$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a27941-1f5f-4303-9603-eefe007f03fc.roa File: 47a27941-1f5f-4303-9603-eefe007f03fc.roa (raw, json) Hash identifier: mrZJ9TmAj6BTADMgLZQ64tmIx6VvtbSaJVqT67HcWRg= Subject key identifier: AA:04:E9:EA:8E:90:54:DC:61:A8:1E:A0:7D:A3:73:5D:42:03:ED:5E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 250DE10859102866D86398E24D583C588C92BB0C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a27941-1f5f-4303-9603-eefe007f03fc.roa Signing time: Tue 24 Feb 2026 02:31:34 +0000 ROA not before: Tue 24 Feb 2026 02:31:34 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.171.80.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:0d:e1:08:59:10:28:66:d8:63:98:e2:4d:58:3c:58:8c:92:bb:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:31:34 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=2c2ef1fed94c3bf6e0f412fefd9493914c460ca70a9b4b29e8442e42faea7744, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:d2:dc:a0:f1:73:12:14:31:81:21:33:b1:0d: c5:45:46:cf:4b:50:ad:c4:d4:b2:1d:54:5d:ed:c5: f5:8f:d4:ff:0c:de:83:20:4b:13:2e:e1:a9:a5:4c: e5:6f:ef:06:2f:37:63:13:d6:11:a7:dd:9c:16:24: 54:f3:af:e2:ed:1a:8a:02:64:fd:68:8e:85:79:65: 5a:d5:a9:79:41:22:21:f5:bb:28:69:7b:14:75:cb: f6:4e:8d:ed:6d:bf:da:d6:63:d6:9e:59:c1:4d:a1: 2a:ce:ac:4b:c0:41:af:1c:20:4f:93:66:ee:bc:69: be:1f:15:76:04:aa:f8:f9:0d:1d:e9:c4:9f:1e:52: 12:6c:03:0c:83:44:22:dc:e7:3c:f8:4d:f2:7a:27: e7:f9:b1:3d:a0:d1:15:32:13:e7:68:4f:37:a2:99: 59:c0:19:3c:94:db:51:5b:36:c5:a0:0d:4f:69:89: cd:2e:ac:da:ef:8d:94:a7:15:09:11:4b:2d:58:de: 6c:c9:ec:33:28:7d:38:77:7c:22:b0:ba:d6:bc:86: 7d:10:0f:e3:54:9e:f0:19:2a:84:06:d2:20:1f:a4: 98:3a:f9:42:5d:93:11:3c:26:91:39:51:13:c7:0e: 4b:28:da:8d:bf:ba:f8:ef:a0:60:6e:d3:fd:6b:48: 9e:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AA:04:E9:EA:8E:90:54:DC:61:A8:1E:A0:7D:A3:73:5D:42:03:ED:5E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47a27941-1f5f-4303-9603-eefe007f03fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.171.80.0/22 Signature Algorithm: sha256WithRSAEncryption a3:90:3c:35:b6:de:00:05:cf:39:45:e4:12:fa:75:4b:c2:fb: 05:8c:71:7b:70:ff:e8:ec:95:a7:1a:45:34:5d:05:8c:1e:93: e1:dd:c1:1f:e9:83:c2:58:b2:d3:7c:58:6b:8f:3e:20:ff:0f: 52:ad:49:8b:4a:f7:7e:92:53:81:04:8f:99:01:75:5a:76:3d: df:77:77:ee:f6:fd:08:4d:64:74:c0:b3:07:c3:b6:59:19:63: b7:98:ed:10:70:dd:a1:49:c9:d3:f2:93:09:fb:d5:25:56:3c: 08:b7:ae:85:08:ea:ff:95:6e:fd:79:8d:01:10:aa:3c:d8:fb: 1b:50:18:7e:e6:06:76:77:f4:c2:0f:d7:a8:f9:05:37:b0:c0: e5:a6:a3:d5:c1:99:e5:d7:56:56:45:38:ca:82:08:9a:29:42: a8:99:c7:fd:60:52:fe:e2:4d:d6:ee:b7:57:11:ca:9f:e3:72: 17:60:b6:6a:d9:0d:2c:96:2e:f3:18:00:54:03:b5:3d:20:91: 6a:fc:06:14:26:4d:5a:4d:e6:24:85:76:89:a0:93:7c:f2:4c: 59:32:30:a9:a1:c0:84:da:0d:b1:e0:49:c3:84:fa:b8:89:ee: d5:3c:9d:de:75:de:48:4a:b4:a8:c0:d1:39:51:95:69:0d:f1: c7:c7:99:57 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJQ3hCFkQKGbYY5jiTVg8WIySuwwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMTM0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyYzJlZjFmZWQ5NGMzYmY2ZTBmNDEyZmVmZDk0OTM5MTRj NDYwY2E3MGE5YjRiMjllODQ0MmU0MmZhZWE3NzQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDN0tyg8XMSFDGBITOxDcVFRs9LUK3E1LIdVF3txfWP1P8M 3oMgSxMu4amlTOVv7wYvN2MT1hGn3ZwWJFTzr+LtGooCZP1ojoV5ZVrVqXlBIiH1 uyhpexR1y/ZOje1tv9rWY9aeWcFNoSrOrEvAQa8cIE+TZu68ab4fFXYEqvj5DR3p xJ8eUhJsAwyDRCLc5zz4TfJ6J+f5sT2g0RUyE+doTzeimVnAGTyU21FbNsWgDU9p ic0urNrvjZSnFQkRSy1Y3mzJ7DMofTh3fCKwuta8hn0QD+NUnvAZKoQG0iAfpJg6 +UJdkxE8JpE5URPHDkso2o2/uvjvoGBu0/1rSJ6DAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqgTp6o6QVNxhqB6gfaNzXUID7V4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3YTI3OTQxLTFmNWYtNDMwMy05NjAzLWVlZmUwMDdmMDNmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQq1AwDQYJKoZIhvcNAQELBQADggEBAKOQPDW23gAFzzlF5BL6dUvC+wWM cXtw/+jslacaRTRdBYwek+HdwR/pg8JYstN8WGuPPiD/D1KtSYtK936SU4EEj5kB dVp2Pd93d+72/QhNZHTAswfDtlkZY7eY7RBw3aFJydPykwn71SVWPAi3roUI6v+V bv15jQEQqjzY+xtQGH7mBnZ39MIP16j5BTewwOWmo9XBmeXXVlZFOMqCCJopQqiZ x/1gUv7iTdbut1cRyp/jchdgtmrZDSyWLvMYAFQDtT0gkWr8BhQmTVpN5iSFdomg k3zyTFkyMKmhwITaDbHgScOE+riJ7tU8nd513khKtKjA0TlRlWkN8cfHmVc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:09 2026 by rpki-client