$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a64fe0b-c9d2-4149-aca1-3fb8b771db54.roa File: 3a64fe0b-c9d2-4149-aca1-3fb8b771db54.roa (raw, json) Hash identifier: GNj6t2oZxxojFeqBR6mMIg1JSFygek/npREfMD2YHJc= Subject key identifier: C6:33:D0:12:2C:39:A9:68:BC:4C:56:A0:DE:58:4E:EF:0F:60:E2:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 353E74BC1A289C01686068026B3C27C3F4E86E52 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a64fe0b-c9d2-4149-aca1-3fb8b771db54.roa Signing time: Tue 24 Feb 2026 21:06:35 +0000 ROA not before: Tue 24 Feb 2026 21:06:35 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 56.11.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:3e:74:bc:1a:28:9c:01:68:60:68:02:6b:3c:27:c3:f4:e8:6e:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 21:06:35 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=5ae00b46b894aafc5e75d2d34b5283dd724b204b2afc56e13e85e820a3c94e8d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:cf:72:e9:00:6f:a0:01:1c:cb:7e:f1:3d:9c: 05:a6:ca:66:ae:27:3c:ef:db:ca:8f:23:46:c6:15: 65:f5:11:17:b7:29:fa:e4:78:cc:39:d9:f7:4a:3e: 03:eb:95:89:09:2c:a0:5e:e6:dc:d7:e1:a5:96:bc: 10:cf:cf:ae:4b:38:24:c4:13:4f:b5:6f:0b:0f:f5: d3:79:6b:40:21:09:0d:7e:20:88:10:5c:21:4a:b9: 48:ca:73:b1:15:8c:6a:7d:f0:53:a5:a4:63:4c:c2: a0:67:13:c8:71:6f:65:48:51:7a:8c:a7:38:43:db: fd:7f:22:63:43:30:9c:f7:c0:bf:6d:01:78:05:12: c6:bb:cd:43:9d:fc:55:35:12:85:12:fc:50:63:88: 16:b7:fc:c6:b1:99:bf:c0:22:7b:16:bb:7e:41:25: 1c:90:43:9b:9c:13:7f:0e:87:62:23:4b:1b:ab:76: 5f:cb:94:fb:2e:8a:57:0c:a8:4f:f6:eb:7f:b1:e6: d4:b5:db:65:70:b4:3a:48:1f:8f:86:8b:f1:7f:e5: 9e:f5:bd:f7:62:89:08:75:3e:2e:50:6d:e7:2e:24: 77:d1:ce:4b:70:1d:cd:c9:d9:fe:52:6b:a3:55:71: 22:4a:7e:bb:6a:96:3e:71:3f:7b:90:b6:0b:13:c0: 7f:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:33:D0:12:2C:39:A9:68:BC:4C:56:A0:DE:58:4E:EF:0F:60:E2:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3a64fe0b-c9d2-4149-aca1-3fb8b771db54.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption 09:0d:8b:7a:78:5e:a7:a7:29:88:85:37:51:3c:38:a5:3b:c6: cf:d1:ef:4a:b3:ab:c5:7d:a8:c5:4e:7e:e1:18:10:a8:59:2a: ad:85:36:98:53:53:92:7a:1a:37:c7:af:95:ab:9c:a3:7f:58: 9b:5e:92:c4:16:ed:9c:b4:3f:72:d9:75:93:89:ed:3e:6f:21: ed:5f:64:35:1e:9b:23:e9:9f:4c:15:e6:80:87:93:83:a4:1d: 28:a3:7d:f2:a7:a9:26:e4:de:f9:9e:3b:84:8d:f7:ff:95:d3: 48:f0:c8:0b:ea:51:0f:44:96:e4:88:77:84:18:84:e2:e3:08: 89:62:b2:a3:ba:0e:4b:14:aa:82:08:1c:3d:8a:33:a4:30:05: 44:93:49:3c:fb:83:63:8b:e2:31:28:5c:f0:17:0d:6c:92:74: 38:ee:14:bb:51:e8:c6:56:c6:d8:37:4e:39:f2:2b:bc:00:a5: a4:0b:3b:fa:d6:73:10:54:c1:8a:31:47:cb:01:29:b0:8b:af: 4f:b4:81:66:0e:ab:3b:5a:18:ba:d7:13:86:5c:1b:41:a8:86: 5f:2b:52:d5:01:88:c2:05:d7:a2:d4:d1:1a:d0:67:20:d7:bb: 9e:8d:74:0d:fb:a4:0f:e8:cf:e7:07:b9:97:61:d7:73:18:5a: 83:0e:83:9d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNT50vBoonAFoYGgCazwnw/ToblIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MjEwNjM1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YWUwMGI0NmI4OTRhYWZjNWU3NWQyZDM0YjUyODNkZDcy NGIyMDRiMmFmYzU2ZTEzZTg1ZTgyMGEzYzk0ZThkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsz3LpAG+gARzLfvE9nAWmymauJzzv28qPI0bGFWX1ERe3 KfrkeMw52fdKPgPrlYkJLKBe5tzX4aWWvBDPz65LOCTEE0+1bwsP9dN5a0AhCQ1+ IIgQXCFKuUjKc7EVjGp98FOlpGNMwqBnE8hxb2VIUXqMpzhD2/1/ImNDMJz3wL9t AXgFEsa7zUOd/FU1EoUS/FBjiBa3/Maxmb/AInsWu35BJRyQQ5ucE38Oh2IjSxur dl/LlPsuilcMqE/263+x5tS122VwtDpIH4+Gi/F/5Z71vfdiiQh1Pi5QbecuJHfR zktwHc3J2f5Sa6NVcSJKfrtqlj5xP3uQtgsTwH+JAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxjPQEiw5qWi8TFag3lhO7w9g4qwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNhNjRmZTBiLWM5ZDItNDE0OS1hY2ExLTNmYjhiNzcxZGI1NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4CzANBgkqhkiG9w0BAQsFAAOCAQEACQ2Lenhep6cpiIU3UTw4pTvGz9Hv SrOrxX2oxU5+4RgQqFkqrYU2mFNTknoaN8evlauco39Ym16SxBbtnLQ/ctl1k4nt Pm8h7V9kNR6bI+mfTBXmgIeTg6QdKKN98qepJuTe+Z47hI33/5XTSPDIC+pRD0SW 5Ih3hBiE4uMIiWKyo7oOSxSqgggcPYozpDAFRJNJPPuDY4viMShc8BcNbJJ0OO4U u1HoxlbG2DdOOfIrvAClpAs7+tZzEFTBijFHywEpsIuvT7SBZg6rO1oYutcThlwb QaiGXytS1QGIwgXXotTRGtBnINe7no10DfukD+jP5we5l2HXcxhagw6DnQ== -----END CERTIFICATE-----Generated at Mon Mar 2 01:19:56 2026 by rpki-client