$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa File: 3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa (raw, json) Hash identifier: erGlfFOCZNHbZkP2zV+PehjA/KDWiKOo6wLtgyzVgfY= Subject key identifier: 33:11:2E:D8:0F:B6:41:2F:A6:B1:67:EE:49:CF:7E:75:4D:C4:41:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 250FEEF22A8B817BE2412F02F715711DBAC2518B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa Signing time: Thu 26 Feb 2026 01:01:31 +0000 ROA not before: Thu 26 Feb 2026 01:01:31 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.68.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:0f:ee:f2:2a:8b:81:7b:e2:41:2f:02:f7:15:71:1d:ba:c2:51:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:01:31 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=0a21880a9758b19302e3706dc76405ca469ee95bdf5bb11363c30dc798199cca, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:2e:b1:57:b1:3c:f9:63:f3:94:20:da:ad:ab: b9:b9:c6:24:27:7f:8e:73:c6:02:db:17:0e:11:d0: 1f:e6:09:1f:b6:36:ea:03:7d:ce:c7:cb:64:c1:33: 20:8b:0c:24:7f:cf:2f:c7:d4:18:e8:79:99:89:5a: 40:79:30:7b:ed:2c:5d:77:d6:8c:55:2e:81:08:a0: 07:4d:d0:95:30:45:fb:30:e2:2b:35:2b:8f:60:4e: d4:b9:e5:2a:a1:5c:6a:17:58:1c:a6:ed:d8:1b:86: e5:f1:40:26:ad:f7:01:de:96:16:c9:bd:d5:7d:6d: 88:a4:cd:a5:52:aa:ef:1f:98:f4:6d:01:ab:d0:94: 3d:e4:fa:78:e8:9c:53:de:c2:1d:c1:ab:f4:0a:24: 81:02:ee:55:b5:82:bf:16:a5:09:f9:0d:35:dd:34: d2:2f:53:28:a5:5c:18:d2:20:81:4a:f7:11:7d:29: a6:43:0d:aa:6f:c3:22:55:c8:b8:c0:77:fa:f4:42: 92:c7:c8:f8:c8:42:6d:a3:5c:aa:ab:d9:3f:29:e5: 32:c7:7e:e6:3b:4b:5f:42:1f:6d:64:f9:5e:f8:71: 55:38:ee:93:01:97:d8:77:60:fd:73:3a:52:32:62: ce:f3:48:6a:4f:b3:0a:c0:2a:04:6b:f3:98:14:b7: a0:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:11:2E:D8:0F:B6:41:2F:A6:B1:67:EE:49:CF:7E:75:4D:C4:41:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b1c020d-4131-47f0-a3f7-b0555cf026ed.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.68.0.0/17 Signature Algorithm: sha256WithRSAEncryption 5e:0b:60:81:55:3d:c4:ec:7a:8c:0d:c1:c0:b4:07:29:ec:7f: e9:9b:93:ad:ae:71:35:f1:7a:40:98:f3:3a:3e:a0:ab:0c:c3: cc:5c:0a:ac:2f:a1:0b:46:52:c1:45:eb:41:93:32:ff:43:0f: b5:26:60:34:18:e1:39:15:b7:aa:95:d6:b6:14:3f:bd:73:cb: 7b:8b:81:88:ee:dd:6d:3f:28:ec:99:08:49:6e:80:b5:e4:19: 7d:a9:07:87:0b:d7:bf:42:8b:b9:5b:8f:5d:b8:1c:60:2b:f5: ba:f0:d2:89:c8:31:39:34:65:17:f9:a9:c7:49:77:ef:8c:73: 4a:23:64:7e:29:9c:7a:65:c6:7a:a6:38:b5:9c:b9:6e:2b:0c: 9b:d2:6d:0d:b9:5c:2f:43:ac:37:cb:06:58:3e:19:72:df:5d: 01:ca:8e:77:9a:f2:94:63:ef:cc:03:01:33:55:3a:b5:d3:0e: e8:39:b8:c1:01:da:f5:d5:aa:2e:20:e3:48:65:0a:b1:70:ac: 8e:d0:c2:42:38:ae:3e:2d:0e:d2:e1:ae:a6:b6:6b:f3:91:8b: 92:18:00:50:4b:32:9a:72:b2:d7:dc:12:85:bb:0d:62:12:f6: 14:3d:8e:63:d8:36:8c:bb:4a:a4:57:9e:50:69:68:51:4f:e7: eb:d0:59:1a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJQ/u8iqLgXviQS8C9xVxHbrCUYswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMTMxWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYTIxODgwYTk3NThiMTkzMDJlMzcwNmRjNzY0MDVjYTQ2 OWVlOTViZGY1YmIxMTM2M2MzMGRjNzk4MTk5Y2NhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjLrFXsTz5Y/OUINqtq7m5xiQnf45zxgLbFw4R0B/mCR+2 NuoDfc7Hy2TBMyCLDCR/zy/H1BjoeZmJWkB5MHvtLF131oxVLoEIoAdN0JUwRfsw 4is1K49gTtS55SqhXGoXWBym7dgbhuXxQCat9wHelhbJvdV9bYikzaVSqu8fmPRt AavQlD3k+njonFPewh3Bq/QKJIEC7lW1gr8WpQn5DTXdNNIvUyilXBjSIIFK9xF9 KaZDDapvwyJVyLjAd/r0QpLHyPjIQm2jXKqr2T8p5TLHfuY7S19CH21k+V74cVU4 7pMBl9h3YP1zOlIyYs7zSGpPswrAKgRr85gUt6DHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMxEu2A+2QS+msWfuSc9+dU3EQc0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiMWMwMjBkLTQxMzEtNDdmMC1hM2Y3LWIwNTU1Y2YwMjZlZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAc4RAAwDQYJKoZIhvcNAQELBQADggEBAF4LYIFVPcTseowNwcC0Bynsf+mb k62ucTXxekCY8zo+oKsMw8xcCqwvoQtGUsFF60GTMv9DD7UmYDQY4TkVt6qV1rYU P71zy3uLgYju3W0/KOyZCElugLXkGX2pB4cL179Ci7lbj124HGAr9brw0onIMTk0 ZRf5qcdJd++Mc0ojZH4pnHplxnqmOLWcuW4rDJvSbQ25XC9DrDfLBlg+GXLfXQHK jnea8pRj78wDATNVOrXTDug5uMEB2vXVqi4g40hlCrFwrI7QwkI4rj4tDtLhrqa2 a/ORi5IYAFBLMppystfcEoW7DWIS9hQ9jmPYNoy7SqRXnlBpaFFP5+vQWRo= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:59 2026 by rpki-client