$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4963540b-ec7a-49a7-9f72-11cb956c55de.roa File: 4963540b-ec7a-49a7-9f72-11cb956c55de.roa (raw, json) Hash identifier: znj4rAT+1CGph5+sS7r13CMhINWXDKky940TPO2VizE= Subject key identifier: 82:42:B0:33:98:2D:04:5D:4C:AC:E8:0C:8C:46:ED:40:81:DB:56:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5DA6617F35CDBD485B0D6AF73A610209A04C3B39 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4963540b-ec7a-49a7-9f72-11cb956c55de.roa Signing time: Sat 28 Feb 2026 00:11:32 +0000 ROA not before: Sat 28 Feb 2026 00:11:32 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.120.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:a6:61:7f:35:cd:bd:48:5b:0d:6a:f7:3a:61:02:09:a0:4c:3b:39 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:11:32 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=54f286cb9cdb6d1b9dab28320113d8158db517f6803ef3263b29ed1f32027b02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:dc:97:7d:6d:4f:52:a8:a5:08:cf:1d:1f:b9: 43:f3:b1:4f:cd:60:46:a8:92:0d:2a:db:b7:6e:27: 28:c4:1b:3f:35:3a:b2:2b:73:55:5e:19:39:da:96: 2b:40:de:ba:82:05:7d:b9:33:44:56:48:94:45:63: 22:42:ed:26:b9:84:1a:88:e9:31:35:22:b2:05:52: 11:b6:1e:03:31:cb:db:f9:b7:4f:6d:68:a2:ef:c5: d7:f7:2c:d5:3f:34:71:44:ff:f4:37:6e:64:34:90: c4:27:31:ef:35:66:e9:32:a2:63:1c:c8:77:e2:38: 6b:77:9a:de:6d:1b:57:1e:36:73:40:6b:1e:eb:ec: 32:cc:d9:e6:98:4b:8f:dc:11:8c:9f:f0:e5:92:c3: e9:9c:c5:25:ff:1a:5b:3d:69:fd:53:1a:bf:36:ba: 8c:34:71:42:25:a1:99:84:3e:33:88:27:a9:e9:0b: bf:8c:0e:b2:a3:32:1d:ff:f1:bd:fd:d0:78:48:9b: d1:0d:dd:68:8f:a4:b7:6a:6e:56:30:f2:d3:3c:18: 9c:4d:e7:29:f1:93:26:36:de:78:ab:3f:87:4f:08: 80:c0:b3:8b:20:c6:17:09:4b:1b:d5:63:c6:d0:e3: 7c:2b:42:d5:8b:05:ed:e5:a8:24:da:16:0e:4e:f8: f7:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:42:B0:33:98:2D:04:5D:4C:AC:E8:0C:8C:46:ED:40:81:DB:56:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4963540b-ec7a-49a7-9f72-11cb956c55de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.120.0.0/16 Signature Algorithm: sha256WithRSAEncryption 35:13:89:46:d6:5c:59:5a:a0:1b:e4:c4:b7:82:7a:93:1a:55: 57:3b:35:1b:90:f0:b4:95:07:82:27:4d:5a:05:4f:85:a8:c0: 7e:a4:e2:18:01:97:56:41:3c:e4:4e:43:3a:a3:93:07:7e:91: d4:e5:22:19:7a:f7:2d:b4:2d:86:a7:61:ea:eb:ef:86:13:87: cd:2c:cb:9f:b2:e0:69:76:a7:85:b6:32:0b:60:d0:af:25:d1: fa:89:c8:0f:7e:82:2c:cc:bf:f9:49:12:13:d1:ae:f0:f2:71: fe:bd:d8:e3:fc:ab:49:fd:1a:8a:aa:85:64:04:e4:c9:91:79: 39:29:f9:eb:3a:18:fd:0d:b2:59:fe:ab:6d:a3:a9:29:0a:66: ae:9c:1e:da:14:be:6d:ec:39:de:c0:2f:37:ae:2c:4d:88:59: dc:6a:d2:a8:32:8c:28:e3:b7:5d:87:c4:dc:44:b2:44:03:95: 9b:ed:8b:6b:31:48:70:1b:ff:33:fd:40:0b:56:1a:2f:1a:be: 1f:3a:b0:5e:be:c7:a6:de:d0:f1:bd:3d:73:6e:02:a2:ad:2f: fe:7a:8c:c5:a7:5a:a8:a8:08:30:9e:4e:d8:3f:98:72:d3:20: 69:75:ea:da:e9:4e:6f:fe:2d:5a:37:25:16:e3:d1:ce:07:6a: 1f:3a:e8:c5 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXaZhfzXNvUhbDWr3OmECCaBMOzkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAxMTMyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NGYyODZjYjljZGI2ZDFiOWRhYjI4MzIwMTEzZDgxNThk YjUxN2Y2ODAzZWYzMjYzYjI5ZWQxZjMyMDI3YjAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDi3Jd9bU9SqKUIzx0fuUPzsU/NYEaokg0q27duJyjEGz81 OrIrc1VeGTnalitA3rqCBX25M0RWSJRFYyJC7Sa5hBqI6TE1IrIFUhG2HgMxy9v5 t09taKLvxdf3LNU/NHFE//Q3bmQ0kMQnMe81ZukyomMcyHfiOGt3mt5tG1ceNnNA ax7r7DLM2eaYS4/cEYyf8OWSw+mcxSX/Gls9af1TGr82uow0cUIloZmEPjOIJ6np C7+MDrKjMh3/8b390HhIm9EN3WiPpLdqblYw8tM8GJxN5ynxkyY23nirP4dPCIDA s4sgxhcJSxvVY8bQ43wrQtWLBe3lqCTaFg5O+PeLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUgkKwM5gtBF1MrOgMjEbtQIHbVuMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5NjM1NDBiLWVjN2EtNDlhNy05ZjcyLTExY2I5NTZjNTVkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQeDANBgkqhkiG9w0BAQsFAAOCAQEANROJRtZcWVqgG+TEt4J6kxpVVzs1 G5DwtJUHgidNWgVPhajAfqTiGAGXVkE85E5DOqOTB36R1OUiGXr3LbQthqdh6uvv hhOHzSzLn7LgaXanhbYyC2DQryXR+onID36CLMy/+UkSE9Gu8PJx/r3Y4/yrSf0a iqqFZATkyZF5OSn56zoY/Q2yWf6rbaOpKQpmrpwe2hS+bew53sAvN64sTYhZ3GrS qDKMKOO3XYfE3ESyRAOVm+2LazFIcBv/M/1AC1YaLxq+HzqwXr7Hpt7Q8b09c24C oq0v/nqMxadaqKgIMJ5O2D+YctMgaXXq2ulOb/4tWjclFuPRzgdqHzroxQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:20 2026 by rpki-client