$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cb0886c-84f4-4dc8-9e04-ce333348794a.roa File: 2cb0886c-84f4-4dc8-9e04-ce333348794a.roa (raw, json) Hash identifier: T/UNOlx8xCzhr7zMiXova0k77w109SjUZqoR7leip/4= Subject key identifier: 8B:D4:49:DA:CC:3B:CC:34:6D:1C:18:F2:DC:C0:AC:3A:E9:92:C7:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4DE32F2C1549B1515921660419506F24C608E2B1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cb0886c-84f4-4dc8-9e04-ce333348794a.roa Signing time: Wed 18 Feb 2026 00:20:03 +0000 ROA not before: Wed 18 Feb 2026 00:20:03 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 115.176.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:e3:2f:2c:15:49:b1:51:59:21:66:04:19:50:6f:24:c6:08:e2:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 00:20:03 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=76a07198d33f9c24bafac1ce9153c08eb05ad90dcfb801374873795f7aaf543e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:14:40:7b:03:2f:58:84:ba:29:73:6e:18:11: 2e:6c:d6:b9:75:d9:27:a6:56:55:e4:56:c3:29:a2: ab:66:e2:01:c8:0b:35:38:9c:d8:28:6d:d1:c8:5b: 8e:d6:b8:75:6a:83:a3:04:d4:04:74:61:b1:77:69: 18:01:f0:20:59:16:ee:50:0c:8c:71:56:b3:e9:07: 84:cb:76:f3:1d:bd:f6:d0:95:c3:d7:2c:a4:fb:f1: c0:6d:36:f4:40:9a:9e:5d:7d:7b:7d:b4:d0:62:16: af:2d:cb:bc:3b:5b:26:be:9d:93:06:0d:03:09:6e: d2:25:e6:cf:fe:f0:74:58:b3:eb:24:85:22:b1:af: 71:bc:de:18:5d:f4:b1:3c:1a:d6:a3:7d:7e:0c:c9: bc:e1:7c:e5:dd:c1:05:11:41:12:cf:93:e5:f6:6c: 1d:17:b7:61:28:5c:0d:91:aa:e2:78:17:8a:c2:9a: 85:09:07:12:7d:2b:a2:26:c5:2b:96:e7:77:60:aa: 56:08:9c:90:3b:b8:f4:07:d3:58:05:25:78:62:20: c8:9f:6c:da:03:a6:60:98:e1:56:b3:b4:01:89:e9: 61:ac:09:f3:7a:f6:a7:b1:2a:d6:fe:bb:87:de:f6: a6:07:c1:09:f5:18:8a:cb:09:cd:9e:c9:4d:eb:05: ee:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:D4:49:DA:CC:3B:CC:34:6D:1C:18:F2:DC:C0:AC:3A:E9:92:C7:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2cb0886c-84f4-4dc8-9e04-ce333348794a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 115.176.0.0/17 Signature Algorithm: sha256WithRSAEncryption 99:9a:7b:b1:a0:e9:a7:2e:1b:d2:b5:52:9b:55:8f:65:48:38: 41:0a:10:22:34:d4:14:65:8b:46:38:7a:71:bb:bf:1e:21:0e: 42:06:79:15:2f:d3:96:3c:0a:9d:88:22:aa:34:83:a5:e1:41: c9:35:ba:e9:a6:91:66:79:3e:b8:c8:d4:8f:5f:24:3e:c8:0c: 12:5e:da:85:73:f6:98:8c:c1:1f:5d:18:5e:e2:c4:0b:7f:2a: 10:f6:e9:44:14:55:60:13:dd:93:61:01:dd:bb:76:31:98:ba: e0:8e:95:cb:4a:81:41:9f:18:59:49:c3:22:00:76:b7:7b:6c: b2:ef:4f:78:5c:ef:2f:57:72:69:ee:9f:44:3d:f8:cc:28:83: 0a:cb:84:81:99:2c:fb:60:54:3f:a3:92:58:00:a3:d7:47:44: 47:a8:bf:80:54:8f:b7:ae:2d:4b:23:81:3b:b2:ad:11:11:69: 16:8c:57:c9:ec:02:9c:c0:82:a7:4f:06:f7:74:03:dc:25:93: a1:61:75:04:dd:43:d6:57:12:64:5b:a9:8f:45:6c:5d:2d:d4: 8d:06:d4:f4:d2:3b:ed:1f:df:0e:be:8c:dd:e4:5f:ed:3a:5d: 2b:ac:12:00:fe:f9:2b:d1:05:b3:57:38:ae:54:d9:a2:46:ea: 62:ea:5b:47 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTeMvLBVJsVFZIWYEGVBvJMYI4rEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE4MDAyMDAzWhcNMjYwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NmEwNzE5OGQzM2Y5YzI0YmFmYWMxY2U5MTUzYzA4ZWIw NWFkOTBkY2ZiODAxMzc0ODczNzk1ZjdhYWY1NDNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3FEB7Ay9YhLopc24YES5s1rl12SemVlXkVsMpoqtm4gHI CzU4nNgobdHIW47WuHVqg6ME1AR0YbF3aRgB8CBZFu5QDIxxVrPpB4TLdvMdvfbQ lcPXLKT78cBtNvRAmp5dfXt9tNBiFq8ty7w7Wya+nZMGDQMJbtIl5s/+8HRYs+sk hSKxr3G83hhd9LE8GtajfX4MybzhfOXdwQURQRLPk+X2bB0Xt2EoXA2RquJ4F4rC moUJBxJ9K6ImxSuW53dgqlYInJA7uPQH01gFJXhiIMifbNoDpmCY4VaztAGJ6WGs CfN69qexKtb+u4fe9qYHwQn1GIrLCc2eyU3rBe5dAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUi9RJ2sw7zDRtHBjy3MCsOumSx1cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJjYjA4ODZjLTg0ZjQtNGRjOC05ZTA0LWNlMzMzMzQ4Nzk0YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdzsAAwDQYJKoZIhvcNAQELBQADggEBAJmae7Gg6acuG9K1UptVj2VIOEEK ECI01BRli0Y4enG7vx4hDkIGeRUv05Y8Cp2IIqo0g6XhQck1uummkWZ5PrjI1I9f JD7IDBJe2oVz9piMwR9dGF7ixAt/KhD26UQUVWAT3ZNhAd27djGYuuCOlctKgUGf GFlJwyIAdrd7bLLvT3hc7y9Xcmnun0Q9+MwogwrLhIGZLPtgVD+jklgAo9dHREeo v4BUj7euLUsjgTuyrRERaRaMV8nsApzAgqdPBvd0A9wlk6FhdQTdQ9ZXEmRbqY9F bF0t1I0G1PTSO+0f3w6+jN3kX+06XSusEgD++SvRBbNXOK5U2aJG6mLqW0c= -----END CERTIFICATE-----Generated at Mon Mar 2 10:51:36 2026 by rpki-client