$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa File: 2d163000-da92-4a82-87fe-0bc2263033d1.roa (raw, json) Hash identifier: tw3bFh5ZxTSdyfzJwaKRMssOYQtCwN/cz2ONNLhuklA= Subject key identifier: 7F:09:85:EA:77:34:EE:42:9F:5B:36:90:8D:40:16:81:2C:99:79:1D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 507EBC02D3DBE90A93DD6C526F47BC9D5DFDDD5D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa Signing time: Tue 17 Feb 2026 00:20:43 +0000 ROA not before: Tue 17 Feb 2026 00:20:43 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 78.12.64.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:7e:bc:02:d3:db:e9:0a:93:dd:6c:52:6f:47:bc:9d:5d:fd:dd:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 00:20:43 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=57409eb24c24ac77388af57d9531cb620873c2147357b4b6233bac239bdb8d39, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:3b:7b:d2:da:35:24:49:a0:91:f0:33:d2:f1: c7:23:23:e5:24:e2:bd:92:a8:b8:27:f0:62:e2:b6: 1f:20:82:67:5f:db:08:e3:b9:45:4a:97:b2:76:f6: bb:55:5a:16:0f:23:28:07:a1:b9:e8:9d:b7:36:b4: 94:95:bb:8b:cd:0d:05:dc:59:dd:a4:f0:48:26:3d: 24:53:70:6c:4d:a4:bc:6f:f1:05:b9:7a:8e:25:0c: a6:93:b9:1c:3a:ad:ad:0e:8c:61:f1:95:83:59:08: ae:7e:8b:25:af:e3:3e:f7:aa:44:c4:bc:8f:d0:76: d6:83:44:0d:ee:62:1e:a1:f5:00:7e:c0:57:f3:83: ad:e9:64:4e:03:28:e0:f2:6c:24:8c:b4:15:44:20: d1:af:f1:8d:ed:83:8a:e1:93:c6:b3:04:6a:f6:8d: 6d:91:ea:32:d8:11:45:4f:51:25:18:9d:4f:69:f7: 5e:b5:86:cf:d0:cf:19:e4:dd:27:10:d0:d1:f4:05: 28:ca:4c:b4:07:c0:c9:38:1d:92:f6:d0:87:cb:36: 2c:53:e2:5a:22:89:63:7b:57:15:05:b4:44:ac:68: d7:42:0c:b5:68:15:16:4d:db:57:ac:d7:88:92:b1: e9:43:88:c2:01:0a:c8:95:9a:c8:fc:0d:7a:ae:a5: 22:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:09:85:EA:77:34:EE:42:9F:5B:36:90:8D:40:16:81:2C:99:79:1D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2d163000-da92-4a82-87fe-0bc2263033d1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 78.12.64.0/23 Signature Algorithm: sha256WithRSAEncryption 83:03:98:c9:f2:b1:af:f1:3c:34:d3:52:1a:5a:29:f9:6f:7f: c5:9d:bc:c4:54:eb:03:8d:69:b9:21:fe:63:21:a6:90:b7:25: bc:96:72:0a:3c:4d:6b:a7:3d:58:d2:2c:a3:72:c6:ca:8c:8f: 26:3d:a4:43:6b:62:6a:97:f9:e1:79:28:26:cc:d1:17:09:c2: 13:50:49:83:2f:a1:7b:85:e3:6d:5c:b0:5a:55:a0:be:3d:6e: f9:37:6a:9d:43:73:b8:27:94:10:7b:e8:a1:d8:73:a2:0f:25: 23:23:1a:d9:b6:03:b2:87:23:35:52:a0:83:ed:44:2a:bc:a9: 9f:cd:3b:a3:99:4d:71:74:a8:a0:fd:57:ae:20:65:e0:72:c2: ca:95:34:b2:99:ee:5f:62:af:cb:05:eb:c2:19:3b:65:fa:1c: e5:fc:07:62:80:97:68:d2:26:af:a0:01:9b:94:ca:6f:fe:94: f3:f2:15:2c:46:54:24:2b:c3:b8:c0:cf:68:f5:9d:cf:d5:55: a6:7e:be:e6:5f:ad:a7:73:d1:03:bc:b4:2c:78:cb:6d:f1:dc: a5:04:8d:b0:a4:2b:50:b0:29:ca:44:8e:3c:f0:27:61:e3:8e: df:93:3e:7a:7c:bf:2c:dc:cb:0f:ce:d2:be:f4:24:70:d1:50: 7b:39:ae:60 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUH68AtPb6QqT3WxSb0e8nV393V0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDAyMDQzWhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NzQwOWViMjRjMjRhYzc3Mzg4YWY1N2Q5NTMxY2I2MjA4 NzNjMjE0NzM1N2I0YjYyMzNiYWMyMzliZGI4ZDM5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsO3vS2jUkSaCR8DPS8ccjI+Uk4r2SqLgn8GLith8ggmdf 2wjjuUVKl7J29rtVWhYPIygHobnonbc2tJSVu4vNDQXcWd2k8EgmPSRTcGxNpLxv 8QW5eo4lDKaTuRw6ra0OjGHxlYNZCK5+iyWv4z73qkTEvI/QdtaDRA3uYh6h9QB+ wFfzg63pZE4DKODybCSMtBVEINGv8Y3tg4rhk8azBGr2jW2R6jLYEUVPUSUYnU9p 9161hs/Qzxnk3ScQ0NH0BSjKTLQHwMk4HZL20IfLNixT4loiiWN7VxUFtESsaNdC DLVoFRZN21es14iSselDiMIBCsiVmsj8DXqupSLdAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfwmF6nc07kKfWzaQjUAWgSyZeR0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJkMTYzMDAwLWRhOTItNGE4Mi04N2ZlLTBiYzIyNjMwMzNkMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFODEAwDQYJKoZIhvcNAQELBQADggEBAIMDmMnysa/xPDTTUhpaKflvf8Wd vMRU6wONabkh/mMhppC3JbyWcgo8TWunPVjSLKNyxsqMjyY9pENrYmqX+eF5KCbM 0RcJwhNQSYMvoXuF421csFpVoL49bvk3ap1Dc7gnlBB76KHYc6IPJSMjGtm2A7KH IzVSoIPtRCq8qZ/NO6OZTXF0qKD9V64gZeBywsqVNLKZ7l9ir8sF68IZO2X6HOX8 B2KAl2jSJq+gAZuUym/+lPPyFSxGVCQrw7jAz2j1nc/VVaZ+vuZfradz0QO8tCx4 y23x3KUEjbCkK1CwKcpEjjzwJ2Hjjt+TPnp8vyzcyw/O0r70JHDRUHs5rmA= -----END CERTIFICATE-----Generated at Mon Mar 2 00:09:01 2026 by rpki-client