$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5625505e-6d61-4895-a194-4bc7fb88da1d.roa File: 5625505e-6d61-4895-a194-4bc7fb88da1d.roa (raw, json) Hash identifier: aZkZHCIr1X1xB/K9kB0Ab6vlEhkEFCS1Y59bCV4wllI= Subject key identifier: F3:6E:ED:5C:03:76:51:90:EC:CD:74:35:1B:3C:B7:D4:29:94:8F:D2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 241EF742EBB5E1E34F8F612D607EF3E093F0B93B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5625505e-6d61-4895-a194-4bc7fb88da1d.roa Signing time: Tue 17 Feb 2026 04:23:35 +0000 ROA not before: Tue 17 Feb 2026 04:23:35 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.42.188.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:1e:f7:42:eb:b5:e1:e3:4f:8f:61:2d:60:7e:f3:e0:93:f0:b9:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 04:23:35 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=a1f8ed9de83fd840ec7268c54d24dab9fd6c978130fbe3662d48d3bf3810c04e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:47:78:73:38:10:61:56:af:26:01:63:96:1b: e7:4d:b6:44:84:b8:e9:5f:52:f1:0b:ac:46:c1:a8: cd:2e:d2:6c:3d:fa:d9:c3:c2:a6:fe:07:e5:44:05: e0:1f:68:1e:5d:ce:2f:cc:bc:1c:fa:2c:24:79:85: 52:0d:dc:17:eb:a9:f7:c4:72:19:7e:61:88:e6:c2: 7b:22:89:b9:20:ef:03:7c:b3:2e:54:1e:2b:81:bc: c4:d2:22:20:f7:74:79:7c:19:4e:ba:56:27:03:3a: 3b:9d:f0:c5:3a:e2:19:22:48:d8:29:36:40:f9:36: 84:24:4b:b6:1c:c3:b1:fe:33:b2:de:49:39:2c:a5: 1b:9e:2a:37:7f:1a:bf:27:dd:40:af:ea:b4:38:41: a7:12:52:dc:d1:c0:f8:42:df:57:3b:ae:93:83:80: 87:54:a6:b3:67:bb:36:59:57:34:1a:40:fe:3d:56: 43:ce:30:2f:2f:cc:30:6f:75:1c:d3:d5:c7:37:9f: 8c:9b:4c:4c:45:d9:2e:67:f5:f6:f8:7b:8d:da:68: 49:1d:f0:19:08:b7:8d:01:37:3d:df:9c:29:1e:db: 6a:09:34:21:c4:04:ff:66:3f:49:4f:6c:7f:35:05: 0e:61:bf:1c:0c:ae:48:9c:a7:0c:f4:db:ab:00:59: 7f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:6E:ED:5C:03:76:51:90:EC:CD:74:35:1B:3C:B7:D4:29:94:8F:D2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5625505e-6d61-4895-a194-4bc7fb88da1d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.42.188.0/22 Signature Algorithm: sha256WithRSAEncryption 03:40:3d:5a:d5:00:37:7d:3f:9e:cf:67:6c:a9:01:ee:cd:8d: 6c:02:6b:1b:dd:1b:f1:50:40:0a:fd:7c:cd:69:a6:b8:00:a5: 7a:70:67:04:b5:94:d9:13:db:4e:08:fc:c4:bd:f5:b6:31:ca: 62:1e:6b:53:a7:34:62:e3:60:e9:b8:7b:d6:58:e9:07:f6:ab: c0:d1:09:90:09:63:f4:8e:79:b0:61:d7:1e:1f:83:48:8c:40: 26:8d:2f:ce:50:4e:b4:29:d3:53:6a:e8:e4:49:fd:d4:b8:4a: 1c:26:0d:08:8b:e7:4e:67:61:0c:3e:32:30:a7:e9:70:ef:3b: 4a:7d:85:63:b2:3f:64:5c:e3:31:7d:0a:25:a8:70:25:c3:dc: 87:fc:45:c0:be:5b:1c:15:a6:57:b8:9f:6f:cb:4b:7c:0c:34: 4e:e5:3a:cf:e7:c4:49:a0:be:de:fb:b4:85:5b:69:cf:c4:fc: 7c:fe:bc:c1:6f:93:0f:55:ed:84:1c:01:e8:dc:dd:e4:08:db: 76:86:bc:35:25:76:8a:c0:e9:53:af:56:95:cb:09:6f:05:18: bf:7c:6b:84:a7:1c:cf:3c:2d:37:ab:5f:8d:9d:8d:92:b5:d4: cf:32:b0:e0:73:16:38:38:66:67:14:71:51:8f:af:14:a6:35: fc:87:fa:65 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJB73Quu14eNPj2EtYH7z4JPwuTswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDQyMzM1WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMWY4ZWQ5ZGU4M2ZkODQwZWM3MjY4YzU0ZDI0ZGFiOWZk NmM5NzgxMzBmYmUzNjYyZDQ4ZDNiZjM4MTBjMDRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkR3hzOBBhVq8mAWOWG+dNtkSEuOlfUvELrEbBqM0u0mw9 +tnDwqb+B+VEBeAfaB5dzi/MvBz6LCR5hVIN3BfrqffEchl+YYjmwnsiibkg7wN8 sy5UHiuBvMTSIiD3dHl8GU66VicDOjud8MU64hkiSNgpNkD5NoQkS7Ycw7H+M7Le STkspRueKjd/Gr8n3UCv6rQ4QacSUtzRwPhC31c7rpODgIdUprNnuzZZVzQaQP49 VkPOMC8vzDBvdRzT1cc3n4ybTExF2S5n9fb4e43aaEkd8BkIt40BNz3fnCke22oJ NCHEBP9mP0lPbH81BQ5hvxwMrkicpwz026sAWX/jAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU827tXAN2UZDszXQ1Gzy31CmUj9IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU2MjU1MDVlLTZkNjEtNDg5NS1hMTk0LTRiYzdmYjg4ZGExZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJGKrwwDQYJKoZIhvcNAQELBQADggEBAANAPVrVADd9P57PZ2ypAe7NjWwC axvdG/FQQAr9fM1pprgApXpwZwS1lNkT204I/MS99bYxymIea1OnNGLjYOm4e9ZY 6Qf2q8DRCZAJY/SOebBh1x4fg0iMQCaNL85QTrQp01Nq6ORJ/dS4ShwmDQiL505n YQw+MjCn6XDvO0p9hWOyP2Rc4zF9CiWocCXD3If8RcC+WxwVple4n2/LS3wMNE7l Os/nxEmgvt77tIVbac/E/Hz+vMFvkw9V7YQcAejc3eQI23aGvDUldorA6VOvVpXL CW8FGL98a4SnHM88LTerX42djZK11M8ysOBzFjg4ZmcUcVGPrxSmNfyH+mU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:06:06 2026 by rpki-client