$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/529f0e1a-7620-45bf-8b48-555386b97be2.roa File: 529f0e1a-7620-45bf-8b48-555386b97be2.roa (raw, json) Hash identifier: lMZUtNp0F/WdLhH3S8MxvQCpXS4LYRR5B9HFn4pbRKM= Subject key identifier: 9E:70:84:02:0D:44:C5:E6:54:2D:CA:82:85:F7:05:F8:D2:DE:00:9D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3D037864A059086AB8369E8684595676CE3B6321 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/529f0e1a-7620-45bf-8b48-555386b97be2.roa Signing time: Thu 26 Feb 2026 00:11:49 +0000 ROA not before: Thu 26 Feb 2026 00:11:49 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.68.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3d:03:78:64:a0:59:08:6a:b8:36:9e:86:84:59:56:76:ce:3b:63:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:11:49 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=30661d4d13681926251b0069be80bfc46ee90af191174c6628b5a8f3577f20d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:30:e9:aa:29:09:70:b3:96:c5:03:c9:75:ec: 94:22:ec:60:5a:fe:59:55:6e:99:53:62:e3:05:03: 1c:2d:53:1b:f7:91:9a:4b:21:80:d6:ba:44:47:d7: 7c:fd:6b:bb:93:6d:c1:75:70:f0:e9:84:21:0c:34: 2c:e7:c9:c9:56:fd:be:8f:45:cb:b3:66:73:18:75: 71:51:62:52:71:dc:ee:01:97:03:3e:3e:18:a8:7e: 9c:76:2f:bf:99:89:64:c4:e7:49:0a:40:f2:62:41: 9e:30:68:54:2d:1b:c3:58:16:96:46:73:0b:d5:a9: d8:37:c9:cf:72:11:2c:cb:05:e2:36:73:b9:56:59: bf:bb:4b:0c:fc:2f:2a:b5:6d:a6:1f:6a:e9:31:0f: 64:ae:18:2c:56:4a:b2:06:3a:7e:1c:90:07:5f:06: 2c:28:03:dc:70:f1:8b:89:ff:b1:48:45:2b:05:1e: dc:16:73:c8:5c:88:37:5a:37:0c:34:f1:e5:1c:41: 49:2a:6c:c0:15:4d:9c:e4:a0:1e:40:36:60:d6:2f: ea:02:3f:10:66:46:0e:fe:18:b6:c9:05:b7:02:c3: d6:63:ac:cf:cd:ce:91:8d:b6:07:ec:53:b5:18:a3: 18:f4:2c:7f:8b:55:84:60:53:d8:f4:aa:d3:6c:26: e2:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:70:84:02:0D:44:C5:E6:54:2D:CA:82:85:F7:05:F8:D2:DE:00:9D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/529f0e1a-7620-45bf-8b48-555386b97be2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.68.0.0/16 Signature Algorithm: sha256WithRSAEncryption c0:4e:e7:cd:ed:03:93:dd:61:82:c8:70:59:87:83:db:42:35: b5:6c:3f:8c:2b:75:12:e6:6a:d5:d2:10:8c:dc:9a:59:c3:33: 83:5c:ab:f0:22:12:ef:46:12:98:4c:cb:ed:70:73:f8:3a:94: 00:c8:2f:c2:aa:60:ee:b0:ea:87:37:ad:6f:ef:86:28:1d:92: 7a:88:4f:16:2f:16:27:a7:f0:78:0d:a3:38:88:64:96:ca:10: e4:6f:54:f3:93:fa:58:e7:85:30:9c:b2:f3:cb:fa:48:b3:f4: bf:fb:57:51:d6:fe:77:62:be:2c:df:0c:6f:8d:32:2e:f5:66: 01:af:f5:b4:33:39:b5:1d:5a:b3:43:e7:c1:2f:17:49:5b:15: af:0e:0c:53:5d:5c:a4:9a:42:66:80:f1:72:e4:88:fb:21:fc: 96:33:ee:87:f1:38:4c:d6:3a:63:ee:43:40:5f:ea:6e:bd:c2: bb:46:e7:6c:84:34:dd:69:75:f1:2f:4b:60:04:61:5a:6e:e6: d2:57:d4:d4:16:00:63:68:58:0e:c5:61:7d:ff:2c:0b:2c:96: f7:1f:3c:86:09:b8:9e:f6:87:fb:10:de:c9:57:1e:72:df:b3: 6a:2a:ee:10:fa:e6:ea:26:5c:58:89:28:06:6d:79:5f:af:00: 6b:73:50:fe -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPQN4ZKBZCGq4Np6GhFlWds47YyEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAxMTQ5WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDY2MWQ0ZDEzNjgxOTI2MjUxYjAwNjliZTgwYmZjNDZl ZTkwYWYxOTExNzRjNjYyOGI1YThmMzU3N2YyMGQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0MOmqKQlws5bFA8l17JQi7GBa/llVbplTYuMFAxwtUxv3 kZpLIYDWukRH13z9a7uTbcF1cPDphCEMNCznyclW/b6PRcuzZnMYdXFRYlJx3O4B lwM+Phiofpx2L7+ZiWTE50kKQPJiQZ4waFQtG8NYFpZGcwvVqdg3yc9yESzLBeI2 c7lWWb+7Swz8Lyq1baYfaukxD2SuGCxWSrIGOn4ckAdfBiwoA9xw8YuJ/7FIRSsF HtwWc8hciDdaNww08eUcQUkqbMAVTZzkoB5ANmDWL+oCPxBmRg7+GLbJBbcCw9Zj rM/NzpGNtgfsU7UYoxj0LH+LVYRgU9j0qtNsJuJDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnnCEAg1ExeZULcqChfcF+NLeAJ0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyOWYwZTFhLTc2MjAtNDViZi04YjQ4LTU1NTM4NmI5N2JlMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4RDANBgkqhkiG9w0BAQsFAAOCAQEAwE7nze0Dk91hgshwWYeD20I1tWw/ jCt1EuZq1dIQjNyaWcMzg1yr8CIS70YSmEzL7XBz+DqUAMgvwqpg7rDqhzetb++G KB2SeohPFi8WJ6fweA2jOIhklsoQ5G9U85P6WOeFMJyy88v6SLP0v/tXUdb+d2K+ LN8Mb40yLvVmAa/1tDM5tR1as0PnwS8XSVsVrw4MU11cpJpCZoDxcuSI+yH8ljPu h/E4TNY6Y+5DQF/qbr3Cu0bnbIQ03Wl18S9LYARhWm7m0lfU1BYAY2hYDsVhff8s CyyW9x88hgm4nvaH+xDeyVcect+zairuEPrm6iZcWIkoBm15X68Aa3NQ/g== -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:13 2026 by rpki-client