$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa File: 47f76ec9-1410-4f5f-930d-b1663472dcc6.roa (raw, json) Hash identifier: e9nEYw3npg79Xkn53DD5O+48zSV0JQpVJ+suDVLycEo= Subject key identifier: 2B:E9:FE:50:28:0F:92:72:76:56:3B:6E:D3:09:58:96:59:70:62:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2D38FEC607DACAE69E2E6925FF45020E5C3CBD83 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa Signing time: Wed 25 Feb 2026 01:30:45 +0000 ROA not before: Wed 25 Feb 2026 01:30:45 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.214.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:38:fe:c6:07:da:ca:e6:9e:2e:69:25:ff:45:02:0e:5c:3c:bd:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:30:45 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=24413882118947acfcb26184cf6568521ba656162231487aab1e02e97b955122, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:cc:0f:33:e9:b7:d8:8e:60:2f:bc:17:37:a2: 56:c8:4c:c0:ec:0d:ed:f5:d2:bd:fb:21:38:a8:71: bb:90:b1:16:f8:82:75:7b:7d:6b:61:04:95:52:2f: 51:43:0d:02:1b:74:5a:74:4d:f9:9e:46:72:8c:0b: 50:f2:d0:f4:8f:a1:06:e2:08:cc:f0:41:31:cb:ad: d6:73:91:a1:c4:1e:25:fc:8e:be:e2:25:7e:07:d6: 75:ea:6e:b5:5e:d3:03:39:0a:b3:6f:f6:c8:fc:95: 3f:69:56:44:d0:db:32:0e:8b:77:6c:ba:3e:42:a1: f3:81:62:a6:f0:ea:99:db:c3:2b:9f:b0:22:36:2b: d8:89:44:c0:82:fc:ba:fb:4d:79:81:6a:f5:b1:18: 6f:0c:2d:48:1a:ad:a6:d2:c5:88:8c:c3:5f:57:d2: a9:2e:55:5b:3a:bf:af:6c:bc:dc:04:30:b8:00:16: b2:b4:0f:c9:30:0f:23:27:ba:3a:6a:40:b2:5c:5b: 22:df:f9:dc:65:5b:09:01:9c:68:3d:e8:9f:3a:3a: 0e:06:ff:33:64:61:0a:89:72:e4:b9:77:3b:be:61: 84:f0:c1:94:6d:9b:49:d3:ad:49:f3:09:06:48:e5: b4:6f:2a:8e:2b:72:92:e4:fa:43:e2:89:58:7b:58: 60:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:E9:FE:50:28:0F:92:72:76:56:3B:6E:D3:09:58:96:59:70:62:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/47f76ec9-1410-4f5f-930d-b1663472dcc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.214.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5f:89:4e:0a:17:19:a4:da:34:cc:97:54:99:7a:13:56:72:e0: 02:28:39:72:45:b3:63:93:7a:34:07:c6:ca:47:6f:79:51:92: 8d:65:c6:b5:aa:98:8c:0f:65:52:1f:9b:9b:58:92:af:f6:0f: 88:1f:57:65:80:9f:06:7d:15:44:31:e0:f8:50:a5:63:8c:c8: 19:cb:34:19:22:94:3d:9d:03:db:15:96:98:e2:1f:3b:90:80: fb:6b:e9:e6:a2:50:d9:ef:d6:ae:5a:eb:ec:20:07:71:da:09: 7c:9d:a3:3d:05:72:0e:fd:84:ce:77:b4:d8:6c:33:58:1c:34: cc:47:b9:23:66:ac:53:b8:02:7d:95:e7:18:58:a4:4d:1a:f9: 30:83:08:72:fa:fe:c7:b3:cc:3d:56:92:19:e3:19:f5:13:e1: ad:98:ab:4f:dc:f5:2e:f4:6f:de:79:06:56:a1:b8:4d:91:12: 91:ab:55:dc:11:f9:af:ef:91:fd:9f:ce:fc:2d:73:ee:8d:16: 26:89:52:5a:e3:a1:31:1f:56:f9:8c:09:cc:b2:a2:67:02:64: 0d:4a:8a:d8:a0:78:e1:4d:df:b5:89:8f:bc:1d:99:e4:ca:da: 9b:81:16:54:10:a6:f4:8b:0f:60:1b:50:f6:59:e4:66:29:33: 0c:6b:79:09 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULTj+xgfayuaeLmkl/0UCDlw8vYMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEzMDQ1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDQxMzg4MjExODk0N2FjZmNiMjYxODRjZjY1Njg1MjFi YTY1NjE2MjIzMTQ4N2FhYjFlMDJlOTdiOTU1MTIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7zA8z6bfYjmAvvBc3olbITMDsDe310r37ITiocbuQsRb4 gnV7fWthBJVSL1FDDQIbdFp0TfmeRnKMC1Dy0PSPoQbiCMzwQTHLrdZzkaHEHiX8 jr7iJX4H1nXqbrVe0wM5CrNv9sj8lT9pVkTQ2zIOi3dsuj5CofOBYqbw6pnbwyuf sCI2K9iJRMCC/Lr7TXmBavWxGG8MLUgarabSxYiMw19X0qkuVVs6v69svNwEMLgA FrK0D8kwDyMnujpqQLJcWyLf+dxlWwkBnGg96J86Og4G/zNkYQqJcuS5dzu+YYTw wZRtm0nTrUnzCQZI5bRvKo4rcpLk+kPiiVh7WGABAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUK+n+UCgPknJ2Vjtu0wlYlllwYsYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ3Zjc2ZWM5LTE0MTAtNGY1Zi05MzBkLWIxNjYzNDcyZGNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo1jANBgkqhkiG9w0BAQsFAAOCAQEAX4lOChcZpNo0zJdUmXoTVnLgAig5 ckWzY5N6NAfGykdveVGSjWXGtaqYjA9lUh+bm1iSr/YPiB9XZYCfBn0VRDHg+FCl Y4zIGcs0GSKUPZ0D2xWWmOIfO5CA+2vp5qJQ2e/Wrlrr7CAHcdoJfJ2jPQVyDv2E zne02GwzWBw0zEe5I2asU7gCfZXnGFikTRr5MIMIcvr+x7PMPVaSGeMZ9RPhrZir T9z1LvRv3nkGVqG4TZESkatV3BH5r++R/Z/O/C1z7o0WJolSWuOhMR9W+YwJzLKi ZwJkDUqK2KB44U3ftYmPvB2Z5Mram4EWVBCm9IsPYBtQ9lnkZikzDGt5CQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:19 2026 by rpki-client