$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa File: 3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa (raw, json) Hash identifier: CX9MkQE5o+iJJwhgTFtDcfGbGM5qY70DcrcjIOAyCmA= Subject key identifier: B2:9B:3B:DA:4D:D3:B0:9E:EA:38:8A:AA:D3:5F:72:12:BA:C2:F1:1A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 033468ECE28A748D434F58C088718738314E8CC3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa Signing time: Tue 24 Feb 2026 02:30:55 +0000 ROA not before: Tue 24 Feb 2026 02:30:55 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.56.128.0/18 maxlen: 18 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:34:68:ec:e2:8a:74:8d:43:4f:58:c0:88:71:87:38:31:4e:8c:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:30:55 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=7afd06e4d00c9b1b9ce56adb4ce4d9512f581587105ad0974c2da9018efd6b00, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:4c:ac:ff:5f:95:25:04:57:fa:dd:26:ac:6e: d0:af:8c:c1:3c:f4:2a:1b:c7:3a:8d:3a:f4:50:f8: 8f:f6:9f:0c:ed:5c:f1:6e:b0:e9:0a:12:c8:54:0f: 59:ee:86:b9:c9:80:15:36:17:b1:46:56:21:4c:9f: cd:19:d9:d6:4f:30:ff:43:4a:d6:a7:84:6b:ba:36: e0:26:91:8b:94:bc:27:fa:97:ab:ef:e7:bc:15:99: eb:44:ff:0a:53:ab:78:a2:3b:de:2e:f2:1c:8c:23: ed:81:f8:8d:80:0f:a7:04:16:7c:f1:8d:8a:2f:54: 35:18:bd:48:60:94:80:21:0c:f1:b9:d9:6c:7e:1b: e6:01:6f:34:08:92:7d:fe:e0:ee:f4:60:68:88:13: be:4c:41:29:22:bd:7a:81:d4:e7:16:01:db:77:49: 74:fa:ad:af:7d:38:e2:25:29:e8:6e:0f:a8:28:e9: a4:c1:fd:30:84:b5:de:fa:0c:75:dc:ad:9b:fe:a3: 6c:b6:d4:55:94:29:c4:0b:01:49:64:0f:af:e4:d5: a5:bf:b7:ac:cc:04:cc:2f:32:84:60:20:d0:70:43: f8:1e:1b:64:39:90:3a:77:1d:2d:d9:27:5e:dc:85: a8:6a:cf:8b:0d:bc:7b:c9:e1:ed:e0:25:62:e8:46: b3:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:9B:3B:DA:4D:D3:B0:9E:EA:38:8A:AA:D3:5F:72:12:BA:C2:F1:1A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3cfc7c17-cd85-463f-abbc-88fa8bb68af4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.56.128.0/18 Signature Algorithm: sha256WithRSAEncryption 31:bb:e8:1f:85:4e:17:64:81:60:0e:94:e5:87:79:21:13:fd: 6d:51:59:b3:0f:8e:0c:6e:7d:3f:fa:5f:ed:85:03:dd:1c:2b: 28:4b:fc:2a:58:3b:f1:17:6e:b5:a7:2d:85:c7:28:87:34:1b: 3d:f9:3d:85:f0:f1:03:59:f3:c0:d6:a7:6b:0f:8c:aa:da:13: 3a:a4:f8:da:07:f9:40:34:62:a1:c7:51:64:fa:b6:50:a0:a5: 2a:2d:2b:f2:ac:c2:c3:48:a3:80:85:24:0d:47:00:14:95:a5: 19:08:b3:bc:49:62:7f:36:40:b7:cb:9d:3a:64:e4:9c:10:d1: 7e:59:25:f5:2a:5c:f6:5f:82:3b:74:cf:45:15:44:b1:94:13: 4b:67:64:4f:73:d6:9e:58:33:90:6f:63:d3:2e:c1:47:a7:22: 13:7e:12:e2:72:6d:4e:6d:7e:e4:38:67:2e:bb:f1:b3:2b:e1: 98:0a:04:37:b3:29:34:87:91:ed:69:d2:47:75:be:82:0c:a1: 2c:45:53:51:f3:0d:c0:93:32:29:52:8a:fe:58:28:5a:6d:c6: 7d:11:ed:4f:99:5b:2d:5c:f5:f9:06:36:28:2b:ea:3d:ec:49: 68:15:cf:c6:2c:fa:c4:7e:63:39:99:a4:52:dc:99:cd:93:b1: ea:b3:0c:2c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAzRo7OKKdI1DT1jAiHGHODFOjMMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMDU1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWZkMDZlNGQwMGM5YjFiOWNlNTZhZGI0Y2U0ZDk1MTJm NTgxNTg3MTA1YWQwOTc0YzJkYTkwMThlZmQ2YjAwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCuTKz/X5UlBFf63SasbtCvjME89CobxzqNOvRQ+I/2nwzt XPFusOkKEshUD1nuhrnJgBU2F7FGViFMn80Z2dZPMP9DStanhGu6NuAmkYuUvCf6 l6vv57wVmetE/wpTq3iiO94u8hyMI+2B+I2AD6cEFnzxjYovVDUYvUhglIAhDPG5 2Wx+G+YBbzQIkn3+4O70YGiIE75MQSkivXqB1OcWAdt3SXT6ra99OOIlKehuD6go 6aTB/TCEtd76DHXcrZv+o2y21FWUKcQLAUlkD6/k1aW/t6zMBMwvMoRgINBwQ/ge G2Q5kDp3HS3ZJ17chahqz4sNvHvJ4e3gJWLoRrOtAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsps72k3TsJ7qOIqq019yErrC8RowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNjZmM3YzE3LWNkODUtNDYzZi1hYmJjLTg4ZmE4YmI2OGFmNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYQOIAwDQYJKoZIhvcNAQELBQADggEBADG76B+FThdkgWAOlOWHeSET/W1R WbMPjgxufT/6X+2FA90cKyhL/CpYO/EXbrWnLYXHKIc0Gz35PYXw8QNZ88DWp2sP jKraEzqk+NoH+UA0YqHHUWT6tlCgpSotK/KswsNIo4CFJA1HABSVpRkIs7xJYn82 QLfLnTpk5JwQ0X5ZJfUqXPZfgjt0z0UVRLGUE0tnZE9z1p5YM5BvY9MuwUenIhN+ EuJybU5tfuQ4Zy678bMr4ZgKBDezKTSHke1p0kd1voIMoSxFU1HzDcCTMilSiv5Y KFptxn0R7U+ZWy1c9fkGNigr6j3sSWgVz8Ys+sR+YzmZpFLcmc2TseqzDCw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:58 2026 by rpki-client