$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/509bac1e-ead7-4b5e-ac74-2ef12dd6f590.roa File: 509bac1e-ead7-4b5e-ac74-2ef12dd6f590.roa (raw, json) Hash identifier: 9uEPm7FzsRe6lRI7nAbI9aqxGGb5BhnHfeiyUwUcOd8= Subject key identifier: 08:B1:25:25:99:59:CB:3D:E2:50:13:C7:5C:53:2E:CE:6D:A2:8F:9E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 08F018BAB98F8D27BC8F31901D81B225C82D0F86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/509bac1e-ead7-4b5e-ac74-2ef12dd6f590.roa Signing time: Sat 21 Feb 2026 01:32:10 +0000 ROA not before: Sat 21 Feb 2026 01:32:10 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.7.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:f0:18:ba:b9:8f:8d:27:bc:8f:31:90:1d:81:b2:25:c8:2d:0f:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:32:10 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=f5d391a32261c264e8649b6cb343ac38e4cae4bdc494fa6b37649e2ceaff32fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:96:ba:3b:6f:ea:26:9c:ff:82:9c:e1:60:db: f7:0b:d2:53:11:d1:32:94:2e:20:90:79:44:9a:7a: 7a:d8:ad:f8:a2:6d:cb:d2:60:d2:8c:3a:b9:9b:d1: 90:35:76:aa:93:85:2b:be:cb:9c:85:03:69:f3:75: fa:8d:ca:20:4a:17:10:88:52:62:da:21:a2:c3:db: 1b:3f:79:dd:51:71:9c:04:0e:ec:e8:43:af:67:2b: dc:55:1b:7b:50:f8:d7:89:45:5a:d0:fb:73:54:5e: fc:ab:de:48:1e:8b:3a:ca:c0:0b:1b:70:2e:4f:1f: 98:61:dc:fc:1d:5e:89:06:75:13:1e:55:45:8f:d9: 7e:51:f9:62:bd:bd:ff:ab:61:21:a5:e9:d3:d3:e7: 3d:9b:a0:ba:54:86:24:df:55:24:9f:20:21:09:df: fb:d4:c5:47:3a:b6:11:9e:ae:6e:25:4d:ae:da:6a: 7e:b3:66:49:2f:62:1b:0f:2e:ff:a0:b2:bb:93:73: 30:8e:1c:31:2b:f0:bf:4a:a1:77:4d:17:9a:9b:03: c8:68:9f:9a:10:6c:51:3b:00:e1:7a:34:01:8c:7c: c7:3b:ac:29:c3:2c:30:11:b2:ef:dc:95:67:ba:82: 47:4d:11:e6:a4:84:67:a3:b1:57:12:9a:94:ca:cf: 1d:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:B1:25:25:99:59:CB:3D:E2:50:13:C7:5C:53:2E:CE:6D:A2:8F:9E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/509bac1e-ead7-4b5e-ac74-2ef12dd6f590.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.7.0/24 Signature Algorithm: sha256WithRSAEncryption 34:c4:55:1c:53:5d:f7:4e:d7:57:89:ef:eb:ff:32:9c:42:0e: 91:be:90:76:80:6c:40:0d:1e:9b:1b:3d:b3:cd:ed:c0:be:1e: 7c:83:53:b9:4f:42:22:8b:fd:2f:35:1a:da:d0:a2:3d:0d:34: 04:ad:9f:f2:3a:ce:12:fa:e6:6e:a9:f8:2a:95:71:56:39:39: 80:ad:98:bd:c7:35:0f:0c:c5:e6:44:e6:05:16:fa:1b:2c:50: a8:6b:7c:c3:b4:9e:be:15:f6:45:27:08:d3:21:d2:52:ee:be: 27:df:bf:20:34:58:c6:2b:da:97:f4:21:cc:c7:6a:f8:03:82: 7d:8a:39:6d:c8:4d:2d:e8:e5:52:4c:45:ad:69:e6:3e:e2:b9: 7b:ea:34:b2:b3:31:14:44:3e:aa:eb:33:8a:65:ca:e3:fd:20: 39:5f:ce:14:05:79:ae:96:13:9d:d0:aa:2d:cc:9c:85:97:29: 2d:c4:f9:6a:e7:81:89:a3:71:c6:5f:ea:f0:ed:62:e6:6b:b4: d5:83:a2:7f:b3:b6:32:0a:25:48:be:54:56:cc:33:e1:07:53: 86:0a:22:08:65:44:68:f7:83:4e:d6:64:fe:2c:58:47:74:a7: be:9b:c3:25:ef:b0:cc:39:8d:b9:e6:61:7b:63:c8:8c:a2:20: f1:d1:87:09 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCPAYurmPjSe8jzGQHYGyJcgtD4YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEzMjEwWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BmNWQzOTFhMzIyNjFjMjY0ZTg2NDliNmNiMzQzYWMzOGU0 Y2FlNGJkYzQ5NGZhNmIzNzY0OWUyY2VhZmYzMmZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCglro7b+omnP+CnOFg2/cL0lMR0TKULiCQeUSaenrYrfii bcvSYNKMOrmb0ZA1dqqThSu+y5yFA2nzdfqNyiBKFxCIUmLaIaLD2xs/ed1RcZwE DuzoQ69nK9xVG3tQ+NeJRVrQ+3NUXvyr3kgeizrKwAsbcC5PH5hh3PwdXokGdRMe VUWP2X5R+WK9vf+rYSGl6dPT5z2boLpUhiTfVSSfICEJ3/vUxUc6thGerm4lTa7a an6zZkkvYhsPLv+gsruTczCOHDEr8L9KoXdNF5qbA8hon5oQbFE7AOF6NAGMfMc7 rCnDLDARsu/clWe6gkdNEeakhGejsVcSmpTKzx25AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCLElJZlZyz3iUBPHXFMuzm2ij54wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUwOWJhYzFlLWVhZDctNGI1ZS1hYzc0LTJlZjEyZGQ2ZjU5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmAcwDQYJKoZIhvcNAQELBQADggEBADTEVRxTXfdO11eJ7+v/MpxCDpG+ kHaAbEANHpsbPbPN7cC+HnyDU7lPQiKL/S81GtrQoj0NNAStn/I6zhL65m6p+CqV cVY5OYCtmL3HNQ8MxeZE5gUW+hssUKhrfMO0nr4V9kUnCNMh0lLuviffvyA0WMYr 2pf0IczHavgDgn2KOW3ITS3o5VJMRa1p5j7iuXvqNLKzMRREPqrrM4plyuP9IDlf zhQFea6WE53Qqi3MnIWXKS3E+WrngYmjccZf6vDtYuZrtNWDon+ztjIKJUi+VFbM M+EHU4YKIghlRGj3g07WZP4sWEd0p76bwyXvsMw5jbnmYXtjyIyiIPHRhwk= -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:42 2026 by rpki-client