$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa File: 203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa (raw, json) Hash identifier: 2uBGD5UCmVK3oRjElriLLkRkex84pVPQ9o5KOETz4zk= Subject key identifier: 95:45:4A:30:AB:40:63:C2:5D:49:FF:3F:F5:B6:5E:68:B8:22:40:93 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2BE541CF9605F6C9C74A72C3C15F201618316F80 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa Signing time: Tue 10 Feb 2026 01:00:47 +0000 ROA not before: Tue 10 Feb 2026 01:00:47 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.132.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e5:41:cf:96:05:f6:c9:c7:4a:72:c3:c1:5f:20:16:18:31:6f:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 01:00:47 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=a313f673016fb25fe8d75d7c7271580b2a63a0f475133428b1d6994a632d750c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3e:ae:c8:70:84:fc:02:ad:66:1e:c5:6a:26: b0:a2:74:c0:73:97:8f:bd:2f:cb:a7:66:50:45:02: 07:03:4d:18:ad:3e:31:a0:8e:ac:94:08:ce:ef:e0: 1b:68:d0:ee:e1:56:06:9e:e3:a8:90:0e:53:22:9a: ff:54:77:d6:d2:d1:03:bf:07:92:e7:b5:fc:e4:c3: 30:45:d0:a8:c0:0e:f2:6b:d3:e4:ab:32:fe:1b:1c: 86:49:e7:e2:49:12:66:22:2a:2d:0f:d9:25:e6:8a: 3f:14:4a:e5:26:d8:f2:35:bf:51:43:b2:80:37:2b: 9b:64:04:b1:6f:dc:fd:88:8c:cb:6c:60:ea:ca:05: 6a:9d:22:ea:f7:e1:13:78:9c:4e:8f:0a:0f:a9:e0: 1f:d3:0e:6d:8e:1c:08:48:7a:31:46:5d:d3:bc:32: dd:3e:0b:0f:5b:2b:f4:bc:82:ac:d9:ab:f9:06:c3: 57:21:79:01:4f:9f:ad:7e:db:ec:4c:62:83:44:19: 68:68:d1:67:45:a6:09:a3:89:d9:d4:75:bb:69:fe: 57:04:41:a2:9f:b2:43:8d:aa:e0:a8:b3:ff:ef:e8: 57:80:e4:82:f3:86:8e:d9:78:16:41:ad:3a:72:25: d0:fa:cc:b1:06:3e:fc:a4:17:2e:46:e0:62:30:0c: 46:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:45:4A:30:AB:40:63:C2:5D:49:FF:3F:F5:B6:5E:68:B8:22:40:93 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/203fa97e-bcf4-49c7-9e30-ad3cb5ce755d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.132.0/24 Signature Algorithm: sha256WithRSAEncryption 55:bc:8f:70:cd:f8:f0:db:9b:80:15:b9:56:d6:d7:b0:9f:1c: 8b:be:18:71:fb:46:69:b5:05:1c:2d:aa:67:a1:88:95:9d:19: 48:bb:5a:c7:d4:35:e8:72:f1:1e:09:2f:22:aa:f9:a3:55:a3: d0:ca:c7:ae:e5:14:d0:92:60:45:07:45:06:1d:ba:1a:74:33: 51:22:5d:80:37:ef:95:ce:6a:c4:05:41:ee:98:64:f0:94:1f: 9b:34:03:c0:3c:c8:39:c7:35:a3:d2:99:37:8e:64:f0:91:a1: cc:1f:17:da:f6:50:c5:65:ab:7c:35:25:0b:d3:6e:a1:5a:be: 37:bc:40:30:89:dd:ef:04:8d:56:9f:dc:ba:21:4e:b6:92:bd: f5:82:36:01:20:1a:a8:a9:15:bd:f0:68:54:ac:24:7d:fa:5c: f8:a0:77:64:b8:b1:e0:5c:f3:d8:2e:d7:5b:0b:cd:19:aa:bb: 27:3d:33:02:7a:71:05:8a:2a:86:a9:9b:96:d1:68:19:6d:33: e9:50:8e:69:2b:be:20:29:64:48:de:4b:03:7c:83:72:3e:15: 71:19:e4:91:e9:b1:53:d6:9a:ec:ca:85:f2:5c:4c:ab:84:5c: 17:e8:ba:74:e1:d1:40:43:db:60:85:a5:91:cf:b2:f3:ba:d1: f8:04:2b:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUK+VBz5YF9snHSnLDwV8gFhgxb4AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDEwMDQ3WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMzEzZjY3MzAxNmZiMjVmZThkNzVkN2M3MjcxNTgwYjJh NjNhMGY0NzUxMzM0MjhiMWQ2OTk0YTYzMmQ3NTBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuPq7IcIT8Aq1mHsVqJrCidMBzl4+9L8unZlBFAgcDTRit PjGgjqyUCM7v4Bto0O7hVgae46iQDlMimv9Ud9bS0QO/B5LntfzkwzBF0KjADvJr 0+SrMv4bHIZJ5+JJEmYiKi0P2SXmij8USuUm2PI1v1FDsoA3K5tkBLFv3P2IjMts YOrKBWqdIur34RN4nE6PCg+p4B/TDm2OHAhIejFGXdO8Mt0+Cw9bK/S8gqzZq/kG w1cheQFPn61+2+xMYoNEGWho0WdFpgmjidnUdbtp/lcEQaKfskONquCos//v6FeA 5ILzho7ZeBZBrTpyJdD6zLEGPvykFy5G4GIwDEZ/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUlUVKMKtAY8JdSf8/9bZeaLgiQJMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIwM2ZhOTdlLWJjZjQtNDljNy05ZTMwLWFkM2NiNWNlNzU1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTYQwDQYJKoZIhvcNAQELBQADggEBAFW8j3DN+PDbm4AVuVbW17CfHIu+ GHH7Rmm1BRwtqmehiJWdGUi7WsfUNehy8R4JLyKq+aNVo9DKx67lFNCSYEUHRQYd uhp0M1EiXYA375XOasQFQe6YZPCUH5s0A8A8yDnHNaPSmTeOZPCRocwfF9r2UMVl q3w1JQvTbqFavje8QDCJ3e8EjVaf3LohTraSvfWCNgEgGqipFb3waFSsJH36XPig d2S4seBc89gu11sLzRmquyc9MwJ6cQWKKoapm5bRaBltM+lQjmkrviApZEjeSwN8 g3I+FXEZ5JHpsVPWmuzKhfJcTKuEXBfounTh0UBD22CFpZHPsvO60fgEKzc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:07:25 2026 by rpki-client