$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e609d71-075f-40c9-b88a-5a62a3b788a9.roa File: 3e609d71-075f-40c9-b88a-5a62a3b788a9.roa (raw, json) Hash identifier: pJ3Jn7mggQRQjqCyFXml6aaIm2PiYfmRefBdd9qpQMA= Subject key identifier: CD:88:C1:25:0B:A6:59:80:8A:A3:45:01:26:FE:E6:33:CF:F3:ED:37 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1464A0E12A564F45E4DCA4B29D53ED2F0013E77B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e609d71-075f-40c9-b88a-5a62a3b788a9.roa Signing time: Fri 06 Feb 2026 00:20:50 +0000 ROA not before: Fri 06 Feb 2026 00:20:50 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 68.159.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:64:a0:e1:2a:56:4f:45:e4:dc:a4:b2:9d:53:ed:2f:00:13:e7:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 6 00:20:50 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=b90ad6ee8342a27698c23fe43118e71a341f9348fa9430341c2d91dce9991805, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a3:dd:ae:31:51:3c:f8:7e:df:9e:be:f5:bf: 6e:29:07:23:14:3e:86:74:49:3e:c8:71:2c:36:64: 18:1a:8b:99:f9:41:c5:b8:b6:4a:c4:61:55:ae:50: 71:ca:9f:04:4b:3b:f9:f2:8f:74:1c:39:37:5e:51: c4:55:48:5d:69:3d:3c:e2:d7:48:c3:6b:62:a4:ca: 0c:50:85:df:48:13:88:b0:6a:93:b7:11:59:0b:e1: 4e:da:a5:c0:2a:8f:44:39:ec:4a:79:81:8d:f3:fb: 26:fd:71:f7:39:e2:57:a4:d1:85:b3:e9:bd:84:c5: 1d:ba:3b:4b:7e:b7:85:1b:92:20:ea:be:63:ff:b9: 31:c2:e3:93:3b:93:14:ef:7c:1c:72:1f:b5:67:92: 5d:f0:cc:31:d6:8a:35:6b:12:48:e0:fc:e7:9f:8e: 3c:58:b1:40:c4:67:c7:11:ee:0b:e8:0e:c5:06:30: 8f:8c:65:00:55:f3:69:2c:0f:88:07:e5:0d:97:ad: 9d:f1:d4:1d:d5:71:a5:69:03:bf:41:11:96:02:3e: ec:6c:f9:ee:f4:80:0b:5f:0b:b1:30:2f:b1:3b:8e: 03:41:1d:96:38:9d:1a:ad:60:07:61:c9:db:30:d6: 9f:e2:8d:a2:1d:35:c4:98:87:8b:89:a7:24:12:e9: 77:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:88:C1:25:0B:A6:59:80:8A:A3:45:01:26:FE:E6:33:CF:F3:ED:37 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e609d71-075f-40c9-b88a-5a62a3b788a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 68.159.0.0/16 Signature Algorithm: sha256WithRSAEncryption 59:cb:c3:8f:98:6f:a1:34:fc:fd:f2:00:df:45:62:eb:8f:78: be:17:04:2c:ab:2b:5e:3f:91:79:e7:b1:e1:39:f9:9c:37:a9: 55:1f:27:88:6a:94:3f:24:52:72:2d:b4:81:86:3f:ed:b1:56: 92:59:58:7f:0a:18:24:d1:de:2d:f5:ea:20:fe:50:50:83:0a: 06:f7:ba:4d:1e:c5:c0:60:53:ad:42:67:c3:12:bf:50:ca:ef: 59:1f:50:69:be:05:45:9a:13:26:78:d1:d5:65:c4:4b:59:59: c5:9c:32:61:c2:8f:67:de:07:ff:79:52:7b:bd:05:c4:0f:cc: 5d:fa:6c:30:a8:fb:51:a7:fd:91:0b:08:05:89:83:7c:68:0b: 37:62:e5:b4:88:e1:df:06:44:fd:2c:9b:56:23:fe:09:47:6b: f4:fd:45:5a:70:67:98:16:11:c5:fa:ec:89:d5:0a:4f:34:dd: 73:99:85:50:c3:cc:4f:f3:d7:10:41:66:89:0c:41:37:92:62: 12:3b:d1:c1:e1:15:72:6d:6a:2b:28:88:25:72:e4:dc:de:37: 79:33:f2:13:aa:c6:ec:0b:83:9c:1a:95:8b:e3:09:21:49:49: ec:9f:68:5b:7a:fe:f1:3d:09:c8:e6:8f:b6:7e:59:51:47:6d: 17:95:d2:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFGSg4SpWT0Xk3KSynVPtLwAT53swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA2MDAyMDUwWhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiOTBhZDZlZTgzNDJhMjc2OThjMjNmZTQzMTE4ZTcxYTM0 MWY5MzQ4ZmE5NDMwMzQxYzJkOTFkY2U5OTkxODA1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5o92uMVE8+H7fnr71v24pByMUPoZ0ST7IcSw2ZBgai5n5 QcW4tkrEYVWuUHHKnwRLO/nyj3QcOTdeUcRVSF1pPTzi10jDa2KkygxQhd9IE4iw apO3EVkL4U7apcAqj0Q57Ep5gY3z+yb9cfc54lek0YWz6b2ExR26O0t+t4UbkiDq vmP/uTHC45M7kxTvfBxyH7Vnkl3wzDHWijVrEkjg/OefjjxYsUDEZ8cR7gvoDsUG MI+MZQBV82ksD4gH5Q2XrZ3x1B3VcaVpA79BEZYCPuxs+e70gAtfC7EwL7E7jgNB HZY4nRqtYAdhydsw1p/ijaIdNcSYh4uJpyQS6XdzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzYjBJQumWYCKo0UBJv7mM8/z7TcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlNjA5ZDcxLTA3NWYtNDBjOS1iODhhLTVhNjJhM2I3ODhhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBEnzANBgkqhkiG9w0BAQsFAAOCAQEAWcvDj5hvoTT8/fIA30Vi6494vhcE LKsrXj+Reeex4Tn5nDepVR8niGqUPyRSci20gYY/7bFWkllYfwoYJNHeLfXqIP5Q UIMKBve6TR7FwGBTrUJnwxK/UMrvWR9Qab4FRZoTJnjR1WXES1lZxZwyYcKPZ94H /3lSe70FxA/MXfpsMKj7Uaf9kQsIBYmDfGgLN2LltIjh3wZE/SybViP+CUdr9P1F WnBnmBYRxfrsidUKTzTdc5mFUMPMT/PXEEFmiQxBN5JiEjvRweEVcm1qKyiIJXLk 3N43eTPyE6rG7AuDnBqVi+MJIUlJ7J9oW3r+8T0JyOaPtn5ZUUdtF5XSCw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:47 2026 by rpki-client