88:b4:ad:ba:11:b0:c1:b3:a3:c9:bf:8b:6b:66:b8:3c:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 00:41:25 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=6720cac4196740d62e7ba54235e080a4cffeeaad82c524f6f1a1741f71d06364, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8d:ee:fd:3c:ea:3b:98:35:87:8a:05:db:c9: 2a:e9:dd:b2:34:96:fc:76:3b:1e:33:88:e7:87:27: 97:82:c5:e4:4a:97:b0:61:3b:d1:bb:f4:75:15:26: 5e:cd:9b:b5:1a:66:50:8b:42:d8:50:1d:c0:42:48: d0:7f:f3:ac:46:5f:f9:77:7c:eb:a6:72:4f:a3:47: e1:72:c5:2f:d2:08:fb:70:9f:80:f7:c5:93:af:dd: 95:84:45:6b:69:44:0a:01:a6:f2:db:b6:33:d9:02: 20:f7:28:b6:4a:40:ca:2b:57:d0:af:f6:df:45:1e: 5d:ad:d5:32:ff:10:dd:d7:83:31:28:f6:04:87:e7: a9:f3:46:10:12:72:4e:9f:29:00:c9:d7:2e:9b:73: 0a:94:23:17:42:aa:e8:c7:10:d9:85:f4:6a:3b:f8: ea:70:02:5e:a8:71:3e:f8:99:94:29:37:1d:73:92: 8f:0b:77:59:06:33:9a:bb:8f:65:e3:e3:f2:f9:01: 5a:d9:e4:80:65:4c:a2:5b:ee:2d:fa:02:3d:52:f7: ca:06:f3:08:4d:55:49:c4:92:a1:e1:41:e0:c5:84: c7:13:12:41:81:c1:c0:b0:c5:57:51:84:56:e8:8e: 20:d9:8c:ec:7e:86:15:4b:86:d1:a4:c4:fd:ad:17: 07:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:E5:AB:CD:8C:48:33:29:40:2F:90:33:99:1B:2B:28:E8:B8:CC:86 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2017c636-3c80-4aff-817c-ddf18477cc2b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.239.0/24 Signature Algorithm: sha256WithRSAEncryption 0c:1c:e5:81:4d:28:97:2d:be:00:f2:83:01:6e:ff:fc:db:20: 46:fd:ed:08:b8:70:9e:9e:04:d9:67:f6:73:7c:5c:5d:c0:9e: 02:50:2f:c7:e2:d4:b6:99:cc:76:45:1c:fa:5f:52:c2:ef:48: ab:72:12:ae:08:1d:b8:ba:2b:72:1c:15:a4:58:cd:76:d0:c3: e3:d4:2c:23:ef:30:87:90:c1:62:42:57:f3:6e:b6:29:ec:dc: 2e:00:bf:a1:1c:13:32:18:0a:ff:21:ab:ba:18:78:6a:78:1c: 83:d6:63:46:bb:81:8b:6c:fa:03:2b:47:86:5c:f6:c0:55:59: fb:0a:22:fc:ff:ce:25:6a:f9:ae:b7:c3:27:09:e3:4b:ec:be: 49:55:43:4f:57:a9:98:6c:3a:48:c2:9a:60:51:56:00:25:a0: b1:9f:a2:44:eb:eb:d0:b9:17:e5:5a:49:a3:19:0e:09:87:cb: f6:15:32:f1:74:78:0c:cb:c1:50:07:5b:1e:f8:40:c8:c9:eb: dc:45:0e:2f:fe:56:83:a2:56:f4:73:f6:3d:9a:6a:4c:1d:5b: 5e:37:e8:41:03:23:74:41:ad:49:14:67:22:11:d3:9e:ca:8c: 23:9c:89:19:47:ce:b4:66:1b:3f:0c:02:6a:66:6c:bd:d6:ac: 7f:c1:5c:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeJZLiLStuhGwwbOjyb+La2a4PGIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDA0MTI1WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzIwY2FjNDE5Njc0MGQ2MmU3YmE1NDIzNWUwODBhNGNm ZmVlYWFkODJjNTI0ZjZmMWExNzQxZjcxZDA2MzY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+je79POo7mDWHigXbySrp3bI0lvx2Ox4ziOeHJ5eCxeRK l7BhO9G79HUVJl7Nm7UaZlCLQthQHcBCSNB/86xGX/l3fOumck+jR+FyxS/SCPtw n4D3xZOv3ZWERWtpRAoBpvLbtjPZAiD3KLZKQMorV9Cv9t9FHl2t1TL/EN3XgzEo 9gSH56nzRhASck6fKQDJ1y6bcwqUIxdCqujHENmF9Go7+OpwAl6ocT74mZQpNx1z ko8Ld1kGM5q7j2Xj4/L5AVrZ5IBlTKJb7i36Aj1S98oG8whNVUnEkqHhQeDFhMcT EkGBwcCwxVdRhFbojiDZjOx+hhVLhtGkxP2tFwd7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDuWrzYxIMylAL5AzmRsrKOi4zIYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwMTdjNjM2LTNjODAtNGFmZi04MTdjLWRkZjE4NDc3Y2MyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsO8wDQYJKoZIhvcNAQELBQADggEBAAwc5YFNKJctvgDygwFu//zbIEb9 7Qi4cJ6eBNln9nN8XF3AngJQL8fi1LaZzHZFHPpfUsLvSKtyEq4IHbi6K3IcFaRY zXbQw+PULCPvMIeQwWJCV/Nutins3C4Av6EcEzIYCv8hq7oYeGp4HIPWY0a7gYts +gMrR4Zc9sBVWfsKIvz/ziVq+a63wycJ40vsvklVQ09XqZhsOkjCmmBRVgAloLGf okTr69C5F+VaSaMZDgmHy/YVMvF0eAzLwVAHWx74QMjJ69xFDi/+VoOiVvRz9j2a akwdW1436EEDI3RBrUkUZyIR057KjCOciRlHzrRmGz8MAmpmbL3WrH/BXPk= -----END CERTIFICATE-----Generated at Sun Mar 1 23:55:15 2026 by rpki-client