$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3ba061-2eb3-49e9-8751-a3a3b0281d6f.roa File: 3b3ba061-2eb3-49e9-8751-a3a3b0281d6f.roa (raw, json) Hash identifier: /eeN7TprRVVFiqKwlsleWbZtbZZf+uXxInPypjCu0XY= Subject key identifier: 29:17:5B:44:F6:07:22:79:27:C0:55:1F:47:D8:1A:28:48:5D:9E:5B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C64CB579C0D3F0F1C834901C6D2B8CAF8AFD509 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3ba061-2eb3-49e9-8751-a3a3b0281d6f.roa Signing time: Tue 24 Feb 2026 02:40:43 +0000 ROA not before: Tue 24 Feb 2026 02:40:43 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.208.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:64:cb:57:9c:0d:3f:0f:1c:83:49:01:c6:d2:b8:ca:f8:af:d5:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:40:43 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=1e72b356fdf900d7688f7da321ad819df3a151474e09bcd53786ce6645171585, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:99:61:11:b2:75:36:b8:69:0c:d9:87:73:f9: ac:79:59:16:2a:41:c8:c1:17:d0:b8:2e:d7:56:4d: 67:19:73:e7:ec:74:c9:ed:d9:14:08:62:41:df:dd: 15:f8:26:ff:26:1f:e3:62:4d:af:7e:66:ae:49:96: ca:a6:ae:e6:6f:8f:4c:9f:a4:90:cc:56:40:96:09: be:1b:cc:7a:c3:11:6c:b2:0d:97:6c:22:c2:35:98: 8b:6f:d8:a1:b6:58:c4:f1:ab:04:34:d2:52:0b:7a: 16:7d:06:c5:e9:da:23:ff:80:c7:16:6a:44:87:98: 60:92:30:33:73:77:bf:c3:ac:93:4f:8b:30:5a:b9: 24:41:99:65:07:c3:e4:2e:de:d2:a1:6a:37:ec:38: 8b:6f:e1:42:06:6f:0a:6d:c2:df:07:71:01:8d:bc: 0c:51:9c:c2:e7:93:83:d2:d0:c1:b2:ff:a5:f7:72: 70:60:88:f2:a7:9a:48:95:cf:90:65:71:58:eb:73: 97:6d:b8:90:ce:7a:8a:39:2a:72:c8:f7:e3:a4:61: ec:c6:ec:31:e6:f1:6a:e7:35:63:36:46:ce:66:2e: 0c:4d:70:bd:10:cd:08:e2:b4:c8:71:49:08:4d:b1: 59:77:49:3b:ea:60:eb:bb:a4:d3:98:68:64:75:e4: c0:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:17:5B:44:F6:07:22:79:27:C0:55:1F:47:D8:1A:28:48:5D:9E:5B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3ba061-2eb3-49e9-8751-a3a3b0281d6f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.208.0/21 Signature Algorithm: sha256WithRSAEncryption 4d:24:76:05:5c:1f:5f:e6:41:5e:51:d4:c9:dd:30:83:57:15: e2:9f:e8:a2:ba:88:e9:a3:b9:db:f9:b7:89:e4:23:ac:7c:9e: 87:65:80:93:c9:69:b9:0a:b4:04:8e:29:41:02:bf:a7:51:4c: 57:a5:09:a9:96:eb:77:d2:7e:ce:05:2a:10:8b:cc:03:6c:76: 36:48:4a:f5:61:2b:94:8b:07:ef:6c:4c:a3:b5:7b:f2:2e:23: 1a:41:63:54:71:18:f6:b4:6a:f2:b4:45:8b:3b:43:ce:a1:78: ad:77:fe:eb:14:6b:17:69:5b:a1:27:e1:a5:02:35:02:55:72: 33:04:13:d2:ca:a1:37:56:a4:67:cd:64:27:0c:d5:ef:6a:ed: 59:15:ba:7a:0c:d8:f7:29:2a:b8:c8:79:dc:07:19:ab:59:10: a4:e7:8e:a0:8c:94:2e:9b:39:76:7f:4e:d9:f0:33:84:61:62: 71:e4:2a:86:c4:b6:8a:06:9e:25:b3:18:1a:48:30:53:ba:5a: 6a:78:db:22:0f:72:97:f8:7d:64:70:7a:9e:21:c1:f9:fb:c2: 80:b8:f1:72:89:90:dd:81:09:cc:eb:87:cd:9c:bb:4a:80:38: 15:b6:50:d1:40:60:ec:28:24:e4:72:27:cc:bf:ff:d5:9b:f9: 78:23:2b:fb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUfGTLV5wNPw8cg0kBxtK4yviv1QkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDI0MDQzWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZTcyYjM1NmZkZjkwMGQ3Njg4ZjdkYTMyMWFkODE5ZGYz YTE1MTQ3NGUwOWJjZDUzNzg2Y2U2NjQ1MTcxNTg1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCXmWERsnU2uGkM2Ydz+ax5WRYqQcjBF9C4LtdWTWcZc+fs dMnt2RQIYkHf3RX4Jv8mH+NiTa9+Zq5JlsqmruZvj0yfpJDMVkCWCb4bzHrDEWyy DZdsIsI1mItv2KG2WMTxqwQ00lILehZ9BsXp2iP/gMcWakSHmGCSMDNzd7/DrJNP izBauSRBmWUHw+Qu3tKhajfsOItv4UIGbwptwt8HcQGNvAxRnMLnk4PS0MGy/6X3 cnBgiPKnmkiVz5BlcVjrc5dtuJDOeoo5KnLI9+OkYezG7DHm8WrnNWM2Rs5mLgxN cL0QzQjitMhxSQhNsVl3STvqYOu7pNOYaGR15MAtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKRdbRPYHInknwFUfR9gaKEhdnlswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiM2JhMDYxLTJlYjMtNDllOS04NzUxLWEzYTNiMDI4MWQ2Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPM7NAwDQYJKoZIhvcNAQELBQADggEBAE0kdgVcH1/mQV5R1MndMINXFeKf 6KK6iOmjudv5t4nkI6x8nodlgJPJabkKtASOKUECv6dRTFelCamW63fSfs4FKhCL zANsdjZISvVhK5SLB+9sTKO1e/IuIxpBY1RxGPa0avK0RYs7Q86heK13/usUaxdp W6En4aUCNQJVcjMEE9LKoTdWpGfNZCcM1e9q7VkVunoM2PcpKrjIedwHGatZEKTn jqCMlC6bOXZ/TtnwM4RhYnHkKobEtooGniWzGBpIMFO6Wmp42yIPcpf4fWRwep4h wfn7woC48XKJkN2BCczrh82cu0qAOBW2UNFAYOwoJORyJ8y//9Wb+XgjK/s= -----END CERTIFICATE-----Generated at Mon Mar 2 00:08:06 2026 by rpki-client