$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa File: 530a77ca-5428-42b4-9c03-adb88573ea2a.roa (raw, json) Hash identifier: 3Luk7fQff5U5ZbaF0/e21aE6F+9Eo7bn8KUDSmBT2J0= Subject key identifier: 22:9A:CF:5C:2F:88:CC:E6:97:C8:CF:F4:CE:EA:B6:C5:32:0A:03:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5BB264537CC73FEA6ABC4DABCFF5D965EF978F66 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa Signing time: Sun 15 Feb 2026 00:31:11 +0000 ROA not before: Sun 15 Feb 2026 00:31:11 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 66.7.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:b2:64:53:7c:c7:3f:ea:6a:bc:4d:ab:cf:f5:d9:65:ef:97:8f:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:31:11 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=7d77360393f84ea086b1968966ad4c5468ab7634280ce831f534eba7b1ecf79e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:ba:1a:3f:13:58:ee:e2:ac:a0:6e:c1:01:a5: ef:27:fa:4d:8f:c1:9a:3e:ab:f4:c5:6d:6c:2a:c2: 03:0b:17:87:9f:d9:cf:f9:06:be:a8:b5:2b:71:0b: e4:79:99:6a:fc:48:bd:11:65:ff:9b:e0:95:4f:d6: 70:db:8d:47:19:7b:14:de:ab:ea:a4:8f:6c:78:f3: 71:91:2b:fd:f9:e2:64:dc:c4:fe:fd:22:b7:c6:92: 26:fb:7f:05:e8:44:22:bc:38:53:bc:21:d0:73:e3: 06:99:55:f0:7d:15:b1:ac:5f:84:12:e8:40:80:a7: 7e:d1:48:6b:0a:14:57:87:9e:55:bc:6f:4c:9d:7b: ee:09:1b:a0:8e:8d:56:2c:86:18:c6:0e:be:63:ca: fa:bc:48:ff:0c:64:e7:78:37:a8:18:40:7c:7a:35: d5:62:6c:c4:96:50:bd:7f:5a:ca:f8:cb:44:65:0d: 33:8c:55:2e:f4:c4:2a:d7:d8:68:af:e5:29:26:eb: 2c:19:da:f1:e0:bb:67:a1:ef:aa:ee:53:dd:e0:5e: 4d:08:91:24:c5:fb:f0:8a:2e:2c:d9:7c:2e:ea:00: aa:75:81:01:e8:39:77:3f:68:12:9f:39:29:04:27: a8:05:d7:f4:4e:29:4b:0e:f3:a2:a8:dd:ce:74:27: 4b:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:9A:CF:5C:2F:88:CC:E6:97:C8:CF:F4:CE:EA:B6:C5:32:0A:03:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/530a77ca-5428-42b4-9c03-adb88573ea2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 66.7.0.0/18 Signature Algorithm: sha256WithRSAEncryption c0:b3:77:a3:36:a0:22:7d:5e:c6:4c:5a:f5:2d:0f:fd:d9:f2: bc:47:9f:7c:c9:f1:d1:25:37:f0:14:cb:38:12:2a:ab:4c:c4: c9:77:9d:ba:dd:0e:57:84:0a:79:f0:45:63:58:e5:ac:4d:3a: 9c:ca:2a:f8:c1:7f:fc:3e:26:45:12:14:0d:61:bd:86:c3:06: a3:b7:ea:20:50:eb:1a:bd:39:cb:75:b3:92:0e:a3:da:66:e1: 49:ae:57:78:65:ac:0f:de:b6:31:e3:13:7c:2f:c6:e4:df:f2: 8d:c3:c8:95:23:75:1c:e7:34:85:5f:ba:db:75:a5:fd:ac:a8: 59:d6:1d:be:63:03:c7:40:b2:76:e5:54:16:69:88:80:97:d5: 15:a5:ae:e9:0c:f9:e8:a6:f9:59:db:18:36:7d:07:5f:26:99: 1c:eb:72:3c:2a:c3:9f:e4:8c:cf:59:54:fc:5a:85:c2:f2:d4: 46:dc:65:b9:85:c0:df:0c:a8:e1:2f:49:1f:df:bc:17:e7:8e: a1:59:2b:b1:00:7f:6d:bd:de:a5:6f:64:4e:1c:37:6e:c9:3e: 55:e8:7c:e5:5b:8e:75:db:27:53:15:87:27:c4:c2:05:52:bd: 92:12:d4:55:f5:f7:a0:ff:d6:ba:20:5c:53:85:f6:3b:0d:80: c6:e8:50:27 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW7JkU3zHP+pqvE2rz/XZZe+Xj2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAzMTExWhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDc3MzYwMzkzZjg0ZWEwODZiMTk2ODk2NmFkNGM1NDY4 YWI3NjM0MjgwY2U4MzFmNTM0ZWJhN2IxZWNmNzllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDduho/E1ju4qygbsEBpe8n+k2PwZo+q/TFbWwqwgMLF4ef 2c/5Br6otStxC+R5mWr8SL0RZf+b4JVP1nDbjUcZexTeq+qkj2x483GRK/354mTc xP79IrfGkib7fwXoRCK8OFO8IdBz4waZVfB9FbGsX4QS6ECAp37RSGsKFFeHnlW8 b0yde+4JG6COjVYshhjGDr5jyvq8SP8MZOd4N6gYQHx6NdVibMSWUL1/Wsr4y0Rl DTOMVS70xCrX2Giv5Skm6ywZ2vHgu2eh76ruU93gXk0IkSTF+/CKLizZfC7qAKp1 gQHoOXc/aBKfOSkEJ6gF1/ROKUsO86Ko3c50J0thAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIprPXC+IzOaXyM/0zuq2xTIKA5gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzMGE3N2NhLTU0MjgtNDJiNC05YzAzLWFkYjg4NTczZWEyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZCBwAwDQYJKoZIhvcNAQELBQADggEBAMCzd6M2oCJ9XsZMWvUtD/3Z8rxH n3zJ8dElN/AUyzgSKqtMxMl3nbrdDleECnnwRWNY5axNOpzKKvjBf/w+JkUSFA1h vYbDBqO36iBQ6xq9Oct1s5IOo9pm4UmuV3hlrA/etjHjE3wvxuTf8o3DyJUjdRzn NIVfutt1pf2sqFnWHb5jA8dAsnblVBZpiICX1RWlrukM+eim+VnbGDZ9B18mmRzr cjwqw5/kjM9ZVPxahcLy1EbcZbmFwN8MqOEvSR/fvBfnjqFZK7EAf2293qVvZE4c N27JPlXofOVbjnXbJ1MVhyfEwgVSvZIS1FX196D/1rogXFOF9jsNgMboUCc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:26:20 2026 by rpki-client