$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fa354da-deef-4ef4-8608-88cced029ec6.roa File: 2fa354da-deef-4ef4-8608-88cced029ec6.roa (raw, json) Hash identifier: Oviyhc6RdIqqFculc3vjFEwSUC6K6yRpt52C9+tfST8= Subject key identifier: FB:E5:16:99:DF:47:96:0F:EE:39:29:1C:14:E9:50:4A:F7:AA:17:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6FC19CE8AC4C9A135C6C359D31E197A82CF1BDB3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fa354da-deef-4ef4-8608-88cced029ec6.roa Signing time: Tue 17 Feb 2026 00:30:07 +0000 ROA not before: Tue 17 Feb 2026 00:30:07 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 66.245.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:c1:9c:e8:ac:4c:9a:13:5c:6c:35:9d:31:e1:97:a8:2c:f1:bd:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 00:30:07 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=8e664e934452ecfe6e093e601e466e4884d60187a0371ec6998a46f600f8b7d6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fc:87:09:96:34:24:80:89:41:c3:16:8c:78: df:78:8f:ef:16:90:0d:b2:83:4e:30:44:98:05:a5: 52:70:ec:af:55:93:09:c5:0b:19:70:38:6d:28:44: 55:24:4b:73:98:3b:89:29:b5:41:c6:b7:91:c3:0a: b8:4a:ae:66:eb:7f:3c:63:96:47:4e:ba:5b:df:1b: fc:4f:d5:17:5f:10:a5:d0:59:a7:67:70:8a:dd:3c: 41:6b:8a:e4:63:11:6d:59:b5:dc:66:01:c6:a9:29: 61:56:10:63:e4:5f:21:a6:d5:59:38:36:ab:71:3d: da:85:37:39:79:88:d7:6d:b8:8a:d4:4d:b3:e5:59: 65:f4:08:7a:f1:c8:ef:9a:cd:58:07:bf:c5:4f:b1: a3:03:b2:55:65:80:97:42:44:58:5a:ea:b9:f1:80: 03:cd:f0:61:ff:0d:bd:ce:c0:f6:c3:fa:3f:78:47: 4b:79:d5:78:f1:d3:87:83:37:16:0d:c2:6d:3c:8c: a4:80:db:9f:d1:bb:19:3d:68:5f:2d:b4:a4:7e:83: bf:c8:93:11:51:93:ee:35:05:e6:44:98:bd:73:4c: 87:c3:55:88:eb:2f:a5:8c:e7:9a:bb:6f:75:34:97: 98:ba:f6:92:8c:21:80:c9:62:b1:e9:9e:cf:e0:71: 54:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FB:E5:16:99:DF:47:96:0F:EE:39:29:1C:14:E9:50:4A:F7:AA:17:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2fa354da-deef-4ef4-8608-88cced029ec6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.245.0.0/17 Signature Algorithm: sha256WithRSAEncryption 8f:c0:0a:06:e3:23:15:86:e5:e7:7e:67:f4:8d:85:87:81:c7: b5:67:27:1e:c7:b8:8f:64:52:23:8a:9c:08:ba:6f:8a:4c:20: 3e:f8:e7:4c:22:0c:74:d8:3c:e9:4e:16:f2:67:71:29:13:f8: 33:c0:14:45:79:14:8c:59:37:5a:c2:bb:ee:24:ce:0e:36:06: 9f:27:11:7b:9a:35:25:e9:98:af:85:51:93:78:8a:42:18:e1: 1e:94:75:01:2b:c0:09:f4:08:a3:b8:c1:b8:b3:6f:a0:a3:e6: 85:bb:b9:b8:e7:b9:76:0d:a0:7e:b9:d5:af:de:e9:e3:65:de: 8b:83:a1:2b:09:e8:a4:9f:62:2a:aa:88:b1:a3:b1:11:e6:66: 65:01:2e:d7:b4:bf:06:26:5e:31:99:47:70:29:d2:6b:fb:b9: ea:91:fb:ea:2c:48:28:a0:df:56:d2:ab:8f:b1:f9:5b:77:16: 54:9f:1a:10:46:3f:63:24:1d:83:48:c1:9b:2c:3e:e4:36:cb: ce:e8:bb:eb:ed:10:f0:d6:9e:d5:c0:40:5d:7e:d8:80:ca:e0: 68:51:04:46:a0:86:18:ba:11:27:97:10:22:96:0d:b1:5c:61: 47:b1:ff:04:a1:64:88:39:33:79:8f:c0:36:cf:bd:1b:35:1b: bb:57:41:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUb8Gc6KxMmhNcbDWdMeGXqCzxvbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDAzMDA3WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZTY2NGU5MzQ0NTJlY2ZlNmUwOTNlNjAxZTQ2NmU0ODg0 ZDYwMTg3YTAzNzFlYzY5OThhNDZmNjAwZjhiN2Q2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCz/IcJljQkgIlBwxaMeN94j+8WkA2yg04wRJgFpVJw7K9V kwnFCxlwOG0oRFUkS3OYO4kptUHGt5HDCrhKrmbrfzxjlkdOulvfG/xP1RdfEKXQ WadncIrdPEFriuRjEW1ZtdxmAcapKWFWEGPkXyGm1Vk4NqtxPdqFNzl5iNdtuIrU TbPlWWX0CHrxyO+azVgHv8VPsaMDslVlgJdCRFha6rnxgAPN8GH/Db3OwPbD+j94 R0t51Xjx04eDNxYNwm08jKSA25/Ruxk9aF8ttKR+g7/IkxFRk+41BeZEmL1zTIfD VYjrL6WM55q7b3U0l5i69pKMIYDJYrHpns/gcVR7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU++UWmd9Hlg/uOSkcFOlQSveqFwowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmYTM1NGRhLWRlZWYtNGVmNC04NjA4LTg4Y2NlZDAyOWVjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdC9QAwDQYJKoZIhvcNAQELBQADggEBAI/ACgbjIxWG5ed+Z/SNhYeBx7Vn Jx7HuI9kUiOKnAi6b4pMID7450wiDHTYPOlOFvJncSkT+DPAFEV5FIxZN1rCu+4k zg42Bp8nEXuaNSXpmK+FUZN4ikIY4R6UdQErwAn0CKO4wbizb6Cj5oW7ubjnuXYN oH651a/e6eNl3ouDoSsJ6KSfYiqqiLGjsRHmZmUBLte0vwYmXjGZR3Ap0mv7ueqR ++osSCig31bSq4+x+Vt3FlSfGhBGP2MkHYNIwZssPuQ2y87ou+vtEPDWntXAQF1+ 2IDK4GhRBEaghhi6ESeXECKWDbFcYUex/wShZIg5M3mPwDbPvRs1G7tXQZ4= -----END CERTIFICATE-----Generated at Mon Mar 2 00:08:04 2026 by rpki-client