$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f6be9ff-ec25-42f0-a6d3-52cca0ff8f59.roa File: 3f6be9ff-ec25-42f0-a6d3-52cca0ff8f59.roa (raw, json) Hash identifier: YEz2I8L10puudZlvZG6IVf4Gjh/zcGzA/03Ac+QUNq8= Subject key identifier: 0D:97:50:5C:5F:F7:2A:E1:A1:D1:11:43:3B:CA:DA:14:5A:F3:D4:66 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1B4FE4366F4364CF9CDD03AC5B1C94C6B7052DF3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f6be9ff-ec25-42f0-a6d3-52cca0ff8f59.roa Signing time: Thu 26 Feb 2026 01:00:10 +0000 ROA not before: Thu 26 Feb 2026 01:00:10 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.248.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:4f:e4:36:6f:43:64:cf:9c:dd:03:ac:5b:1c:94:c6:b7:05:2d:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:00:10 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=a227de5972680f2169d1e61b50304266b00f1705b5120acd766b2ef602fe7d28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:8d:09:d4:77:46:28:f6:ad:78:c0:40:21:5c: b1:61:f6:2e:ee:32:1b:c0:33:f7:4f:91:ad:4f:f0: 0d:8f:bc:84:38:6b:e6:89:c3:f3:a1:e3:26:41:9b: 36:05:bc:76:d0:e0:74:a2:11:68:35:ca:4f:54:f6: a4:9f:25:6f:07:a4:6f:ea:7a:48:8c:cc:b9:3f:07: 92:5b:f9:fe:6a:13:11:30:7b:d9:39:a6:06:e9:b1: b8:3d:75:67:35:9e:2a:f8:24:e0:c7:49:59:1e:03: bf:77:7d:4d:6d:db:2e:66:22:2d:ee:a5:78:5f:eb: 59:70:b9:a6:d8:77:5c:91:59:b2:e8:3d:5c:ab:49: 95:42:7d:59:21:61:25:82:d5:3e:5b:7f:07:d9:74: 8d:ed:df:82:0b:62:ac:29:48:9b:41:15:13:f4:4d: c7:fb:43:f5:c3:46:13:c1:04:a9:22:d7:57:69:6a: 0a:a0:87:fb:21:35:bd:7d:49:f9:58:cd:fe:d8:55: 62:c2:d7:37:40:95:5c:38:24:0a:68:e1:98:78:90: 0a:96:79:f8:55:c7:c6:8c:2d:e5:e4:8f:b5:77:68: 63:fa:df:d3:88:49:e3:f3:68:94:96:56:d8:4b:26: fd:84:03:04:a5:84:41:03:89:b2:a8:98:89:34:34: 2b:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:97:50:5C:5F:F7:2A:E1:A1:D1:11:43:3B:CA:DA:14:5A:F3:D4:66 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3f6be9ff-ec25-42f0-a6d3-52cca0ff8f59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.248.0.0/16 Signature Algorithm: sha256WithRSAEncryption d1:7f:2d:0c:11:92:1c:80:aa:43:ec:94:8e:f0:41:21:88:eb: bd:ad:eb:85:38:6e:22:f9:24:ad:80:f0:e7:c5:94:1d:43:18: fc:1e:3e:0c:ee:0c:cf:b1:d4:ea:2e:3c:7f:61:16:86:3b:59: d4:85:84:e3:be:e6:f6:e9:d0:88:8a:b7:0b:70:42:b0:78:06: a5:c8:f3:33:a4:b8:d1:7c:ae:6f:8c:b1:da:82:58:72:9a:c7: 64:9f:b9:6f:c3:a9:de:e0:4c:df:05:2e:82:2c:f4:0e:f6:95: b3:dc:3a:6a:c5:73:ac:e6:ec:79:49:91:37:17:3b:2a:33:8b: 08:2f:4e:d2:6c:f7:a6:cb:44:66:96:a8:94:01:f1:de:0a:35: 8a:06:88:eb:08:7c:9d:30:4c:74:88:67:5f:3b:2f:12:9b:98: f0:77:1a:4f:cc:69:2c:5c:c6:39:8b:8d:d7:73:64:99:97:fa: a5:fe:f6:97:0a:2c:02:c4:cf:f3:71:55:52:e1:ab:ef:df:68: 3b:b5:b5:a7:68:57:73:11:ca:bc:0a:f4:63:28:51:c1:39:d0: dd:9c:d6:7e:9e:a6:ff:6e:ef:85:34:23:e8:35:8a:5f:d9:98: d9:1d:89:d9:c0:14:27:36:26:24:ba:62:85:bb:bd:4b:c0:60: 57:25:b8:6b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUG0/kNm9DZM+c3QOsWxyUxrcFLfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMDEwWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMjI3ZGU1OTcyNjgwZjIxNjlkMWU2MWI1MDMwNDI2NmIw MGYxNzA1YjUxMjBhY2Q3NjZiMmVmNjAyZmU3ZDI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDNjQnUd0Yo9q14wEAhXLFh9i7uMhvAM/dPka1P8A2PvIQ4 a+aJw/Oh4yZBmzYFvHbQ4HSiEWg1yk9U9qSfJW8HpG/qekiMzLk/B5Jb+f5qExEw e9k5pgbpsbg9dWc1nir4JODHSVkeA793fU1t2y5mIi3upXhf61lwuabYd1yRWbLo PVyrSZVCfVkhYSWC1T5bfwfZdI3t34ILYqwpSJtBFRP0Tcf7Q/XDRhPBBKki11dp agqgh/shNb19SflYzf7YVWLC1zdAlVw4JApo4Zh4kAqWefhVx8aMLeXkj7V3aGP6 39OISePzaJSWVthLJv2EAwSlhEEDibKomIk0NCuxAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDZdQXF/3KuGh0RFDO8raFFrz1GYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmNmJlOWZmLWVjMjUtNDJmMC1hNmQzLTUyY2NhMGZmOGY1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4+DANBgkqhkiG9w0BAQsFAAOCAQEA0X8tDBGSHICqQ+yUjvBBIYjrva3r hThuIvkkrYDw58WUHUMY/B4+DO4Mz7HU6i48f2EWhjtZ1IWE477m9unQiIq3C3BC sHgGpcjzM6S40Xyub4yx2oJYcprHZJ+5b8Op3uBM3wUugiz0DvaVs9w6asVzrObs eUmRNxc7KjOLCC9O0mz3pstEZpaolAHx3go1igaI6wh8nTBMdIhnXzsvEpuY8Hca T8xpLFzGOYuN13NkmZf6pf72lwosAsTP83FVUuGr799oO7W1p2hXcxHKvAr0YyhR wTnQ3ZzWfp6m/27vhTQj6DWKX9mY2R2J2cAUJzYmJLpihbu9S8BgVyW4aw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:22 2026 by rpki-client