$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2796caa1-61d5-4482-ab4f-0768d89e60ff.roa File: 2796caa1-61d5-4482-ab4f-0768d89e60ff.roa (raw, json) Hash identifier: tfqP0fLXjuGOGn7/VFzauo3oAECeYoW4WsH2mr9aH2E= Subject key identifier: 01:52:48:A3:CF:A7:1D:A1:55:6C:7E:2D:9D:E0:7E:91:78:12:DA:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C09E8F598017B3ED36AE23DE2034E65B11C73F4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2796caa1-61d5-4482-ab4f-0768d89e60ff.roa Signing time: Sun 15 Feb 2026 00:21:45 +0000 ROA not before: Sun 15 Feb 2026 00:21:45 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:09:e8:f5:98:01:7b:3e:d3:6a:e2:3d:e2:03:4e:65:b1:1c:73:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:21:45 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=e413e6de95f9024c4071e3c771cf94868fe3e6a94326ca410877eaefe16187ae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:9c:4f:ab:16:62:a8:69:76:94:ea:ef:b8:f6: 61:ca:e5:3d:62:20:ca:d9:b6:0f:e6:a3:b2:bc:09: 30:66:a7:99:4d:e2:8d:18:41:3e:dc:31:a5:0e:2a: d3:1a:3a:b0:3f:48:98:cd:1c:57:ee:72:d1:ca:26: f0:b8:a0:17:2e:77:8d:a6:90:5f:e1:b2:f2:5d:54: ec:b3:f6:33:76:71:08:64:e1:7c:f0:e4:d4:09:3a: e1:32:80:98:7c:2d:9c:e8:49:07:d0:c9:97:81:df: c6:c2:b7:4b:44:ed:45:04:5b:2b:f3:9c:96:f1:5e: f6:4c:bf:6e:63:67:51:20:27:26:8c:c3:4d:9a:7f: 65:08:86:34:83:af:31:ca:e4:13:fb:98:83:03:18: e5:94:c5:64:e2:6f:de:b5:a2:c2:16:1f:d8:12:ce: 66:ca:97:6d:f2:8b:fa:d8:8e:36:7d:ab:bc:bf:7c: 6f:ff:65:30:99:f3:8d:23:12:b2:11:33:c8:1e:c1: eb:f7:09:8d:99:c5:33:0b:b9:b1:44:6f:34:7f:42: 61:00:07:93:94:36:53:aa:5e:64:63:4b:e3:63:b9: 6f:91:9f:40:83:c6:db:bd:b8:d7:c8:fc:5c:cd:76: 3e:9b:b1:22:8b:37:c7:82:35:09:53:56:fc:c2:f5: 91:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:52:48:A3:CF:A7:1D:A1:55:6C:7E:2D:9D:E0:7E:91:78:12:DA:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2796caa1-61d5-4482-ab4f-0768d89e60ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.136.0/21 Signature Algorithm: sha256WithRSAEncryption 9d:e9:8d:97:f7:2d:b3:a3:50:65:f0:62:77:d7:c6:1d:08:c0: 26:fb:89:1d:1d:84:c2:df:b7:4e:4b:3e:9c:85:16:9d:1d:a4: 19:ee:66:f4:dc:bc:ec:36:0e:6d:fa:31:63:0f:9b:b9:e4:dc: 40:1d:d7:42:2d:26:87:ee:99:2d:0c:ad:1d:90:41:8c:92:5d: af:5d:c0:bf:d8:6b:a8:56:52:da:df:73:d1:30:b9:07:1a:26: 6b:1e:06:4f:76:1d:f2:2a:39:1b:65:03:a8:b5:30:49:63:74: 4f:49:af:95:da:5c:65:15:d9:d3:44:8d:e2:26:52:fb:c7:02: 0b:04:cc:5e:10:c1:c9:89:01:25:9f:94:9a:d9:b5:f8:46:bd: 0e:54:7f:28:25:87:78:41:15:ab:fd:ba:65:92:31:28:b2:95: 0e:39:f4:b4:3b:4f:ec:a8:3e:64:6e:d0:15:0d:07:78:70:2e: 46:65:28:d3:82:c0:f3:f9:10:53:f3:28:72:e3:6c:44:27:45: 25:fc:38:88:24:b3:1d:3f:15:89:8c:07:11:64:7f:75:59:d9: 7e:31:c2:7f:ad:24:55:11:5f:9a:66:3b:58:2e:e1:d9:f5:b9: 09:ab:00:8a:07:4c:36:b5:8e:a4:df:76:b6:a2:24:c9:9c:15: 83:27:8f:56 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfAno9ZgBez7TauI94gNOZbEcc/QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAyMTQ1WhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNDEzZTZkZTk1ZjkwMjRjNDA3MWUzYzc3MWNmOTQ4Njhm ZTNlNmE5NDMyNmNhNDEwODc3ZWFlZmUxNjE4N2FlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1nE+rFmKoaXaU6u+49mHK5T1iIMrZtg/mo7K8CTBmp5lN 4o0YQT7cMaUOKtMaOrA/SJjNHFfuctHKJvC4oBcud42mkF/hsvJdVOyz9jN2cQhk 4Xzw5NQJOuEygJh8LZzoSQfQyZeB38bCt0tE7UUEWyvznJbxXvZMv25jZ1EgJyaM w02af2UIhjSDrzHK5BP7mIMDGOWUxWTib961osIWH9gSzmbKl23yi/rYjjZ9q7y/ fG//ZTCZ840jErIRM8gewev3CY2ZxTMLubFEbzR/QmEAB5OUNlOqXmRjS+NjuW+R n0CDxtu9uNfI/FzNdj6bsSKLN8eCNQlTVvzC9ZHLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUAVJIo8+nHaFVbH4tneB+kXgS2hgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3OTZjYWExLTYxZDUtNDQ4Mi1hYjRmLTA3NjhkODllNjBmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjl4gwDQYJKoZIhvcNAQELBQADggEBAJ3pjZf3LbOjUGXwYnfXxh0IwCb7 iR0dhMLft05LPpyFFp0dpBnuZvTcvOw2Dm36MWMPm7nk3EAd10ItJofumS0MrR2Q QYySXa9dwL/Ya6hWUtrfc9EwuQcaJmseBk92HfIqORtlA6i1MEljdE9Jr5XaXGUV 2dNEjeImUvvHAgsEzF4QwcmJASWflJrZtfhGvQ5Ufyglh3hBFav9umWSMSiylQ45 9LQ7T+yoPmRu0BUNB3hwLkZlKNOCwPP5EFPzKHLjbEQnRSX8OIgksx0/FYmMBxFk f3VZ2X4xwn+tJFURX5pmO1gu4dn1uQmrAIoHTDa1jqTfdraiJMmcFYMnj1Y= -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:55 2026 by rpki-client