$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa File: 27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa (raw, json) Hash identifier: xuGUXHpPtrWKr8qneXG+RSrvGFXUJ7hzorHpYne0Cw8= Subject key identifier: 15:FA:D1:3A:D4:D0:F8:3B:C5:12:81:78:32:AF:82:C1:D2:65:BF:E2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 23AA4539D449509436972BE894CDFF2A374F7593 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa Signing time: Sat 14 Feb 2026 00:21:09 +0000 ROA not before: Sat 14 Feb 2026 00:21:09 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.159.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:aa:45:39:d4:49:50:94:36:97:2b:e8:94:cd:ff:2a:37:4f:75:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 14 00:21:09 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=a0e83cfc2bf7297ac60e1245190bb7d7997189d96528f5ddf3ed2c442934dc63, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:a2:15:68:e2:e1:ce:63:64:b8:b5:24:21:39: b0:8c:77:83:0d:be:4a:19:19:8c:b1:11:9a:ac:83: e8:17:a9:1a:ba:98:f5:d8:ec:97:4f:92:1a:90:33: 37:0a:08:4d:de:31:4b:fd:b8:eb:fe:a5:1a:0a:62: 04:3a:83:31:06:eb:c0:b0:87:b4:38:e4:a8:2c:72: 0b:11:7e:71:21:e8:bf:df:ed:61:a5:bf:dd:a3:b3: 51:cd:00:a5:83:1c:3d:32:d0:8d:20:b5:4c:df:26: 34:93:cd:48:55:02:cf:0a:66:4f:18:cf:4d:1b:fc: 5b:05:7f:6d:36:e6:98:ec:5f:e0:2f:63:11:3a:7d: bc:52:f6:17:2b:2c:9e:f2:82:2f:e0:1a:d5:8f:b7: 30:f8:6a:19:f7:f0:58:bf:c3:c8:73:b0:88:15:17: 95:41:ff:c9:50:f5:b3:61:97:07:64:53:0d:70:a8: 42:ca:0e:e8:55:2e:3f:4f:9d:5b:46:7f:a6:16:ff: 83:e7:44:1f:a1:42:55:88:40:93:e6:fe:7f:57:78: b8:25:2c:b3:7d:de:6f:1f:db:14:30:e9:33:65:29: 07:ad:0c:e0:1a:74:29:47:63:d7:d3:e8:65:a2:8a: d4:e7:f4:4d:ae:55:05:9c:4b:43:65:0d:f7:70:90: 1e:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:FA:D1:3A:D4:D0:F8:3B:C5:12:81:78:32:AF:82:C1:D2:65:BF:E2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27c3395d-0d4e-4291-9ede-37f0981c2dfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.159.0/24 Signature Algorithm: sha256WithRSAEncryption 76:3b:84:69:0e:3c:96:78:19:69:c2:d2:bb:7e:43:3b:63:66: ea:a2:46:97:c8:9c:8a:69:49:18:fd:59:f9:df:d1:7f:f9:2d: ba:8d:69:52:bb:85:3b:5f:77:f5:86:e2:41:6f:68:a8:56:4a: c0:0b:c2:66:64:f9:c8:d4:72:3a:50:7a:19:eb:19:87:df:07: 53:68:6f:a4:cc:39:2f:ff:93:a3:79:10:ce:e2:07:04:bd:04: 43:26:78:ec:02:44:fd:d6:27:c3:8f:8d:a1:65:c6:6f:26:dd: ea:d7:ab:fd:21:17:ed:81:24:71:82:b1:da:69:97:d0:ce:20: 1a:b4:78:86:29:9a:82:34:29:f4:79:e6:ed:28:7f:d0:f1:0c: c8:88:61:bd:8f:9e:a3:fa:7a:31:ce:d3:2e:f0:0a:30:b1:c1: e1:da:50:ca:c0:60:e2:9b:ae:02:f1:f7:2f:70:2d:c3:ac:2e: 18:bd:f2:b2:63:89:f8:8c:76:bb:6c:b2:0e:fd:c2:36:91:6c: c0:85:f6:d3:5d:84:20:a1:a9:27:6a:21:52:1c:d7:db:b3:bb: c0:b0:49:e3:fa:77:95:12:a6:ce:7e:67:f8:85:97:c8:6e:ca: cd:4d:94:f1:43:f4:24:28:95:6f:98:c4:fe:3e:04:db:c9:99: 44:37:61:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI6pFOdRJUJQ2lyvolM3/KjdPdZMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE0MDAyMTA5WhcNMjYwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMGU4M2NmYzJiZjcyOTdhYzYwZTEyNDUxOTBiYjdkNzk5 NzE4OWQ5NjUyOGY1ZGRmM2VkMmM0NDI5MzRkYzYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDEohVo4uHOY2S4tSQhObCMd4MNvkoZGYyxEZqsg+gXqRq6 mPXY7JdPkhqQMzcKCE3eMUv9uOv+pRoKYgQ6gzEG68Cwh7Q45KgscgsRfnEh6L/f 7WGlv92js1HNAKWDHD0y0I0gtUzfJjSTzUhVAs8KZk8Yz00b/FsFf2025pjsX+Av YxE6fbxS9hcrLJ7ygi/gGtWPtzD4ahn38Fi/w8hzsIgVF5VB/8lQ9bNhlwdkUw1w qELKDuhVLj9PnVtGf6YW/4PnRB+hQlWIQJPm/n9XeLglLLN93m8f2xQw6TNlKQet DOAadClHY9fT6GWiitTn9E2uVQWcS0NlDfdwkB51AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFfrROtTQ+DvFEoF4Mq+CwdJlv+IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YzMzOTVkLTBkNGUtNDI5MS05ZWRlLTM3ZjA5ODFjMmRmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEp8wDQYJKoZIhvcNAQELBQADggEBAHY7hGkOPJZ4GWnC0rt+QztjZuqi RpfInIppSRj9Wfnf0X/5LbqNaVK7hTtfd/WG4kFvaKhWSsALwmZk+cjUcjpQehnr GYffB1Nob6TMOS//k6N5EM7iBwS9BEMmeOwCRP3WJ8OPjaFlxm8m3erXq/0hF+2B JHGCsdppl9DOIBq0eIYpmoI0KfR55u0of9DxDMiIYb2PnqP6ejHO0y7wCjCxweHa UMrAYOKbrgLx9y9wLcOsLhi98rJjifiMdrtssg79wjaRbMCF9tNdhCChqSdqIVIc 19uzu8CwSeP6d5USps5+Z/iFl8huys1NlPFD9CQolW+YxP4+BNvJmUQ3YXw= -----END CERTIFICATE-----Generated at Sun Mar 1 23:54:57 2026 by rpki-client