$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa File: 3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa (raw, json) Hash identifier: XpuBwm/Lilj2lHxOgvvUIsfkr/hMisYXzUEBWJ76Y+4= Subject key identifier: 15:54:B2:5F:FC:22:8D:6F:42:76:1E:6B:8D:24:A7:6C:60:96:B5:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2032843AF2F1477DB9BAF5C503144FFA5BDE6039 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa Signing time: Sat 28 Feb 2026 00:30:54 +0000 ROA not before: Sat 28 Feb 2026 00:30:54 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 168.102.144.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:32:84:3a:f2:f1:47:7d:b9:ba:f5:c5:03:14:4f:fa:5b:de:60:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:30:54 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=eba47c5345274d48f3a75f96e962a62146ddd77412fc0b7c9bc44cd05fe361fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:0d:7f:b9:fa:18:4a:1d:31:20:59:98:cc:c2: d1:3b:40:e4:41:33:36:7f:84:43:db:b2:5f:47:13: e8:b4:54:75:24:c3:e0:3a:7c:7b:39:05:00:5e:bc: cb:b7:2c:d6:16:1b:6a:27:d3:d1:d3:37:48:95:4c: bb:77:d7:80:66:8f:1d:47:57:a7:77:6a:53:03:36: ce:77:7c:de:2a:6f:3a:fc:e1:44:02:c6:06:6c:89: 14:44:07:fa:16:fa:5d:17:34:67:e1:97:20:f0:92: 79:59:45:26:12:31:ef:c5:5b:ad:98:61:bd:b1:8f: d7:10:f2:b0:e1:43:4e:e6:d3:e9:2c:aa:b1:a1:3a: f4:43:7c:68:4f:af:07:9c:cd:4f:a3:aa:c5:2c:a9: dd:40:c2:fe:d8:f5:2c:10:e7:26:0e:94:66:e6:cc: db:cc:ed:a0:69:c9:41:17:b2:44:f0:d8:3c:aa:9a: 35:d1:16:24:a8:09:4b:24:ec:73:02:71:d6:48:3a: 9e:1d:60:11:e5:30:2c:c8:6a:7e:b7:0d:d5:3a:5d: 61:7d:53:5c:49:61:e5:21:8f:03:67:09:b3:08:89: 23:57:cd:08:65:06:8c:10:46:66:23:f2:6b:ba:83: a1:0a:66:9c:7e:d5:8e:a9:7b:9f:74:e5:9a:9b:51: 7d:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 15:54:B2:5F:FC:22:8D:6F:42:76:1E:6B:8D:24:A7:6C:60:96:B5:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d3c6ca4-8a18-441e-a462-9d7d76e7349e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 168.102.144.0/20 Signature Algorithm: sha256WithRSAEncryption 3b:41:a4:51:e9:8a:8b:88:b3:d3:78:71:03:ff:5e:83:9e:ba: a5:4a:78:c9:e3:14:0d:4c:ea:4d:40:de:4e:eb:af:7c:57:33: c7:82:bc:81:06:9f:05:a1:e1:e1:85:7b:e1:b7:44:06:31:07: e3:ae:a9:69:21:54:c3:c7:38:f2:20:fd:0c:2e:c7:d5:ae:36: 34:9c:88:43:d9:8e:df:62:be:a1:70:76:98:6b:84:54:64:7e: 1e:be:c3:92:37:fb:a2:2a:de:44:16:b8:c1:7b:a6:57:43:22: fb:5c:e4:aa:3d:7e:8a:4c:57:37:d7:20:dd:17:e6:a1:cb:4a: b9:88:7c:4d:0f:0d:a7:2c:81:2d:a4:1b:0a:c5:96:0c:9c:35: 93:84:77:06:d0:e0:21:df:67:5a:8a:56:d3:70:cb:5c:d3:bc: 46:d5:f1:49:8e:39:94:fa:f4:5f:df:62:e4:5e:6d:69:bd:12: aa:60:e2:67:c7:86:f7:24:be:fa:74:cd:69:88:ad:a9:05:ae: 13:ec:65:b7:03:be:59:dc:5e:73:4c:0c:db:1e:76:1a:8b:16: 67:20:c6:9d:56:49:20:91:15:75:f7:91:55:23:18:28:80:ca: de:ed:29:88:83:e3:35:63:5f:bf:98:cf:cc:5a:05:1d:8b:ed: 2e:ad:92:c2 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIDKEOvLxR325uvXFAxRP+lveYDkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAzMDU0WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BlYmE0N2M1MzQ1Mjc0ZDQ4ZjNhNzVmOTZlOTYyYTYyMTQ2 ZGRkNzc0MTJmYzBiN2M5YmM0NGNkMDVmZTM2MWZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDhDX+5+hhKHTEgWZjMwtE7QORBMzZ/hEPbsl9HE+i0VHUk w+A6fHs5BQBevMu3LNYWG2on09HTN0iVTLt314Bmjx1HV6d3alMDNs53fN4qbzr8 4UQCxgZsiRREB/oW+l0XNGfhlyDwknlZRSYSMe/FW62YYb2xj9cQ8rDhQ07m0+ks qrGhOvRDfGhPrweczU+jqsUsqd1Awv7Y9SwQ5yYOlGbmzNvM7aBpyUEXskTw2Dyq mjXRFiSoCUsk7HMCcdZIOp4dYBHlMCzIan63DdU6XWF9U1xJYeUhjwNnCbMIiSNX zQhlBowQRmYj8mu6g6EKZpx+1Y6pe5905ZqbUX3PAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUFVSyX/wijW9Cdh5rjSSnbGCWteMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkM2M2Y2E0LThhMTgtNDQxZS1hNDYyLTlkN2Q3NmU3MzQ5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASoZpAwDQYJKoZIhvcNAQELBQADggEBADtBpFHpiouIs9N4cQP/XoOeuqVK eMnjFA1M6k1A3k7rr3xXM8eCvIEGnwWh4eGFe+G3RAYxB+OuqWkhVMPHOPIg/Qwu x9WuNjSciEPZjt9ivqFwdphrhFRkfh6+w5I3+6Iq3kQWuMF7pldDIvtc5Ko9fopM VzfXIN0X5qHLSrmIfE0PDacsgS2kGwrFlgycNZOEdwbQ4CHfZ1qKVtNwy1zTvEbV 8UmOOZT69F/fYuRebWm9Eqpg4mfHhvckvvp0zWmIrakFrhPsZbcDvlncXnNMDNse dhqLFmcgxp1WSSCRFXX3kVUjGCiAyt7tKYiD4zVjX7+Yz8xaBR2L7S6tksI= -----END CERTIFICATE-----Generated at Mon Mar 2 03:33:22 2026 by rpki-client