$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa File: 3c6db0b0-0f4a-438a-88fc-504de02997a3.roa (raw, json) Hash identifier: BYbwvFyETTtneF0TPzXH58ZBkjUfkBT2iYcBtcYRWvU= Subject key identifier: AF:6F:E5:7E:35:0D:0D:F7:E9:CD:46:47:A1:BF:AC:13:7D:2F:F8:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11E1ABA7DA7F4D0E40EFD872CAE33B4A76A7FD9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa Signing time: Wed 25 Feb 2026 01:00:13 +0000 ROA not before: Wed 25 Feb 2026 01:00:13 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.240.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:e1:ab:a7:da:7f:4d:0e:40:ef:d8:72:ca:e3:3b:4a:76:a7:fd:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:00:13 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=3b10d79fe775100c2ef905d93d75cf73aa869c9746bc58a759e7ad8ffddda44b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:1e:50:73:d8:55:6f:4b:a0:ea:b4:ab:a6:53: 3e:85:4e:61:5e:b5:8d:9f:68:b0:b9:6b:63:ef:9f: 5f:4f:47:6f:d9:3d:6d:86:75:24:3d:14:3d:eb:f9: b1:87:d9:7f:b3:59:46:54:8c:f9:21:4a:11:fd:b6: c5:2f:a7:30:f6:84:32:b3:39:f2:0f:bc:be:96:c4: d5:36:85:00:63:dc:25:d5:3e:4b:2d:fa:91:52:7d: 50:92:7e:f3:4d:78:33:43:43:c9:4f:67:4d:1f:47: d7:a7:91:ef:fe:b2:87:94:3a:93:9a:f8:75:af:c2: 96:cc:93:8e:d9:ec:e6:b9:de:ff:b0:6b:19:b6:33: de:90:dd:23:f2:3c:bc:40:3c:50:e8:00:9c:59:9f: 76:85:b3:9a:2f:63:ee:0b:02:60:2b:5d:a5:3d:64: 04:99:1e:a6:5e:82:d7:34:39:92:1e:5e:d5:17:e1: 2a:0d:6f:ad:62:67:0c:9c:ce:23:1d:f6:f5:bb:08: 8e:9f:9c:c1:f3:6a:3d:33:f3:f7:f6:23:4d:4b:cf: 22:58:7a:77:31:34:4d:25:04:95:af:28:0d:5d:bf: 13:b4:d4:f0:18:65:4e:cb:a9:41:07:b1:fc:84:41: 33:1c:61:5f:e2:ca:52:f6:df:40:66:97:ca:80:df: b9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:6F:E5:7E:35:0D:0D:F7:E9:CD:46:47:A1:BF:AC:13:7D:2F:F8:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3c6db0b0-0f4a-438a-88fc-504de02997a3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.240.0/20 Signature Algorithm: sha256WithRSAEncryption 2d:74:7e:4b:76:e8:95:25:9c:0e:af:30:09:f4:9e:50:cf:93: 39:2b:d8:8a:15:ab:cf:10:58:54:d6:34:63:0c:c9:ff:16:f8: 6e:9c:9f:18:30:a0:47:30:48:cd:a1:a3:aa:e9:4b:68:fc:1a: 09:ee:30:5e:1b:51:b7:b8:ce:0d:59:89:2c:1f:a9:45:a8:93: 8a:0d:5f:d0:36:9b:fb:88:cd:f4:bd:0a:be:65:18:b0:eb:d4: 2f:20:a1:77:8f:c3:21:7b:c6:12:18:30:eb:85:c7:02:0c:10: 74:e5:3f:25:80:0f:29:4a:4f:81:bf:27:3e:33:fe:7c:32:dd: a7:d8:c8:de:89:95:08:f6:b4:65:36:5f:12:c7:80:ed:21:8b: 1d:cb:d3:97:27:52:be:6a:1d:76:7e:d8:ce:e0:c2:34:ab:d5: d5:dc:45:3e:ee:d7:f7:ac:4f:47:80:c0:ef:0b:b6:ed:13:1a: 1d:1b:67:b6:d7:9e:ba:c5:a2:aa:2a:25:a6:63:cb:eb:75:e9: c0:6b:f3:c2:bd:f0:aa:4d:76:70:d5:29:22:23:c8:8f:2e:9b: 6b:28:fe:c3:a0:aa:1e:c5:06:77:2e:e8:9e:81:62:7e:61:57: 01:df:97:f8:83:04:be:39:28:76:fa:27:c3:ff:79:e9:4e:2c: ee:80:1c:91 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEeGrp9p/TQ5A79hyyuM7Snan/Z4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEwMDEzWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYjEwZDc5ZmU3NzUxMDBjMmVmOTA1ZDkzZDc1Y2Y3M2Fh ODY5Yzk3NDZiYzU4YTc1OWU3YWQ4ZmZkZGRhNDRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiHlBz2FVvS6DqtKumUz6FTmFetY2faLC5a2Pvn19PR2/Z PW2GdSQ9FD3r+bGH2X+zWUZUjPkhShH9tsUvpzD2hDKzOfIPvL6WxNU2hQBj3CXV Pkst+pFSfVCSfvNNeDNDQ8lPZ00fR9enke/+soeUOpOa+HWvwpbMk47Z7Oa53v+w axm2M96Q3SPyPLxAPFDoAJxZn3aFs5ovY+4LAmArXaU9ZASZHqZegtc0OZIeXtUX 4SoNb61iZwycziMd9vW7CI6fnMHzaj0z8/f2I01LzyJYencxNE0lBJWvKA1dvxO0 1PAYZU7LqUEHsfyEQTMcYV/iylL230Bml8qA37nxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUr2/lfjUNDffpzUZHob+sE30v+OswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjNmRiMGIwLTBmNGEtNDM4YS04OGZjLTUwNGRlMDI5OTdhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7PAwDQYJKoZIhvcNAQELBQADggEBAC10fkt26JUlnA6vMAn0nlDPkzkr 2IoVq88QWFTWNGMMyf8W+G6cnxgwoEcwSM2ho6rpS2j8GgnuMF4bUbe4zg1ZiSwf qUWok4oNX9A2m/uIzfS9Cr5lGLDr1C8goXePwyF7xhIYMOuFxwIMEHTlPyWADylK T4G/Jz4z/nwy3afYyN6JlQj2tGU2XxLHgO0hix3L05cnUr5qHXZ+2M7gwjSr1dXc RT7u1/esT0eAwO8Ltu0TGh0bZ7bXnrrFoqoqJaZjy+t16cBr88K98KpNdnDVKSIj yI8um2so/sOgqh7FBncu6J6BYn5hVwHfl/iDBL45KHb6J8P/eelOLO6AHJE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:02 2026 by rpki-client