$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa File: 225a370b-b7ff-4d29-8cc6-b57287923a22.roa (raw, json) Hash identifier: 6lw4kmtM7YXB1FhwMrTDZcUofQ6g7E4ty8o4HsRv+ic= Subject key identifier: 71:F6:E1:98:63:53:F5:CF:86:7D:B8:C2:62:56:52:F9:2A:0D:6B:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14C9B3BC942DF619A4B1DFBE65B602F685B7B97D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa Signing time: Tue 24 Feb 2026 01:10:44 +0000 ROA not before: Tue 24 Feb 2026 01:10:44 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 1.178.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:c9:b3:bc:94:2d:f6:19:a4:b1:df:be:65:b6:02:f6:85:b7:b9:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:10:44 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=ee66aa1fd21b3b0fe57f25784e60d534c47f6cd89d45d3e689108cda6dc87418, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:6d:05:a8:12:c9:a3:99:85:f2:02:10:0c:5f: e9:78:d2:fe:36:97:b8:d5:ec:24:e5:58:b9:52:7d: 31:9b:c6:7b:06:88:f2:6e:90:5b:f2:48:8d:49:2c: 5f:8c:38:45:2f:a8:af:37:dd:4b:cc:76:5d:98:37: ac:ec:83:5b:a2:5d:9e:67:58:07:bd:cb:b5:7e:2a: e0:41:7e:3d:19:3f:25:dc:04:ad:56:02:c0:0b:b1: 38:3f:35:71:4b:49:1d:43:53:8b:04:1c:d0:b6:9c: 38:5e:45:89:65:e3:3f:75:f8:17:09:03:aa:74:1c: 25:dd:5f:33:82:e5:d9:28:3a:4e:5e:97:da:a0:e9: 37:d9:aa:1f:f3:23:84:f0:dc:9e:b4:f4:9f:0a:f4: e9:b2:d8:35:a2:d9:0f:ed:a7:bb:78:fe:49:2c:3c: 30:c5:ec:7d:e7:35:22:aa:ae:f3:f4:96:0c:3e:ec: d7:82:da:0b:e3:b9:42:96:71:26:1f:c0:a4:fc:0d: e8:10:3c:44:e8:1c:ba:3d:20:6c:e8:aa:8f:19:f6: a9:45:68:f1:a8:0a:de:dd:e7:f1:3e:a4:4c:5e:74: 2d:3e:3f:d5:48:69:f1:63:93:f4:b3:44:c0:73:38: bd:74:d0:5f:32:4d:54:2a:95:ad:f6:a4:c4:b2:8a: e4:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:F6:E1:98:63:53:F5:CF:86:7D:B8:C2:62:56:52:F9:2A:0D:6B:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/225a370b-b7ff-4d29-8cc6-b57287923a22.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.4.0/22 Signature Algorithm: sha256WithRSAEncryption ad:63:c6:1e:9c:81:52:2d:18:14:ca:97:bf:97:4e:5d:b8:d1: e3:91:49:68:91:bd:33:dd:c5:55:db:6e:a1:27:63:f5:5a:44: 74:64:35:71:e0:69:a3:ff:b7:54:c4:68:70:f9:95:ba:80:8a: 53:ec:99:0a:e9:25:10:84:33:78:34:09:59:33:99:8c:db:36: 6d:a7:81:d3:c5:86:78:96:53:11:ba:e0:10:68:cd:0d:9e:be: bf:8b:72:de:55:0f:69:58:36:7b:40:05:38:3c:d6:4b:fd:30: 45:2b:e9:dc:61:12:02:c5:10:86:67:2a:46:f7:c5:9b:86:fd: 00:36:df:4a:a3:12:e9:7e:45:76:5a:f9:eb:69:de:eb:f8:f2: 66:c0:eb:e9:e9:ca:3e:f2:50:ec:2e:d1:c9:7c:a9:c9:fa:5e: 2f:4b:fc:59:2f:69:3c:ac:8d:0a:f5:92:7b:06:65:39:87:cf: fa:ce:ad:ca:a9:20:f1:99:bf:33:dc:bd:b5:72:bb:32:6b:d0: 26:3e:67:55:08:dd:6e:4a:00:62:35:ff:0c:fe:42:c2:ee:42: 95:c8:6e:9a:bc:a4:28:47:ae:3c:22:4b:ab:ae:47:05:0e:e2: 6d:b3:78:95:fe:32:db:b7:10:52:ac:f1:da:00:a9:6d:3d:3f: da:ec:b4:3d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFMmzvJQt9hmksd++ZbYC9oW3uX0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDExMDQ0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZTY2YWExZmQyMWIzYjBmZTU3ZjI1Nzg0ZTYwZDUzNGM0 N2Y2Y2Q4OWQ0NWQzZTY4OTEwOGNkYTZkYzg3NDE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2bQWoEsmjmYXyAhAMX+l40v42l7jV7CTlWLlSfTGbxnsG iPJukFvySI1JLF+MOEUvqK833UvMdl2YN6zsg1uiXZ5nWAe9y7V+KuBBfj0ZPyXc BK1WAsALsTg/NXFLSR1DU4sEHNC2nDheRYll4z91+BcJA6p0HCXdXzOC5dkoOk5e l9qg6TfZqh/zI4Tw3J609J8K9Omy2DWi2Q/tp7t4/kksPDDF7H3nNSKqrvP0lgw+ 7NeC2gvjuUKWcSYfwKT8DegQPEToHLo9IGzoqo8Z9qlFaPGoCt7d5/E+pExedC0+ P9VIafFjk/SzRMBzOL100F8yTVQqla32pMSyiuRBAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcfbhmGNT9c+GfbjCYlZS+SoNa68wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyNWEzNzBiLWI3ZmYtNGQyOS04Y2M2LWI1NzI4NzkyM2EyMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIBsgQwDQYJKoZIhvcNAQELBQADggEBAK1jxh6cgVItGBTKl7+XTl240eOR SWiRvTPdxVXbbqEnY/VaRHRkNXHgaaP/t1TEaHD5lbqAilPsmQrpJRCEM3g0CVkz mYzbNm2ngdPFhniWUxG64BBozQ2evr+Lct5VD2lYNntABTg81kv9MEUr6dxhEgLF EIZnKkb3xZuG/QA230qjEul+RXZa+etp3uv48mbA6+npyj7yUOwu0cl8qcn6Xi9L /FkvaTysjQr1knsGZTmHz/rOrcqpIPGZvzPcvbVyuzJr0CY+Z1UI3W5KAGI1/wz+ QsLuQpXIbpq8pChHrjwiS6uuRwUO4m2zeJX+Mtu3EFKs8doAqW09P9rstD0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:59 2026 by rpki-client