$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa File: 21224473-433c-4fa2-9491-e141ae8efbea.roa (raw, json) Hash identifier: NAKTIVYeaoHvteC31NyRwckleWf0CTSAGWSrJeJbeTM= Subject key identifier: 50:0E:56:81:0D:CB:43:DB:E3:5E:6A:17:28:75:0C:03:A7:8E:B5:B1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 40EC5D5C8B5D553B8064CC4639622E08B8451E1C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa Signing time: Thu 26 Feb 2026 00:50:07 +0000 ROA not before: Thu 26 Feb 2026 00:50:07 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 75.3.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:ec:5d:5c:8b:5d:55:3b:80:64:cc:46:39:62:2e:08:b8:45:1e:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:50:07 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=01a09c8a4492346cb4affcb9dfc196d526e60fea911400b9657d621f16b3d70d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3a:9a:17:09:46:b8:6b:22:99:03:3a:e1:44: 6e:22:5b:6b:88:1c:d1:fb:60:2b:b5:bd:0d:99:73: 41:87:00:37:37:b1:8f:b6:7e:a4:ff:21:17:56:ca: fc:c8:06:13:82:53:08:9f:42:26:1d:9d:69:dd:88: b5:48:6d:43:28:3d:74:4e:fc:6f:e4:55:ff:1e:de: 99:01:47:8e:a8:2b:38:dd:3b:cc:9a:6f:17:20:82: f9:80:c8:3d:ce:ee:d4:9c:4f:c0:bf:5a:c8:e2:be: 04:4e:99:42:2e:b7:39:f4:49:89:e3:6d:12:3b:c5: 05:89:7e:40:93:2d:d8:f8:e8:ce:e4:74:7a:21:11: 76:19:8f:1f:2e:5b:ce:76:28:08:e4:f4:1f:e0:79: ec:75:a4:ad:fd:5c:5a:bd:4e:d6:b5:6e:55:f8:29: a2:51:b0:db:c8:8f:66:07:e1:36:ae:de:4e:56:76: 77:35:c2:83:b1:8a:cc:94:0a:3a:a7:d5:54:39:09: f2:67:0c:c3:73:17:4f:78:92:f1:51:a7:41:56:da: 09:96:89:71:55:72:f2:f0:dd:03:fe:be:f7:be:29: 58:73:ea:8a:02:ab:b8:17:bd:0c:db:69:ea:ec:91: 76:c0:01:4b:d8:0c:a1:5a:a2:7f:e1:e1:cc:25:aa: 95:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:0E:56:81:0D:CB:43:DB:E3:5E:6A:17:28:75:0C:03:A7:8E:B5:B1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21224473-433c-4fa2-9491-e141ae8efbea.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.3.128.0/18 Signature Algorithm: sha256WithRSAEncryption 96:2e:da:2b:8f:8f:f0:ec:d3:87:27:ff:99:c4:3e:c2:f3:86: 1b:1d:80:9c:21:16:f5:45:63:4e:5b:cf:96:25:24:d8:31:cc: 9b:69:be:52:35:48:de:f1:70:86:93:25:e5:af:ff:b3:55:a4: 00:91:e8:0f:e8:7e:9a:cb:58:ff:fe:83:06:a1:55:01:99:3b: 4e:34:e1:5a:f7:89:0d:7c:44:17:f8:3a:71:4e:87:02:ec:aa: eb:56:04:dd:da:11:fc:d4:a2:43:f7:0f:4c:62:2a:f9:73:25: 5b:56:5f:21:df:a4:0e:e4:6b:fd:e9:1b:a0:33:88:7a:e4:39: 06:db:6e:32:99:8b:7c:4e:5d:a7:5a:ae:f1:05:b2:4b:d0:40: 95:4c:6e:5e:55:b6:22:94:9e:00:be:bf:aa:df:64:0f:1b:2f: 2c:9d:d0:90:df:ca:a6:ee:5b:ea:d4:c5:a4:87:cb:9f:28:9e: 61:5e:f4:66:eb:09:fa:bf:51:ee:75:a9:5d:09:2a:6c:88:a2: e2:4d:c0:5a:2b:78:e6:fe:2c:a5:da:5f:9d:d9:ca:18:d7:5c: b1:33:4c:77:45:31:2d:43:f5:d6:97:66:69:5c:f2:7c:12:70: 36:81:20:0c:df:26:53:64:c9:cf:30:b7:64:50:01:50:58:ac: 63:ab:ca:6c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQOxdXItdVTuAZMxGOWIuCLhFHhwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA1MDA3WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwMWEwOWM4YTQ0OTIzNDZjYjRhZmZjYjlkZmMxOTZkNTI2 ZTYwZmVhOTExNDAwYjk2NTdkNjIxZjE2YjNkNzBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWOpoXCUa4ayKZAzrhRG4iW2uIHNH7YCu1vQ2Zc0GHADc3 sY+2fqT/IRdWyvzIBhOCUwifQiYdnWndiLVIbUMoPXRO/G/kVf8e3pkBR46oKzjd O8yabxcggvmAyD3O7tScT8C/WsjivgROmUIutzn0SYnjbRI7xQWJfkCTLdj46M7k dHohEXYZjx8uW852KAjk9B/geex1pK39XFq9Tta1blX4KaJRsNvIj2YH4Tau3k5W dnc1woOxisyUCjqn1VQ5CfJnDMNzF094kvFRp0FW2gmWiXFVcvLw3QP+vve+KVhz 6ooCq7gXvQzbaerskXbAAUvYDKFaon/h4cwlqpVJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUA5WgQ3LQ9vjXmoXKHUMA6eOtbEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxMjI0NDczLTQzM2MtNGZhMi05NDkxLWUxNDFhZThlZmJlYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZLA4AwDQYJKoZIhvcNAQELBQADggEBAJYu2iuPj/Ds04cn/5nEPsLzhhsd gJwhFvVFY05bz5YlJNgxzJtpvlI1SN7xcIaTJeWv/7NVpACR6A/ofprLWP/+gwah VQGZO0404Vr3iQ18RBf4OnFOhwLsqutWBN3aEfzUokP3D0xiKvlzJVtWXyHfpA7k a/3pG6AziHrkOQbbbjKZi3xOXadarvEFskvQQJVMbl5VtiKUngC+v6rfZA8bLyyd 0JDfyqbuW+rUxaSHy58onmFe9GbrCfq/Ue51qV0JKmyIouJNwForeOb+LKXaX53Z yhjXXLEzTHdFMS1D9daXZmlc8nwScDaBIAzfJlNkyc8wt2RQAVBYrGOrymw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:46 2026 by rpki-client