$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa File: 3803ed73-f0b7-4d1e-a251-bcf48df08162.roa (raw, json) Hash identifier: yktlptO1Cu/K7m7jwLEpET1KPyW3eJgu8o0zKU394xE= Subject key identifier: F7:7C:0D:55:1D:E2:9A:51:5D:1B:5B:F5:C0:80:38:69:4B:AF:D6:69 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2896DC13B3590D8F43A21B7214A7A9CE0206B681 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa Signing time: Tue 24 Feb 2026 00:41:06 +0000 ROA not before: Tue 24 Feb 2026 00:41:06 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 107.22.192.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:96:dc:13:b3:59:0d:8f:43:a2:1b:72:14:a7:a9:ce:02:06:b6:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:41:06 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=da58232355b016ba75016647ee784b17fbc147f39f732af353a880581bac1bae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:91:a9:78:b1:0d:4e:c2:46:c0:9d:52:f4:b2: 15:a0:d8:bb:59:3f:2c:a1:0c:b2:b8:95:5a:40:df: 84:13:3b:c7:04:7f:88:b3:b9:b1:ea:43:6e:47:77: cd:12:7f:47:72:91:16:83:47:6e:1f:f5:f7:75:2c: be:ee:52:26:cf:85:3c:60:08:d3:3d:1c:ff:af:2a: 6f:dd:b7:16:98:96:dc:71:b2:11:26:4e:87:45:72: 1c:fd:1d:c2:90:a5:db:e2:e2:a1:16:a9:da:fa:3d: c4:06:4e:a3:59:e2:8e:7a:82:d2:4c:83:92:2b:a6: 52:6a:1e:fc:cf:b3:93:a6:12:04:ae:91:ed:5e:ce: af:a4:88:78:eb:b1:12:65:fc:6e:a4:3e:0d:2e:8b: d7:52:7c:6f:f0:1c:ca:e9:79:66:29:f6:6c:1b:6f: d2:be:2e:bd:36:9a:48:2f:c8:ae:54:cc:8f:8e:b0: ea:e1:0d:7d:96:0f:08:8a:52:d2:e3:5e:15:3f:01: dd:76:b5:25:8a:90:60:51:2e:ff:c0:ac:8d:fe:c6: 80:10:30:0a:4e:99:33:55:b5:7a:8d:46:81:c0:56: 4c:77:e0:ef:da:06:e8:c5:3f:fc:da:26:72:6f:b3: ea:e4:fc:6d:f9:5e:77:d6:5d:e8:37:04:19:ef:cf: d6:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F7:7C:0D:55:1D:E2:9A:51:5D:1B:5B:F5:C0:80:38:69:4B:AF:D6:69 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3803ed73-f0b7-4d1e-a251-bcf48df08162.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.192.0/18 Signature Algorithm: sha256WithRSAEncryption b4:b6:ed:95:0c:87:fc:05:90:83:10:26:df:03:a6:e0:df:a7: 7d:b3:4c:2f:46:f7:24:70:a8:ea:3b:e1:7d:44:b7:8f:09:5b: 73:11:3c:d5:ff:d0:a3:28:b2:d0:4a:8a:2c:c8:26:ab:59:8f: 24:eb:7f:f2:37:c0:44:0b:63:61:bb:8b:de:87:90:b0:89:76: dc:9c:7f:15:0c:81:99:fe:eb:fa:ab:ad:77:e8:a0:a0:a7:90: 57:42:47:01:a8:fa:20:d4:15:e7:31:8a:4f:b9:0c:fb:0b:dc: a4:cb:87:c0:92:df:12:9d:20:e9:90:19:4c:27:51:6b:71:07: 20:ce:b8:b2:1c:b4:74:21:8d:8b:dc:34:47:6d:d7:98:93:17: 48:e9:6b:f6:d7:cd:9b:fb:d7:61:57:c1:e9:5a:21:4e:be:ef: a2:f7:1c:9c:7f:7c:ad:14:3a:0f:38:60:b3:6f:bf:2d:d9:20: ec:50:82:90:3c:b2:6b:ab:b5:c3:04:3a:5e:27:09:31:b0:f2: a9:4d:ce:67:54:e3:b8:91:1f:b3:3c:20:a6:52:5b:b5:7f:cf: 18:81:22:90:b5:54:da:99:5f:66:5c:62:c7:12:41:c1:dd:00: 8e:84:bb:08:7c:b4:6a:9b:45:dd:ae:d6:86:53:0c:40:40:f3: fc:00:73:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKJbcE7NZDY9DohtyFKepzgIGtoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA0MTA2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTU4MjMyMzU1YjAxNmJhNzUwMTY2NDdlZTc4NGIxN2Zi YzE0N2YzOWY3MzJhZjM1M2E4ODA1ODFiYWMxYmFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDukal4sQ1OwkbAnVL0shWg2LtZPyyhDLK4lVpA34QTO8cE f4izubHqQ25Hd80Sf0dykRaDR24f9fd1LL7uUibPhTxgCNM9HP+vKm/dtxaYltxx shEmTodFchz9HcKQpdvi4qEWqdr6PcQGTqNZ4o56gtJMg5IrplJqHvzPs5OmEgSu ke1ezq+kiHjrsRJl/G6kPg0ui9dSfG/wHMrpeWYp9mwbb9K+Lr02mkgvyK5UzI+O sOrhDX2WDwiKUtLjXhU/Ad12tSWKkGBRLv/ArI3+xoAQMApOmTNVtXqNRoHAVkx3 4O/aBujFP/zaJnJvs+rk/G35XnfWXeg3BBnvz9bPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU93wNVR3imlFdG1v1wIA4aUuv1mkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4MDNlZDczLWYwYjctNGQxZS1hMjUxLWJjZjQ4ZGYwODE2Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZrFsAwDQYJKoZIhvcNAQELBQADggEBALS27ZUMh/wFkIMQJt8DpuDfp32z TC9G9yRwqOo74X1Et48JW3MRPNX/0KMostBKiizIJqtZjyTrf/I3wEQLY2G7i96H kLCJdtycfxUMgZn+6/qrrXfooKCnkFdCRwGo+iDUFecxik+5DPsL3KTLh8CS3xKd IOmQGUwnUWtxByDOuLIctHQhjYvcNEdt15iTF0jpa/bXzZv712FXwelaIU6+76L3 HJx/fK0UOg84YLNvvy3ZIOxQgpA8smurtcMEOl4nCTGw8qlNzmdU47iRH7M8IKZS W7V/zxiBIpC1VNqZX2ZcYscSQcHdAI6Euwh8tGqbRd2u1oZTDEBA8/wAc1U= -----END CERTIFICATE-----Generated at Mon Mar 2 00:15:30 2026 by rpki-client