$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/356faa82-a0da-4902-ac5d-0346855caaf1.roa File: 356faa82-a0da-4902-ac5d-0346855caaf1.roa (raw, json) Hash identifier: z3qfWCCXRDj97nCeEAndiJMQqhjCSLO90IOk7ygmV/U= Subject key identifier: A5:3F:38:33:65:89:63:15:9C:0B:5A:33:EE:56:CD:45:22:AD:9B:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 160A6F7B77E741FA959D601F1FCCF238CBA143 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/356faa82-a0da-4902-ac5d-0346855caaf1.roa Signing time: Wed 25 Feb 2026 02:41:13 +0000 ROA not before: Wed 25 Feb 2026 02:41:13 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.60.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:0a:6f:7b:77:e7:41:fa:95:9d:60:1f:1f:cc:f2:38:cb:a1:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:41:13 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=0845060f428eba040b432a264d42b4d17533140f5ab5610d6be079e28bb4e3f4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:6e:7a:35:aa:5c:20:75:fc:91:3f:5f:9e:a9: c2:0e:79:84:aa:0a:c7:5c:50:bf:5d:e2:90:47:67: 0d:25:42:3f:8e:da:61:1c:dc:4e:62:b1:40:fa:da: 2d:dd:81:5c:b9:30:b3:b5:94:a3:77:6c:aa:6c:ac: 28:07:03:66:1b:c3:0a:0f:f7:30:c1:1f:62:77:7c: 47:0d:50:42:ff:e2:eb:2a:43:b6:e6:90:db:d6:95: 3a:8d:c7:09:2f:14:f0:89:5d:a4:4d:7a:d6:ab:9b: b9:9e:1b:f7:7e:24:66:16:33:f6:d6:0d:e6:29:75: 90:02:fa:26:4e:0f:a3:86:82:f7:6e:c5:31:97:9b: 49:bb:c6:0e:9a:62:44:0b:f3:90:de:1e:68:d5:5c: df:1d:4a:95:03:ec:49:d5:94:0a:c3:4b:09:20:72: 59:8b:29:80:3f:3a:39:dc:41:0b:1a:73:ae:c2:36: f2:10:6e:16:6f:a0:e4:54:d7:12:b9:59:12:4e:80: e8:73:a3:df:d1:85:f5:c1:12:1f:42:9c:50:4b:da: 29:28:a5:6e:91:56:b0:f7:d4:56:77:0d:62:55:fa: 5e:cc:d2:8d:a7:f7:7b:e0:38:15:85:fa:ae:81:31: b0:2e:7a:c3:0e:69:e0:b2:15:02:43:b3:6c:ef:20: 08:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:3F:38:33:65:89:63:15:9C:0B:5A:33:EE:56:CD:45:22:AD:9B:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/356faa82-a0da-4902-ac5d-0346855caaf1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.60.0.0/15 Signature Algorithm: sha256WithRSAEncryption 51:3f:84:37:c0:ea:1b:d9:b3:8e:a1:93:00:ef:a4:7b:f8:cc: e1:f0:f7:f0:e6:bc:cc:d1:82:a5:df:97:af:4f:67:a3:39:e9: 87:06:c2:03:f0:70:a2:8f:cd:03:0d:ee:60:20:8f:3b:9d:fd: 08:ef:7d:20:fd:f0:f1:05:59:02:f1:8a:a1:8f:b7:79:d2:40: 0b:89:1f:c8:53:00:65:48:f3:8d:25:72:3b:49:86:35:b6:38: b0:50:bf:6a:7a:bd:5c:ec:58:85:5b:f8:55:13:fe:45:9b:54: ad:89:5d:68:41:d7:a9:66:79:7f:19:04:71:33:5d:f2:99:5b: 00:1c:bc:8a:9c:8d:18:ea:51:41:74:a1:3f:e6:de:40:ed:12: 47:01:f4:7c:94:8a:ad:55:2a:ec:18:b0:9f:2c:83:f9:9f:b4: e6:31:44:b9:bf:04:b9:9d:31:d1:ca:48:92:9e:f8:b8:cc:df: e5:f5:64:22:79:10:38:ac:24:90:5d:6e:c2:12:78:43:8b:3a: 63:9c:04:dc:eb:b5:f9:35:ad:12:33:d6:69:c6:f5:9e:7f:e5: 3e:a3:b4:00:d1:3b:99:ac:46:02:71:ac:c5:48:93:cd:08:7d: 8c:e6:18:9e:7f:ff:51:35:33:b7:ef:08:16:c4:7a:01:08:24: 3b:65:29:6a -----BEGIN CERTIFICATE----- MIIF9jCCBN6gAwIBAgITFgpve3fnQfqVnWAfH8zyOMuhQzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjAyMjUwMjQxMTNaFw0yNjA1MjYyMzU5NTla MHoxSTBHBgNVBAUTQDA4NDUwNjBmNDI4ZWJhMDQwYjQzMmEyNjRkNDJiNGQxNzUz MzE0MGY1YWI1NjEwZDZiZTA3OWUyOGJiNGUzZjQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAK1uejWqXCB1/JE/X56pwg55hKoKx1xQv13ikEdnDSVCP47a YRzcTmKxQPraLd2BXLkws7WUo3dsqmysKAcDZhvDCg/3MMEfYnd8Rw1QQv/i6ypD tuaQ29aVOo3HCS8U8IldpE161qubuZ4b934kZhYz9tYN5il1kAL6Jk4Po4aC927F MZebSbvGDppiRAvzkN4eaNVc3x1KlQPsSdWUCsNLCSByWYspgD86OdxBCxpzrsI2 8hBuFm+g5FTXErlZEk6A6HOj39GF9cESH0KcUEvaKSilbpFWsPfUVncNYlX6XszS jaf3e+A4FYX6roExsC56ww5p4LIVAkOzbO8gCI8CAwEAAaOCArAwggKsMB0GA1Ud DgQWBBSlPzgzZYljFZwLWjPuVs1FIq2b0TAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMzU2ZmFhODItYTBkYS00OTAyLWFjNWQtMDM0Njg1NWNhYWYxLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAeBggrBgEFBQcBBwEB/wQPMA0wCwQCAAEw BQMDAQ08MA0GCSqGSIb3DQEBCwUAA4IBAQBRP4Q3wOob2bOOoZMA76R7+Mzh8Pfw 5rzM0YKl35evT2ejOemHBsID8HCij80DDe5gII87nf0I730g/fDxBVkC8Yqhj7d5 0kALiR/IUwBlSPONJXI7SYY1tjiwUL9qer1c7FiFW/hVE/5Fm1StiV1oQdepZnl/ GQRxM13ymVsAHLyKnI0Y6lFBdKE/5t5A7RJHAfR8lIqtVSrsGLCfLIP5n7TmMUS5 vwS5nTHRykiSnvi4zN/l9WQieRA4rCSQXW7CEnhDizpjnATc67X5Na0SM9ZpxvWe f+U+o7QA0TuZrEYCcazFSJPNCH2M5hief/9RNTO37wgWxHoBCCQ7ZSlq -----END CERTIFICATE-----Generated at Mon Mar 2 07:25:44 2026 by rpki-client