$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53d78b8d-9d24-4b82-95d5-b283fa71e677.roa File: 53d78b8d-9d24-4b82-95d5-b283fa71e677.roa (raw, json) Hash identifier: io18/siFtGpEdnb3pgEszbNXerUdxB+nxrT1jPudbGg= Subject key identifier: 6C:7F:4E:06:D8:BA:60:BF:F0:AF:6B:6E:B7:3F:DC:2F:07:E4:B5:16 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0ABC38823CEA187943AA38D787619070421B2C2C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53d78b8d-9d24-4b82-95d5-b283fa71e677.roa Signing time: Tue 17 Feb 2026 00:21:20 +0000 ROA not before: Tue 17 Feb 2026 00:21:20 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.48.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:bc:38:82:3c:ea:18:79:43:aa:38:d7:87:61:90:70:42:1b:2c:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 00:21:20 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=324cef18dc58296228a9d11d00696bbd67d4be56430e2c658c041889beb92f8c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ab:6c:f6:0e:96:bf:72:2c:aa:5c:44:be:2e: e1:32:e2:37:6e:77:dc:c0:aa:d8:d3:ec:19:f9:9e: 26:78:b6:32:fe:d0:22:df:b5:0f:57:38:6d:38:d9: 12:c4:69:46:81:e5:f5:37:43:65:47:e7:4e:2a:ab: b2:c0:fc:07:6f:95:da:0a:77:8e:ae:74:fa:4f:41: 64:91:66:53:7f:fb:57:5b:53:8b:1d:50:dd:36:8e: ab:dc:27:ed:9d:41:2f:f6:ec:2f:f6:a4:57:2c:97: 60:e5:21:2d:36:b2:6a:f7:11:95:89:0e:b5:60:da: 18:08:96:dc:36:aa:a7:f4:51:b4:ef:f6:35:59:b0: 85:53:b6:1c:68:80:a5:c3:ee:62:8c:7e:20:98:02: 8c:54:d3:b6:8e:4b:d1:66:81:fa:48:45:a7:bc:5f: a9:a5:23:dd:14:e7:5d:18:fe:dd:67:16:f9:6f:d8: 42:39:c6:44:25:4a:07:c4:1f:58:60:2f:f3:0f:e4: 88:d1:c3:bd:8e:83:25:7b:75:b1:1b:c3:1d:db:8a: ef:36:d2:8f:32:89:7f:33:9d:be:58:e0:05:07:85: e7:19:3e:85:6f:4e:ef:0c:50:6b:91:8b:d9:94:21: bb:4c:4c:cf:09:85:e0:95:d7:3e:02:78:0e:4d:ec: 39:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:7F:4E:06:D8:BA:60:BF:F0:AF:6B:6E:B7:3F:DC:2F:07:E4:B5:16 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/53d78b8d-9d24-4b82-95d5-b283fa71e677.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.48.0.0/18 Signature Algorithm: sha256WithRSAEncryption b0:ab:45:29:9f:fb:20:a4:22:bd:62:67:45:ff:a2:e0:e7:33: 46:37:df:84:51:5d:e2:0b:db:cd:73:a7:5f:e6:f8:bc:6b:bd: 50:d8:16:ee:ad:ef:d3:c1:ef:76:89:35:2f:1d:01:62:c4:2d: b3:15:ae:c0:14:56:56:73:77:ee:16:a1:00:19:c5:1f:22:77: 8f:4c:2d:1e:9a:71:27:93:63:fd:d6:d9:94:eb:e1:30:45:8b: db:12:a0:88:57:41:de:d1:38:a7:54:e4:3c:35:b6:f9:27:9b: 78:62:16:bc:e4:1d:3d:cc:bd:b7:ac:11:3d:bc:b3:fc:5b:9a: 81:33:78:90:8d:47:2e:eb:72:71:f8:3b:e9:e3:f0:b5:6c:60: 08:eb:ff:ca:aa:88:39:19:df:9d:46:07:a0:3f:4e:9f:48:de: b8:b1:1e:b3:96:b5:52:53:51:21:23:db:41:71:df:78:f0:ef: 07:7f:06:40:61:c5:b7:a6:52:8c:c5:77:ed:9a:1f:da:45:81: 10:4c:57:07:d8:3c:30:91:ca:ba:16:96:10:59:7f:5e:dd:95: 44:5b:fa:5e:45:30:32:aa:aa:94:64:97:b1:d8:f7:9b:ed:d7: 23:e9:92:8c:5d:d5:81:3d:ed:d9:31:57:d5:3d:61:fa:7d:28: cf:65:8d:f9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCrw4gjzqGHlDqjjXh2GQcEIbLCwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDAyMTIwWhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMjRjZWYxOGRjNTgyOTYyMjhhOWQxMWQwMDY5NmJiZDY3 ZDRiZTU2NDMwZTJjNjU4YzA0MTg4OWJlYjkyZjhjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOq2z2Dpa/ciyqXES+LuEy4jdud9zAqtjT7Bn5niZ4tjL+ 0CLftQ9XOG042RLEaUaB5fU3Q2VH504qq7LA/AdvldoKd46udPpPQWSRZlN/+1db U4sdUN02jqvcJ+2dQS/27C/2pFcsl2DlIS02smr3EZWJDrVg2hgIltw2qqf0UbTv 9jVZsIVTthxogKXD7mKMfiCYAoxU07aOS9FmgfpIRae8X6mlI90U510Y/t1nFvlv 2EI5xkQlSgfEH1hgL/MP5IjRw72OgyV7dbEbwx3biu820o8yiX8znb5Y4AUHhecZ PoVvTu8MUGuRi9mUIbtMTM8JheCV1z4CeA5N7DmhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbH9OBti6YL/wr2tutz/cLwfktRYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUzZDc4YjhkLTlkMjQtNGI4Mi05NWQ1LWIyODNmYTcxZTY3Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZBMAAwDQYJKoZIhvcNAQELBQADggEBALCrRSmf+yCkIr1iZ0X/ouDnM0Y3 34RRXeIL281zp1/m+LxrvVDYFu6t79PB73aJNS8dAWLELbMVrsAUVlZzd+4WoQAZ xR8id49MLR6acSeTY/3W2ZTr4TBFi9sSoIhXQd7ROKdU5Dw1tvknm3hiFrzkHT3M vbesET28s/xbmoEzeJCNRy7rcnH4O+nj8LVsYAjr/8qqiDkZ351GB6A/Tp9I3rix HrOWtVJTUSEj20Fx33jw7wd/BkBhxbemUozFd+2aH9pFgRBMVwfYPDCRyroWlhBZ f17dlURb+l5FMDKqqpRkl7HY95vt1yPpkoxd1YE97dkxV9U9Yfp9KM9ljfk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:13 2026 by rpki-client