$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa File: 45c2e527-9738-4594-aadb-f5b7380f4d86.roa (raw, json) Hash identifier: 5fP0eLclm8l0Mfo0zGC1ltJm9HPAdNGgqz5m9VB6mmA= Subject key identifier: C8:53:21:4C:8B:85:5B:C5:01:BE:50:FF:3C:DE:C6:69:AA:AD:6E:BF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6C6146FCA46C31A16F51353C1471F503157ED43B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa Signing time: Sun 01 Mar 2026 00:10:44 +0000 ROA not before: Sun 01 Mar 2026 00:10:44 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.152.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6c:61:46:fc:a4:6c:31:a1:6f:51:35:3c:14:71:f5:03:15:7e:d4:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:10:44 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=44f9dab29a2f93a0066c2a95342cec615926e84cf8dca73a4e048fef8df2af73, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:24:30:f6:b5:be:e3:e6:80:e1:40:53:00:1d: df:61:4c:e8:20:bf:f9:8c:1d:bc:e9:a2:f7:6c:93: ea:7c:ed:cb:f1:54:35:3a:6e:e8:15:ad:8d:c2:ae: 7d:39:64:f8:97:73:a9:c3:f4:6e:6c:d7:70:6f:bf: fa:1c:d1:50:90:8b:e6:5d:4c:8d:dd:a0:46:69:62: 24:10:b8:2a:a0:be:7d:4a:00:ad:37:01:96:5e:82: 68:84:58:67:bc:25:47:69:60:2c:d8:e3:c9:12:46: ba:99:4a:8e:93:0f:72:95:9b:85:b1:08:85:58:43: b2:a6:ea:68:3e:43:8b:33:45:eb:8e:d8:06:71:71: 1b:52:b5:b2:ee:9f:c9:0e:a8:2b:81:e7:ce:39:13: f1:14:40:9c:80:0c:d5:98:d4:05:77:ed:ff:4e:3d: eb:c0:a2:db:95:59:2f:b2:be:d6:7a:62:45:c4:7f: 6f:5f:43:98:aa:60:fe:15:c0:08:7a:3f:0e:da:fe: 9b:53:e0:dc:a8:7a:01:90:43:db:a3:9d:ce:c3:45: 2e:6e:b6:e8:00:20:a4:a3:47:71:78:1d:e3:95:69: 6c:28:dd:fb:4d:79:d9:02:46:9e:41:8b:e6:e0:86: 09:7c:de:31:a7:bc:d0:31:af:ad:30:df:e0:be:67: 14:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:53:21:4C:8B:85:5B:C5:01:BE:50:FF:3C:DE:C6:69:AA:AD:6E:BF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/45c2e527-9738-4594-aadb-f5b7380f4d86.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.152.0/24 Signature Algorithm: sha256WithRSAEncryption 82:4d:cc:54:92:85:59:ab:e5:8f:89:e3:fc:98:99:e6:ce:b2: d7:29:30:b0:ef:16:52:ac:f2:08:60:80:9d:a9:b2:ff:d8:f5: 36:a2:59:31:55:7e:6a:88:01:e3:74:8d:aa:da:66:6a:3e:48: df:fb:f6:8c:6e:cc:cc:82:74:eb:29:7b:7a:b0:6e:10:a0:3c: bd:74:ad:f6:f1:89:57:9f:b1:7e:49:e8:3a:a9:b2:02:3c:21: 75:8b:17:1d:51:1f:7b:4e:b7:de:eb:09:ef:07:d0:40:ea:88: 80:b0:0c:ab:8e:9b:a4:20:e0:19:3b:50:00:d7:76:b6:5a:c8: 41:3d:d4:45:36:23:eb:f8:52:19:8e:7f:f0:a5:ea:af:8b:2a: 06:ac:7d:bb:9e:33:92:31:a8:20:fb:71:bc:1c:fa:70:d4:cf: fc:b0:ab:3b:d2:c4:be:e0:af:a2:00:ef:ad:0b:3a:60:32:08: 21:f7:5c:71:92:14:11:0c:79:dc:2a:d9:70:11:8f:4c:2f:93: 98:f5:f6:50:88:69:d6:15:f8:d6:ad:74:2d:ec:cd:c3:5b:b4: 0e:87:4a:05:5c:58:05:7a:1e:80:2a:bc:0b:79:65:87:86:20: b8:8c:93:7d:68:20:85:0a:f5:13:cc:3f:87:f3:61:8f:f6:1e: 7a:b9:f7:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUbGFG/KRsMaFvUTU8FHH1AxV+1DswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAxMDQ0WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A0NGY5ZGFiMjlhMmY5M2EwMDY2YzJhOTUzNDJjZWM2MTU5 MjZlODRjZjhkY2E3M2E0ZTA0OGZlZjhkZjJhZjczMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3JDD2tb7j5oDhQFMAHd9hTOggv/mMHbzpovdsk+p87cvx VDU6bugVrY3Crn05ZPiXc6nD9G5s13Bvv/oc0VCQi+ZdTI3doEZpYiQQuCqgvn1K AK03AZZegmiEWGe8JUdpYCzY48kSRrqZSo6TD3KVm4WxCIVYQ7Km6mg+Q4szReuO 2AZxcRtStbLun8kOqCuB5845E/EUQJyADNWY1AV37f9OPevAotuVWS+yvtZ6YkXE f29fQ5iqYP4VwAh6Pw7a/ptT4NyoegGQQ9ujnc7DRS5utugAIKSjR3F4HeOVaWwo 3ftNedkCRp5Bi+bghgl83jGnvNAxr60w3+C+ZxRDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUyFMhTIuFW8UBvlD/PN7Gaaqtbr8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1YzJlNTI3LTk3MzgtNDU5NC1hYWRiLWY1YjczODBmNGQ4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTZgwDQYJKoZIhvcNAQELBQADggEBAIJNzFSShVmr5Y+J4/yYmebOstcp MLDvFlKs8ghggJ2psv/Y9TaiWTFVfmqIAeN0jaraZmo+SN/79oxuzMyCdOspe3qw bhCgPL10rfbxiVefsX5J6DqpsgI8IXWLFx1RH3tOt97rCe8H0EDqiICwDKuOm6Qg 4Bk7UADXdrZayEE91EU2I+v4UhmOf/Cl6q+LKgasfbueM5IxqCD7cbwc+nDUz/yw qzvSxL7gr6IA760LOmAyCCH3XHGSFBEMedwq2XARj0wvk5j19lCIadYV+NatdC3s zcNbtA6HSgVcWAV6HoAqvAt5ZYeGILiMk31oIIUK9RPMP4fzYY/2Hnq594A= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:19 2026 by rpki-client