$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa File: 235ba01b-bc16-4244-a93f-06a145b0732c.roa (raw, json) Hash identifier: RPoMgXBh1bAULqkFc3O3JX2QCnEYFTT3yrtAzhkDHWw= Subject key identifier: 07:04:C6:6B:8A:2A:9A:48:85:C6:A1:2F:73:AB:6D:18:9F:17:BF:12 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 56C46DDB403E90A341576A7B48EA2A13AF453796 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa Signing time: Tue 24 Feb 2026 01:30:14 +0000 ROA not before: Tue 24 Feb 2026 01:30:14 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 147.106.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:c4:6d:db:40:3e:90:a3:41:57:6a:7b:48:ea:2a:13:af:45:37:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:30:14 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=3a27585f4a3b90fb55e16c9ef71b8a77f526446195fdb1cf95c7480e6ef4e266, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:68:a7:e8:9d:1f:4b:3b:2d:28:a0:b7:24:fc: bc:01:70:f7:64:c5:f2:c6:d0:e1:ab:0b:b6:62:de: e5:6a:bc:0a:7c:5a:ea:08:97:4e:ed:6e:f0:5a:a9: de:f6:90:dd:65:2f:12:09:ed:1f:a2:86:4c:37:59: a0:d2:47:ad:27:45:90:43:e9:07:a4:68:9b:53:42: d5:6d:ef:f7:65:3a:d1:72:59:5c:82:20:b1:43:15: db:b7:0a:82:0b:eb:1c:77:34:c9:f6:39:9b:76:b4: 69:a0:a1:7d:e2:ad:36:dc:5e:d1:04:3d:ac:5d:12: 09:8c:55:52:e7:28:44:ce:04:e3:6e:11:55:34:d8: b3:ec:88:78:6a:d7:cc:65:06:26:41:b7:e4:fd:3a: 47:4a:13:0a:e1:48:30:8a:49:97:42:cc:d6:3e:fe: c4:21:14:52:16:76:31:f3:35:ff:c1:47:22:69:f4: 6a:5c:f9:58:2b:f8:c6:b8:bd:eb:d9:37:f1:ed:04: 16:1b:56:5b:42:40:5f:f5:24:03:3a:86:ba:d9:cf: f3:5e:e5:ed:82:3c:17:0e:f5:47:62:9b:f2:a5:0a: 33:8f:d3:49:23:39:6c:0e:ea:d9:c2:c7:ad:83:22: 2f:26:cb:8b:94:9f:64:de:93:c0:b0:5c:30:57:e8: 15:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:04:C6:6B:8A:2A:9A:48:85:C6:A1:2F:73:AB:6D:18:9F:17:BF:12 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/235ba01b-bc16-4244-a93f-06a145b0732c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.128.0/18 Signature Algorithm: sha256WithRSAEncryption 4d:34:c0:84:fe:e4:f8:95:f3:9f:b4:20:06:ba:36:15:5a:60: 4c:ac:59:f0:cd:2e:4b:9b:79:d2:ca:7a:e3:8c:c4:63:d0:ae: 3b:21:4a:4f:75:ce:a1:31:b2:f5:a5:be:12:19:3a:ac:11:b5: 17:12:a4:1e:5c:3f:cc:45:f0:b5:36:64:cf:38:c1:df:7a:27: 3f:8e:8a:d0:ed:e5:d9:0e:01:3f:cb:f2:5b:10:9c:05:d6:d2: f4:cb:12:dc:cf:96:08:6d:a6:07:0c:e2:b3:d2:7d:f5:3d:2b: 43:d5:86:f6:de:32:c1:7d:c3:17:31:dc:f0:71:34:79:5b:fe: c1:10:72:63:8c:c9:75:15:2d:97:49:6d:f6:7e:23:05:19:a4: f8:37:ba:35:fe:a8:52:44:b8:82:d2:5c:f5:d5:e1:31:45:c1: 64:79:53:2f:31:67:35:a9:70:8d:ab:3c:38:20:c3:7a:f0:03: 59:0f:9c:dd:88:25:3b:8a:c3:70:41:1b:16:c5:79:3f:62:e9: da:82:65:47:f8:80:1c:e4:53:d0:bd:34:54:19:37:23:15:0a: ef:eb:4b:5f:7d:c8:a1:a1:1f:4c:0c:4c:44:48:21:d1:02:76: 47:fc:43:45:b0:ca:49:aa:ea:ec:df:49:ee:ef:87:2e:d6:58: 6c:cb:11:15 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVsRt20A+kKNBV2p7SOoqE69FN5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEzMDE0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTI3NTg1ZjRhM2I5MGZiNTVlMTZjOWVmNzFiOGE3N2Y1 MjY0NDYxOTVmZGIxY2Y5NWM3NDgwZTZlZjRlMjY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3aKfonR9LOy0ooLck/LwBcPdkxfLG0OGrC7Zi3uVqvAp8 WuoIl07tbvBaqd72kN1lLxIJ7R+ihkw3WaDSR60nRZBD6QekaJtTQtVt7/dlOtFy WVyCILFDFdu3CoIL6xx3NMn2OZt2tGmgoX3irTbcXtEEPaxdEgmMVVLnKETOBONu EVU02LPsiHhq18xlBiZBt+T9OkdKEwrhSDCKSZdCzNY+/sQhFFIWdjHzNf/BRyJp 9Gpc+Vgr+Ma4vevZN/HtBBYbVltCQF/1JAM6hrrZz/Ne5e2CPBcO9Udim/KlCjOP 00kjOWwO6tnCx62DIi8my4uUn2Tek8CwXDBX6BWfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBwTGa4oqmkiFxqEvc6ttGJ8XvxIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIzNWJhMDFiLWJjMTYtNDI0NC1hOTNmLTA2YTE0NWIwNzMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTaoAwDQYJKoZIhvcNAQELBQADggEBAE00wIT+5PiV85+0IAa6NhVaYEys WfDNLkubedLKeuOMxGPQrjshSk91zqExsvWlvhIZOqwRtRcSpB5cP8xF8LU2ZM84 wd96Jz+OitDt5dkOAT/L8lsQnAXW0vTLEtzPlghtpgcM4rPSffU9K0PVhvbeMsF9 wxcx3PBxNHlb/sEQcmOMyXUVLZdJbfZ+IwUZpPg3ujX+qFJEuILSXPXV4TFFwWR5 Uy8xZzWpcI2rPDggw3rwA1kPnN2IJTuKw3BBGxbFeT9i6dqCZUf4gBzkU9C9NFQZ NyMVCu/rS199yKGhH0wMTERIIdECdkf8Q0Wwykmq6uzfSe7vhy7WWGzLERU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:11 2026 by rpki-client