$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa File: 49d51f42-2ffc-4217-9e32-f46cec71a85a.roa (raw, json) Hash identifier: RJCczKJ7SEG3QdRGudnDITbNDN9KkKitHZ2AtxkIDYg= Subject key identifier: 25:25:28:6C:43:17:32:C1:A3:22:62:9F:61:35:2B:BD:2B:6B:B5:8E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D12D600E3954D456E4DC68ED59DBF2BD6B8D54A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa Signing time: Sun 01 Mar 2026 00:31:22 +0000 ROA not before: Sun 01 Mar 2026 00:31:22 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.35.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:12:d6:00:e3:95:4d:45:6e:4d:c6:8e:d5:9d:bf:2b:d6:b8:d5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:31:22 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=3627f7b5e0c94772f2432cecc05bb5372b54ed29951970048092fb87dcfaa8a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:f7:af:9c:6b:1c:51:60:4f:29:92:29:cb:2c: 4b:ca:dd:61:0c:46:bd:89:66:e5:69:fa:78:37:dc: 8e:e8:a2:ad:ae:92:30:b2:4b:90:79:41:a0:ee:99: bc:b2:d3:74:07:2d:40:31:49:ac:78:43:5e:16:b9: a0:f4:82:81:7a:dc:ad:7f:06:45:5e:7e:1a:c3:46: 79:cd:15:f6:54:b2:cb:2b:a3:0f:0f:be:23:a0:a0: c9:2c:da:fd:30:ae:7c:b4:49:e7:aa:53:63:b2:70: 1f:78:2a:06:2c:5a:1e:62:db:24:05:a3:57:6c:8a: df:95:ab:2a:6b:63:f9:bb:a6:4f:7a:2b:e8:03:7b: d4:41:2a:65:97:96:95:70:d7:87:a0:78:2d:99:42: 76:5b:6c:8b:85:dc:ac:cb:e1:f7:fb:b0:9e:72:5b: 35:dd:45:62:dc:07:97:9d:76:57:03:bc:60:95:63: 0b:a6:e9:31:58:ed:9c:05:62:b5:50:55:15:6c:1b: 05:e4:f9:9f:33:d5:3a:9f:99:2a:3e:25:67:3e:17: 3a:25:b9:9e:93:a4:27:89:84:9c:b9:b5:79:94:5b: 32:c5:0b:6b:6a:f3:7d:51:0e:dc:d4:f2:39:ac:90: fb:09:64:7a:41:4a:24:82:41:31:f8:fe:28:7f:e6: 8c:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:25:28:6C:43:17:32:C1:A3:22:62:9F:61:35:2B:BD:2B:6B:B5:8E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49d51f42-2ffc-4217-9e32-f46cec71a85a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.35.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5a:7f:b1:15:a5:d7:87:91:3a:b8:09:6a:2b:f2:5f:4c:12:a7: 8a:4e:c5:7f:08:93:34:d1:99:a8:c4:64:b6:07:7e:b3:a1:71: 75:83:f3:6a:42:96:cd:64:f6:27:0d:d7:e8:d8:bc:ee:a4:e8: e5:56:c8:54:80:b8:39:ff:1a:06:46:5a:7c:43:f0:93:f9:5e: 44:92:c2:75:c5:24:a6:44:5d:60:8d:34:69:cf:ce:96:30:c2: 2f:26:cd:8f:a4:81:67:9c:ff:11:6b:e7:5a:10:cf:5a:62:2a: a9:62:f8:9a:77:ed:8b:b3:d5:75:76:51:7b:62:e8:c3:9b:b3: 95:c8:4c:db:c5:ce:31:45:57:9f:ce:14:10:2c:4f:d2:a5:16: 0b:e6:99:9f:aa:4e:ca:a6:71:cd:bf:9b:4d:a6:7e:20:79:dd: 13:d8:03:7a:55:68:fb:66:6f:e7:61:a6:68:fa:93:31:d4:bd: 1e:af:7b:13:b5:63:3c:cc:c8:8f:ab:68:d9:eb:8a:20:a7:03: 31:60:93:f1:59:61:ba:ea:66:4d:8a:93:2a:23:cf:02:47:03: d0:23:70:58:34:a4:f2:b4:7d:88:fc:6d:2c:72:40:45:cb:e5: b5:58:36:1d:ae:81:0b:e3:d6:64:bb:0f:d0:c2:7d:05:e5:48: 85:f8:db:79 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUXRLWAOOVTUVuTcaO1Z2/K9a41UowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMTIyWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzNjI3ZjdiNWUwYzk0NzcyZjI0MzJjZWNjMDViYjUzNzJi NTRlZDI5OTUxOTcwMDQ4MDkyZmI4N2RjZmFhOGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDk96+caxxRYE8pkinLLEvK3WEMRr2JZuVp+ng33I7ooq2u kjCyS5B5QaDumbyy03QHLUAxSax4Q14WuaD0goF63K1/BkVefhrDRnnNFfZUsssr ow8PviOgoMks2v0wrny0SeeqU2OycB94KgYsWh5i2yQFo1dsit+VqyprY/m7pk96 K+gDe9RBKmWXlpVw14egeC2ZQnZbbIuF3KzL4ff7sJ5yWzXdRWLcB5eddlcDvGCV Ywum6TFY7ZwFYrVQVRVsGwXk+Z8z1TqfmSo+JWc+FzoluZ6TpCeJhJy5tXmUWzLF C2tq831RDtzU8jmskPsJZHpBSiSCQTH4/ih/5ox5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUJSUobEMXMsGjImKfYTUrvStrtY4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5ZDUxZjQyLTJmZmMtNDIxNy05ZTMyLWY0NmNlYzcxYTg1YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjIzANBgkqhkiG9w0BAQsFAAOCAQEAWn+xFaXXh5E6uAlqK/JfTBKnik7F fwiTNNGZqMRktgd+s6FxdYPzakKWzWT2Jw3X6Ni87qTo5VbIVIC4Of8aBkZafEPw k/leRJLCdcUkpkRdYI00ac/OljDCLybNj6SBZ5z/EWvnWhDPWmIqqWL4mnfti7PV dXZRe2Low5uzlchM28XOMUVXn84UECxP0qUWC+aZn6pOyqZxzb+bTaZ+IHndE9gD elVo+2Zv52GmaPqTMdS9Hq97E7VjPMzIj6to2euKIKcDMWCT8VlhuupmTYqTKiPP AkcD0CNwWDSk8rR9iPxtLHJARcvltVg2Ha6BC+PWZLsP0MJ9BeVIhfjbeQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:17 2026 by rpki-client