$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/523ae117-bafc-4bd7-8972-91288f32d79d.roa File: 523ae117-bafc-4bd7-8972-91288f32d79d.roa (raw, json) Hash identifier: HabwS03za9h1cRpJYePC9lku+lN6KyxIsRwPSJvsTAs= Subject key identifier: A7:C1:04:74:E0:B6:21:E1:1E:59:35:96:00:A7:61:55:78:2C:3B:F6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 04E6AA971B4DDBFA952F55977B12F54BA362C634 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/523ae117-bafc-4bd7-8972-91288f32d79d.roa Signing time: Wed 25 Feb 2026 01:30:15 +0000 ROA not before: Wed 25 Feb 2026 01:30:15 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.9.160.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:e6:aa:97:1b:4d:db:fa:95:2f:55:97:7b:12:f5:4b:a3:62:c6:34 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:30:15 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=6d099e826f6e232ce1bfdf6e21109bb785703b3a6b610b557d093c1144fa047b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:c4:f8:f9:b7:54:09:30:df:0d:b6:f2:c1:ad: d7:1b:b0:d7:28:72:6d:47:35:80:e6:20:1c:b6:86: 5c:b3:66:bf:7f:91:c2:09:b3:b7:95:92:78:ac:15: 35:2a:e3:24:3d:9c:cf:1f:51:06:9d:6c:3b:85:cb: 20:7b:8d:7d:25:c1:4e:4b:a1:92:d1:f8:a4:ed:ce: d4:2d:0c:56:c7:81:84:17:54:6e:88:3c:54:85:5c: 26:15:a5:23:2a:3e:23:50:9d:8c:f0:56:9c:2d:b5: ce:b2:77:f9:68:5e:8b:80:8b:a7:d0:19:0e:93:0f: b3:06:2e:fc:53:28:5b:c4:b6:60:88:af:3a:d5:08: f7:45:57:46:e9:78:49:ff:cb:dd:c5:61:f3:0c:b6: ad:a1:26:45:fd:18:79:6d:6d:87:d4:a8:f4:41:58: f6:d9:e9:d4:ea:93:b8:9e:76:cc:63:a7:67:39:c4: 50:ce:e9:06:e6:55:f8:dd:0e:9e:de:b6:fc:e3:6e: 99:e3:52:b5:93:26:4f:2c:81:af:d0:83:23:d0:da: f9:f2:34:d3:96:5c:d9:7e:90:ef:f6:5a:97:fd:1d: 0c:58:d4:4c:96:3a:46:50:49:08:ef:7f:b9:44:c6: 27:77:49:e0:ed:f0:c0:c5:22:b9:ee:90:76:a6:69: 02:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:C1:04:74:E0:B6:21:E1:1E:59:35:96:00:A7:61:55:78:2C:3B:F6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/523ae117-bafc-4bd7-8972-91288f32d79d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.9.160.0/22 Signature Algorithm: sha256WithRSAEncryption b3:21:0a:1c:21:1b:c5:bd:30:1c:85:5c:60:5c:fe:91:8e:af: d3:9a:21:08:af:8a:53:4e:70:77:02:41:3b:d6:c3:ba:59:48: c7:05:6b:78:ba:1b:a0:93:55:ad:f9:74:cb:9d:8a:66:5f:6b: f0:80:b0:6e:d4:97:13:dd:2c:c6:e3:9b:4f:55:90:5f:4e:20: 90:e1:4c:f8:75:73:52:a7:fe:90:ce:50:2d:cf:b4:9d:b0:10: 87:af:24:a1:c6:b9:1e:84:36:8a:08:5d:04:b0:85:86:40:53: 20:ee:0a:60:86:3f:47:7b:28:54:e8:31:8a:3d:91:74:1e:53: d0:e8:62:6f:e7:ee:44:47:99:89:9e:14:73:a9:24:e0:d2:21: 47:65:d9:48:63:f1:8a:9e:4e:cb:96:bc:77:5b:f0:9b:f0:90: b6:33:42:4a:95:0f:2d:87:e9:f3:7e:db:d6:68:31:aa:75:a6: cf:09:38:8b:14:8d:7c:33:05:bc:aa:d0:4d:a7:20:a1:c4:24: 81:98:b9:33:bd:05:a1:1a:f7:79:44:58:46:84:ed:e7:1a:20: af:3a:d8:ef:43:1d:47:16:bc:ec:6e:ea:ba:55:2e:05:59:41: 73:53:af:4c:c1:5c:0f:0b:29:d9:7e:41:9a:5c:76:1a:81:81: 41:6c:8b:52 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBOaqlxtN2/qVL1WXexL1S6NixjQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEzMDE1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDA5OWU4MjZmNmUyMzJjZTFiZmRmNmUyMTEwOWJiNzg1 NzAzYjNhNmI2MTBiNTU3ZDA5M2MxMTQ0ZmEwNDdiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDJxPj5t1QJMN8NtvLBrdcbsNcocm1HNYDmIBy2hlyzZr9/ kcIJs7eVknisFTUq4yQ9nM8fUQadbDuFyyB7jX0lwU5LoZLR+KTtztQtDFbHgYQX VG6IPFSFXCYVpSMqPiNQnYzwVpwttc6yd/loXouAi6fQGQ6TD7MGLvxTKFvEtmCI rzrVCPdFV0bpeEn/y93FYfMMtq2hJkX9GHltbYfUqPRBWPbZ6dTqk7iedsxjp2c5 xFDO6QbmVfjdDp7etvzjbpnjUrWTJk8sga/QgyPQ2vnyNNOWXNl+kO/2Wpf9HQxY 1EyWOkZQSQjvf7lExid3SeDt8MDFIrnukHamaQLPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUp8EEdOC2IeEeWTWWAKdhVXgsO/YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyM2FlMTE3LWJhZmMtNGJkNy04OTcyLTkxMjg4ZjMyZDc5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJBCaAwDQYJKoZIhvcNAQELBQADggEBALMhChwhG8W9MByFXGBc/pGOr9Oa IQivilNOcHcCQTvWw7pZSMcFa3i6G6CTVa35dMudimZfa/CAsG7UlxPdLMbjm09V kF9OIJDhTPh1c1Kn/pDOUC3PtJ2wEIevJKHGuR6ENooIXQSwhYZAUyDuCmCGP0d7 KFToMYo9kXQeU9DoYm/n7kRHmYmeFHOpJODSIUdl2Uhj8YqeTsuWvHdb8JvwkLYz QkqVDy2H6fN+29ZoMap1ps8JOIsUjXwzBbyq0E2nIKHEJIGYuTO9BaEa93lEWEaE 7ecaIK862O9DHUcWvOxu6rpVLgVZQXNTr0zBXA8LKdl+QZpcdhqBgUFsi1I= -----END CERTIFICATE-----Generated at Mon Mar 2 04:55:44 2026 by rpki-client