$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa File: 3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa (raw, json) Hash identifier: xCMsO+ZvzMAfOPU6chKQsHCdZlw4y+GtZUTr+z+vXUM= Subject key identifier: A0:A0:C7:44:6A:C0:41:93:B4:CD:45:C6:87:05:4D:3A:59:AB:50:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5010967C354BD5071DD29FF54E25ED6F5D783826 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa Signing time: Fri 13 Feb 2026 00:11:07 +0000 ROA not before: Fri 13 Feb 2026 00:11:07 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 37.203.157.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50:10:96:7c:35:4b:d5:07:1d:d2:9f:f5:4e:25:ed:6f:5d:78:38:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:11:07 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=d2116d7d72b7b32f6f5e61d11fdff9018a32336eb82993587b21cb0c557032d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d1:d5:fb:2d:d0:cb:cd:14:6e:5b:05:4f:0e: a6:8d:e3:44:20:93:fb:1a:ee:3b:c3:9c:2f:81:30: 9d:9e:02:c2:ab:10:a6:0e:9c:d2:43:fd:f8:e5:8e: be:12:16:4f:bd:f6:46:a2:ca:37:8a:a9:70:e9:fb: 38:63:1b:a7:1e:e0:e2:7f:61:e0:be:44:91:8e:37: 54:1f:ef:68:28:c6:35:ff:2f:b9:e9:50:54:aa:af: f0:bf:c3:b6:8a:f8:63:de:81:4f:3a:31:e3:b5:cb: b0:ae:4d:7b:56:91:76:39:36:09:73:3e:fa:8b:6c: 03:6b:a4:b5:0a:a2:a3:b1:d3:39:6a:be:c1:1e:06: b4:e6:ed:b2:4a:e0:63:8d:7c:34:e1:24:14:c8:88: 83:0d:cf:a9:6e:61:4c:5d:fe:8e:51:7e:c5:04:79: 2e:69:a4:c8:41:08:bf:86:8d:a4:99:11:4c:09:85: af:23:72:81:ef:25:d7:87:eb:b3:2f:da:d0:6e:2e: d5:c7:98:ae:d9:af:93:0e:dd:6d:4c:82:9a:d0:3d: 9f:04:a9:70:32:71:3a:ca:7b:84:f8:45:d3:08:ae: 35:61:60:35:b8:fe:79:11:70:c5:29:27:e7:f4:97: f7:75:3a:48:be:a1:bf:c6:a9:90:0e:40:ca:2a:9d: 77:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:A0:C7:44:6A:C0:41:93:B4:CD:45:C6:87:05:4D:3A:59:AB:50:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e111cab-b373-424b-a3a9-8c8fc7f71e17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.203.157.0/24 Signature Algorithm: sha256WithRSAEncryption 29:d8:7c:19:b5:15:50:37:6a:e3:bc:63:f5:53:5f:91:78:7e: 96:e2:a7:66:f2:68:e6:9c:3c:0a:d4:94:31:14:b4:70:b3:43: 27:e0:ed:29:5a:8a:a1:64:f0:4c:ee:11:53:3c:c9:13:d7:14: 35:87:e3:68:fa:03:1e:0d:06:05:a1:a9:8e:b9:41:b1:aa:3e: 06:2c:77:df:55:e4:83:52:7b:66:ba:c7:50:85:0e:e7:07:29: 87:64:2d:1e:89:af:42:a1:81:a1:84:32:98:e2:81:56:f5:91: 3f:bd:fe:5c:7d:eb:9c:c2:b1:cb:ec:a8:e9:b9:0d:ff:96:c2: e0:c8:a4:6c:be:36:94:e2:ac:77:b5:58:00:c0:1b:f7:44:d5: 31:65:8b:61:b8:4f:0f:67:05:b9:b8:ac:75:9b:60:72:cb:c6: ce:86:e4:ac:9c:26:86:9c:c2:94:af:a1:d9:ed:eb:6a:a5:03: 20:bb:1b:ef:2d:25:9a:6b:19:80:8b:48:26:c5:99:fe:54:c7: 10:95:4d:3e:1c:d9:43:81:39:42:32:ef:90:36:73:55:fd:04: dc:8b:14:36:68:a4:98:1f:94:0b:f3:36:5b:56:90:e4:e5:f2: e2:46:87:79:d1:cb:b8:29:37:20:52:c9:0e:33:29:81:fe:71: 65:31:37:6e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUBCWfDVL1Qcd0p/1TiXtb114OCYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAxMTA3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMjExNmQ3ZDcyYjdiMzJmNmY1ZTYxZDExZmRmZjkwMThh MzIzMzZlYjgyOTkzNTg3YjIxY2IwYzU1NzAzMmQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS0dX7LdDLzRRuWwVPDqaN40Qgk/sa7jvDnC+BMJ2eAsKr EKYOnNJD/fjljr4SFk+99kaiyjeKqXDp+zhjG6ce4OJ/YeC+RJGON1Qf72goxjX/ L7npUFSqr/C/w7aK+GPegU86MeO1y7CuTXtWkXY5NglzPvqLbANrpLUKoqOx0zlq vsEeBrTm7bJK4GONfDThJBTIiIMNz6luYUxd/o5RfsUEeS5ppMhBCL+GjaSZEUwJ ha8jcoHvJdeH67Mv2tBuLtXHmK7Zr5MO3W1MgprQPZ8EqXAycTrKe4T4RdMIrjVh YDW4/nkRcMUpJ+f0l/d1Oki+ob/GqZAOQMoqnXffAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoKDHRGrAQZO0zUXGhwVNOlmrUGEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMTExY2FiLWIzNzMtNDI0Yi1hM2E5LThjOGZjN2Y3MWUxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAly50wDQYJKoZIhvcNAQELBQADggEBACnYfBm1FVA3auO8Y/VTX5F4fpbi p2byaOacPArUlDEUtHCzQyfg7SlaiqFk8EzuEVM8yRPXFDWH42j6Ax4NBgWhqY65 QbGqPgYsd99V5INSe2a6x1CFDucHKYdkLR6Jr0KhgaGEMpjigVb1kT+9/lx965zC scvsqOm5Df+WwuDIpGy+NpTirHe1WADAG/dE1TFli2G4Tw9nBbm4rHWbYHLLxs6G 5KycJoacwpSvodnt62qlAyC7G+8tJZprGYCLSCbFmf5UxxCVTT4c2UOBOUIy75A2 c1X9BNyLFDZopJgflAvzNltWkOTl8uJGh3nRy7gpNyBSyQ4zKYH+cWUxN24= -----END CERTIFICATE-----Generated at Mon Mar 2 08:11:35 2026 by rpki-client