$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa File: 3c024a47-7c98-464a-8556-eaf88725802b.roa (raw, json) Hash identifier: FJT5mFXCuwmwTO8ITq8RF8rvRKdng+knHOI5Qsn61BA= Subject key identifier: A3:42:99:85:BD:5C:3A:39:85:9C:08:99:75:0D:B4:88:2A:9D:4D:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 26908C8C2FBFDA731C6B1969727853C5A588A2EC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa Signing time: Tue 24 Feb 2026 02:00:09 +0000 ROA not before: Tue 24 Feb 2026 02:00:09 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.22.158.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:90:8c:8c:2f:bf:da:73:1c:6b:19:69:72:78:53:c5:a5:88:a2:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:00:09 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=ca820a4817bbd90928b8bd2ee30897fe448220a232c257a3818f0754cbe12c5a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:db:88:78:ee:b7:d4:30:62:17:ff:dc:23:f4: c7:d1:23:1c:a1:dc:a5:f0:10:66:6a:66:ac:7b:20: a0:95:9e:f6:91:aa:f4:13:eb:f3:82:72:12:16:09: d6:48:ae:d9:ad:ce:7b:a2:d5:f6:71:a4:95:8c:44: ee:b5:1d:bc:fe:fb:74:58:b0:32:6d:40:74:06:5f: 37:a0:35:b4:2a:93:f2:ca:f5:b0:e1:cc:6b:83:da: 1d:e3:f3:d9:62:9e:86:19:39:84:8b:89:05:96:9e: a4:8d:01:e7:65:bd:f0:5c:3e:a0:78:ef:e1:5f:03: d2:ba:dc:d4:0b:9e:1e:94:54:99:8c:2d:f5:be:97: a3:35:52:e8:ca:3b:38:82:e5:a1:d5:6d:20:a8:cb: da:8e:f8:1b:38:34:49:fd:1e:31:03:f3:96:91:d6: 3e:b7:90:e6:b6:8e:48:dd:60:90:11:63:64:96:46: 2e:fe:0c:dc:7d:17:04:9a:8c:3a:80:03:79:25:d3: 54:da:ff:00:b1:69:65:61:a8:5c:fe:cc:90:3b:f5: fb:ce:02:91:09:da:c0:2f:97:ea:5a:f7:88:c7:30: eb:2d:50:0d:f2:10:b1:b7:00:73:e8:a9:a8:13:4d: 22:f5:1e:8f:20:ed:94:7d:b3:76:b4:3f:9e:b6:fd: c7:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:42:99:85:BD:5C:3A:39:85:9C:08:99:75:0D:B4:88:2A:9D:4D:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c024a47-7c98-464a-8556-eaf88725802b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.158.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:08:cc:1e:20:70:f0:bb:1a:a3:ba:e3:3b:be:d0:58:cc:1a: b9:47:68:78:8d:ba:b5:63:80:04:b9:c6:d6:8e:6f:f2:a2:24: 04:d9:88:de:33:51:1c:e6:b7:0b:2a:af:d2:4b:bc:07:da:a8: 55:cd:72:d5:39:68:62:69:64:00:bf:03:7e:a7:33:6f:8e:fb: be:0a:8e:01:35:9c:53:fa:ae:cd:4a:da:3c:de:bc:56:37:0a: 06:cb:dc:a2:2b:b4:d7:2d:6b:ff:6c:58:d8:43:93:85:14:1a: f4:75:79:21:1e:e4:5a:6a:f8:d6:b0:24:6b:e5:ce:0b:54:6f: 0c:56:67:26:d6:a8:ad:06:fd:ce:ed:da:3c:bf:af:d8:11:43: f7:cb:2f:50:e8:81:0d:07:d4:76:b1:96:99:c9:29:2a:15:2f: 61:04:7c:e8:6f:4a:7d:38:27:f8:3a:77:4a:81:59:41:ce:6a: 7a:5d:f6:89:58:3e:d7:b3:2c:96:8f:f7:45:5d:3b:b7:f1:16: 4a:d6:1e:a0:ef:c5:50:3f:c4:26:a1:3a:a1:de:18:38:a2:71: 4c:f5:f6:ed:2c:6f:8c:15:4c:fe:b5:0b:6c:c9:1a:1f:4b:5e: de:2e:3f:e6:00:f1:c9:1a:90:a5:5d:04:3d:f8:ea:a4:2e:b4: e5:06:52:08 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJpCMjC+/2nMcaxlpcnhTxaWIouwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIwMDA5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTgyMGE0ODE3YmJkOTA5MjhiOGJkMmVlMzA4OTdmZTQ0 ODIyMGEyMzJjMjU3YTM4MThmMDc1NGNiZTEyYzVhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn24h47rfUMGIX/9wj9MfRIxyh3KXwEGZqZqx7IKCVnvaR qvQT6/OCchIWCdZIrtmtznui1fZxpJWMRO61Hbz++3RYsDJtQHQGXzegNbQqk/LK 9bDhzGuD2h3j89linoYZOYSLiQWWnqSNAedlvfBcPqB47+FfA9K63NQLnh6UVJmM LfW+l6M1UujKOziC5aHVbSCoy9qO+Bs4NEn9HjED85aR1j63kOa2jkjdYJARY2SW Ri7+DNx9FwSajDqAA3kl01Ta/wCxaWVhqFz+zJA79fvOApEJ2sAvl+pa94jHMOst UA3yELG3AHPoqagTTSL1Ho8g7ZR9s3a0P562/ccHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo0KZhb1cOjmFnAiZdQ20iCqdTQswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjMDI0YTQ3LTdjOTgtNDY0YS04NTU2LWVhZjg4NzI1ODAyYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABrFp4wDQYJKoZIhvcNAQELBQADggEBAG0IzB4gcPC7GqO64zu+0FjMGrlH aHiNurVjgAS5xtaOb/KiJATZiN4zURzmtwsqr9JLvAfaqFXNctU5aGJpZAC/A36n M2+O+74KjgE1nFP6rs1K2jzevFY3CgbL3KIrtNcta/9sWNhDk4UUGvR1eSEe5Fpq +NawJGvlzgtUbwxWZybWqK0G/c7t2jy/r9gRQ/fLL1DogQ0H1HaxlpnJKSoVL2EE fOhvSn04J/g6d0qBWUHOanpd9olYPtezLJaP90VdO7fxFkrWHqDvxVA/xCahOqHe GDiicUz19u0sb4wVTP61C2zJGh9LXt4uP+YA8ckakKVdBD346qQutOUGUgg= -----END CERTIFICATE-----Generated at Mon Mar 2 01:58:03 2026 by rpki-client