$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f243fe6-341e-47d0-b6c0-16d041ff88be.roa File: 2f243fe6-341e-47d0-b6c0-16d041ff88be.roa (raw, json) Hash identifier: IkC7hJAsmdCF//S22wj5f0bzjEKArrlsnHqBiA4JbD4= Subject key identifier: 78:54:C3:8D:7D:BB:24:BF:12:34:FF:1D:60:08:0D:BB:74:CB:EC:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36314E8ECA8333E92C2E119A512FBBA15F52ED13 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f243fe6-341e-47d0-b6c0-16d041ff88be.roa Signing time: Thu 26 Feb 2026 01:01:25 +0000 ROA not before: Thu 26 Feb 2026 01:01:25 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:31:4e:8e:ca:83:33:e9:2c:2e:11:9a:51:2f:bb:a1:5f:52:ed:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:01:25 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=fe5b3e6dd9c64026ad865eadf2b4a9f0c3856cfafcc78a8d0b4e98b23fde1a23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:4c:34:c0:db:5a:04:24:ea:23:41:3b:a8:71: aa:47:d6:a6:e4:d2:7b:8e:41:dd:a7:71:1c:62:00: 0d:a5:01:88:10:de:e1:3a:a2:6f:79:07:79:86:8e: ab:f3:45:ff:e1:cb:d7:91:c5:d5:de:25:75:f8:fe: 92:6b:65:b3:99:1d:75:ef:8a:34:d6:96:b3:b2:e9: 15:e9:eb:6a:57:d1:26:2f:d9:aa:95:0c:df:12:1e: 9e:e6:33:d3:a6:54:86:88:9e:14:97:d3:7b:8c:84: dd:5f:73:73:8c:c3:96:b8:12:00:9e:92:12:52:32: 47:b0:89:0b:b2:30:f2:2f:7b:47:84:6c:12:77:f2: ee:8b:62:47:79:1c:59:b4:27:6c:a0:db:7c:13:42: 7d:92:27:d3:ce:a1:bf:63:fd:cc:99:0c:0f:16:cc: 24:2a:1b:8e:bf:3f:2e:f7:96:eb:6e:b2:02:73:3f: 8f:2a:da:1b:1f:b6:e0:34:e0:db:2b:19:55:f3:0d: a0:da:d8:48:71:69:95:32:a6:5e:36:43:fb:87:0e: 9a:16:c3:8f:fc:c4:51:f6:5c:44:d1:97:ea:a9:d9: fe:48:59:0a:65:f3:6e:1c:39:34:00:24:50:40:f9: f8:a5:3d:b2:89:1d:ea:53:de:bd:bd:6c:82:0b:b6: 1c:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:54:C3:8D:7D:BB:24:BF:12:34:FF:1D:60:08:0D:BB:74:CB:EC:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f243fe6-341e-47d0-b6c0-16d041ff88be.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.163.0/24 Signature Algorithm: sha256WithRSAEncryption 5b:75:cc:50:37:c3:4e:83:7c:59:09:fb:dd:ad:f4:83:73:d1: 4c:5d:47:ec:be:41:9a:ca:92:4e:e2:6c:a7:d9:8b:ba:f6:9e: 0b:45:84:b0:fd:88:ad:d2:69:5f:50:60:0e:47:32:d6:5b:a7: 3c:8d:12:4f:cb:e3:30:20:de:27:c5:c7:2f:3b:5c:a5:bc:0c: 4d:45:3a:5e:25:29:ea:23:35:37:93:f9:69:4f:71:c6:da:1a: 47:11:17:6f:64:a3:72:05:5c:b8:43:ae:0a:19:d0:09:77:84: 8e:77:26:d8:96:3e:fa:61:47:36:41:f0:f9:6b:0c:1f:43:94: 7e:b5:20:73:cd:91:bc:ea:2d:1f:eb:dc:11:b6:47:72:47:16: cb:9e:3e:6b:68:12:86:8c:c9:d8:4a:5e:23:f7:05:a9:c7:39: 5d:4e:90:17:55:1f:84:df:64:6f:6d:b8:89:98:9e:f1:58:80: 06:6c:7a:d9:1a:a8:15:c1:c9:58:fc:26:e6:91:88:29:ef:fd: ed:5a:87:70:6f:02:44:b3:a0:ba:30:c8:90:d0:1a:e3:80:dc: 61:a5:07:4e:ee:33:fb:96:01:d9:87:9d:b0:1a:13:97:0c:95: 56:8c:31:fe:d6:26:fc:92:43:c9:09:6c:b4:ce:b7:8f:28:d2: 77:4d:db:ce -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNjFOjsqDM+ksLhGaUS+7oV9S7RMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMTI1WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZTViM2U2ZGQ5YzY0MDI2YWQ4NjVlYWRmMmI0YTlmMGMz ODU2Y2ZhZmNjNzhhOGQwYjRlOThiMjNmZGUxYTIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOTDTA21oEJOojQTuocapH1qbk0nuOQd2ncRxiAA2lAYgQ 3uE6om95B3mGjqvzRf/hy9eRxdXeJXX4/pJrZbOZHXXvijTWlrOy6RXp62pX0SYv 2aqVDN8SHp7mM9OmVIaInhSX03uMhN1fc3OMw5a4EgCekhJSMkewiQuyMPIve0eE bBJ38u6LYkd5HFm0J2yg23wTQn2SJ9POob9j/cyZDA8WzCQqG46/Py73lutusgJz P48q2hsftuA04NsrGVXzDaDa2EhxaZUypl42Q/uHDpoWw4/8xFH2XETRl+qp2f5I WQpl824cOTQAJFBA+filPbKJHepT3r29bIILthyLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUeFTDjX27JL8SNP8dYAgNu3TL7F4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmMjQzZmU2LTM0MWUtNDdkMC1iNmMwLTE2ZDA0MWZmODhiZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFAKMwDQYJKoZIhvcNAQELBQADggEBAFt1zFA3w06DfFkJ+92t9INz0Uxd R+y+QZrKkk7ibKfZi7r2ngtFhLD9iK3SaV9QYA5HMtZbpzyNEk/L4zAg3ifFxy87 XKW8DE1FOl4lKeojNTeT+WlPccbaGkcRF29ko3IFXLhDrgoZ0Al3hI53JtiWPvph RzZB8PlrDB9DlH61IHPNkbzqLR/r3BG2R3JHFsuePmtoEoaMydhKXiP3BanHOV1O kBdVH4TfZG9tuImYnvFYgAZsetkaqBXByVj8JuaRiCnv/e1ah3BvAkSzoLowyJDQ GuOA3GGlB07uM/uWAdmHnbAaE5cMlVaMMf7WJvySQ8kJbLTOt48o0ndN284= -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:05 2026 by rpki-client