$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c4e920b-ec71-48a2-8a49-a9e978539728.roa File: 4c4e920b-ec71-48a2-8a49-a9e978539728.roa (raw, json) Hash identifier: s8/5VFuqIriTHu//TMnHmdVA+EXxUfaABlsqwUiI11o= Subject key identifier: D7:8E:30:A8:7C:39:53:C3:33:B4:06:EB:B9:E6:13:DB:5C:CD:CF:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6195900D1C21DD8EA8F2EB6C0DE3CFC579BCED51 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c4e920b-ec71-48a2-8a49-a9e978539728.roa Signing time: Sun 08 Feb 2026 00:51:29 +0000 ROA not before: Sun 08 Feb 2026 00:51:29 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.136.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61:95:90:0d:1c:21:dd:8e:a8:f2:eb:6c:0d:e3:cf:c5:79:bc:ed:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:51:29 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=93cb64107f510bd4ae48b9b610fa64e835491c4a7f09f197cc1723eeda73a1b0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:ef:b9:33:a6:64:6e:6c:08:bc:b9:93:15:ad: c5:18:10:a6:d9:c1:06:4e:a2:9b:3f:ff:84:3f:23: f4:76:c8:62:fd:7b:bc:34:2f:e4:2c:dd:53:f4:6f: 9b:80:21:07:d3:d4:95:19:66:5d:e5:df:b9:1d:0b: 50:80:fd:ea:e8:6d:e1:83:b7:3f:e0:d2:06:58:73: f6:ce:3e:6c:43:a0:60:e3:b0:1e:7d:67:b2:f6:b0: f0:e3:73:e0:c8:de:7d:28:82:fd:ed:6c:c6:d3:35: f8:01:f4:ac:72:4a:79:60:82:46:81:e4:7e:d8:f3: 2a:9f:65:58:96:83:17:ae:ff:4a:fb:b6:ac:1b:b7: 38:66:37:d8:a0:24:60:95:e3:ab:0e:c9:9c:f8:8e: f5:7b:fa:12:8d:e7:a8:3a:d5:7d:d4:31:df:6e:0a: dc:d9:02:e9:49:e8:df:41:e1:be:70:24:f0:45:29: 41:ea:6d:b6:86:fc:91:94:ab:62:9e:0a:9f:d6:ff: 37:b7:03:55:c0:7c:55:88:d4:bc:f2:35:96:13:af: 8f:8b:59:ad:d5:ac:11:52:a1:ee:d9:4e:95:1d:dd: 16:ed:3d:ff:ae:a6:0e:2f:ee:d1:6c:b4:f7:a4:84: 04:f9:d1:d2:68:08:78:91:73:91:72:bd:91:94:c1: 2f:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:8E:30:A8:7C:39:53:C3:33:B4:06:EB:B9:E6:13:DB:5C:CD:CF:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4c4e920b-ec71-48a2-8a49-a9e978539728.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.136.0.0/16 Signature Algorithm: sha256WithRSAEncryption 05:cf:e1:8c:97:7c:f9:e8:b0:55:40:42:07:9b:0d:66:fe:d4: b3:20:c9:69:2b:35:b8:10:5e:85:2e:b1:95:1f:1f:6c:ec:89: c8:42:1e:ee:e6:24:c2:81:3e:cc:25:0c:d7:a2:78:49:ab:2b: 15:cb:b8:20:a0:11:e9:ae:e2:92:c3:c9:70:99:1c:55:91:39: 7e:14:ea:e0:4c:d9:e7:67:ff:aa:b1:7d:94:94:4a:6d:52:e1: 07:aa:f1:fd:6a:c8:fa:e7:c7:d9:c1:e7:7b:c8:ec:79:77:38: ae:8e:d8:09:13:af:61:42:37:3e:c6:6b:69:31:2e:87:84:64: ed:71:dd:68:e5:41:35:93:ef:ce:f3:41:eb:30:96:e4:5c:0c: 7d:4b:6a:b6:ea:2c:ae:27:74:41:b5:46:04:40:1b:79:74:09: 41:70:58:a9:a5:3c:1e:2a:7a:8d:f5:e7:8c:56:6c:6c:19:16: 8d:1a:a0:c6:48:f6:3d:df:3d:0e:fa:db:d2:a8:3a:7f:75:3f: 60:bd:2e:fb:47:d2:d9:d5:d9:84:ab:e3:b2:0d:b1:a7:13:19: dd:fc:e2:12:a0:ae:d2:e4:00:5e:de:c0:23:a2:ad:0f:29:d7: f0:96:4a:4f:63:a1:3a:72:7b:03:d1:94:c4:38:2a:fa:2a:1e: 8e:b6:00:5c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUYZWQDRwh3Y6o8utsDePPxXm87VEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDA1MTI5WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2NiNjQxMDdmNTEwYmQ0YWU0OGI5YjYxMGZhNjRlODM1 NDkxYzRhN2YwOWYxOTdjYzE3MjNlZWRhNzNhMWIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCS77kzpmRubAi8uZMVrcUYEKbZwQZOops//4Q/I/R2yGL9 e7w0L+Qs3VP0b5uAIQfT1JUZZl3l37kdC1CA/erobeGDtz/g0gZYc/bOPmxDoGDj sB59Z7L2sPDjc+DI3n0ogv3tbMbTNfgB9KxySnlggkaB5H7Y8yqfZViWgxeu/0r7 tqwbtzhmN9igJGCV46sOyZz4jvV7+hKN56g61X3UMd9uCtzZAulJ6N9B4b5wJPBF KUHqbbaG/JGUq2KeCp/W/ze3A1XAfFWI1LzyNZYTr4+LWa3VrBFSoe7ZTpUd3Rbt Pf+upg4v7tFstPekhAT50dJoCHiRc5FyvZGUwS8hAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU144wqHw5U8MztAbrueYT21zNz+QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRjNGU5MjBiLWVjNzEtNDhhMi04YTQ5LWE5ZTk3ODUzOTcyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2iDANBgkqhkiG9w0BAQsFAAOCAQEABc/hjJd8+eiwVUBCB5sNZv7UsyDJ aSs1uBBehS6xlR8fbOyJyEIe7uYkwoE+zCUM16J4SasrFcu4IKAR6a7iksPJcJkc VZE5fhTq4EzZ52f/qrF9lJRKbVLhB6rx/WrI+ufH2cHne8jseXc4ro7YCROvYUI3 PsZraTEuh4Rk7XHdaOVBNZPvzvNB6zCW5FwMfUtqtuosrid0QbVGBEAbeXQJQXBY qaU8Hip6jfXnjFZsbBkWjRqgxkj2Pd89Dvrb0qg6f3U/YL0u+0fS2dXZhKvjsg2x pxMZ3fziEqCu0uQAXt7AI6KtDynX8JZKT2OhOnJ7A9GUxDgq+ioejrYAXA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:09:01 2026 by rpki-client