$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa File: 2f9e8f4f-538b-40a7-8959-829f09f79955.roa (raw, json) Hash identifier: MZT+qtalM3TWiJKYIt1dJbYR58M7sR1XdJnUkcvI6Hg= Subject key identifier: 9D:4B:AF:F5:83:4D:03:73:EA:2B:89:D2:F9:7C:38:16:D8:DC:2D:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 349DD68890C4518A43EF1787FEC99D076C122664 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa Signing time: Tue 24 Feb 2026 01:50:06 +0000 ROA not before: Tue 24 Feb 2026 01:50:06 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.52.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:9d:d6:88:90:c4:51:8a:43:ef:17:87:fe:c9:9d:07:6c:12:26:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:50:06 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=a9744814881632afdd3deb2077c6e7cf814823b1b43cb0d32d8b5115364d09f3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:a9:e1:89:63:c3:b4:42:f3:8a:18:62:31:72: 87:24:dd:0a:93:e6:a6:ef:20:de:91:4d:da:b7:3a: 28:4d:b8:17:bd:0d:a4:57:1d:1f:9f:b1:ca:4e:af: 12:13:8d:e0:1a:d0:84:a4:e6:bf:3b:20:c7:ff:1f: e3:5a:83:cb:d9:3b:3c:af:13:cf:9c:0b:72:81:5e: df:1e:02:59:82:c2:86:79:ba:51:cb:54:e4:91:62: ba:9e:67:07:27:e6:91:30:13:5f:a9:fd:bd:43:95: 44:10:e4:cd:90:06:72:ad:d1:43:d4:cc:49:80:d3: f2:e3:96:f0:11:39:c9:b8:00:6b:52:1d:f6:8b:df: e4:21:a2:0f:ce:1b:df:50:a3:bf:cd:fc:0e:16:22: ca:bc:0e:54:79:54:64:f3:74:14:52:05:9f:2b:47: 56:7d:49:8c:5a:54:e5:b6:25:5a:3f:4f:1d:fd:16: e9:a4:5b:b0:3c:7e:76:9d:a3:01:2f:36:c1:29:78: 2e:48:d7:bf:f3:86:bb:8e:63:c8:73:63:c8:1a:3a: 6e:1f:f5:82:ba:4c:5f:85:16:c7:b1:59:fb:bd:1b: 98:0f:da:1d:cc:d6:51:7a:70:ad:16:cc:6c:7d:fe: c1:2e:73:3a:e9:8b:7f:8a:67:29:a2:a6:10:48:4b: d5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:4B:AF:F5:83:4D:03:73:EA:2B:89:D2:F9:7C:38:16:D8:DC:2D:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f9e8f4f-538b-40a7-8959-829f09f79955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.52.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:c9:65:ca:aa:50:d6:8a:94:59:54:94:e5:72:aa:85:21:07: c3:d0:ed:10:3a:15:63:ca:e0:3b:f7:98:41:e4:38:2b:c0:9d: 19:ef:60:9e:7d:18:a7:68:b8:a6:61:d8:e4:1e:e8:78:d4:06: 70:67:bc:46:0c:56:1a:9e:de:0d:cc:e9:dd:0d:d1:0d:58:e4: fa:f1:91:f8:d6:84:ff:f9:95:26:b7:86:c3:43:f7:b3:83:21: 9d:33:23:78:89:b8:8b:d9:cc:a9:02:42:a1:44:a8:9d:cd:9d: 68:81:16:01:86:36:63:16:c8:b8:4e:25:9d:95:1c:44:78:72: 29:1e:f8:86:28:cc:01:cc:fb:48:79:25:64:bc:a5:6e:e8:c9: 87:7c:8c:4b:17:ba:95:54:f5:28:d7:8e:af:2d:d9:32:d6:57: d0:15:36:cf:40:53:48:b9:f8:b7:e0:52:ad:6b:a9:22:c2:e9: ea:ae:7e:a7:c3:97:30:df:e5:1d:85:2a:ef:63:12:f6:d5:e4: 39:c8:39:a5:be:b9:04:34:41:60:b0:05:b6:35:11:78:92:3f: 33:44:5a:ff:7c:d6:a2:a3:92:6c:dc:1c:59:2a:70:99:ed:72: 5f:bf:86:02:a0:4a:04:af:8b:e2:00:c6:6f:0f:80:9a:28:34: ba:56:c5:72 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNJ3WiJDEUYpD7xeH/smdB2wSJmQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDE1MDA2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhOTc0NDgxNDg4MTYzMmFmZGQzZGViMjA3N2M2ZTdjZjgx NDgyM2IxYjQzY2IwZDMyZDhiNTExNTM2NGQwOWYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpqeGJY8O0QvOKGGIxcock3QqT5qbvIN6RTdq3OihNuBe9 DaRXHR+fscpOrxITjeAa0ISk5r87IMf/H+Nag8vZOzyvE8+cC3KBXt8eAlmCwoZ5 ulHLVOSRYrqeZwcn5pEwE1+p/b1DlUQQ5M2QBnKt0UPUzEmA0/LjlvAROcm4AGtS HfaL3+Qhog/OG99Qo7/N/A4WIsq8DlR5VGTzdBRSBZ8rR1Z9SYxaVOW2JVo/Tx39 FumkW7A8fnadowEvNsEpeC5I17/zhruOY8hzY8gaOm4f9YK6TF+FFsexWfu9G5gP 2h3M1lF6cK0WzGx9/sEuczrpi3+KZymiphBIS9VRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnUuv9YNNA3PqK4nS+Xw4FtjcLYcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmOWU4ZjRmLTUzOGItNDBhNy04OTU5LTgyOWYwOWY3OTk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNDANBgkqhkiG9w0BAQsFAAOCAQEANcllyqpQ1oqUWVSU5XKqhSEHw9Dt EDoVY8rgO/eYQeQ4K8CdGe9gnn0Yp2i4pmHY5B7oeNQGcGe8RgxWGp7eDczp3Q3R DVjk+vGR+NaE//mVJreGw0P3s4MhnTMjeIm4i9nMqQJCoUSonc2daIEWAYY2YxbI uE4lnZUcRHhyKR74hijMAcz7SHklZLylbujJh3yMSxe6lVT1KNeOry3ZMtZX0BU2 z0BTSLn4t+BSrWupIsLp6q5+p8OXMN/lHYUq72MS9tXkOcg5pb65BDRBYLAFtjUR eJI/M0Ra/3zWoqOSbNwcWSpwme1yX7+GAqBKBK+L4gDGbw+Amig0ulbFcg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:55 2026 by rpki-client