$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa File: 30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa (raw, json) Hash identifier: Lm3f7BpFtneoQyH+uKics9VySGQXhwNupd+IMB+kufE= Subject key identifier: DE:4C:25:8F:AA:2D:AA:EE:4D:96:82:AC:C6:CE:90:3E:27:F0:49:96 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7B0D50361B51AEDA4BBB49E797229B25604315CF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa Signing time: Sun 15 Feb 2026 00:40:05 +0000 ROA not before: Sun 15 Feb 2026 00:40:05 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 68.67.224.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:0d:50:36:1b:51:ae:da:4b:bb:49:e7:97:22:9b:25:60:43:15:cf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:40:05 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=3a2b5a03c75ee484b2369b16bad6c2e97f2a601e503ee616517797312073da66, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:5a:1f:cb:33:4e:11:46:f6:6b:b7:78:97:e1: 33:73:09:cd:b2:9a:47:c3:88:3a:f4:d6:2f:36:d1: 81:e4:93:3e:91:65:3e:dd:7c:ed:1a:b6:9a:fa:77: 6f:4c:55:87:f6:dd:ae:50:14:e6:b3:fc:39:53:b2: f0:64:88:92:75:a5:3c:06:9d:64:39:b2:72:bf:fb: 5b:2a:d4:24:4d:99:b5:6b:32:3b:91:a7:23:51:81: be:2e:93:e7:5f:65:db:f0:c6:94:f7:2f:46:68:75: 10:a2:cb:45:be:b1:f2:fd:29:94:84:02:0b:9a:f0: be:3e:f8:1e:4b:b3:48:60:25:20:1a:e0:a7:7e:f2: d2:b8:5b:27:09:1a:32:a4:f3:e0:a7:90:19:84:f8: c3:c5:6b:e7:4c:85:09:b3:f0:b4:ca:8e:71:17:bf: b0:c0:17:7f:f7:24:d7:ea:99:51:d8:71:15:13:e1: 0d:36:92:3b:18:b0:ac:28:e5:3e:fc:b6:78:23:a4: c1:ed:a9:06:69:ef:0c:94:12:f4:94:19:ab:97:49: 29:e0:f2:fe:f5:41:5b:f8:51:b6:a2:0c:e7:8d:d3: f2:63:8e:be:ad:f3:c5:3e:c2:1f:61:78:bd:93:fa: 38:e9:fa:bd:46:7a:87:c3:83:bd:d4:1a:88:8e:bd: 1c:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:4C:25:8F:AA:2D:AA:EE:4D:96:82:AC:C6:CE:90:3E:27:F0:49:96 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30a99871-ae35-4d50-8e6a-d2849f20a0bd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.67.224.0/20 Signature Algorithm: sha256WithRSAEncryption b3:a4:9f:30:de:d6:d6:a6:4c:32:32:6e:17:60:dc:75:d8:34: 6b:a3:be:f1:f1:2f:22:99:6c:f2:7b:7e:d3:17:8d:e2:8d:ad: c1:4b:49:db:70:7e:df:38:25:96:65:1d:a4:5c:86:3e:49:4c: f7:75:cd:a3:55:c0:80:5f:9e:43:2a:8c:33:1c:8b:f6:b0:65: b9:16:cc:e0:34:c3:4d:c5:96:c5:9a:85:b5:e0:3d:25:9a:e3: 2b:08:6b:b1:8d:53:a7:26:f4:79:31:1d:40:73:6e:4a:3f:7c: 95:15:5a:e4:69:be:94:be:17:d7:04:04:37:88:27:72:df:66: 35:e6:53:f0:03:00:6d:48:e9:1e:1b:e7:af:be:ab:36:48:12: b7:fd:d1:0c:84:c6:62:d3:e7:6b:6d:6d:9e:72:6c:68:77:5d: 45:e2:d8:03:2f:f7:5f:a6:a1:e4:dd:57:e3:64:bd:70:bc:48: 60:4e:7b:70:09:c8:5d:41:dc:e5:8c:6b:25:2e:61:c7:f9:0f: 3b:34:dd:c7:00:fd:22:a0:76:2f:e6:4c:94:86:d7:d6:5f:55: ad:f3:51:3a:07:a0:ac:02:04:0e:7f:51:5c:fd:68:5c:b3:56: e6:6a:c9:0c:a9:00:d8:d4:e6:69:79:d4:0a:62:eb:4b:e5:2b: e5:f3:ad:e5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUew1QNhtRrtpLu0nnlyKbJWBDFc8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDA0MDA1WhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTJiNWEwM2M3NWVlNDg0YjIzNjliMTZiYWQ2YzJlOTdm MmE2MDFlNTAzZWU2MTY1MTc3OTczMTIwNzNkYTY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8Wh/LM04RRvZrt3iX4TNzCc2ymkfDiDr01i820YHkkz6R ZT7dfO0atpr6d29MVYf23a5QFOaz/DlTsvBkiJJ1pTwGnWQ5snK/+1sq1CRNmbVr MjuRpyNRgb4uk+dfZdvwxpT3L0ZodRCiy0W+sfL9KZSEAgua8L4++B5Ls0hgJSAa 4Kd+8tK4WycJGjKk8+CnkBmE+MPFa+dMhQmz8LTKjnEXv7DAF3/3JNfqmVHYcRUT 4Q02kjsYsKwo5T78tngjpMHtqQZp7wyUEvSUGauXSSng8v71QVv4UbaiDOeN0/Jj jr6t88U+wh9heL2T+jjp+r1GeofDg73UGoiOvRxxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU3kwlj6otqu5NloKsxs6QPifwSZYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwYTk5ODcxLWFlMzUtNGQ1MC04ZTZhLWQyODQ5ZjIwYTBiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAREQ+AwDQYJKoZIhvcNAQELBQADggEBALOknzDe1tamTDIybhdg3HXYNGuj vvHxLyKZbPJ7ftMXjeKNrcFLSdtwft84JZZlHaRchj5JTPd1zaNVwIBfnkMqjDMc i/awZbkWzOA0w03FlsWahbXgPSWa4ysIa7GNU6cm9HkxHUBzbko/fJUVWuRpvpS+ F9cEBDeIJ3LfZjXmU/ADAG1I6R4b56++qzZIErf90QyExmLT52ttbZ5ybGh3XUXi 2AMv91+moeTdV+NkvXC8SGBOe3AJyF1B3OWMayUuYcf5Dzs03ccA/SKgdi/mTJSG 19ZfVa3zUToHoKwCBA5/UVz9aFyzVuZqyQypANjU5ml51Api60vlK+XzreU= -----END CERTIFICATE-----Generated at Mon Mar 2 09:01:20 2026 by rpki-client