$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa File: 42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa (raw, json) Hash identifier: tyXHZg2T/sGIep9ml6c5ecFdxQggMljEjAlbpQuS0Rk= Subject key identifier: 01:5D:0C:D1:D3:43:1D:18:E7:0A:3E:6F:39:8B:6B:06:C1:66:02:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B9BBB0613EA86F42C3E1140508170F17E9B4A21 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa Signing time: Wed 25 Feb 2026 00:30:46 +0000 ROA not before: Wed 25 Feb 2026 00:30:46 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.166.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:9b:bb:06:13:ea:86:f4:2c:3e:11:40:50:81:70:f1:7e:9b:4a:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:30:46 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=d765377468f7d841322e6e3b4597b6a04aa3f035d7b300bb94ab23e235080b64, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:04:70:4e:e0:e2:27:68:02:14:7f:37:91:dc: ee:18:55:b8:31:80:95:6f:d0:a4:3b:9c:cf:34:89: c1:80:30:5e:2d:7c:fa:7c:24:e6:c7:5a:24:4d:f3: 72:57:4a:5c:a0:e0:00:88:e5:11:de:fb:39:44:6e: 64:d0:10:3e:bd:0c:60:25:0e:c4:c2:72:16:ec:5c: 2d:30:14:69:67:d4:79:d2:aa:a5:13:4d:af:5e:8f: ab:df:8d:50:7e:aa:92:8d:7e:9c:2c:e2:78:71:be: d0:33:f1:06:41:6b:5f:29:f8:60:dd:89:ba:10:ef: 49:35:6b:52:05:37:8c:f3:1e:d7:2f:38:b6:95:80: a6:c2:8f:da:98:44:74:e8:4a:b0:6f:6f:16:58:70: 0c:7c:4d:fe:a3:62:dd:05:77:19:2b:55:8d:0c:73: 89:b4:f4:a6:8b:12:a4:dd:94:95:97:5c:37:a6:4b: 87:8f:b5:ac:68:50:73:15:9a:11:88:e2:01:26:f0: b3:cd:28:e0:9c:4d:d4:c4:2c:4d:83:84:e4:05:c8: c1:3b:75:00:1f:7b:f7:81:a3:48:33:ba:ff:92:cf: f5:39:0d:db:aa:90:31:01:2b:53:6e:85:e9:6d:af: e7:f2:42:b0:3e:62:d3:e5:2b:c8:63:00:92:7e:db: 91:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:5D:0C:D1:D3:43:1D:18:E7:0A:3E:6F:39:8B:6B:06:C1:66:02:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/42cfc8f8-a4b6-48c2-aac3-95e1116a6303.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.166.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8f:cc:21:5d:ca:14:a8:8f:b5:88:bb:91:80:81:85:9e:03:eb: a8:c5:39:dd:c4:f2:46:b3:1c:fa:81:fb:9e:3a:b0:7e:09:be: 04:5a:f7:cd:63:48:f1:37:08:09:48:23:6f:ef:f5:5e:66:fc: 5f:2f:04:3c:47:4f:1d:64:39:f5:4b:c2:31:bd:89:9a:25:00: d2:00:d7:d5:0c:d6:9e:e8:c9:82:5b:8e:9c:92:ff:98:5b:29: f5:fa:12:28:cf:f1:8f:1c:92:f2:51:43:fd:78:f1:3a:47:9c: 87:54:46:65:e6:36:44:fd:61:0c:cf:38:93:8c:e4:89:4a:ca: 6e:cf:37:74:7f:1f:1f:98:e3:01:f6:5e:40:fd:62:92:2b:d4: 11:a4:fa:3a:b1:3c:bd:be:d8:73:fc:64:6c:8d:b1:03:a8:b3: 4a:32:21:19:13:78:e4:7d:3c:98:ed:fd:0e:dc:15:88:4e:79: ae:2d:4e:fd:3f:f0:06:04:c4:47:b3:20:c9:ae:47:84:d2:68: 90:8b:6f:77:a8:72:19:de:22:15:dd:d9:1b:aa:05:11:8b:a6: a8:71:1b:51:48:48:75:14:b7:67:bf:82:bc:17:ef:c5:66:c0: f4:bb:3e:1b:27:00:2d:da:5b:df:73:f1:f0:f6:4a:d0:1a:cf: 3d:82:b0:b0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUa5u7BhPqhvQsPhFAUIFw8X6bSiEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMDQ2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNzY1Mzc3NDY4ZjdkODQxMzIyZTZlM2I0NTk3YjZhMDRh YTNmMDM1ZDdiMzAwYmI5NGFiMjNlMjM1MDgwYjY0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLBHBO4OInaAIUfzeR3O4YVbgxgJVv0KQ7nM80icGAMF4t fPp8JObHWiRN83JXSlyg4ACI5RHe+zlEbmTQED69DGAlDsTCchbsXC0wFGln1HnS qqUTTa9ej6vfjVB+qpKNfpws4nhxvtAz8QZBa18p+GDdiboQ70k1a1IFN4zzHtcv OLaVgKbCj9qYRHToSrBvbxZYcAx8Tf6jYt0FdxkrVY0Mc4m09KaLEqTdlJWXXDem S4ePtaxoUHMVmhGI4gEm8LPNKOCcTdTELE2DhOQFyME7dQAfe/eBo0gzuv+Sz/U5 DduqkDEBK1Nuheltr+fyQrA+YtPlK8hjAJJ+25ETAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUAV0M0dNDHRjnCj5vOYtrBsFmAskwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQyY2ZjOGY4LWE0YjYtNDhjMi1hYWMzLTk1ZTExMTZhNjMwMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAopjANBgkqhkiG9w0BAQsFAAOCAQEAj8whXcoUqI+1iLuRgIGFngPrqMU5 3cTyRrMc+oH7njqwfgm+BFr3zWNI8TcICUgjb+/1Xmb8Xy8EPEdPHWQ59UvCMb2J miUA0gDX1QzWnujJgluOnJL/mFsp9foSKM/xjxyS8lFD/XjxOkech1RGZeY2RP1h DM84k4zkiUrKbs83dH8fH5jjAfZeQP1ikivUEaT6OrE8vb7Yc/xkbI2xA6izSjIh GRN45H08mO39DtwViE55ri1O/T/wBgTER7Mgya5HhNJokItvd6hyGd4iFd3ZG6oF EYumqHEbUUhIdRS3Z7+CvBfvxWbA9Ls+GycALdpb33Px8PZK0BrPPYKwsA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:11 2026 by rpki-client