$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3505df96-b443-43ec-8e8c-f0de340b6cc2.roa File: 3505df96-b443-43ec-8e8c-f0de340b6cc2.roa (raw, json) Hash identifier: YGapi88Me+VJGjIJwyTeL1bqYoL4Iejo0egqdxrqYQ8= Subject key identifier: A8:6A:05:E6:2B:D0:6C:1C:D0:69:03:D4:26:57:CE:CE:4A:57:2A:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73125B8D4271FDB759799CCFF6C0B990A91996D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3505df96-b443-43ec-8e8c-f0de340b6cc2.roa Signing time: Thu 26 Feb 2026 01:00:05 +0000 ROA not before: Thu 26 Feb 2026 01:00:05 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 134.38.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:12:5b:8d:42:71:fd:b7:59:79:9c:cf:f6:c0:b9:90:a9:19:96:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:00:05 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=90db5495191d5f66d4923e5314509f95530f74bbb5b0ce0a48cc5ca53a00cb4e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:af:ee:3d:d4:01:a0:ce:46:b2:73:84:3a:6a: 3d:4b:3d:50:b2:36:ca:f9:be:f6:db:91:73:13:93: 94:5d:a0:db:71:cd:b4:d8:aa:b4:65:59:d1:bc:12: 45:91:3d:4f:04:37:43:17:4f:63:20:ad:46:c5:f1: ae:55:d2:8d:87:25:a3:88:2c:52:d8:3d:53:bc:5b: ad:95:21:b7:cf:f2:87:b2:89:00:ef:ce:39:72:07: 41:a6:ad:18:b6:fb:e1:3b:7d:f5:9e:66:1b:a5:56: c8:e7:a9:80:2c:c8:fc:9f:77:7b:d2:a0:26:dd:19: c7:81:fa:0b:bd:b4:41:4e:78:28:9f:4f:f1:b2:fb: 93:e3:c1:b3:24:38:c4:09:5f:44:cf:9b:bd:e6:e7: ab:ed:1d:13:12:29:9f:b9:85:1f:6e:73:24:b5:cf: 0a:51:84:f8:05:52:42:91:e3:af:ce:19:16:b8:a2: 2c:7c:1e:e4:2f:10:35:a9:4b:5d:1c:b7:5b:12:e0: 1e:4b:f9:98:03:06:f1:ed:e6:f4:24:08:8a:48:2c: f6:e5:71:c6:ef:6b:8d:61:dc:c6:d9:1c:81:a2:d2: 80:ec:c0:02:3d:d4:c4:36:a9:57:70:d5:15:50:fd: 8e:ec:60:de:33:a9:2c:82:e2:46:ee:d3:17:e8:19: a9:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:6A:05:E6:2B:D0:6C:1C:D0:69:03:D4:26:57:CE:CE:4A:57:2A:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3505df96-b443-43ec-8e8c-f0de340b6cc2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 134.38.0.0/16 Signature Algorithm: sha256WithRSAEncryption 72:38:21:bb:21:83:e7:69:8e:43:b9:a4:7f:b0:9f:76:ad:a5: 76:a3:9c:f3:1d:f7:64:0b:99:11:f3:c6:bd:36:2a:61:9f:8b: f5:84:1b:3e:75:05:ae:0a:6f:33:e6:c6:75:bc:9f:7e:b3:d0: bd:a6:4f:27:5e:b0:5a:04:6e:27:fd:63:3f:08:61:cc:fe:6b: 6d:80:91:be:11:0f:39:c3:b1:13:b5:98:d3:df:f2:13:4e:0a: 74:52:4c:d5:ab:1a:2c:8e:da:77:d6:b4:eb:77:fc:26:78:e8: 3e:7a:e8:24:4e:b6:e9:cb:bd:3d:9d:69:93:11:5b:04:f3:de: 73:66:f0:98:97:c8:02:81:d7:e9:6c:de:cf:ec:a7:43:f2:0b: 92:05:f8:22:1e:6e:2c:1d:d1:f3:c8:e5:b2:d8:da:37:0f:98: 5f:4d:a1:cd:aa:a7:29:cd:6e:14:4d:51:ed:74:9b:b2:20:df: 97:15:8a:63:12:ec:5d:1d:4d:21:33:7c:8b:b5:b1:9d:3f:23: 25:81:d9:12:88:da:af:03:05:6b:d0:92:2f:93:6a:c2:05:08: 10:5d:8d:5d:50:6e:01:cd:be:8d:f4:3e:ee:e7:13:83:67:af: c5:90:03:a8:e8:af:b0:e5:0e:04:08:e8:d5:f0:3a:49:3d:52: 88:e8:be:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcxJbjUJx/bdZeZzP9sC5kKkZltYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMDA1WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MGRiNTQ5NTE5MWQ1ZjY2ZDQ5MjNlNTMxNDUwOWY5NTUz MGY3NGJiYjViMGNlMGE0OGNjNWNhNTNhMDBjYjRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAr+491AGgzkayc4Q6aj1LPVCyNsr5vvbbkXMTk5RdoNtx zbTYqrRlWdG8EkWRPU8EN0MXT2MgrUbF8a5V0o2HJaOILFLYPVO8W62VIbfP8oey iQDvzjlyB0GmrRi2++E7ffWeZhulVsjnqYAsyPyfd3vSoCbdGceB+gu9tEFOeCif T/Gy+5PjwbMkOMQJX0TPm73m56vtHRMSKZ+5hR9ucyS1zwpRhPgFUkKR46/OGRa4 oix8HuQvEDWpS10ct1sS4B5L+ZgDBvHt5vQkCIpILPblccbva41h3MbZHIGi0oDs wAI91MQ2qVdw1RVQ/Y7sYN4zqSyC4kbu0xfoGal9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUqGoF5ivQbBzQaQPUJlfOzkpXKsUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1MDVkZjk2LWI0NDMtNDNlYy04ZThjLWYwZGUzNDBiNmNjMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCGJjANBgkqhkiG9w0BAQsFAAOCAQEAcjghuyGD52mOQ7mkf7Cfdq2ldqOc 8x33ZAuZEfPGvTYqYZ+L9YQbPnUFrgpvM+bGdbyffrPQvaZPJ16wWgRuJ/1jPwhh zP5rbYCRvhEPOcOxE7WY09/yE04KdFJM1asaLI7ad9a063f8JnjoPnroJE626cu9 PZ1pkxFbBPPec2bwmJfIAoHX6Wzez+ynQ/ILkgX4Ih5uLB3R88jlstjaNw+YX02h zaqnKc1uFE1R7XSbsiDflxWKYxLsXR1NITN8i7WxnT8jJYHZEojarwMFa9CSL5Nq wgUIEF2NXVBuAc2+jfQ+7ucTg2evxZADqOivsOUOBAjo1fA6ST1SiOi+og== -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:40 2026 by rpki-client