$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa File: 22f4d3b0-2537-48ed-bf15-840b585b2b11.roa (raw, json) Hash identifier: Aadu5g9A3UP/A77rEBzAPB3tEG8RRqlFcPuWYZhCL1E= Subject key identifier: E4:1D:E7:0A:6D:35:10:1E:CE:3A:73:A0:55:A7:8F:01:D1:CD:BF:CB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CD20375E6F4C8B1CD1BEB4118E436F1F16DDAB5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa Signing time: Fri 13 Feb 2026 00:00:53 +0000 ROA not before: Fri 13 Feb 2026 00:00:53 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.235.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:d2:03:75:e6:f4:c8:b1:cd:1b:eb:41:18:e4:36:f1:f1:6d:da:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:00:53 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=ecffeecc5d473d424a19e65ff12bc2f5f63a3b177e24f520be698398c25bcaeb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:d7:13:c0:74:48:3d:f9:a5:98:f7:e8:ca:70: fe:8d:95:de:61:69:1f:5c:f0:3f:2b:ed:1c:44:ce: ce:80:e7:04:1d:22:d2:6d:d8:d4:7a:9a:22:66:b4: 99:00:08:e5:15:73:fe:d1:00:a5:8d:5e:59:54:54: af:7c:1d:0a:57:28:cf:66:ca:8c:e0:b9:93:52:09: 8a:00:cb:5b:74:f4:1d:72:0c:b2:91:b9:c9:6f:ae: 6f:d3:7b:15:2b:18:03:7a:1b:bb:47:b5:d4:1a:60: 06:83:80:e3:46:70:1d:ee:67:05:e6:db:d4:16:a0: 10:09:e7:4b:35:b7:ad:82:c8:82:09:78:a0:90:70: 86:a0:cc:82:aa:77:c3:db:d6:3a:f9:bf:93:70:9f: e5:d5:fb:5d:9b:8b:38:16:0e:bc:fa:52:28:b8:ae: 12:78:24:15:a0:d9:30:a9:b5:9c:2b:f9:c9:f5:06: 5e:4c:8e:4e:de:a0:2b:a1:9d:cd:82:6c:e9:c2:0c: a9:b1:39:44:f5:cc:9c:ba:70:5e:16:35:48:11:a8: f2:7a:cf:f8:62:72:78:3f:29:ff:5f:45:58:28:9f: d6:5e:70:70:0a:45:03:cc:90:34:cd:9b:0e:b2:c5: 9a:51:a1:58:38:f9:82:eb:b0:be:4d:a8:9d:70:b3: 41:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:1D:E7:0A:6D:35:10:1E:CE:3A:73:A0:55:A7:8F:01:D1:CD:BF:CB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/22f4d3b0-2537-48ed-bf15-840b585b2b11.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.235.0/24 Signature Algorithm: sha256WithRSAEncryption ae:e7:31:b2:67:9c:9f:4b:8d:68:cb:f4:17:0a:88:77:30:8e: ff:72:44:3a:32:c8:0c:7a:27:9d:72:c3:b0:39:7c:3f:7d:e3: 33:38:dd:f1:fd:97:b5:af:be:3e:63:cc:28:79:7d:bd:d7:31: 4d:aa:7c:d1:ce:fe:00:04:96:9f:28:13:6d:7a:55:f3:3a:80: 56:a4:c2:8a:7c:c8:e6:3f:8f:cc:ca:66:6d:48:e2:35:51:f2: d2:54:41:91:e5:e3:74:7d:ee:37:3c:55:e4:b5:1a:91:d4:4e: b7:a5:5a:9e:33:43:97:38:1b:16:97:41:6d:57:64:c6:d6:08: e2:71:94:81:30:1b:86:18:68:07:57:95:cc:1a:a1:6c:17:b0: 81:2e:6f:40:f2:5f:d5:c9:8a:69:8c:4b:14:15:bc:b0:5a:9c: 6f:44:e8:dd:b1:5d:cf:cd:1f:a9:53:e5:c8:b4:c5:83:85:db: 20:6c:23:af:36:85:91:45:2a:ee:2e:11:b5:31:e0:01:ae:65: 97:41:0a:42:60:45:a6:52:51:c2:84:3f:75:de:76:a6:ed:d2: 46:e5:4c:5a:c0:df:57:82:86:5b:26:88:b9:05:10:05:5b:4b: 33:27:a6:67:53:32:e9:4a:27:1f:74:cb:2e:fd:db:f4:13:d5: e3:ab:6a:70 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPNIDdeb0yLHNG+tBGOQ28fFt2rUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAwMDUzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BlY2ZmZWVjYzVkNDczZDQyNGExOWU2NWZmMTJiYzJmNWY2 M2EzYjE3N2UyNGY1MjBiZTY5ODM5OGMyNWJjYWViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCO1xPAdEg9+aWY9+jKcP6Nld5haR9c8D8r7RxEzs6A5wQd ItJt2NR6miJmtJkACOUVc/7RAKWNXllUVK98HQpXKM9myozguZNSCYoAy1t09B1y DLKRuclvrm/TexUrGAN6G7tHtdQaYAaDgONGcB3uZwXm29QWoBAJ50s1t62CyIIJ eKCQcIagzIKqd8Pb1jr5v5Nwn+XV+12bizgWDrz6Uii4rhJ4JBWg2TCptZwr+cn1 Bl5Mjk7eoCuhnc2CbOnCDKmxOUT1zJy6cF4WNUgRqPJ6z/hicng/Kf9fRVgon9Ze cHAKRQPMkDTNmw6yxZpRoVg4+YLrsL5NqJ1ws0H3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5B3nCm01EB7OOnOgVaePAdHNv8swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIyZjRkM2IwLTI1MzctNDhlZC1iZjE1LTg0MGI1ODViMmIxMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAf3OswDQYJKoZIhvcNAQELBQADggEBAK7nMbJnnJ9LjWjL9BcKiHcwjv9y RDoyyAx6J51yw7A5fD994zM43fH9l7Wvvj5jzCh5fb3XMU2qfNHO/gAElp8oE216 VfM6gFakwop8yOY/j8zKZm1I4jVR8tJUQZHl43R97jc8VeS1GpHUTrelWp4zQ5c4 GxaXQW1XZMbWCOJxlIEwG4YYaAdXlcwaoWwXsIEub0DyX9XJimmMSxQVvLBanG9E 6N2xXc/NH6lT5ci0xYOF2yBsI682hZFFKu4uEbUx4AGuZZdBCkJgRaZSUcKEP3Xe dqbt0kblTFrA31eChlsmiLkFEAVbSzMnpmdTMulKJx90yy792/QT1eOranA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:07 2026 by rpki-client