$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa File: 3589350f-7992-407d-b32f-3238cdd65087.roa (raw, json) Hash identifier: liUErcQ4LLyaXSVGyk7CrwELP9x8tj81disYQh/55tI= Subject key identifier: A9:88:41:3D:0E:81:31:46:F8:37:38:B4:D8:B4:62:82:75:69:5D:0D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F86512A977A86AB635030FD9F83174B5F724C9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa Signing time: Thu 26 Feb 2026 00:21:18 +0000 ROA not before: Thu 26 Feb 2026 00:21:18 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 72.44.40.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:86:51:2a:97:7a:86:ab:63:50:30:fd:9f:83:17:4b:5f:72:4c:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:21:18 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=407800706d0ea3a628593b1f3f64bb4470d00644b9f8d5de9b50477a4a8d408d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:23:94:3c:4b:cc:38:7c:82:f6:73:fa:b6:56: 49:ca:5e:11:5c:78:ff:2f:64:33:05:65:82:62:2e: 84:e9:41:88:f6:ca:98:40:73:70:f2:1d:b8:ba:3f: ca:1e:1b:1f:1a:40:fe:3d:65:65:7c:c0:15:4f:ae: 5c:58:d8:6c:8d:6f:4c:30:c3:15:d4:2a:ed:b4:7e: 35:e1:81:cf:23:71:97:95:bc:83:83:95:2d:98:70: 22:10:09:f5:b9:ad:b8:e7:21:ac:28:f5:88:e6:02: 4a:cf:42:36:35:44:9e:ff:54:c6:e0:33:41:fe:8f: 70:6e:db:54:a8:12:7b:f3:81:95:fb:0f:b4:c1:63: 93:11:aa:b7:b8:9b:75:41:87:51:16:4a:d6:08:58: db:71:4e:2f:7a:e6:57:9e:f8:63:e6:39:fe:07:d9: 07:f4:24:bd:cc:15:ef:f0:28:74:43:93:ae:e1:28: 8e:99:8a:be:fb:8e:e1:a9:0d:04:7c:e7:f4:5d:04: 78:ad:53:12:c1:16:75:13:3a:c4:5f:a9:40:70:7a: 8f:fa:37:80:01:11:b3:c7:0e:09:7b:3d:04:83:42: d0:3c:d1:9f:94:57:0c:fc:b9:76:4d:e7:d3:3d:fb: a9:b6:36:ed:6d:de:c2:2c:bd:3e:fa:39:9c:63:b6: 75:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:88:41:3D:0E:81:31:46:F8:37:38:B4:D8:B4:62:82:75:69:5D:0D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3589350f-7992-407d-b32f-3238cdd65087.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 72.44.40.0/21 Signature Algorithm: sha256WithRSAEncryption a9:a0:c3:8f:ed:b8:ad:85:6c:b6:0a:85:fb:e5:7e:d0:a5:62: e8:96:6c:e2:82:67:d4:77:7d:17:24:e7:10:a7:f1:13:1d:f0: 9c:82:55:37:89:f3:64:d9:be:9c:3c:f3:06:6f:54:ee:33:e0: ca:8c:25:21:2e:c8:27:02:f7:4e:0c:12:5b:a5:6f:79:c5:e0: e0:dd:5c:73:fb:16:99:2b:2f:f7:2e:e7:ba:3f:1b:2a:f0:68: cf:84:fe:96:80:31:fd:e5:2b:00:67:ef:26:09:7a:3e:29:a3: 05:26:21:5c:de:ba:a8:81:0c:11:51:5c:8e:17:53:38:8a:6d: 93:df:95:16:b8:a7:f3:27:c7:95:8f:f4:b5:3f:f3:7f:99:bd: 61:b3:5e:32:35:ac:e2:c0:2c:59:45:dc:a5:8f:89:65:a6:2e: 4d:e7:38:ba:3d:3b:d2:a5:68:06:f6:9e:e8:47:50:64:c1:4d: 2f:14:1b:0c:a2:4c:88:e4:29:24:2e:1b:c2:61:78:ed:f6:f0: 03:e7:c3:71:68:74:5d:f6:38:81:63:8d:c7:2c:d0:78:7e:c1: 6e:b0:d4:b4:1b:b8:00:49:0e:a4:a6:e5:50:4e:21:45:a8:53: fb:37:84:1a:97:39:3b:80:98:43:c5:da:8b:ae:57:47:86:9e: 1c:9f:0c:78 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf4ZRKpd6hqtjUDD9n4MXS19yTJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAyMTE4WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0MDc4MDA3MDZkMGVhM2E2Mjg1OTNiMWYzZjY0YmI0NDcw ZDAwNjQ0YjlmOGQ1ZGU5YjUwNDc3YTRhOGQ0MDhkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQI5Q8S8w4fIL2c/q2VknKXhFceP8vZDMFZYJiLoTpQYj2 yphAc3DyHbi6P8oeGx8aQP49ZWV8wBVPrlxY2GyNb0wwwxXUKu20fjXhgc8jcZeV vIODlS2YcCIQCfW5rbjnIawo9YjmAkrPQjY1RJ7/VMbgM0H+j3Bu21SoEnvzgZX7 D7TBY5MRqre4m3VBh1EWStYIWNtxTi965lee+GPmOf4H2Qf0JL3MFe/wKHRDk67h KI6Zir77juGpDQR85/RdBHitUxLBFnUTOsRfqUBweo/6N4ABEbPHDgl7PQSDQtA8 0Z+UVwz8uXZN59M9+6m2Nu1t3sIsvT76OZxjtnV5AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqYhBPQ6BMUb4Nzi02LRignVpXQ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ODkzNTBmLTc5OTItNDA3ZC1iMzJmLTMyMzhjZGQ2NTA4Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANILCgwDQYJKoZIhvcNAQELBQADggEBAKmgw4/tuK2FbLYKhfvlftClYuiW bOKCZ9R3fRck5xCn8RMd8JyCVTeJ82TZvpw88wZvVO4z4MqMJSEuyCcC904MElul b3nF4ODdXHP7FpkrL/cu57o/GyrwaM+E/paAMf3lKwBn7yYJej4powUmIVzeuqiB DBFRXI4XUziKbZPflRa4p/Mnx5WP9LU/83+ZvWGzXjI1rOLALFlF3KWPiWWmLk3n OLo9O9KlaAb2nuhHUGTBTS8UGwyiTIjkKSQuG8JheO328APnw3FodF32OIFjjccs 0Hh+wW6w1LQbuABJDqSm5VBOIUWoU/s3hBqXOTuAmEPF2ouuV0eGnhyfDHg= -----END CERTIFICATE-----Generated at Mon Mar 2 03:51:58 2026 by rpki-client