$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa File: 3dbee296-ec09-48ec-b119-3d727f285355.roa (raw, json) Hash identifier: A97itrk0MAUTWulnsmWExwFCh6cxxdmNA7kuQW9lhBU= Subject key identifier: 03:34:77:7C:81:BB:31:B7:0E:80:78:A6:F7:DB:96:D8:CF:2F:4A:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 357A8C5A10BB54609E9E08EA1BB50DCA8060CEFC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa Signing time: Wed 11 Feb 2026 00:50:06 +0000 ROA not before: Wed 11 Feb 2026 00:50:06 +0000 ROA not after: Tue 12 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.150.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:7a:8c:5a:10:bb:54:60:9e:9e:08:ea:1b:b5:0d:ca:80:60:ce:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 11 00:50:06 2026 GMT Not After : May 12 23:59:59 2026 GMT Subject: serialNumber=5cb8df476055e3e506a7fe8cae2007d07de3c367c048f450da1a060d4802da0e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:e8:fb:60:84:0b:3a:17:07:92:c5:7b:e1:3c: 06:b7:ba:e9:7f:9c:70:67:7b:20:3b:ae:f5:19:08: 02:de:76:34:47:a9:cb:c2:bb:06:ac:6b:09:ae:e1: a5:d9:4a:8c:bc:ad:b5:94:22:a5:7c:6c:0a:c0:d8: ff:f6:63:7e:20:b9:b1:92:91:40:3c:21:14:75:62: 41:a9:3b:f5:cf:37:4e:1a:fc:b8:0a:32:0c:20:b3: 61:29:89:a9:05:43:e9:0d:b9:4f:8a:61:be:1c:74: 00:7e:b7:c9:3f:f1:7c:4a:7e:33:b8:a7:5a:13:82: 4c:7c:7f:69:9f:a6:bd:a3:29:ef:5b:c0:3e:8d:45: 4e:fb:ff:dc:6c:60:1b:18:c8:46:9c:50:45:6f:c2: 60:5d:a8:ec:bd:ae:d8:d4:39:df:ca:88:b9:40:ac: 8a:5b:80:30:9b:4f:76:92:d4:0d:e8:12:58:88:6b: 5d:49:23:6c:1a:94:9d:88:23:75:73:74:a0:cc:25: 73:15:6a:9a:97:7b:88:34:33:fb:54:02:7d:aa:2e: 99:d5:24:49:42:70:96:29:8b:ba:14:c5:b1:51:20: 17:ca:cd:9d:f5:1a:0c:30:f1:e4:e7:a8:65:ba:68: 3a:c0:79:9f:2b:0f:39:65:38:30:69:cb:81:1a:35: 05:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:34:77:7C:81:BB:31:B7:0E:80:78:A6:F7:DB:96:D8:CF:2F:4A:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3dbee296-ec09-48ec-b119-3d727f285355.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.150.0.0/16 Signature Algorithm: sha256WithRSAEncryption 43:27:3c:dc:19:56:50:02:ce:0a:43:d8:90:d2:ca:0a:c5:7e: c4:29:62:ec:c5:88:03:89:ab:5c:9b:92:f2:86:57:be:e7:f3: 53:41:00:c7:e2:3d:26:a2:28:0f:8e:b4:31:fc:a9:7d:09:2a: 12:8d:8c:fc:44:6a:c5:5f:68:b6:50:c9:1c:d6:4e:2d:a1:0f: 00:0a:a5:83:df:83:7d:66:4b:2e:4c:8a:05:c4:57:74:cf:7b: 86:62:f6:6f:84:93:71:94:dd:f0:c0:16:8b:0c:45:4e:a1:61: 9d:37:d6:3e:d3:c3:30:48:cc:70:43:dd:21:5f:a4:c3:f5:69: f6:65:b0:b1:e6:1d:ba:e0:ea:c7:31:0a:20:e1:43:a8:40:52: 91:39:e9:bd:f9:e3:bc:65:16:79:25:ff:cc:65:1a:c8:6c:61: 4e:e7:20:e9:ed:e1:d4:56:e3:ab:0b:cf:4a:38:92:37:80:32: cd:ac:08:d3:6c:bb:02:6e:ed:cc:e7:8a:7d:38:a2:d1:10:88: dc:e2:3b:c2:88:16:93:da:85:53:06:87:bb:f8:1a:40:f5:0f: 32:cc:01:35:0e:b2:14:d6:e3:8c:f5:e8:b4:5b:f3:c1:ee:97: 08:de:28:f1:33:d8:95:70:70:cf:71:86:f6:23:ba:fd:a4:93: ea:3e:fd:36 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNXqMWhC7VGCengjqG7UNyoBgzvwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjExMDA1MDA2WhcNMjYwNTEyMjM1OTU5 WjB6MUkwRwYDVQQFE0A1Y2I4ZGY0NzYwNTVlM2U1MDZhN2ZlOGNhZTIwMDdkMDdk ZTNjMzY3YzA0OGY0NTBkYTFhMDYwZDQ4MDJkYTBlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCP6PtghAs6FweSxXvhPAa3uul/nHBneyA7rvUZCALedjRH qcvCuwasawmu4aXZSoy8rbWUIqV8bArA2P/2Y34gubGSkUA8IRR1YkGpO/XPN04a /LgKMgwgs2EpiakFQ+kNuU+KYb4cdAB+t8k/8XxKfjO4p1oTgkx8f2mfpr2jKe9b wD6NRU77/9xsYBsYyEacUEVvwmBdqOy9rtjUOd/KiLlArIpbgDCbT3aS1A3oEliI a11JI2walJ2II3VzdKDMJXMVapqXe4g0M/tUAn2qLpnVJElCcJYpi7oUxbFRIBfK zZ31Ggww8eTnqGW6aDrAeZ8rDzllODBpy4EaNQWpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAzR3fIG7MbcOgHim99uW2M8vSmEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkYmVlMjk2LWVjMDktNDhlYy1iMTE5LTNkNzI3ZjI4NTM1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoljANBgkqhkiG9w0BAQsFAAOCAQEAQyc83BlWUALOCkPYkNLKCsV+xCli 7MWIA4mrXJuS8oZXvufzU0EAx+I9JqIoD460MfypfQkqEo2M/ERqxV9otlDJHNZO LaEPAAqlg9+DfWZLLkyKBcRXdM97hmL2b4STcZTd8MAWiwxFTqFhnTfWPtPDMEjM cEPdIV+kw/Vp9mWwseYduuDqxzEKIOFDqEBSkTnpvfnjvGUWeSX/zGUayGxhTucg 6e3h1FbjqwvPSjiSN4AyzawI02y7Am7tzOeKfTii0RCI3OI7wogWk9qFUwaHu/ga QPUPMswBNQ6yFNbjjPXotFvzwe6XCN4o8TPYlXBwz3GG9iO6/aST6j79Ng== -----END CERTIFICATE-----Generated at Mon Mar 2 03:06:41 2026 by rpki-client