$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a3bf936-3d01-4b4d-b4bb-05c306c81a95.roa File: 3a3bf936-3d01-4b4d-b4bb-05c306c81a95.roa (raw, json) Hash identifier: EtSiZROsic80QSOvmT9n+PyCTNV6p+vI/9I/VAYnwe0= Subject key identifier: FD:90:87:14:7C:A4:A0:A8:1B:6A:A5:20:25:7F:30:97:3A:B7:6E:EF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C59BE5DDDB9DC80F1A8365F6DACF772B0521A30 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a3bf936-3d01-4b4d-b4bb-05c306c81a95.roa Signing time: Sun 01 Mar 2026 00:20:38 +0000 ROA not before: Sun 01 Mar 2026 00:20:38 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 57.139.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:59:be:5d:dd:b9:dc:80:f1:a8:36:5f:6d:ac:f7:72:b0:52:1a:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:20:38 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=098bf2f69fc3c21b8101f0d48b31e49d56f3494cf74a1f2b54b50e6ecff3319c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:39:56:97:98:38:38:7e:56:76:c2:4d:43:6d: 05:6f:c5:14:74:f2:7e:81:79:70:a6:6c:b0:01:74: e1:af:72:d3:a2:ae:da:38:2d:8b:63:c9:0e:33:60: 7e:c1:83:6f:e9:4f:60:f9:ea:a2:1d:54:4f:fd:98: 9b:23:06:13:bf:7c:7d:0c:55:e4:bb:c7:4c:5f:b3: a6:97:cc:dd:c6:cc:4d:50:69:26:5c:b8:07:37:29: 48:e0:c0:d7:0e:08:6c:38:a8:49:e3:2a:32:57:d6: 2d:65:ff:db:29:af:eb:ab:9d:12:86:b9:c5:67:9e: 4b:55:88:ed:e4:8b:83:26:aa:22:53:bd:39:c3:85: 06:61:7a:0a:7b:de:a0:a9:60:99:98:b4:61:ba:f6: 06:4e:7f:26:68:46:51:98:12:00:5f:1a:af:23:87: 7b:bb:9b:fa:3e:7e:ec:1c:43:37:17:d7:17:43:de: 31:ec:15:20:f2:22:60:ae:37:e0:14:cd:9b:4f:27: cb:74:4a:0f:01:5c:4d:8d:e8:3f:28:19:e5:82:7e: 07:1b:56:e1:f5:a2:61:89:f6:2e:f1:22:d4:aa:35: a0:4c:2f:88:c2:19:bf:35:5d:9b:e6:dc:2a:97:90: b0:e4:00:5b:4d:e6:ad:b7:7f:93:76:9e:f1:94:ac: 94:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:90:87:14:7C:A4:A0:A8:1B:6A:A5:20:25:7F:30:97:3A:B7:6E:EF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a3bf936-3d01-4b4d-b4bb-05c306c81a95.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.139.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:3f:71:3f:20:9e:35:50:f0:f2:50:aa:13:13:7a:d7:ad:c3: 93:52:63:2a:83:06:8d:cf:68:4e:8e:9a:ea:8c:d0:1c:39:80: 28:40:56:c0:10:5f:0a:12:8f:c2:88:43:d1:18:ad:20:90:93: 54:94:31:84:b1:d4:93:7f:c0:2e:05:97:36:7c:3e:20:4e:d0: 6d:16:3b:13:6d:c3:00:24:3c:86:08:ef:2b:cc:dd:72:c6:5f: 32:34:60:1a:e4:b5:91:57:05:58:c2:11:ad:ee:c8:d0:f0:ed: 83:ac:08:8e:02:e4:91:a3:5a:f4:72:c1:2e:b5:e9:b4:2d:a1: ac:ad:44:63:03:54:89:6a:75:1a:4f:b7:79:7e:0d:5c:9d:99: f2:47:f7:df:6b:b7:d5:9c:a9:b8:bd:3e:9c:da:45:87:0c:99: 34:94:32:fb:69:9a:33:7d:95:cd:dd:45:ea:96:89:16:e8:da: 69:06:7e:9c:a3:23:59:ea:3d:ab:5a:5a:14:59:3f:53:49:04: 54:18:b2:df:0d:6b:56:bf:89:2b:c8:19:89:6b:61:60:2c:d0: d5:cc:66:b3:f4:cf:13:73:96:5e:cc:4d:61:05:78:05:45:ec: 06:27:0d:92:b0:64:20:03:e2:7e:b2:3d:5e:2e:02:c2:56:cd: 8c:5c:bd:99 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHFm+Xd253IDxqDZfbaz3crBSGjAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMDM4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AwOThiZjJmNjlmYzNjMjFiODEwMWYwZDQ4YjMxZTQ5ZDU2 ZjM0OTRjZjc0YTFmMmI1NGI1MGU2ZWNmZjMzMTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhOVaXmDg4flZ2wk1DbQVvxRR08n6BeXCmbLABdOGvctOi rto4LYtjyQ4zYH7Bg2/pT2D56qIdVE/9mJsjBhO/fH0MVeS7x0xfs6aXzN3GzE1Q aSZcuAc3KUjgwNcOCGw4qEnjKjJX1i1l/9spr+urnRKGucVnnktViO3ki4MmqiJT vTnDhQZhegp73qCpYJmYtGG69gZOfyZoRlGYEgBfGq8jh3u7m/o+fuwcQzcX1xdD 3jHsFSDyImCuN+AUzZtPJ8t0Sg8BXE2N6D8oGeWCfgcbVuH1omGJ9i7xItSqNaBM L4jCGb81XZvm3CqXkLDkAFtN5q23f5N2nvGUrJTfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU/ZCHFHykoKgbaqUgJX8wlzq3bu8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhM2JmOTM2LTNkMDEtNGI0ZC1iNGJiLTA1YzMwNmM4MWE5NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5izANBgkqhkiG9w0BAQsFAAOCAQEAjz9xPyCeNVDw8lCqExN6163Dk1Jj KoMGjc9oTo6a6ozQHDmAKEBWwBBfChKPwohD0RitIJCTVJQxhLHUk3/ALgWXNnw+ IE7QbRY7E23DACQ8hgjvK8zdcsZfMjRgGuS1kVcFWMIRre7I0PDtg6wIjgLkkaNa 9HLBLrXptC2hrK1EYwNUiWp1Gk+3eX4NXJ2Z8kf332u31ZypuL0+nNpFhwyZNJQy +2maM32Vzd1F6paJFujaaQZ+nKMjWeo9q1paFFk/U0kEVBiy3w1rVr+JK8gZiWth YCzQ1cxms/TPE3OWXsxNYQV4BUXsBicNkrBkIAPifrI9Xi4CwlbNjFy9mQ== -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:16 2026 by rpki-client