$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d45680f-6785-471f-931a-167f976fcaa3.roa File: 3d45680f-6785-471f-931a-167f976fcaa3.roa (raw, json) Hash identifier: c5swr27/13sYko/bVDAIRQZqcD7QIoL0PFHbuR8M494= Subject key identifier: B1:1F:BB:E2:5E:C0:59:FC:0A:57:50:47:26:91:07:E5:E4:70:A0:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 329C2A8F532FEA029A78C95CAE3EA20417B34C6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d45680f-6785-471f-931a-167f976fcaa3.roa Signing time: Thu 26 Feb 2026 00:41:21 +0000 ROA not before: Thu 26 Feb 2026 00:41:21 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 129.220.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:9c:2a:8f:53:2f:ea:02:9a:78:c9:5c:ae:3e:a2:04:17:b3:4c:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:41:21 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=4b10076474ad45abbde4d81fcfb3e6a01c03434a770ada0357a4fe36a08f212d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:9e:71:88:be:7d:54:38:fe:46:81:cf:ee:ef: 32:0f:dd:79:ab:70:7b:c0:16:75:f7:67:3a:a6:09: 0d:90:10:fd:f8:6d:d5:84:53:53:66:55:36:c6:9a: df:72:dc:47:9b:e9:dc:2f:5f:be:7b:be:55:e0:0f: 90:d3:a2:3f:a0:f4:96:c3:64:32:9d:c5:41:ff:b4: 23:3d:dc:f7:d7:0a:78:30:05:60:f1:a6:de:2a:e7: 6a:40:45:1d:bc:87:f9:8d:91:be:be:42:ad:97:22: 8c:a5:89:60:cf:bd:b4:72:ba:6f:e3:e8:de:f6:44: c9:2a:55:95:15:c6:ba:be:39:b2:0a:40:2e:7b:20: c3:ef:ad:bd:f5:6f:13:37:fc:83:cf:f2:40:a2:50: e3:c9:7d:fb:98:cc:c9:a4:aa:34:3f:31:c8:cd:78: 35:98:d6:b8:44:a8:2e:91:a8:c8:3d:fb:da:fb:70: cc:e0:f6:44:1a:17:69:9a:2b:ac:15:b3:a3:a9:b2: 44:08:4b:bb:fc:73:e7:82:3a:bb:cd:24:41:59:65: f2:a9:ff:51:b5:68:2a:7d:35:c2:6a:e1:54:b4:ca: 93:15:da:b2:75:23:c1:d7:05:71:84:03:27:3c:04: 50:85:12:49:40:f5:ee:a8:b0:77:ea:9d:11:82:f2: 1c:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:1F:BB:E2:5E:C0:59:FC:0A:57:50:47:26:91:07:E5:E4:70:A0:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d45680f-6785-471f-931a-167f976fcaa3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 129.220.96.0/19 Signature Algorithm: sha256WithRSAEncryption c6:9d:74:90:91:bc:26:94:b2:18:d4:4b:b2:1f:f6:ce:20:6d: b1:90:bc:ec:30:cf:ce:d6:e7:8e:5e:af:80:0f:40:86:7c:01: 7b:3c:ac:30:dc:e1:93:f3:13:a9:90:07:87:a6:94:15:90:c7: cf:13:9c:7b:7f:2a:f7:ff:62:dc:28:58:cb:80:51:ed:4b:b5: e0:86:fc:62:b8:73:04:18:27:08:58:a8:82:1a:b0:40:ca:d1: ea:d5:7b:9e:48:b6:9a:7a:e8:16:b8:be:05:96:ec:83:e3:3e: 48:c3:46:cc:1a:ee:1b:dc:f1:6b:50:49:92:02:b0:50:13:f0: d3:cf:99:74:8c:25:8d:8f:c2:e7:6a:4d:67:a5:7a:a2:65:a7: 0e:67:22:35:d9:8a:05:bf:33:3c:65:4a:f8:0e:b3:a0:8a:bd: ec:ac:37:5b:89:de:92:5c:22:9b:f5:e5:e1:2c:41:d8:8f:08: 5d:64:ec:ed:c7:03:85:23:f1:aa:63:f2:8b:d2:80:8a:43:c5: b8:97:ba:2d:73:3c:9c:ee:b0:3e:6a:de:6d:47:4c:e8:d8:0f: 8f:a2:64:19:2f:9b:68:2e:78:c1:bd:8f:c6:e2:bf:a8:ae:81: 48:ae:65:bc:2b:7b:89:5c:2d:1d:30:e6:c9:d6:3f:01:9b:20: f1:21:83:0d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUMpwqj1Mv6gKaeMlcrj6iBBezTGwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA0MTIxWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjEwMDc2NDc0YWQ0NWFiYmRlNGQ4MWZjZmIzZTZhMDFj MDM0MzRhNzcwYWRhMDM1N2E0ZmUzNmEwOGYyMTJkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHnnGIvn1UOP5Ggc/u7zIP3XmrcHvAFnX3ZzqmCQ2QEP34 bdWEU1NmVTbGmt9y3Eeb6dwvX757vlXgD5DToj+g9JbDZDKdxUH/tCM93PfXCngw BWDxpt4q52pARR28h/mNkb6+Qq2XIoyliWDPvbRyum/j6N72RMkqVZUVxrq+ObIK QC57IMPvrb31bxM3/IPP8kCiUOPJffuYzMmkqjQ/McjNeDWY1rhEqC6RqMg9+9r7 cMzg9kQaF2maK6wVs6OpskQIS7v8c+eCOrvNJEFZZfKp/1G1aCp9NcJq4VS0ypMV 2rJ1I8HXBXGEAyc8BFCFEklA9e6osHfqnRGC8hwxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUsR+74l7AWfwKV1BHJpEH5eRwoE0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkNDU2ODBmLTY3ODUtNDcxZi05MzFhLTE2N2Y5NzZmY2FhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAWB3GAwDQYJKoZIhvcNAQELBQADggEBAMaddJCRvCaUshjUS7If9s4gbbGQ vOwwz87W545er4APQIZ8AXs8rDDc4ZPzE6mQB4emlBWQx88TnHt/Kvf/YtwoWMuA Ue1LteCG/GK4cwQYJwhYqIIasEDK0erVe55Itpp66Ba4vgWW7IPjPkjDRswa7hvc 8WtQSZICsFAT8NPPmXSMJY2PwudqTWeleqJlpw5nIjXZigW/MzxlSvgOs6CKveys N1uJ3pJcIpv15eEsQdiPCF1k7O3HA4Uj8apj8ovSgIpDxbiXui1zPJzusD5q3m1H TOjYD4+iZBkvm2gueMG9j8biv6iugUiuZbwre4lcLR0w5snWPwGbIPEhgw0= -----END CERTIFICATE-----Generated at Mon Mar 2 04:54:56 2026 by rpki-client