$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f2c0c2-b535-4699-9790-e41a1bf11d51.roa File: 25f2c0c2-b535-4699-9790-e41a1bf11d51.roa (raw, json) Hash identifier: NntQ24N2bhs13lfcqIQ5CqnZPOkjhwCx+828itUbqn8= Subject key identifier: 19:4B:3C:5B:58:BF:B1:FE:56:F8:73:54:70:66:22:39:6B:59:42:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4B3E7EC42F63191719ABF56CB1B10C02A94E2844 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f2c0c2-b535-4699-9790-e41a1bf11d51.roa Signing time: Thu 26 Feb 2026 00:41:25 +0000 ROA not before: Thu 26 Feb 2026 00:41:25 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 220.157.66.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:3e:7e:c4:2f:63:19:17:19:ab:f5:6c:b1:b1:0c:02:a9:4e:28:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:41:25 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=feae9c630f2f850acfee1a1db42f54110eac1e426295467b615d6fe383e59437, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:31:60:42:09:68:36:b1:d9:59:dd:ec:aa:81: 5d:12:86:4d:e1:1c:63:cf:de:45:6c:a6:5d:12:fb: d8:6d:a7:38:f5:2b:29:a5:3e:1b:01:87:6e:54:28: aa:3a:3e:df:24:47:d3:f2:6f:dd:23:d8:9b:93:13: 46:53:a8:fe:ed:a8:50:18:03:ba:42:e1:e2:7b:9b: 8d:11:3b:b1:5e:9e:da:70:20:0d:60:c2:21:c9:4e: 2a:4e:c9:f5:86:ff:5c:5d:a9:a0:68:8a:b3:08:61: ae:ad:08:59:6f:e9:e1:2e:2e:42:24:92:e8:41:6d: 3b:48:f3:b0:78:0d:dc:d1:ac:c5:71:25:eb:16:d5: 8e:80:8e:64:75:5c:c2:03:8d:95:e9:28:e3:d0:78: 99:df:42:e8:7e:41:b4:94:de:e1:0e:61:1a:63:e2: b5:09:b1:a6:a0:bd:5c:69:0b:fd:23:ba:98:8e:a6: 12:78:08:9e:b0:e2:53:cb:64:0a:cf:3f:85:92:3f: 97:bd:2d:1b:c0:43:d5:0f:2f:fc:3e:99:b2:1f:43: 09:61:dd:7f:57:0c:62:94:ff:68:f2:a9:54:b1:d3: 9b:72:c8:e7:7b:19:13:16:bf:27:25:e3:a3:02:1b: 19:e3:5c:48:8b:fc:87:9d:8c:0d:46:1b:ad:a5:dc: de:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:4B:3C:5B:58:BF:B1:FE:56:F8:73:54:70:66:22:39:6B:59:42:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/25f2c0c2-b535-4699-9790-e41a1bf11d51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 220.157.66.0/23 Signature Algorithm: sha256WithRSAEncryption 2b:22:4d:05:9f:d7:eb:ad:f7:65:64:78:0b:59:eb:37:b8:8f: 90:bd:ab:40:43:61:a8:a5:b0:de:4c:c5:db:69:ec:ca:c6:c7: 8d:03:f5:f0:1b:90:8d:b4:dd:62:03:a5:68:71:72:2e:c8:52: cd:d2:25:6f:5d:cf:fc:b9:65:dd:e6:97:53:94:b9:ba:e6:2e: 6a:ae:2b:4a:0a:12:be:7a:2f:7c:9f:55:c3:33:1f:1a:8d:6f: 26:b6:da:65:42:0f:e6:06:5e:05:31:d2:a4:57:2e:e9:17:61: 4c:41:fa:48:fa:b9:3f:ec:2c:2f:e6:14:b6:c1:e5:ae:f0:59: 4b:4b:02:a0:fa:65:17:4b:c2:81:9f:95:79:36:06:2f:8d:e4: bd:6e:87:ac:5f:36:d1:b3:51:a9:4f:d7:bd:68:d3:3c:bd:8b: 22:4b:88:cc:74:b6:46:b0:fb:c5:61:9a:38:e2:ed:a5:3f:45: 64:9e:e1:bd:03:d9:d4:1a:53:fa:fc:c2:f4:17:64:6a:a6:64: 73:e9:69:32:ba:0e:93:9b:15:73:0e:17:28:32:fe:2c:25:e1: db:7e:d0:9c:1a:98:8a:80:bc:72:58:4b:4d:f6:0f:91:77:5f: 88:4d:1d:f2:c1:0e:6c:c4:cd:fe:50:ac:0c:4f:6a:23:35:7b: f2:07:5b:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSz5+xC9jGRcZq/VssbEMAqlOKEQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA0MTI1WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZWFlOWM2MzBmMmY4NTBhY2ZlZTFhMWRiNDJmNTQxMTBl YWMxZTQyNjI5NTQ2N2I2MTVkNmZlMzgzZTU5NDM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3MWBCCWg2sdlZ3eyqgV0Shk3hHGPP3kVspl0S+9htpzj1 KymlPhsBh25UKKo6Pt8kR9Pyb90j2JuTE0ZTqP7tqFAYA7pC4eJ7m40RO7Fentpw IA1gwiHJTipOyfWG/1xdqaBoirMIYa6tCFlv6eEuLkIkkuhBbTtI87B4DdzRrMVx JesW1Y6AjmR1XMIDjZXpKOPQeJnfQuh+QbSU3uEOYRpj4rUJsaagvVxpC/0jupiO phJ4CJ6w4lPLZArPP4WSP5e9LRvAQ9UPL/w+mbIfQwlh3X9XDGKU/2jyqVSx05ty yOd7GRMWvycl46MCGxnjXEiL/IedjA1GG62l3N6fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGUs8W1i/sf5W+HNUcGYiOWtZQjEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI1ZjJjMGMyLWI1MzUtNDY5OS05NzkwLWU0MWExYmYxMWQ1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHcnUIwDQYJKoZIhvcNAQELBQADggEBACsiTQWf1+ut92VkeAtZ6ze4j5C9 q0BDYailsN5Mxdtp7MrGx40D9fAbkI203WIDpWhxci7IUs3SJW9dz/y5Zd3ml1OU ubrmLmquK0oKEr56L3yfVcMzHxqNbya22mVCD+YGXgUx0qRXLukXYUxB+kj6uT/s LC/mFLbB5a7wWUtLAqD6ZRdLwoGflXk2Bi+N5L1uh6xfNtGzUalP171o0zy9iyJL iMx0tkaw+8Vhmjji7aU/RWSe4b0D2dQaU/r8wvQXZGqmZHPpaTK6DpObFXMOFygy /iwl4dt+0JwamIqAvHJYS032D5F3X4hNHfLBDmzEzf5QrAxPaiM1e/IHW6g= -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:38 2026 by rpki-client