$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44d98916-94ab-49fc-a073-76f25fab61e9.roa File: 44d98916-94ab-49fc-a073-76f25fab61e9.roa (raw, json) Hash identifier: k1AZPcQE8W8xcgHz9Ey6rlluHVYHRWYPtaM84hfUy98= Subject key identifier: 4E:17:B8:18:40:9C:7B:BA:47:64:99:84:E3:75:47:CF:EE:41:01:B4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E63E058DC505EFEB8A445C5EDC53B961A3F1817 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44d98916-94ab-49fc-a073-76f25fab61e9.roa Signing time: Sun 08 Feb 2026 00:10:31 +0000 ROA not before: Sun 08 Feb 2026 00:10:31 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.220.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:63:e0:58:dc:50:5e:fe:b8:a4:45:c5:ed:c5:3b:96:1a:3f:18:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:31 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=3d88dc18c306211475d20ac56a9bc4a01a47a22e08058a520cf3492de71246c1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:4e:11:3a:39:49:a0:d1:50:ee:a4:65:67:c9: a0:02:e3:7b:20:e8:07:13:14:9f:c6:6b:3b:b3:ae: 2a:95:23:7f:22:61:4a:40:23:9d:08:5a:e7:cb:86: 04:63:b6:b3:be:f3:24:cc:9f:a4:86:75:35:9e:d6: 69:08:9e:6c:14:90:8f:fd:b5:4a:ba:08:c0:94:29: 4b:21:3b:c2:bc:2d:ee:02:39:90:c8:f3:99:84:4e: 2e:7f:1e:27:c2:23:d8:cf:04:ee:f7:83:79:8f:1e: 87:7a:51:79:1c:52:49:08:9e:ab:e7:c8:04:a5:ec: 7d:e8:4e:79:c6:80:a0:bb:05:a6:61:b4:71:01:ca: 3f:80:27:5c:a5:44:e7:6e:b1:2f:ca:74:f3:77:ba: 2d:02:5d:b1:c7:77:d1:28:4b:ca:d2:b4:c2:19:93: d1:dc:9e:9a:27:70:e0:2c:be:ab:3c:5e:d1:f4:8b: f9:60:12:0b:b2:04:c4:a2:ea:4f:2a:63:eb:a4:a5: 86:f2:68:e1:a1:bf:d0:03:46:02:bc:7a:81:d3:1d: f9:05:61:9f:13:86:a4:52:cd:bf:0a:5d:9c:04:34: 4b:90:61:f7:f5:cc:44:b0:53:0d:e7:8b:34:e8:21: fb:ad:03:8b:0f:8c:cd:d4:a9:51:01:61:fb:7b:35: 38:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:17:B8:18:40:9C:7B:BA:47:64:99:84:E3:75:47:CF:EE:41:01:B4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/44d98916-94ab-49fc-a073-76f25fab61e9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.220.0.0/16 Signature Algorithm: sha256WithRSAEncryption be:b0:f2:f5:bc:bd:b6:4f:f9:7d:84:e3:6d:33:7b:46:71:3a: 67:a5:f7:f6:b8:17:77:1b:3d:52:0f:7c:86:94:06:20:f9:d5: d5:c7:76:bd:f6:f7:f3:3b:81:44:0f:5b:2c:16:ca:03:32:18: 7c:8a:dd:5f:e9:f5:62:18:5b:91:9b:7a:d2:d2:b5:5d:3a:35: 37:e8:05:99:f4:08:20:81:72:ec:7b:d8:e9:52:70:84:c3:70: 37:81:39:d8:4e:ac:af:a3:11:cd:cd:c5:22:b0:65:2c:72:a0: c5:86:1a:3a:e0:26:dc:26:63:e5:ba:67:6c:ee:81:21:0a:55: d4:bd:bf:51:84:67:25:63:a2:6d:2c:6b:92:dd:10:0c:e8:e6: cb:2f:7f:f8:54:67:b0:55:d2:11:ef:80:6c:c4:64:b0:f1:02: 64:94:ad:a4:14:36:d8:83:4b:57:f4:38:7f:15:01:f1:31:6b: 34:eb:cb:d6:da:2e:c0:89:7d:aa:1f:d2:58:89:a3:b8:1d:6f: ec:fe:e4:f3:d5:33:91:a1:48:fe:e4:2d:73:17:33:10:60:d8: a5:89:3c:c5:85:39:e1:fe:c6:f1:d9:ab:01:c0:b2:45:70:12: 57:ff:ac:19:e9:03:1d:bb:e4:04:ed:10:f0:2c:c3:72:8d:85: 18:e9:c0:e4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDmPgWNxQXv64pEXF7cU7lho/GBcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDMxWhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzZDg4ZGMxOGMzMDYyMTE0NzVkMjBhYzU2YTliYzRhMDFh NDdhMjJlMDgwNThhNTIwY2YzNDkyZGU3MTI0NmMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKThE6OUmg0VDupGVnyaAC43sg6AcTFJ/GazuzriqVI38i YUpAI50IWufLhgRjtrO+8yTMn6SGdTWe1mkInmwUkI/9tUq6CMCUKUshO8K8Le4C OZDI85mETi5/HifCI9jPBO73g3mPHod6UXkcUkkInqvnyASl7H3oTnnGgKC7BaZh tHEByj+AJ1ylROdusS/KdPN3ui0CXbHHd9EoS8rStMIZk9HcnponcOAsvqs8XtH0 i/lgEguyBMSi6k8qY+ukpYbyaOGhv9ADRgK8eoHTHfkFYZ8ThqRSzb8KXZwENEuQ Yff1zESwUw3nizToIfutA4sPjM3UqVEBYft7NThdAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUThe4GECce7pHZJmE43VHz+5BAbQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ0ZDk4OTE2LTk0YWItNDlmYy1hMDczLTc2ZjI1ZmFiNjFlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo3DANBgkqhkiG9w0BAQsFAAOCAQEAvrDy9by9tk/5fYTjbTN7RnE6Z6X3 9rgXdxs9Ug98hpQGIPnV1cd2vfb38zuBRA9bLBbKAzIYfIrdX+n1YhhbkZt60tK1 XTo1N+gFmfQIIIFy7HvY6VJwhMNwN4E52E6sr6MRzc3FIrBlLHKgxYYaOuAm3CZj 5bpnbO6BIQpV1L2/UYRnJWOibSxrkt0QDOjmyy9/+FRnsFXSEe+AbMRksPECZJSt pBQ22INLV/Q4fxUB8TFrNOvL1touwIl9qh/SWImjuB1v7P7k89UzkaFI/uQtcxcz EGDYpYk8xYU54f7G8dmrAcCyRXASV/+sGekDHbvkBO0Q8CzDco2FGOnA5A== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:36 2026 by rpki-client