$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3140b59c-e29d-4b8a-8974-b6c470960f1b.roa File: 3140b59c-e29d-4b8a-8974-b6c470960f1b.roa (raw, json) Hash identifier: dKxKqd7k4ziDp7EJZIB2Vrk8u4/hOdwEKqlM+EUdrv8= Subject key identifier: 42:88:D2:2C:DE:18:25:09:30:AD:86:C3:FC:70:32:DC:97:73:BB:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A4A4E17BDECBE58133E9826BD1886C7219AB1E8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3140b59c-e29d-4b8a-8974-b6c470960f1b.roa Signing time: Sun 15 Feb 2026 00:20:45 +0000 ROA not before: Sun 15 Feb 2026 00:20:45 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.115.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:4a:4e:17:bd:ec:be:58:13:3e:98:26:bd:18:86:c7:21:9a:b1:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:20:45 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=eda36dc775f8da3a34350dffc91846240570959efedb2f8e7f0917a1361d2249, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:24:86:2b:90:52:74:8e:b9:b5:a0:a9:77:15: 7f:7b:33:f7:b4:38:72:ef:6e:25:2e:3a:60:c3:3d: 1d:f5:04:70:01:38:17:9f:79:55:01:23:a1:0b:c3: c4:92:94:1f:22:c3:a5:56:5d:0b:ce:78:52:2b:a8: ec:1f:08:93:46:2c:4c:87:d2:1a:c8:72:dd:86:85: 3a:83:19:7b:5f:08:8a:ef:bb:3e:25:81:5c:79:d4: 15:c3:49:eb:62:18:2e:e5:22:f1:e1:fc:b7:fd:53: 4f:41:ba:2d:c0:68:55:b3:96:94:b0:3d:0b:3a:67: d8:8a:c0:33:5b:a1:3f:59:af:34:c6:4f:a3:56:f9: 52:ef:db:6a:ff:6c:55:53:38:a1:83:b7:47:b5:b9: a0:e9:72:c8:e2:5c:c8:41:a7:19:e1:85:b4:eb:65: 48:3b:e0:87:b1:d7:f3:7c:d0:88:2b:f7:3f:6d:83: 4e:2b:e9:0b:df:7d:77:09:89:a5:53:2f:fa:d0:9a: c4:4e:56:0b:26:77:61:e3:9f:09:f1:da:56:17:15: 81:a3:cf:37:58:68:54:fb:64:ac:7b:a4:91:64:66: 23:43:d1:d7:7f:20:01:57:67:48:eb:8a:fa:03:30: d7:3a:60:92:96:2f:b3:51:1a:38:f7:0c:2c:71:fb: 9a:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:88:D2:2C:DE:18:25:09:30:AD:86:C3:FC:70:32:DC:97:73:BB:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3140b59c-e29d-4b8a-8974-b6c470960f1b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.115.0.0/16 Signature Algorithm: sha256WithRSAEncryption 2e:b4:00:1c:21:d6:1c:6a:d6:4e:76:9c:af:2e:5e:6b:24:59: f7:3a:b5:6c:bf:02:39:1f:b3:80:2c:cc:3f:22:fa:c6:e6:03: ee:c0:f6:0b:61:c0:c6:e7:bd:a2:17:35:17:51:f8:4d:64:59: 7f:af:27:52:42:0b:fa:a1:1b:04:3a:ec:b3:ee:13:98:19:e4: b0:6b:95:46:c0:47:d7:15:81:89:c6:e1:f5:a0:8f:2a:e6:4f: 46:69:9d:cd:c7:d3:67:2e:bd:16:4b:08:34:17:78:fc:01:30: 4e:ed:35:72:1c:66:06:45:99:af:e6:66:e5:b2:0a:c7:30:90: a8:1c:0f:47:a1:39:b2:ac:50:a8:b3:05:92:12:2f:ef:4b:d6: 66:fe:9e:9e:f0:40:4b:08:b4:8a:18:8a:00:e2:2b:5b:e7:cc: 01:fe:39:35:1a:45:d0:fe:15:45:7a:b5:98:49:22:65:77:aa: 02:20:3d:6c:12:4d:92:bb:02:6c:60:2e:19:fe:47:58:fe:c5: 39:e3:80:f2:47:58:5b:fe:dc:81:76:b1:4f:9e:40:cc:67:3a: 88:af:6d:02:a5:9f:06:55:07:26:22:e8:fd:94:a4:04:2e:24: 22:5f:d1:ba:b1:bd:e0:b2:6e:d3:5e:4e:0c:44:01:8f:04:fb: 71:dd:8b:5d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUekpOF73svlgTPpgmvRiGxyGasegwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAyMDQ1WhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZGEzNmRjNzc1ZjhkYTNhMzQzNTBkZmZjOTE4NDYyNDA1 NzA5NTllZmVkYjJmOGU3ZjA5MTdhMTM2MWQyMjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCJIYrkFJ0jrm1oKl3FX97M/e0OHLvbiUuOmDDPR31BHAB OBefeVUBI6ELw8SSlB8iw6VWXQvOeFIrqOwfCJNGLEyH0hrIct2GhTqDGXtfCIrv uz4lgVx51BXDSetiGC7lIvHh/Lf9U09Bui3AaFWzlpSwPQs6Z9iKwDNboT9ZrzTG T6NW+VLv22r/bFVTOKGDt0e1uaDpcsjiXMhBpxnhhbTrZUg74Iex1/N80Igr9z9t g04r6QvffXcJiaVTL/rQmsROVgsmd2Hjnwnx2lYXFYGjzzdYaFT7ZKx7pJFkZiND 0dd/IAFXZ0jrivoDMNc6YJKWL7NRGjj3DCxx+5rPAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQojSLN4YJQkwrYbD/HAy3JdzuxMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMxNDBiNTljLWUyOWQtNGI4YS04OTc0LWI2YzQ3MDk2MGYxYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4czANBgkqhkiG9w0BAQsFAAOCAQEALrQAHCHWHGrWTnacry5eayRZ9zq1 bL8COR+zgCzMPyL6xuYD7sD2C2HAxue9ohc1F1H4TWRZf68nUkIL+qEbBDrss+4T mBnksGuVRsBH1xWBicbh9aCPKuZPRmmdzcfTZy69FksINBd4/AEwTu01chxmBkWZ r+Zm5bIKxzCQqBwPR6E5sqxQqLMFkhIv70vWZv6envBASwi0ihiKAOIrW+fMAf45 NRpF0P4VRXq1mEkiZXeqAiA9bBJNkrsCbGAuGf5HWP7FOeOA8kdYW/7cgXaxT55A zGc6iK9tAqWfBlUHJiLo/ZSkBC4kIl/RurG94LJu015ODEQBjwT7cd2LXQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:28 2026 by rpki-client