$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fa4f6da-6073-4400-a522-35f62e2343ee.roa File: 3fa4f6da-6073-4400-a522-35f62e2343ee.roa (raw, json) Hash identifier: L7P7/kzh+WmX4U/QvCR/HLo9LCShY/es/ioZ70ww9iM= Subject key identifier: 61:DA:B9:2E:E5:07:9D:CD:9C:95:AB:58:F0:B1:53:68:35:32:D1:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7842DED1B8330742FE16D352286F6C6E91B2FF3F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fa4f6da-6073-4400-a522-35f62e2343ee.roa Signing time: Tue 10 Feb 2026 00:10:56 +0000 ROA not before: Tue 10 Feb 2026 00:10:56 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:42:de:d1:b8:33:07:42:fe:16:d3:52:28:6f:6c:6e:91:b2:ff:3f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:10:56 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=889626e1091a3ad5f11f718cbb314eef82014097c8e61d406af6093be85417dd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:9d:dd:73:9e:e1:d4:1b:b4:c9:f0:ae:63:be: 1c:40:0d:90:87:07:27:57:bf:af:2b:c9:71:43:0a: 20:c9:b1:29:d8:b9:40:6d:b1:d4:1d:76:3c:54:0a: 87:c5:a4:00:1b:8b:fc:90:b4:b3:e3:5e:c3:62:f3: 7c:c6:02:8c:5c:0f:8a:88:27:13:84:f6:73:9a:45: 7a:79:a3:67:d6:02:2b:db:ca:88:00:a2:75:34:c1: 96:65:30:0c:fc:bd:a4:e9:da:11:6a:74:37:75:52: 6d:07:8f:57:b9:14:34:61:a6:df:9e:0d:8b:2d:31: 50:af:4c:e6:f8:fe:f4:11:f5:c3:43:73:fd:53:6b: 32:18:54:fd:f6:92:7b:fc:e3:3f:19:49:c1:6b:51: 4d:63:b7:02:fe:86:66:f8:36:4c:14:eb:c2:22:e5: 94:81:08:8e:4f:50:60:c5:b9:59:86:c3:b4:53:e9: dd:3e:9b:da:50:54:2e:07:b1:08:45:48:dc:41:78: 6a:28:8c:41:48:65:6e:d9:b2:76:00:09:1d:6e:b4: 75:59:eb:53:c3:42:a8:fe:4b:9b:de:7a:4c:f8:2b: ad:07:c4:47:ff:c8:11:f2:32:8b:1f:dc:1e:a2:9a: 32:b7:56:c6:1a:ad:a2:2d:3f:ad:7a:24:67:3c:44: 4a:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 61:DA:B9:2E:E5:07:9D:CD:9C:95:AB:58:F0:B1:53:68:35:32:D1:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3fa4f6da-6073-4400-a522-35f62e2343ee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6a:97:57:4a:6a:f2:ae:d3:92:89:35:61:94:0d:8c:6e:05:1c: 46:b0:55:83:63:6e:50:a9:0d:1f:5d:71:9b:92:6f:5c:be:2c: cf:b4:a1:7f:ff:da:83:98:bb:9a:c8:d8:17:a5:d5:a2:b7:49: 2f:0c:6c:6b:90:62:3d:99:ae:f3:59:5e:bf:ea:3e:72:f1:85: a7:67:58:72:dc:06:51:eb:fa:3f:10:fd:28:d9:1e:d6:d5:2f: 6d:c3:f0:9a:79:8d:78:64:05:a8:4e:4e:92:43:88:c9:b4:9a: 43:c6:6a:cd:15:0b:19:32:a0:a4:82:a2:aa:b2:52:41:3f:44: bb:9c:18:e9:4e:81:d3:de:50:e7:9c:ed:9a:8b:48:35:68:03: 5d:e6:ec:e0:9e:3a:0c:c9:36:7c:b0:8b:20:88:e9:be:dc:93: 09:15:af:1f:db:15:86:68:f3:f2:3d:fc:4e:f7:14:5e:2b:08: 61:7a:36:3d:83:62:c8:2a:d8:bf:cc:64:34:7a:38:70:f6:6d: 97:7b:47:ef:d1:e6:b9:17:89:af:1b:50:ef:be:24:2c:8c:3a: af:01:17:7a:81:28:b1:93:19:b1:1e:c7:a7:bf:3a:b8:9a:79: 7b:e6:94:c8:3e:60:fd:f0:ff:1d:8d:8f:19:5e:36:ba:44:73: c9:6d:7a:d3 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeELe0bgzB0L+FtNSKG9sbpGy/z8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAxMDU2WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A4ODk2MjZlMTA5MWEzYWQ1ZjExZjcxOGNiYjMxNGVlZjgy MDE0MDk3YzhlNjFkNDA2YWY2MDkzYmU4NTQxN2RkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4nd1znuHUG7TJ8K5jvhxADZCHBydXv68ryXFDCiDJsSnY uUBtsdQddjxUCofFpAAbi/yQtLPjXsNi83zGAoxcD4qIJxOE9nOaRXp5o2fWAivb yogAonU0wZZlMAz8vaTp2hFqdDd1Um0Hj1e5FDRhpt+eDYstMVCvTOb4/vQR9cND c/1TazIYVP32knv84z8ZScFrUU1jtwL+hmb4NkwU68Ii5ZSBCI5PUGDFuVmGw7RT 6d0+m9pQVC4HsQhFSNxBeGoojEFIZW7ZsnYACR1utHVZ61PDQqj+S5veekz4K60H xEf/yBHyMosf3B6imjK3VsYaraItP616JGc8RErTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUYdq5LuUHnc2clatY8LFTaDUy0WEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNmYTRmNmRhLTYwNzMtNDQwMC1hNTIyLTM1ZjYyZTIzNDNlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBHEDANBgkqhkiG9w0BAQsFAAOCAQEAapdXSmryrtOSiTVhlA2MbgUcRrBV g2NuUKkNH11xm5JvXL4sz7Shf//ag5i7msjYF6XVordJLwxsa5BiPZmu81lev+o+ cvGFp2dYctwGUev6PxD9KNke1tUvbcPwmnmNeGQFqE5OkkOIybSaQ8ZqzRULGTKg pIKiqrJSQT9Eu5wY6U6B095Q55ztmotINWgDXebs4J46DMk2fLCLIIjpvtyTCRWv H9sVhmjz8j38TvcUXisIYXo2PYNiyCrYv8xkNHo4cPZtl3tH79HmuReJrxtQ774k LIw6rwEXeoEosZMZsR7Hp786uJp5e+aUyD5g/fD/HY2PGV42ukRzyW160w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:26 2026 by rpki-client