$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa File: 3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa (raw, json) Hash identifier: /XbiZdH3g/+BI6SvDd+NLKeAq/on7Cvp/LmdVQ4W/Lw= Subject key identifier: 03:39:0D:0E:36:87:73:5F:F6:51:E7:AE:03:46:AE:58:BD:15:49:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 36B594A4F4D92F4F0607A25B4341A361D660CEFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa Signing time: Sun 08 Feb 2026 00:10:54 +0000 ROA not before: Sun 08 Feb 2026 00:10:54 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.160.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 36:b5:94:a4:f4:d9:2f:4f:06:07:a2:5b:43:41:a3:61:d6:60:ce:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:54 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=752c5c409f0a414ac5bc2659c942810c6ded9c8071ea11375523cff3e197bf72, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:67:dd:e9:34:5e:40:a3:a6:25:e6:a0:9c:8c: b5:d7:25:f4:46:f1:1d:f3:73:ed:db:c0:32:b3:5d: a2:9d:56:a9:c3:e3:56:85:4f:01:61:3f:b2:ad:7b: fd:99:20:91:52:fc:bd:4e:54:68:07:21:bd:f6:43: 57:fa:40:01:9d:6c:4b:b5:fb:c7:89:3a:66:76:d2: 16:17:c1:df:2b:b2:51:89:82:74:bf:9b:24:80:65: 15:99:45:c6:e8:ec:cc:ab:03:9a:21:25:3e:63:8e: 04:3a:0f:d2:38:47:a0:4e:6b:ed:fa:f5:07:04:b0: 0b:3d:46:36:74:e7:ae:3f:41:10:16:f5:44:d9:27: 7b:a5:3d:54:78:60:59:e7:1a:f6:1f:47:6a:25:7b: e7:cc:a2:c3:29:2a:83:59:6b:4b:4f:d9:b1:3d:d2: 78:f6:d9:72:1b:c9:3e:95:cc:cc:e6:c4:15:5d:94: 64:a5:4b:65:9c:de:af:a4:0d:25:ca:17:6d:b9:ba: 7b:05:2e:02:11:7c:e5:95:da:ab:97:5a:82:31:78: 48:9e:37:fc:9b:3b:b3:3d:f0:86:db:79:22:44:1d: d1:85:a1:82:c1:f3:14:09:e4:2d:a1:dc:3c:75:f7: 16:0f:13:35:80:e6:c8:14:fe:37:15:e5:5b:0d:6b: 46:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:39:0D:0E:36:87:73:5F:F6:51:E7:AE:03:46:AE:58:BD:15:49:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c52c0e6-7237-4386-a1d8-c4738c01d3a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.160.0.0/14 Signature Algorithm: sha256WithRSAEncryption 84:8d:a5:e2:dd:ef:5e:5c:68:82:78:f0:0a:63:8b:25:16:aa: c3:34:06:c0:7d:ff:82:64:f8:c1:64:18:c0:7c:b0:e1:c0:f0: 36:99:2f:6d:de:7b:40:17:eb:d7:11:a0:3f:68:0f:77:b6:4b: 89:cb:81:5f:0c:88:0b:c4:97:ec:1c:33:a0:d2:8e:a0:92:e6: 51:4f:60:c9:11:82:77:e1:55:87:12:fd:1f:c5:30:b0:a6:3d: d9:a8:57:71:96:82:c2:6a:e7:fb:21:12:aa:2d:18:9b:9a:62: f3:c6:fa:b3:9e:da:5b:64:18:a5:f3:dd:da:84:db:7d:eb:af: c7:1b:43:e6:7a:4e:41:d3:42:84:1e:6b:04:47:d6:bf:ed:be: ce:3e:51:1c:a9:e4:6d:64:f8:65:b8:94:b9:6a:2f:38:40:69: ed:78:34:8e:d8:69:24:8c:d7:fc:cc:4d:00:94:08:71:15:37: a7:fc:72:8d:26:64:54:d1:60:34:66:b6:0b:03:af:03:8b:f9: ab:dd:20:11:90:4c:7f:d1:39:35:48:a9:56:07:c2:61:36:39: 98:53:07:16:59:d6:57:03:9e:0e:99:88:30:1d:82:a3:f6:b9: ed:2e:0f:f8:c1:d4:32:33:f9:84:5c:1a:b1:42:be:1e:26:6c: b6:6b:68:2e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNrWUpPTZL08GB6JbQ0GjYdZgzv0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDU0WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3NTJjNWM0MDlmMGE0MTRhYzViYzI2NTljOTQyODEwYzZk ZWQ5YzgwNzFlYTExMzc1NTIzY2ZmM2UxOTdiZjcyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAZ93pNF5Ao6Yl5qCcjLXXJfRG8R3zc+3bwDKzXaKdVqnD 41aFTwFhP7Kte/2ZIJFS/L1OVGgHIb32Q1f6QAGdbEu1+8eJOmZ20hYXwd8rslGJ gnS/mySAZRWZRcbo7MyrA5ohJT5jjgQ6D9I4R6BOa+369QcEsAs9RjZ0564/QRAW 9UTZJ3ulPVR4YFnnGvYfR2ole+fMosMpKoNZa0tP2bE90nj22XIbyT6VzMzmxBVd lGSlS2Wc3q+kDSXKF225unsFLgIRfOWV2quXWoIxeEieN/ybO7M98IbbeSJEHdGF oYLB8xQJ5C2h3Dx19xYPEzWA5sgU/jcV5VsNa0YvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAzkNDjaHc1/2UeeuA0auWL0VSX0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNTJjMGU2LTcyMzctNDM4Ni1hMWQ4LWM0NzM4YzAxZDNhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgoDANBgkqhkiG9w0BAQsFAAOCAQEAhI2l4t3vXlxognjwCmOLJRaqwzQG wH3/gmT4wWQYwHyw4cDwNpkvbd57QBfr1xGgP2gPd7ZLicuBXwyIC8SX7BwzoNKO oJLmUU9gyRGCd+FVhxL9H8UwsKY92ahXcZaCwmrn+yESqi0Ym5pi88b6s57aW2QY pfPd2oTbfeuvxxtD5npOQdNChB5rBEfWv+2+zj5RHKnkbWT4ZbiUuWovOEBp7Xg0 jthpJIzX/MxNAJQIcRU3p/xyjSZkVNFgNGa2CwOvA4v5q90gEZBMf9E5NUipVgfC YTY5mFMHFlnWVwOeDpmIMB2Co/a57S4P+MHUMjP5hFwasUK+HiZstmtoLg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:25 2026 by rpki-client