$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa File: 39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa (raw, json) Hash identifier: BM9VrTWJm/eSalLOTYGip/QaEM8pbTcCuHcnyDUiMfw= Subject key identifier: 0F:0F:0B:82:D2:7C:06:E3:61:2E:14:88:C9:AA:8C:14:A3:0B:C2:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14761345430A1BE8A59D0432323B8750EADDF260 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa Signing time: Tue 24 Feb 2026 00:30:12 +0000 ROA not before: Tue 24 Feb 2026 00:30:12 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.21.200.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:76:13:45:43:0a:1b:e8:a5:9d:04:32:32:3b:87:50:ea:dd:f2:60 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:30:12 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=7472c818094daf2c9edc20013f34979b602b3fbde56fb5dfff05127156c5fa5b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:cc:57:57:be:1b:18:3a:c7:f5:6c:c1:85:ec: 45:a3:0f:46:99:a8:f6:d1:71:8c:9e:1f:32:e7:aa: a1:e0:98:e1:39:9a:6e:f9:a8:bb:be:02:2d:58:90: 0d:ab:d2:70:74:4d:87:35:f3:85:f7:38:15:54:8c: 98:c2:b9:e8:00:12:ad:97:b0:b0:46:f6:54:d2:9c: ce:54:cd:86:9c:30:c8:69:6c:a1:e2:2f:aa:7b:2d: 96:be:4c:b1:9b:1a:f3:6f:d2:69:35:54:66:62:a4: b4:17:41:7f:2a:c2:ae:df:a5:2c:04:97:1a:33:81: 41:e7:a8:49:f6:36:a3:8c:1f:ff:c5:7a:3d:8a:dc: 7f:c6:e3:85:58:13:c9:14:bd:25:87:e7:d8:6a:7d: 87:1b:1b:41:46:a9:98:3f:4e:68:18:6c:07:17:93: fa:c0:e4:e2:d4:31:64:ee:e6:04:31:3b:fe:fd:cc: 50:35:e8:ff:fa:e1:3c:60:06:fd:a3:b4:e7:0a:a4: 36:79:58:af:10:02:49:42:dc:94:56:7c:3e:fa:e1: ca:8c:17:ca:23:1b:be:5c:d3:ee:da:7f:2c:91:69: 19:37:ec:92:2c:7e:54:f1:15:89:7f:4a:48:49:41: 32:94:bd:3f:72:0f:76:50:78:cd:de:b0:7f:38:c2: 96:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:0F:0B:82:D2:7C:06:E3:61:2E:14:88:C9:AA:8C:14:A3:0B:C2:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/39987a4f-c632-4bdd-8f12-5e92d4db3be2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.200.0/21 Signature Algorithm: sha256WithRSAEncryption 4b:0d:e1:f4:12:03:57:86:34:35:ef:bf:b6:43:b1:33:b5:96: d9:80:7f:61:69:33:9e:47:a4:03:5c:71:08:69:ed:fe:eb:a9: 94:76:63:11:ed:fe:47:86:01:8c:5b:67:40:e2:52:1f:a3:df: 45:09:09:0a:89:db:0f:3e:76:a2:bd:88:9d:cb:cc:b3:24:7c: b5:c5:3d:2e:13:f8:43:dc:35:a2:c0:1f:24:01:7b:c5:44:ea: 57:f2:25:53:1c:db:c9:a9:7b:27:dd:d2:40:1b:db:ae:e5:93: a1:1e:6b:1a:2e:d9:f3:c9:fe:93:cf:df:98:a4:42:33:dc:3c: f5:0e:3f:3d:9b:81:92:b0:53:49:da:bc:ef:d3:b7:c5:92:ad: 2f:62:33:ee:26:c9:71:31:10:e4:65:18:3d:7a:d4:a9:7b:a2: 00:de:02:4e:ec:0b:d3:00:41:10:46:e3:90:cc:0d:f9:40:ae: c4:b7:f9:e0:91:0b:b4:ef:37:d4:f1:ac:3d:ca:98:48:b3:9e: 8d:94:6d:6d:e2:fc:d4:38:47:de:48:76:96:9f:58:90:9b:6e: f2:bc:89:be:66:24:99:74:aa:a1:7a:da:64:32:df:63:62:4c: a3:c8:a3:da:c8:55:4b:9e:61:61:e9:b5:e4:02:9f:46:e6:71: e7:b7:9a:37 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFHYTRUMKG+ilnQQyMjuHUOrd8mAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAzMDEyWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NDcyYzgxODA5NGRhZjJjOWVkYzIwMDEzZjM0OTc5YjYw MmIzZmJkZTU2ZmI1ZGZmZjA1MTI3MTU2YzVmYTViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXzFdXvhsYOsf1bMGF7EWjD0aZqPbRcYyeHzLnqqHgmOE5 mm75qLu+Ai1YkA2r0nB0TYc184X3OBVUjJjCuegAEq2XsLBG9lTSnM5UzYacMMhp bKHiL6p7LZa+TLGbGvNv0mk1VGZipLQXQX8qwq7fpSwElxozgUHnqEn2NqOMH//F ej2K3H/G44VYE8kUvSWH59hqfYcbG0FGqZg/TmgYbAcXk/rA5OLUMWTu5gQxO/79 zFA16P/64TxgBv2jtOcKpDZ5WK8QAklC3JRWfD764cqMF8ojG75c0+7afyyRaRk3 7JIsflTxFYl/SkhJQTKUvT9yD3ZQeM3esH84wpaZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDw8LgtJ8BuNhLhSIyaqMFKMLwj8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM5OTg3YTRmLWM2MzItNGJkZC04ZjEyLTVlOTJkNGRiM2JlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFcgwDQYJKoZIhvcNAQELBQADggEBAEsN4fQSA1eGNDXvv7ZDsTO1ltmA f2FpM55HpANccQhp7f7rqZR2YxHt/keGAYxbZ0DiUh+j30UJCQqJ2w8+dqK9iJ3L zLMkfLXFPS4T+EPcNaLAHyQBe8VE6lfyJVMc28mpeyfd0kAb267lk6Eeaxou2fPJ /pPP35ikQjPcPPUOPz2bgZKwU0navO/Tt8WSrS9iM+4myXExEORlGD161Kl7ogDe Ak7sC9MAQRBG45DMDflArsS3+eCRC7TvN9TxrD3KmEizno2UbW3i/NQ4R95Idpaf WJCbbvK8ib5mJJl0qqF62mQy32NiTKPIo9rIVUueYWHpteQCn0bmcee3mjc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:03 2026 by rpki-client