$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa File: 43679d0b-d4d6-4195-8f78-61e5d3431f35.roa (raw, json) Hash identifier: sLKG904p8Y3AZjFitRjUcW0+hh9PlRA6A1kpqzrcHV8= Subject key identifier: 8C:8E:29:88:78:72:F0:45:58:B0:0C:5B:A3:03:1F:BD:6B:CF:5F:FF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77CD2CFF56D14CF1ED50E487F23023A77D2450A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa Signing time: Tue 24 Feb 2026 02:31:36 +0000 ROA not before: Tue 24 Feb 2026 02:31:36 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.200.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:cd:2c:ff:56:d1:4c:f1:ed:50:e4:87:f2:30:23:a7:7d:24:50:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:31:36 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=c7d81a1f5678ee9db16fc0558beb84dcd98735300d6d958ba40fe63a32739ad2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:98:df:b2:06:71:c5:72:0e:9f:99:ff:26:5c: 51:b3:66:d5:85:37:27:eb:bb:70:c1:a0:cf:fa:52: cc:45:29:a6:2e:99:80:88:50:b2:13:fc:39:38:8f: f2:de:e7:65:7b:6c:1d:b6:04:8b:08:8d:58:f5:f0: 96:99:e5:1f:1f:cb:f4:bf:c7:0f:63:2b:0d:6e:5f: 40:1d:42:8c:56:f1:91:77:70:d3:ea:03:40:fe:35: d6:83:14:fb:15:0a:70:27:c0:24:ae:af:ef:7d:8d: 30:dc:6b:98:ad:d0:ba:0f:89:18:e2:38:06:14:0d: 69:df:57:6c:d1:5a:8c:b4:b0:19:18:bd:18:b1:64: d6:26:82:1f:2a:cb:02:09:0d:dc:c2:92:33:a3:75: 74:ac:51:b9:50:77:3e:ba:56:a3:7d:3a:e7:66:9e: f9:00:68:66:59:2b:97:0d:5e:81:b6:85:7a:d7:77: ae:c1:39:6f:fa:e0:8a:06:f9:b9:8a:bf:94:75:8e: f2:c5:1e:dc:f0:ea:91:d3:72:31:13:e5:ed:c0:e6: ec:c0:06:a4:e0:59:5e:b7:86:dd:86:b3:b2:de:f3: 12:8b:01:e1:30:4c:28:4f:48:e2:f5:fe:ee:f4:5f: 61:19:31:97:9c:2f:92:e2:c0:f7:04:3f:05:53:42: 14:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:8E:29:88:78:72:F0:45:58:B0:0C:5B:A3:03:1F:BD:6B:CF:5F:FF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/43679d0b-d4d6-4195-8f78-61e5d3431f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.200.0/22 Signature Algorithm: sha256WithRSAEncryption 35:43:85:74:ee:92:18:0e:9e:80:f1:fb:b5:90:dc:66:e3:7c: 73:4a:38:26:5b:d3:a4:2e:98:81:73:9a:35:dc:47:fe:18:1a: 54:22:46:70:78:a7:b4:49:ae:a8:ab:d6:b0:d8:ee:56:d2:2c: 7f:08:bf:51:8e:73:b4:9e:87:3d:cb:79:ef:3d:43:de:11:46: bf:a6:fb:b7:90:0b:63:0b:25:c3:85:ad:18:d4:5c:83:92:d9: 26:cf:ba:6a:ce:a0:8d:66:91:76:8b:15:1b:04:0e:23:99:b0: 53:64:17:fa:70:97:0a:7d:be:1b:50:b5:d7:10:bf:58:83:f1: 0f:f6:58:bd:59:97:41:dc:9a:7a:81:cc:78:0d:69:c1:28:f4: 58:bf:83:5a:1a:38:2f:ae:a4:bc:9d:2c:72:de:7e:b3:d1:77: a6:55:38:38:fc:2f:c2:24:a7:1f:7e:85:5c:78:f9:76:91:3e: 53:f8:91:72:90:0b:3f:ff:a0:68:31:1b:a5:18:14:5d:f9:9c: 34:92:2e:39:84:13:fa:e4:c2:aa:81:98:47:50:0b:5e:f5:e9: 7b:f1:2e:64:a2:18:9c:c1:5a:0b:1d:c5:01:d6:a0:ee:d5:eb: 16:71:11:31:bc:1d:dd:42:0e:96:d6:f5:36:24:45:18:f5:93: 77:07:0f:be -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd80s/1bRTPHtUOSH8jAjp30kUKEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMTM2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2Q4MWExZjU2NzhlZTlkYjE2ZmMwNTU4YmViODRkY2Q5 ODczNTMwMGQ2ZDk1OGJhNDBmZTYzYTMyNzM5YWQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDRmN+yBnHFcg6fmf8mXFGzZtWFNyfru3DBoM/6UsxFKaYu mYCIULIT/Dk4j/Le52V7bB22BIsIjVj18JaZ5R8fy/S/xw9jKw1uX0AdQoxW8ZF3 cNPqA0D+NdaDFPsVCnAnwCSur+99jTDca5it0LoPiRjiOAYUDWnfV2zRWoy0sBkY vRixZNYmgh8qywIJDdzCkjOjdXSsUblQdz66VqN9OudmnvkAaGZZK5cNXoG2hXrX d67BOW/64IoG+bmKv5R1jvLFHtzw6pHTcjET5e3A5uzABqTgWV63ht2Gs7Le8xKL AeEwTChPSOL1/u70X2EZMZecL5LiwPcEPwVTQhTRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjI4piHhy8EVYsAxbowMfvWvPX/8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzNjc5ZDBiLWQ0ZDYtNDE5NS04Zjc4LTYxZTVkMzQzMWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmMgwDQYJKoZIhvcNAQELBQADggEBADVDhXTukhgOnoDx+7WQ3GbjfHNK OCZb06QumIFzmjXcR/4YGlQiRnB4p7RJrqir1rDY7lbSLH8Iv1GOc7Sehz3Lee89 Q94RRr+m+7eQC2MLJcOFrRjUXIOS2SbPumrOoI1mkXaLFRsEDiOZsFNkF/pwlwp9 vhtQtdcQv1iD8Q/2WL1Zl0HcmnqBzHgNacEo9Fi/g1oaOC+upLydLHLefrPRd6ZV ODj8L8Ikpx9+hVx4+XaRPlP4kXKQCz//oGgxG6UYFF35nDSSLjmEE/rkwqqBmEdQ C1716XvxLmSiGJzBWgsdxQHWoO7V6xZxETG8Hd1CDpbW9TYkRRj1k3cHD74= -----END CERTIFICATE-----Generated at Mon Mar 2 00:15:15 2026 by rpki-client