$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa File: 38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa (raw, json) Hash identifier: BtOiCFJSN+ZnWWAPOctc68RVvf9g2OffoMnouFWisHI= Subject key identifier: DA:9E:1E:A6:36:0B:EE:25:D9:7B:F9:C3:40:B3:2A:38:D9:37:82:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6EDA031E4EBA12E209D927D82B027F15C1876203 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa Signing time: Sat 28 Feb 2026 00:31:24 +0000 ROA not before: Sat 28 Feb 2026 00:31:24 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 86.112.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6e:da:03:1e:4e:ba:12:e2:09:d9:27:d8:2b:02:7f:15:c1:87:62:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:31:24 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=e5e3144e5dcfefcf8104ce3952b49a206c3bd3e8c2bfaf8921612c9aced1da62, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fb:ba:3f:ec:50:44:d1:ed:fe:68:49:4d:fd: 5e:48:c8:8e:2c:96:8e:48:4c:b1:af:6b:6c:42:18: 2a:0c:4a:4c:d0:32:ca:01:3f:b8:19:e8:34:28:6a: 59:26:22:87:f7:00:47:aa:ce:15:83:2e:1e:ab:bf: 4f:7d:6b:38:b1:4c:95:eb:2e:c9:bb:e5:9b:fb:d4: 03:96:98:d2:af:74:08:0b:6d:0f:f6:ff:77:5b:f9: a0:36:ed:04:a4:6d:0c:78:37:78:f7:6b:27:d9:93: 3e:2f:7a:b9:13:48:fa:1e:bd:d1:90:9d:6f:f0:55: 71:8e:22:9a:d8:d2:49:41:97:11:9d:97:c8:07:98: 53:84:b0:02:28:ce:ee:4e:5c:f2:db:fd:61:9d:c3: 6b:b3:4c:16:af:5e:da:79:e7:5f:52:0e:f7:ed:fb: 1a:2d:96:79:4b:4a:34:04:1a:15:3c:35:e9:a2:67: ef:58:ff:a5:cd:2c:d0:25:17:52:b6:41:0f:3a:f6: fd:a8:24:94:a0:34:62:f5:65:cf:d5:3e:ce:db:d8: 31:e0:1f:15:c7:65:b9:88:ec:0f:dd:fa:61:6d:c6: 29:91:25:ef:f0:23:4c:67:cd:94:3c:31:58:38:42: 88:27:95:e4:31:14:57:97:3a:6e:d3:ab:46:da:5f: 14:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:9E:1E:A6:36:0B:EE:25:D9:7B:F9:C3:40:B3:2A:38:D9:37:82:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/38bc1d9a-dc0a-4557-8f0c-45df0c392516.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.112.0.0/15 Signature Algorithm: sha256WithRSAEncryption 12:18:5f:ad:1f:78:4c:81:8a:32:f1:5b:c2:81:b8:8c:fd:2b: 56:e6:4c:a8:f9:bb:4a:99:6b:1e:00:7d:6e:f8:52:f5:e2:2e: 5c:52:17:f3:d0:56:6e:6c:76:59:cb:7c:56:a8:83:11:ce:32: 5b:f2:d9:9b:2f:f5:43:0a:f9:89:34:c5:90:f9:80:80:08:03: 6b:4d:e7:3e:64:ab:3c:1a:aa:43:8b:47:f1:b6:aa:cd:8b:3a: 68:dc:69:29:82:38:03:58:fa:f9:c2:9a:a7:71:52:71:59:78: 26:fd:ac:76:42:f6:cc:d3:2f:0b:4f:61:64:01:6b:07:01:e7: 62:1e:9f:4d:c2:60:1a:a1:de:88:fe:21:5a:46:77:92:f7:3c: d5:94:7f:2d:b6:ec:0f:84:87:b5:6e:15:31:27:82:69:09:09: 03:f2:5b:ac:29:01:e2:6d:cc:c6:fd:ce:26:3c:fa:a0:a5:82: 4f:77:46:18:8b:6a:98:85:ea:f8:ef:c4:a6:ae:97:d8:4f:38: 23:7e:57:f9:88:47:2e:c9:db:73:9c:a1:7b:d1:5c:9c:03:cf: f3:9a:8b:33:a0:db:a5:93:d8:06:45:f6:a6:53:27:31:1d:34: 15:2f:0a:bd:2d:0e:34:2c:b9:b8:8e:8a:95:27:cf:4a:ef:95: 21:b3:37:e7 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbtoDHk66EuIJ2SfYKwJ/FcGHYgMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAzMTI0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNWUzMTQ0ZTVkY2ZlZmNmODEwNGNlMzk1MmI0OWEyMDZj M2JkM2U4YzJiZmFmODkyMTYxMmM5YWNlZDFkYTYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4+7o/7FBE0e3+aElN/V5IyI4slo5ITLGva2xCGCoMSkzQ MsoBP7gZ6DQoalkmIof3AEeqzhWDLh6rv099azixTJXrLsm75Zv71AOWmNKvdAgL bQ/2/3db+aA27QSkbQx4N3j3ayfZkz4verkTSPoevdGQnW/wVXGOIprY0klBlxGd l8gHmFOEsAIozu5OXPLb/WGdw2uzTBavXtp5519SDvft+xotlnlLSjQEGhU8Nemi Z+9Y/6XNLNAlF1K2QQ869v2oJJSgNGL1Zc/VPs7b2DHgHxXHZbmI7A/d+mFtximR Je/wI0xnzZQ8MVg4QognleQxFFeXOm7Tq0baXxTrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU2p4epjYL7iXZe/nDQLMqONk3gvYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM4YmMxZDlhLWRjMGEtNDU1Ny04ZjBjLTQ1ZGYwYzM5MjUxNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFWcDANBgkqhkiG9w0BAQsFAAOCAQEAEhhfrR94TIGKMvFbwoG4jP0rVuZM qPm7SplrHgB9bvhS9eIuXFIX89BWbmx2Wct8VqiDEc4yW/LZmy/1Qwr5iTTFkPmA gAgDa03nPmSrPBqqQ4tH8baqzYs6aNxpKYI4A1j6+cKap3FScVl4Jv2sdkL2zNMv C09hZAFrBwHnYh6fTcJgGqHeiP4hWkZ3kvc81ZR/LbbsD4SHtW4VMSeCaQkJA/Jb rCkB4m3Mxv3OJjz6oKWCT3dGGItqmIXq+O/Epq6X2E84I35X+YhHLsnbc5yhe9Fc nAPP85qLM6DbpZPYBkX2plMnMR00FS8KvS0ONCy5uI6KlSfPSu+VIbM35w== -----END CERTIFICATE-----Generated at Mon Mar 2 06:35:47 2026 by rpki-client