$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa File: 3550ed23-56cb-4039-b3db-d2d82f35e363.roa (raw, json) Hash identifier: 2nipXaIzUvHS7jht0YpqJHW7Yt6dldvZWmj5s7108Bo= Subject key identifier: C3:EF:57:62:F0:FD:15:7E:78:74:A8:92:C7:B0:1D:8C:8F:4E:17:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2CF87AEECA21CC6A2E75BD01566EA95DE909F189 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa Signing time: Tue 24 Feb 2026 00:51:05 +0000 ROA not before: Tue 24 Feb 2026 00:51:05 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.225.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2c:f8:7a:ee:ca:21:cc:6a:2e:75:bd:01:56:6e:a9:5d:e9:09:f1:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:51:05 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=28c133e51c2ed5993f18ade2790a0c4d849cabb4058b2388a39e1537de2816e0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:ba:6b:bc:fd:8f:04:94:53:9d:d9:40:c9:e1: af:9f:e7:8a:cd:77:1f:bf:8b:66:e5:a9:17:b0:c5: e1:f5:e3:af:48:1a:08:08:a4:ca:f5:af:68:c5:23: 4e:1e:dc:4b:14:ad:6c:80:a0:bd:72:9b:3a:cd:fb: 21:a6:14:b3:24:a6:ec:ad:5f:64:4d:45:b6:a8:63: 4f:a5:59:d8:34:3d:8b:a1:73:f3:e2:57:e1:4f:8b: e7:6c:1b:34:98:c5:d0:c5:24:e6:01:3f:18:27:91: 26:22:18:5a:d7:1b:51:06:5f:31:1a:4f:54:2f:7c: a9:e8:d3:66:44:b1:7b:75:45:73:6f:eb:93:c6:b7: 42:4b:ad:45:03:c3:ff:7c:64:90:58:24:f3:4b:8a: 18:5c:7e:90:e7:61:f1:1f:16:07:c3:f7:8b:9d:89: d7:c5:aa:36:12:e6:35:11:1b:1a:92:6f:87:7e:36: b6:d8:a2:8f:12:cd:51:cc:d3:19:1c:f7:db:03:5f: 75:56:9c:55:ab:44:85:31:5f:5a:83:aa:f9:16:29: c1:d7:7e:82:00:3f:9e:53:e2:71:4d:85:e1:00:62: 92:b3:20:c5:b1:f8:c8:74:9b:08:41:b2:2f:b0:f4: 2f:01:96:a7:3b:fb:3a:74:8b:8d:27:84:19:7d:c0: 7c:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:EF:57:62:F0:FD:15:7E:78:74:A8:92:C7:B0:1D:8C:8F:4E:17:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3550ed23-56cb-4039-b3db-d2d82f35e363.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.225.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:01:67:fb:01:b5:92:57:30:80:2c:ee:c5:e1:19:53:2e:bf: 07:0f:66:2d:e4:15:e0:8f:ec:21:cb:9d:ec:d6:30:07:c4:be: bf:02:43:86:3b:35:8f:8b:4a:42:a5:09:d7:ed:0b:b4:00:09: 69:5c:98:f4:2c:b5:22:f4:02:c3:9a:bf:36:d9:66:a0:b4:c2: a0:c9:88:55:e8:d6:23:fa:93:2e:7f:d4:0f:b7:95:d9:90:5f: ed:59:96:5e:8a:50:bf:48:09:a0:70:9a:e7:f3:f8:37:ad:7f: e0:fb:4f:69:bc:ab:49:f6:dc:ce:31:16:26:8e:6c:1f:7f:4e: 1b:e8:85:bd:2c:75:ac:ee:0a:ec:e6:40:77:b2:5a:4c:23:64: 01:03:75:28:3c:e4:e0:4c:e5:cf:e6:b2:29:1b:1c:58:1e:65: e0:d7:97:a1:57:42:b9:c7:1f:4e:36:6b:b0:b5:94:e6:6f:92: a1:d1:fb:44:ac:83:bd:eb:c9:1b:ad:f4:5f:61:88:ec:d1:9d: 62:bc:63:39:59:fe:5c:10:d8:3e:1e:0b:72:bd:ad:39:5e:8f: 8f:31:a6:25:8d:cd:0a:dd:1e:3f:5c:99:da:bd:bb:fc:65:c3: 38:48:1b:3a:0b:be:c3:3d:4a:b0:c2:bd:0f:6a:db:e3:13:9c: e7:2d:51:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULPh67sohzGoudb0BVm6pXekJ8YkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA1MTA1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOGMxMzNlNTFjMmVkNTk5M2YxOGFkZTI3OTBhMGM0ZDg0 OWNhYmI0MDU4YjIzODhhMzllMTUzN2RlMjgxNmUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDyumu8/Y8ElFOd2UDJ4a+f54rNdx+/i2blqRewxeH1469I GggIpMr1r2jFI04e3EsUrWyAoL1ymzrN+yGmFLMkpuytX2RNRbaoY0+lWdg0PYuh c/PiV+FPi+dsGzSYxdDFJOYBPxgnkSYiGFrXG1EGXzEaT1QvfKno02ZEsXt1RXNv 65PGt0JLrUUDw/98ZJBYJPNLihhcfpDnYfEfFgfD94udidfFqjYS5jURGxqSb4d+ NrbYoo8SzVHM0xkc99sDX3VWnFWrRIUxX1qDqvkWKcHXfoIAP55T4nFNheEAYpKz IMWx+Mh0mwhBsi+w9C8Blqc7+zp0i40nhBl9wHwDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUw+9XYvD9FX54dKiSx7AdjI9OF7YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1NTBlZDIzLTU2Y2ItNDAzOS1iM2RiLWQyZDgyZjM1ZTM2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAP4TANBgkqhkiG9w0BAQsFAAOCAQEAOgFn+wG1klcwgCzuxeEZUy6/Bw9m LeQV4I/sIcud7NYwB8S+vwJDhjs1j4tKQqUJ1+0LtAAJaVyY9Cy1IvQCw5q/Ntlm oLTCoMmIVejWI/qTLn/UD7eV2ZBf7VmWXopQv0gJoHCa5/P4N61/4PtPabyrSfbc zjEWJo5sH39OG+iFvSx1rO4K7OZAd7JaTCNkAQN1KDzk4Ezlz+ayKRscWB5l4NeX oVdCuccfTjZrsLWU5m+SodH7RKyDvevJG630X2GI7NGdYrxjOVn+XBDYPh4Lcr2t OV6PjzGmJY3NCt0eP1yZ2r27/GXDOEgbOgu+wz1KsMK9D2rb4xOc5y1Rog== -----END CERTIFICATE-----Generated at Mon Mar 2 00:06:51 2026 by rpki-client