$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3252a22f-fb3d-4e15-a400-14f758a8e577.roa File: 3252a22f-fb3d-4e15-a400-14f758a8e577.roa (raw, json) Hash identifier: gIgP5LstVH2DMvxTDfa73I8HGLiuDbcM2yc263If2q0= Subject key identifier: 1E:B3:3E:1D:F1:4D:39:7F:8B:03:03:53:38:CD:1D:C6:86:80:52:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: F5D67DD8F6B4B623BED4CABC42C930C341401F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3252a22f-fb3d-4e15-a400-14f758a8e577.roa Signing time: Sun 15 Feb 2026 00:30:12 +0000 ROA not before: Sun 15 Feb 2026 00:30:12 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.80.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: f5:d6:7d:d8:f6:b4:b6:23:be:d4:ca:bc:42:c9:30:c3:41:40:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:30:12 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=5434f4ccfc7541da533c4950e59235889f60cc905d4400df1f96a85b1b2b20e8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:7e:0c:9a:72:56:52:31:77:68:a1:3d:6b:08: a8:19:52:ef:62:1f:60:42:ab:ae:b8:1b:9b:3c:e0: 73:67:4d:22:1e:af:c7:01:73:10:df:b4:5d:b9:80: d1:d1:60:b3:57:88:0b:2f:95:82:e8:0d:54:ce:eb: 87:0b:d9:52:8e:7b:7b:2c:3f:33:19:e5:b2:3d:06: 83:ce:5c:6d:47:be:0e:7f:d7:20:f8:d7:1d:78:bd: 81:4f:64:55:c7:ef:93:21:b4:8e:03:05:45:87:b2: f9:13:3a:86:45:d8:82:84:3f:a8:6e:5c:ef:e6:a4: 75:cf:b4:a7:29:4e:c1:41:02:23:24:81:89:f9:ed: 56:84:ce:08:39:e2:d6:da:e1:ed:04:70:ee:66:59: df:53:8e:80:6e:8b:e0:6e:89:21:4f:6c:3d:7d:5d: c0:54:e1:a8:e5:2b:bf:d6:ff:55:04:69:af:a2:8f: c1:90:11:5f:3b:ad:c9:92:4f:a4:2d:af:24:99:d9: 06:bf:0c:50:1a:17:10:5a:b2:00:a6:49:c1:86:40: 25:38:53:80:25:af:dc:20:10:a4:ab:d9:69:c3:49: 39:9a:fa:c0:4c:57:fe:a4:8f:9b:d7:ca:ba:d0:7d: 24:35:81:b2:a2:1f:42:43:3b:90:3b:bb:c4:01:d5: aa:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:B3:3E:1D:F1:4D:39:7F:8B:03:03:53:38:CD:1D:C6:86:80:52:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3252a22f-fb3d-4e15-a400-14f758a8e577.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.80.0/23 Signature Algorithm: sha256WithRSAEncryption 92:97:67:d9:60:aa:9d:eb:44:f0:81:65:3a:f4:ba:0b:09:ca: 12:8c:87:5c:68:9b:a2:93:a4:f2:ca:cb:25:1e:93:69:8c:83: 3d:eb:65:f8:64:fe:0c:c6:ea:a3:d4:60:86:e1:b8:65:ee:a9: 82:7b:59:d7:97:a1:77:52:06:52:8f:00:7a:f9:9c:42:69:71: 01:3a:cc:41:b2:73:a2:00:eb:70:29:ec:17:64:02:79:eb:21: 57:43:d2:d6:86:f7:c5:81:d2:9d:46:fe:4f:83:51:85:19:ce: 65:c6:d5:ef:f7:3c:20:7f:f2:80:a5:af:3f:08:77:11:fc:b6: d8:1d:09:2c:58:fa:58:3a:e2:75:9c:3c:78:0f:aa:8f:76:17: cd:d6:de:29:61:62:f5:38:5f:69:ca:73:e4:af:55:07:2c:b2: 4e:80:9b:0d:c4:30:ef:39:fb:e1:15:e3:82:5a:f4:d3:fb:bb: 71:95:bb:a0:9a:86:bd:3b:30:62:1b:67:80:55:c9:d7:be:6a: 92:bb:a2:0b:77:54:0f:51:b5:1e:80:5f:f4:2f:40:2b:8a:45: 6a:96:89:1d:09:d6:dc:96:2d:4f:15:d5:22:6b:35:8d:5d:3b: 83:c9:29:54:07:a6:82:77:0e:67:ef:25:69:24:77:42:bf:e2: c6:01:f4:a5 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAPXWfdj2tLYjvtTKvELJMMNBQB8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAzMDEyWhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDM0ZjRjY2ZjNzU0MWRhNTMzYzQ5NTBlNTkyMzU4ODlm NjBjYzkwNWQ0NDAwZGYxZjk2YTg1YjFiMmIyMGU4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5fgyaclZSMXdooT1rCKgZUu9iH2BCq664G5s84HNnTSIe r8cBcxDftF25gNHRYLNXiAsvlYLoDVTO64cL2VKOe3ssPzMZ5bI9BoPOXG1Hvg5/ 1yD41x14vYFPZFXH75MhtI4DBUWHsvkTOoZF2IKEP6huXO/mpHXPtKcpTsFBAiMk gYn57VaEzgg54tba4e0EcO5mWd9TjoBui+BuiSFPbD19XcBU4ajlK7/W/1UEaa+i j8GQEV87rcmST6QtrySZ2Qa/DFAaFxBasgCmScGGQCU4U4Alr9wgEKSr2WnDSTma +sBMV/6kj5vXyrrQfSQ1gbKiH0JDO5A7u8QB1arnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUHrM+HfFNOX+LAwNTOM0dxoaAUlIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMyNTJhMjJmLWZiM2QtNGUxNS1hNDAwLTE0Zjc1OGE4ZTU3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl1AwDQYJKoZIhvcNAQELBQADggEBAJKXZ9lgqp3rRPCBZTr0ugsJyhKM h1xom6KTpPLKyyUek2mMgz3rZfhk/gzG6qPUYIbhuGXuqYJ7WdeXoXdSBlKPAHr5 nEJpcQE6zEGyc6IA63Ap7BdkAnnrIVdD0taG98WB0p1G/k+DUYUZzmXG1e/3PCB/ 8oClrz8IdxH8ttgdCSxY+lg64nWcPHgPqo92F83W3ilhYvU4X2nKc+SvVQcssk6A mw3EMO85++EV44Ja9NP7u3GVu6Cahr07MGIbZ4BVyde+apK7ogt3VA9RtR6AX/Qv QCuKRWqWiR0J1tyWLU8V1SJrNY1dO4PJKVQHpoJ3DmfvJWkkd0K/4sYB9KU= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:12 2026 by rpki-client