$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa File: 22d8d62c-46ea-4668-b9c2-042f62204cad.roa (raw, json) Hash identifier: 4ewjXpRFkVsgZCzS+lI0iefqufNb/PcwVIKZeykXGOE= Subject key identifier: E5:40:5D:94:1A:F8:DA:1F:B4:09:82:90:91:59:30:BE:90:71:C2:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5F73F02C6E0DC3834D812694B04230B85BD33A59 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa Signing time: Wed 11 Feb 2026 01:00:50 +0000 ROA not before: Wed 11 Feb 2026 01:00:50 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.213.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:73:f0:2c:6e:0d:c3:83:4d:81:26:94:b0:42:30:b8:5b:d3:3a:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 01:00:50 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=b852aceed1085ed4c8f9fb463a24aec73d7ee493b91ede6e54cf2acc57117784, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:fd:11:6d:66:d4:ac:09:63:ee:8e:94:1b:bf: 01:b1:37:90:68:2a:44:52:c0:dc:c2:06:ce:64:e0: c8:bb:67:75:bc:7e:94:e8:3f:c2:11:c7:92:37:56: 1e:19:19:c1:6d:37:4b:d3:03:85:48:5e:a2:0b:c9: ae:a0:c3:b4:67:b7:05:5e:4b:54:a2:65:78:49:fb: 7f:f3:a6:e7:30:fb:ee:9b:61:48:d4:0a:5d:86:ab: ae:d2:50:0e:90:38:8a:55:eb:88:d3:6c:da:d2:23: bd:4c:51:8c:b8:44:34:85:0e:4f:c8:2a:fb:46:4a: 73:7a:4b:a0:91:23:42:5a:c5:56:08:31:69:81:8f: e1:14:5e:13:81:29:f1:08:4e:57:8f:96:e8:be:79: 4a:a5:fd:44:de:80:a0:08:36:c4:dd:95:57:e8:61: bd:db:7d:f6:5c:27:e7:00:af:ad:93:1a:40:07:70: 0c:9d:1f:50:17:1e:23:8f:e1:78:e6:d5:05:c6:c1: db:6e:9c:46:07:d6:aa:a6:78:eb:e0:1c:98:27:18: 30:03:c2:d9:d5:ff:10:4e:ac:ae:d6:a0:53:76:ca: 5e:5c:db:da:27:86:b7:16:f1:38:cf:58:1c:67:a4: 2a:8e:4b:f6:45:5c:47:36:e7:a8:4f:5a:b3:70:73: 33:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:40:5D:94:1A:F8:DA:1F:B4:09:82:90:91:59:30:BE:90:71:C2:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22d8d62c-46ea-4668-b9c2-042f62204cad.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.213.0.0/16 Signature Algorithm: sha256WithRSAEncryption 53:0f:88:ff:e7:56:64:d1:22:a7:30:36:46:9c:3e:2c:29:2c: a4:16:f5:8c:38:dc:68:2e:f4:33:94:19:35:ba:70:a8:b9:30: 52:ad:bc:ec:64:8a:90:6c:91:88:4e:f9:eb:36:6e:76:8a:7d: cf:51:b5:6d:cc:c3:71:bb:72:22:4b:63:9a:8a:ce:7c:82:46: e0:7a:e8:0a:a7:de:b2:64:1c:2e:b5:d5:9c:7d:0e:59:97:58: 5b:4a:f0:c2:7b:a5:25:d1:8c:41:ae:cb:69:35:3e:1c:88:3d: 59:94:59:86:52:fa:41:4c:e6:4f:0f:a4:ab:77:ae:03:75:65: b5:82:80:21:b2:80:ec:a2:33:77:8e:b8:c2:af:97:76:da:0a: e6:ed:2e:07:f7:ab:0c:ab:43:82:ff:0a:01:f0:db:48:47:cc: a8:45:8e:05:fe:e3:f7:e7:4d:30:94:6d:f1:9c:a9:ba:90:27: fb:7b:d4:e2:05:9a:4b:80:f7:7e:02:5d:31:1b:d6:02:d1:70: 1b:c1:bb:7d:ef:8f:44:7b:f1:f5:38:d0:f6:cd:7c:db:85:58: 7e:3f:23:6b:39:c3:8c:2b:15:58:74:92:49:99:76:4f:56:97: 9f:b9:a2:50:45:29:8d:8c:82:f9:21:79:d7:ea:76:43:8b:2b: 3a:34:7e:94 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUX3PwLG4Nw4NNgSaUsEIwuFvTOlkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjExMDEwMDUwWhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0BiODUyYWNlZWQxMDg1ZWQ0YzhmOWZiNDYzYTI0YWVjNzNk N2VlNDkzYjkxZWRlNmU1NGNmMmFjYzU3MTE3Nzg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCu/RFtZtSsCWPujpQbvwGxN5BoKkRSwNzCBs5k4Mi7Z3W8 fpToP8IRx5I3Vh4ZGcFtN0vTA4VIXqILya6gw7RntwVeS1SiZXhJ+3/zpucw++6b YUjUCl2Gq67SUA6QOIpV64jTbNrSI71MUYy4RDSFDk/IKvtGSnN6S6CRI0JaxVYI MWmBj+EUXhOBKfEITlePlui+eUql/UTegKAINsTdlVfoYb3bffZcJ+cAr62TGkAH cAydH1AXHiOP4Xjm1QXGwdtunEYH1qqmeOvgHJgnGDADwtnV/xBOrK7WoFN2yl5c 29onhrcW8TjPWBxnpCqOS/ZFXEc256hPWrNwczO9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5UBdlBr42h+0CYKQkVkwvpBxwkcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZDhkNjJjLTQ2ZWEtNDY2OC1iOWMyLTA0MmY2MjIwNGNhZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQ1TANBgkqhkiG9w0BAQsFAAOCAQEAUw+I/+dWZNEipzA2Rpw+LCkspBb1 jDjcaC70M5QZNbpwqLkwUq287GSKkGyRiE756zZudop9z1G1bczDcbtyIktjmorO fIJG4HroCqfesmQcLrXVnH0OWZdYW0rwwnulJdGMQa7LaTU+HIg9WZRZhlL6QUzm Tw+kq3euA3VltYKAIbKA7KIzd464wq+XdtoK5u0uB/erDKtDgv8KAfDbSEfMqEWO Bf7j9+dNMJRt8ZypupAn+3vU4gWaS4D3fgJdMRvWAtFwG8G7fe+PRHvx9TjQ9s18 24VYfj8jaznDjCsVWHSSSZl2T1aXn7miUEUpjYyC+SF51+p2Q4srOjR+lA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:53 2026 by rpki-client