$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa File: 425642c2-ae67-4aad-931d-f508fb8f82b3.roa (raw, json) Hash identifier: oBf9pnp/r1SJGcEGrN0V7mnB48yOlQM2cBS86elE1dU= Subject key identifier: 2E:17:8F:04:F2:29:CC:13:67:8A:91:99:B0:C8:C4:FE:60:4D:1B:09 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 30A21D4D5F63FE996A583D1A1F94DCB9BEA159D3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa Signing time: Tue 24 Feb 2026 01:51:17 +0000 ROA not before: Tue 24 Feb 2026 01:51:17 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:a2:1d:4d:5f:63:fe:99:6a:58:3d:1a:1f:94:dc:b9:be:a1:59:d3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:51:17 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=8fda33e086ef84a9f307afd38f27173f14878c91b813bbf8e4b7cf53791fbb33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ed:66:44:ac:a4:aa:d1:83:67:45:1a:81:d4: dd:8e:be:89:56:a9:52:24:a6:65:22:3d:19:2b:29: da:91:79:44:21:d0:f1:3d:b2:69:9e:fc:87:0f:c2: e3:95:c4:6e:e2:50:11:84:9c:6b:cf:f2:96:01:58: e6:e9:90:fe:f4:eb:36:cc:43:6e:af:8d:7a:6c:c3: 26:8b:46:26:fe:59:fd:69:c9:c4:c0:1e:a2:07:30: 21:38:47:65:f1:ac:71:30:b3:e4:b8:ed:f4:ff:05: 50:4f:c9:94:ab:1a:a6:e9:b7:cc:ee:5c:9b:9c:42: 08:a7:62:66:69:e3:aa:a1:e9:f1:dc:df:c5:8d:b9: 4a:4b:0f:e4:2b:b3:4a:0a:0d:5c:67:03:45:46:2b: 1f:dc:5f:d0:92:38:98:1b:a1:87:9d:5b:2a:4e:73: 0b:5f:d7:11:9d:ce:99:ce:92:45:ca:18:d5:6f:d7: 21:04:6c:87:85:56:91:f5:40:45:b8:78:54:ee:36: 57:30:6c:50:a4:3f:34:0e:9e:6a:9e:5a:49:92:30: 48:d3:05:87:41:b8:27:e5:fd:3b:2f:ec:c3:34:34: 98:95:c1:11:67:bb:3b:1d:02:b9:64:fd:f7:0c:0f: b4:ca:f0:25:dd:6e:83:88:c3:21:a6:36:07:5c:c1: 48:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:17:8F:04:F2:29:CC:13:67:8A:91:99:B0:C8:C4:FE:60:4D:1B:09 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/425642c2-ae67-4aad-931d-f508fb8f82b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 15:0d:63:c9:de:cd:f2:1f:ac:f5:63:e9:56:15:fe:74:21:82: e8:28:89:13:ea:47:48:fa:c7:bb:39:5b:86:48:01:f6:e0:70: 8b:f8:f2:bb:5b:6a:0c:a9:9b:2a:19:75:30:82:97:c7:d3:b2: a2:47:e3:44:ec:2a:5a:d8:cf:56:43:35:ca:1a:81:9d:67:13: b2:45:c7:7d:39:ba:ff:c3:44:3c:ae:a5:b7:d9:4f:da:2e:36: 95:1f:cf:d5:7b:9d:5f:30:81:b3:30:6f:da:bf:ec:a0:51:57: 96:e6:de:27:0a:c7:8a:4b:3f:bb:6b:f1:d3:17:d8:83:73:b5: 11:34:30:15:55:48:0b:f4:10:ce:93:1f:ea:4e:ec:9d:d9:43: e0:e7:5c:41:7b:dc:3a:e9:8a:bc:95:22:e8:03:02:57:a5:8e: ce:21:00:fa:87:6a:69:d5:57:3c:94:42:66:3c:f1:c0:85:f2: c2:19:4b:b3:ca:56:9b:f0:75:66:28:a0:71:d3:b8:34:7e:03: 88:b1:13:40:30:74:72:17:93:31:ea:30:80:d7:ce:75:a8:fb: ce:5c:5f:3b:ba:51:b1:61:ef:d7:f8:4f:ca:57:cc:c2:bc:57: 92:2e:1a:2a:5b:55:92:82:e9:b6:38:86:0d:a5:95:b9:3f:51: 98:41:17:44 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMKIdTV9j/plqWD0aH5Tcub6hWdMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDE1MTE3WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZmRhMzNlMDg2ZWY4NGE5ZjMwN2FmZDM4ZjI3MTczZjE0 ODc4YzkxYjgxM2JiZjhlNGI3Y2Y1Mzc5MWZiYjMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCw7WZErKSq0YNnRRqB1N2OvolWqVIkpmUiPRkrKdqReUQh 0PE9smme/IcPwuOVxG7iUBGEnGvP8pYBWObpkP706zbMQ26vjXpswyaLRib+Wf1p ycTAHqIHMCE4R2XxrHEws+S47fT/BVBPyZSrGqbpt8zuXJucQginYmZp46qh6fHc 38WNuUpLD+Qrs0oKDVxnA0VGKx/cX9CSOJgboYedWypOcwtf1xGdzpnOkkXKGNVv 1yEEbIeFVpH1QEW4eFTuNlcwbFCkPzQOnmqeWkmSMEjTBYdBuCfl/Tsv7MM0NJiV wRFnuzsdArlk/fcMD7TK8CXdboOIwyGmNgdcwUjFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQULhePBPIpzBNnipGZsMjE/mBNGwkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyNTY0MmMyLWFlNjctNGFhZC05MzFkLWY1MDhmYjhmODJiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwzANBgkqhkiG9w0BAQsFAAOCAQEAFQ1jyd7N8h+s9WPpVhX+dCGC6CiJ E+pHSPrHuzlbhkgB9uBwi/jyu1tqDKmbKhl1MIKXx9OyokfjROwqWtjPVkM1yhqB nWcTskXHfTm6/8NEPK6lt9lP2i42lR/P1XudXzCBszBv2r/soFFXlubeJwrHiks/ u2vx0xfYg3O1ETQwFVVIC/QQzpMf6k7sndlD4OdcQXvcOumKvJUi6AMCV6WOziEA +odqadVXPJRCZjzxwIXywhlLs8pWm/B1ZiigcdO4NH4DiLETQDB0cheTMeowgNfO daj7zlxfO7pRsWHv1/hPylfMwrxXki4aKltVkoLptjiGDaWVuT9RmEEXRA== -----END CERTIFICATE-----Generated at Mon Mar 2 02:14:33 2026 by rpki-client