$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d95802-c80e-48cb-8f8e-746d414d0f7f.roa File: 46d95802-c80e-48cb-8f8e-746d414d0f7f.roa (raw, json) Hash identifier: 52hVoZVGLBgcoMM+Eufa/mdS6noN98aLodhXLGHDAxI= Subject key identifier: C5:3B:28:FD:1D:F5:16:C3:C0:6B:43:21:03:DC:42:DD:07:C5:58:FA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 125067B7D1B86202CE092DAF27BF104DEFB4A651 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d95802-c80e-48cb-8f8e-746d414d0f7f.roa Signing time: Sun 01 Mar 2026 00:00:56 +0000 ROA not before: Sun 01 Mar 2026 00:00:56 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.237.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:50:67:b7:d1:b8:62:02:ce:09:2d:af:27:bf:10:4d:ef:b4:a6:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:00:56 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=9a200f4e6a5081bb1931d68af33178ae7a255377edb8cf215b09f78f0d7bea15, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:c0:61:c8:fb:62:78:cf:06:60:d1:68:1a:17: a6:14:94:6c:47:69:c2:80:7f:f0:6f:66:0c:69:89: cd:25:5f:a7:dc:23:8f:48:51:fa:3f:33:ff:c6:c1: 19:64:88:44:a2:87:61:76:d3:79:04:f2:4e:39:e9: 95:6d:45:ea:c3:47:03:77:93:1e:8d:0a:c8:b4:19: 5c:70:af:7b:bb:5a:58:83:f1:1b:17:37:f5:56:7b: 59:70:e7:6d:9f:e3:99:e8:42:55:ca:95:c3:b7:ed: 96:b7:45:97:e2:2e:23:67:d6:35:9d:09:92:8e:71: 8d:61:06:da:94:e6:89:30:81:3a:72:b3:ce:ed:0e: cf:24:01:91:8a:0a:3a:a0:bb:ab:01:b3:2a:49:10: 22:92:38:9b:2b:50:46:15:63:95:8a:3b:64:ad:98: 14:e1:9d:88:bd:c8:8c:13:d2:f7:a6:41:a4:d1:36: 6b:14:e6:1b:b3:53:7a:f6:69:96:bc:03:80:97:db: 9d:b3:d8:a4:90:13:09:aa:50:ad:91:1d:38:b2:49: 02:f1:f3:3b:71:6a:2e:c0:e8:3a:25:3c:5c:58:31: d7:fd:43:cd:ef:8d:fb:4f:b2:a1:53:95:f2:50:be: 41:6b:57:d9:6b:1d:22:79:62:8c:d0:b8:9e:b9:5f: f2:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:3B:28:FD:1D:F5:16:C3:C0:6B:43:21:03:DC:42:DD:07:C5:58:FA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/46d95802-c80e-48cb-8f8e-746d414d0f7f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.237.0/24 Signature Algorithm: sha256WithRSAEncryption 78:46:35:64:d6:92:46:dc:fc:04:ea:db:ab:b1:4a:98:fa:c6: cc:7c:0a:dc:f3:08:fb:7a:1e:da:71:34:a7:3e:06:c2:c3:b9: f0:c1:90:ed:43:e5:01:ff:c3:10:2b:38:c0:85:f6:06:4d:c7: 9b:28:93:0e:d8:d9:ad:4b:ce:0c:3f:c3:f9:bc:ae:49:ac:0f: c4:c7:f7:b2:5f:4d:78:8e:5b:de:c8:a7:bd:59:53:38:0e:20: ea:7d:fa:05:a3:85:8c:73:61:1b:ab:16:9d:42:99:01:49:8a: b3:c8:98:46:dc:42:62:e0:29:b7:fe:12:86:8c:2c:19:06:40: 0f:9d:8e:d1:8e:54:da:e5:97:04:07:20:c3:0e:e9:cc:bc:71: fc:1a:1e:a6:5f:c5:14:61:3f:78:cb:f6:00:4d:2c:3c:79:8b: 6b:82:5b:bd:5f:34:55:be:8e:7d:8c:dd:af:81:0b:3b:77:20: 0b:a0:02:7f:37:d1:5d:b4:6b:d8:9f:6b:9a:a9:cf:7f:ec:34: e6:46:57:5d:f7:63:9c:33:15:c0:66:f1:e6:12:6a:73:d0:e9: 82:c1:ee:58:8e:af:59:b4:74:34:58:11:20:ff:dc:88:0b:b9: 00:98:1d:63:86:e0:eb:63:48:7b:a4:ff:27:4a:01:1e:3f:df: a9:37:7e:f3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUElBnt9G4YgLOCS2vJ78QTe+0plEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAwMDU2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5YTIwMGY0ZTZhNTA4MWJiMTkzMWQ2OGFmMzMxNzhhZTdh MjU1Mzc3ZWRiOGNmMjE1YjA5Zjc4ZjBkN2JlYTE1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC4wGHI+2J4zwZg0WgaF6YUlGxHacKAf/BvZgxpic0lX6fc I49IUfo/M//GwRlkiESih2F203kE8k456ZVtRerDRwN3kx6NCsi0GVxwr3u7WliD 8RsXN/VWe1lw522f45noQlXKlcO37Za3RZfiLiNn1jWdCZKOcY1hBtqU5okwgTpy s87tDs8kAZGKCjqgu6sBsypJECKSOJsrUEYVY5WKO2StmBThnYi9yIwT0vemQaTR NmsU5huzU3r2aZa8A4CX252z2KSQEwmqUK2RHTiySQLx8ztxai7A6DolPFxYMdf9 Q83vjftPsqFTlfJQvkFrV9lrHSJ5YozQuJ65X/IfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUxTso/R31FsPAa0MhA9xC3QfFWPowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ2ZDk1ODAyLWM4MGUtNDhjYi04ZjhlLTc0NmQ0MTRkMGY3Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTe0wDQYJKoZIhvcNAQELBQADggEBAHhGNWTWkkbc/ATq26uxSpj6xsx8 CtzzCPt6HtpxNKc+BsLDufDBkO1D5QH/wxArOMCF9gZNx5sokw7Y2a1Lzgw/w/m8 rkmsD8TH97JfTXiOW97Ip71ZUzgOIOp9+gWjhYxzYRurFp1CmQFJirPImEbcQmLg Kbf+EoaMLBkGQA+djtGOVNrllwQHIMMO6cy8cfwaHqZfxRRhP3jL9gBNLDx5i2uC W71fNFW+jn2M3a+BCzt3IAugAn830V20a9ifa5qpz3/sNOZGV133Y5wzFcBm8eYS anPQ6YLB7liOr1m0dDRYESD/3IgLuQCYHWOG4OtjSHuk/ydKAR4/36k3fvM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:04 2026 by rpki-client