$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3327cfae-d76e-433c-9489-6c1d618274a8.roa File: 3327cfae-d76e-433c-9489-6c1d618274a8.roa (raw, json) Hash identifier: 1vfzkCMYgZOHX0HRg+ZdErABalx4z4sILYtkggzTFV0= Subject key identifier: 56:F0:C2:66:B4:BE:49:D7:FA:EE:1D:8E:A1:FC:5F:BD:B1:20:6B:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 488DB7D4FB79B60BB8DBC121E5A6810C143596B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3327cfae-d76e-433c-9489-6c1d618274a8.roa Signing time: Sun 15 Feb 2026 00:20:46 +0000 ROA not before: Sun 15 Feb 2026 00:20:46 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.151.190.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:8d:b7:d4:fb:79:b6:0b:b8:db:c1:21:e5:a6:81:0c:14:35:96:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:20:46 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=6f69f5d97fea034151041f5ae0341ad4c76e790f297b8152f984166c9682fa6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:f9:aa:ca:2f:99:79:65:34:5c:27:92:89:9c: 1d:31:ef:02:85:c5:12:92:a9:a1:b9:10:7c:fe:3d: 37:36:8d:87:85:52:5d:cd:60:f4:8b:2e:d5:f3:eb: 45:4f:89:0d:65:a2:97:04:7d:14:be:e7:54:40:af: 6b:dd:89:ee:ed:67:e0:8b:8e:1c:01:0f:2d:8f:c4: 56:72:88:7f:64:55:c4:72:51:a2:75:88:75:50:b4: 83:0e:5b:82:ba:c3:d6:34:4c:58:e5:a8:d8:ae:28: 68:31:e0:35:4a:18:c4:7a:6f:55:df:0e:22:20:51: 3f:5a:6e:e0:b5:3a:be:52:45:41:88:90:68:19:03: e1:cc:61:c8:b9:bd:0a:f7:8c:1f:af:f3:7f:c5:db: 95:67:2d:52:2a:36:49:74:c6:1d:64:b9:74:4d:a9: 60:d7:a3:0d:a1:ea:6a:05:80:ed:13:93:32:27:70: 77:a7:ad:26:29:23:f7:48:12:9c:c2:0c:31:16:3f: f0:4d:f1:73:a7:8a:81:2f:5d:f4:57:30:13:d3:3b: 7d:03:3e:f3:23:44:ee:f5:67:e3:5d:28:55:c5:86: 6e:19:18:55:66:50:bb:86:f9:ce:a3:1e:34:4d:f5: 09:16:f3:8f:a8:0a:e9:79:1c:2c:6f:af:e8:87:92: 9e:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:F0:C2:66:B4:BE:49:D7:FA:EE:1D:8E:A1:FC:5F:BD:B1:20:6B:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3327cfae-d76e-433c-9489-6c1d618274a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.151.190.0/23 Signature Algorithm: sha256WithRSAEncryption 8e:90:c3:1e:67:15:95:67:18:ab:f7:3a:f4:28:2d:33:d8:89: ef:d4:77:4e:c4:9b:53:05:9c:dd:df:d6:a5:b2:cc:80:a9:3e: 06:7d:c6:52:38:50:4a:10:c8:bc:50:ed:4f:ec:61:be:72:95: 71:df:c9:ed:20:9b:78:f2:27:60:e9:9b:3e:f5:79:3b:78:19: ec:a9:d0:6b:e0:a9:d8:ed:07:6c:e1:3d:64:e0:ab:64:4e:ce: 7a:19:8d:a9:d9:34:8c:10:a6:43:9d:e0:c6:3a:1d:79:5d:dd: f2:4c:0a:e8:e3:ac:ec:03:f4:34:85:6e:3f:42:4e:71:59:af: dd:40:84:78:95:64:23:10:40:ea:04:e1:b1:e5:cc:88:f5:ed: 38:3e:53:84:da:d5:f9:26:24:31:1c:f8:04:f2:35:eb:53:0a: 75:4d:92:88:c3:46:0d:5f:50:50:dc:29:6b:83:0a:f8:1e:1b: a0:43:1d:15:5a:7e:0f:d7:b2:27:4b:9d:ed:f7:fb:df:e2:40: 34:d3:73:e4:9f:39:4c:6a:be:a4:04:df:a6:cf:5a:8e:db:1e: 79:ff:4f:ce:7b:51:d0:5b:54:1b:cd:bd:61:bb:e1:32:a1:ba: df:d6:bc:67:b5:fe:dd:0a:c5:78:1d:78:f1:95:59:41:32:de: 1b:9a:b0:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUSI231Pt5tgu428Eh5aaBDBQ1lrYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAyMDQ2WhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZjY5ZjVkOTdmZWEwMzQxNTEwNDFmNWFlMDM0MWFkNGM3 NmU3OTBmMjk3YjgxNTJmOTg0MTY2Yzk2ODJmYTZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDB+arKL5l5ZTRcJ5KJnB0x7wKFxRKSqaG5EHz+PTc2jYeF Ul3NYPSLLtXz60VPiQ1lopcEfRS+51RAr2vdie7tZ+CLjhwBDy2PxFZyiH9kVcRy UaJ1iHVQtIMOW4K6w9Y0TFjlqNiuKGgx4DVKGMR6b1XfDiIgUT9abuC1Or5SRUGI kGgZA+HMYci5vQr3jB+v83/F25VnLVIqNkl0xh1kuXRNqWDXow2h6moFgO0TkzIn cHenrSYpI/dIEpzCDDEWP/BN8XOnioEvXfRXMBPTO30DPvMjRO71Z+NdKFXFhm4Z GFVmULuG+c6jHjRN9QkW84+oCul5HCxvr+iHkp6vAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVvDCZrS+Sdf67h2OofxfvbEga2kwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzMjdjZmFlLWQ3NmUtNDMzYy05NDg5LTZjMWQ2MTgyNzRhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFjl74wDQYJKoZIhvcNAQELBQADggEBAI6Qwx5nFZVnGKv3OvQoLTPYie/U d07Em1MFnN3f1qWyzICpPgZ9xlI4UEoQyLxQ7U/sYb5ylXHfye0gm3jyJ2Dpmz71 eTt4Geyp0GvgqdjtB2zhPWTgq2ROznoZjanZNIwQpkOd4MY6HXld3fJMCujjrOwD 9DSFbj9CTnFZr91AhHiVZCMQQOoE4bHlzIj17Tg+U4Ta1fkmJDEc+ATyNetTCnVN kojDRg1fUFDcKWuDCvgeG6BDHRVafg/XsidLne33+9/iQDTTc+SfOUxqvqQE36bP Wo7bHnn/T857UdBbVBvNvWG74TKhut/WvGe1/t0KxXgdePGVWUEy3huasD4= -----END CERTIFICATE-----Generated at Mon Mar 2 02:00:46 2026 by rpki-client