$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa File: 2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa (raw, json) Hash identifier: OSLT5aWIiU6LUEJvMYwSFMyE/ayJCRvj41PZPO8kNwI= Subject key identifier: E0:A7:14:58:11:5B:00:D9:34:08:0A:58:B8:6B:78:3E:C2:EB:F6:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 136771F5F2D6169856C8F85FF64D897ED43A3130 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa Signing time: Sat 28 Feb 2026 00:41:49 +0000 ROA not before: Sat 28 Feb 2026 00:41:49 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 95.69.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:67:71:f5:f2:d6:16:98:56:c8:f8:5f:f6:4d:89:7e:d4:3a:31:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:41:49 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=f394722f0d4ffdb8a18aeeadfc509a5b01f5b68fbbde88845aad72f1b9dea95e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:89:0d:93:9b:d9:47:b2:15:39:aa:f6:c7:ac: 29:c6:03:8b:24:0b:6c:b6:6f:c7:76:d2:df:47:d4: 19:17:46:0e:67:34:69:c3:bf:2d:91:0a:8f:b1:e2: b0:87:e8:6d:c7:b5:34:5a:44:a7:d4:c8:a1:5d:76: 53:39:34:57:4b:97:f0:0b:ac:4c:ae:9f:a1:7a:f3: 20:de:e5:be:a2:85:22:3d:8c:81:20:92:97:c0:84: 5b:de:9d:2f:74:0e:81:51:19:e5:d3:e9:f6:4d:24: e5:4a:3c:c7:87:1a:a2:34:3f:9d:bd:e1:e5:85:3f: df:ee:d0:4a:0a:f7:cf:19:86:39:28:02:b8:90:62: b9:fa:dc:38:fb:2f:54:9a:d7:2d:df:26:d7:fe:32: a5:be:4c:be:44:5c:23:94:d0:90:38:12:47:2a:ee: 3c:ae:29:14:1d:5d:65:2f:03:2a:49:4f:04:5e:c8: 1a:e9:47:a3:04:4e:10:95:17:25:92:48:c5:c1:ab: 07:96:d3:f1:1c:33:9d:23:62:86:92:4c:36:73:af: f1:4c:02:dd:ab:34:20:0b:b8:91:a5:42:a0:3e:91: b8:35:a5:9c:b1:2c:a6:eb:e1:9f:ac:be:c4:09:96: f1:f1:7e:d9:b8:4c:53:7a:88:db:b3:2f:ff:c5:25: 77:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:A7:14:58:11:5B:00:D9:34:08:0A:58:B8:6B:78:3E:C2:EB:F6:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2c9c5c08-7b7e-4bf3-815e-35f9962ced9e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.69.128.0/17 Signature Algorithm: sha256WithRSAEncryption c4:38:26:14:8c:29:85:2d:70:c0:1b:31:10:e7:2e:d6:56:7c: d0:1c:ee:64:62:66:68:7e:36:82:8d:08:a3:df:2d:6c:df:53: c5:d0:0b:80:8a:ef:98:a3:34:7b:73:ce:15:a3:16:c1:8f:74: 86:d4:f2:12:45:fc:05:c3:61:4c:96:29:d6:45:8b:72:49:7f: 8e:c8:38:97:a7:a8:ea:ac:09:26:db:1b:1b:46:db:df:fc:26: 48:61:5b:65:f7:e6:29:86:a3:d8:30:77:cb:77:2b:ef:92:6b: b9:1e:9d:60:86:30:b7:e8:67:56:7c:f4:e9:15:b9:ca:2c:78: f4:b2:70:67:35:0c:78:6a:6b:2f:0b:14:00:5d:c5:17:0d:cb: 5e:d0:f2:63:ee:69:32:70:de:bd:66:ba:5f:ea:93:c4:63:a9: fe:72:de:14:e3:63:ec:b4:d0:1e:68:80:28:3f:88:a4:d6:fc: d2:8c:59:26:a8:71:1d:db:30:a1:f9:d2:e3:5e:22:88:ed:76: 33:be:c6:70:a5:cb:4d:6a:9d:ff:65:7f:ac:2a:61:1d:fa:88: 2f:36:12:6b:f8:c0:18:1c:5d:ef:ea:cd:97:c6:07:3b:00:d9: c0:2d:c0:b6:f4:e0:2a:69:fb:0a:85:ee:9a:c1:49:e7:ff:31: ce:2f:95:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE2dx9fLWFphWyPhf9k2JftQ6MTAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDA0MTQ5WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzk0NzIyZjBkNGZmZGI4YTE4YWVlYWRmYzUwOWE1YjAx ZjViNjhmYmJkZTg4ODQ1YWFkNzJmMWI5ZGVhOTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCriQ2Tm9lHshU5qvbHrCnGA4skC2y2b8d20t9H1BkXRg5n NGnDvy2RCo+x4rCH6G3HtTRaRKfUyKFddlM5NFdLl/ALrEyun6F68yDe5b6ihSI9 jIEgkpfAhFvenS90DoFRGeXT6fZNJOVKPMeHGqI0P5294eWFP9/u0EoK988Zhjko AriQYrn63Dj7L1Sa1y3fJtf+MqW+TL5EXCOU0JA4Ekcq7jyuKRQdXWUvAypJTwRe yBrpR6METhCVFyWSSMXBqweW0/EcM50jYoaSTDZzr/FMAt2rNCALuJGlQqA+kbg1 pZyxLKbr4Z+svsQJlvHxftm4TFN6iNuzL//FJXc5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4KcUWBFbANk0CApYuGt4PsLr9sowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjOWM1YzA4LTdiN2UtNGJmMy04MTVlLTM1Zjk5NjJjZWQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdfRYAwDQYJKoZIhvcNAQELBQADggEBAMQ4JhSMKYUtcMAbMRDnLtZWfNAc 7mRiZmh+NoKNCKPfLWzfU8XQC4CK75ijNHtzzhWjFsGPdIbU8hJF/AXDYUyWKdZF i3JJf47IOJenqOqsCSbbGxtG29/8JkhhW2X35imGo9gwd8t3K++Sa7kenWCGMLfo Z1Z89OkVucosePSycGc1DHhqay8LFABdxRcNy17Q8mPuaTJw3r1mul/qk8Rjqf5y 3hTjY+y00B5ogCg/iKTW/NKMWSaocR3bMKH50uNeIojtdjO+xnCly01qnf9lf6wq YR36iC82Emv4wBgcXe/qzZfGBzsA2cAtwLb04Cpp+wqF7prBSef/Mc4vlWY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:16:07 2026 by rpki-client