$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/593de0b1-b07b-4d5a-8e80-eec3224dc436.roa File: 593de0b1-b07b-4d5a-8e80-eec3224dc436.roa (raw, json) Hash identifier: 1W7zWUeXBRzBTVrfgpR9RWfk2Vb1mZTvmoqBhVvJZsA= Subject key identifier: A9:88:4B:E0:33:E2:0E:C5:23:46:14:13:69:52:1C:88:D5:5D:DB:FB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A0A9D46F431EC40947CC7210F7E03E2A66BEA9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/593de0b1-b07b-4d5a-8e80-eec3224dc436.roa Signing time: Tue 17 Feb 2026 00:21:54 +0000 ROA not before: Tue 17 Feb 2026 00:21:54 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 114.56.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:0a:9d:46:f4:31:ec:40:94:7c:c7:21:0f:7e:03:e2:a6:6b:ea:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 00:21:54 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=93125a2166638fbb7d43092ab96f7a5ee82e0ebf7446709c7986391134ab423e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:7c:45:28:b2:9c:e0:87:12:9c:2c:70:d3:9c: 87:67:89:61:50:27:1e:50:aa:6b:f5:2d:c6:14:fd: 55:6f:27:89:36:76:b4:83:78:e1:a3:d0:f8:6a:7c: 5d:4c:32:28:d4:f7:2b:a8:ba:32:4a:1c:b3:9f:35: 52:58:b4:cd:38:86:59:45:3f:1c:d6:8a:01:82:14: 8a:72:60:29:dc:2c:a2:0b:b2:d4:54:08:d3:fc:68: 33:e7:a4:4d:de:73:19:74:6d:e1:32:85:1e:76:7a: 67:f9:f9:4c:9c:2a:65:dc:63:9a:30:b8:d9:4d:c2: cd:90:2d:00:a5:36:5f:77:97:db:75:a9:e0:95:93: ee:ed:19:70:68:4f:c4:dd:79:c8:74:09:4b:e3:36: 9d:be:58:89:c5:10:37:22:e5:78:fb:63:eb:ec:12: 14:de:08:b4:c6:e4:a0:3d:2c:a7:58:4b:aa:9f:4e: 0f:bf:a1:5c:ec:55:33:3b:9a:95:b3:94:db:f2:d6: a7:61:24:4c:d3:a0:be:7a:83:ab:0a:41:2a:a7:cb: 56:ad:30:6b:33:b2:67:ee:62:5d:22:4a:71:23:e5: ae:a6:da:88:61:4b:47:9b:da:3e:e3:7c:1b:3a:1a: e8:31:40:1c:4a:e7:a4:a7:c3:ec:7e:2b:ad:1f:42: f8:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A9:88:4B:E0:33:E2:0E:C5:23:46:14:13:69:52:1C:88:D5:5D:DB:FB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/593de0b1-b07b-4d5a-8e80-eec3224dc436.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 114.56.128.0/24 Signature Algorithm: sha256WithRSAEncryption 24:34:46:31:9b:40:70:40:61:71:ef:4e:5e:90:79:75:7f:70: 54:29:43:6e:99:fa:36:60:0e:85:99:2e:a1:b6:d3:84:33:49: c9:31:12:c5:67:17:f4:53:eb:a1:ee:c2:c1:53:ef:7d:25:be: 13:d0:e2:37:a9:36:38:e5:de:af:66:a6:a3:90:67:df:cb:4d: 3a:e3:d7:40:a6:5c:82:ad:8b:e0:13:d1:10:5e:77:0a:bd:4b: f4:ec:b8:ee:f7:4e:ae:8b:62:36:c6:8f:c9:f1:c4:5d:b8:9c: f7:bb:ea:67:02:01:e1:7d:00:4d:39:07:5b:0d:f8:04:5c:4d: 58:ab:57:25:75:17:aa:f2:ea:51:87:6a:d3:c3:69:f4:3b:c4: 15:26:b4:91:d8:b9:fa:7f:24:3d:8a:c1:49:fe:a7:e1:ea:6b: fe:95:1a:1c:e7:20:50:c6:27:40:7e:d3:41:8b:a5:21:2b:81: b2:47:90:b9:93:de:b0:2f:be:7c:cf:aa:96:ea:b7:f9:e9:35: c9:ca:d0:57:8a:24:8b:23:e9:b3:8a:4f:0d:c7:3a:31:f3:65: 86:22:04:ae:6f:2b:03:f7:fc:33:a9:27:44:e8:a2:4a:af:30: b6:e7:43:81:c8:1a:5c:54:18:8a:4b:97:52:5e:1a:4b:65:b5: 34:b2:99:51 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUegqdRvQx7ECUfMchD34D4qZr6p4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDAyMTU0WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MzEyNWEyMTY2NjM4ZmJiN2Q0MzA5MmFiOTZmN2E1ZWU4 MmUwZWJmNzQ0NjcwOWM3OTg2MzkxMTM0YWI0MjNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCYfEUospzghxKcLHDTnIdniWFQJx5Qqmv1LcYU/VVvJ4k2 drSDeOGj0PhqfF1MMijU9yuoujJKHLOfNVJYtM04hllFPxzWigGCFIpyYCncLKIL stRUCNP8aDPnpE3ecxl0beEyhR52emf5+UycKmXcY5owuNlNws2QLQClNl93l9t1 qeCVk+7tGXBoT8Tdech0CUvjNp2+WInFEDci5Xj7Y+vsEhTeCLTG5KA9LKdYS6qf Tg+/oVzsVTM7mpWzlNvy1qdhJEzToL56g6sKQSqny1atMGszsmfuYl0iSnEj5a6m 2ohhS0eb2j7jfBs6GugxQBxK56Snw+x+K60fQvjFAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqYhL4DPiDsUjRhQTaVIciNVd2/swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5M2RlMGIxLWIwN2ItNGQ1YS04ZTgwLWVlYzMyMjRkYzQzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAByOIAwDQYJKoZIhvcNAQELBQADggEBACQ0RjGbQHBAYXHvTl6QeXV/cFQp Q26Z+jZgDoWZLqG204QzSckxEsVnF/RT66HuwsFT730lvhPQ4jepNjjl3q9mpqOQ Z9/LTTrj10CmXIKti+AT0RBedwq9S/TsuO73Tq6LYjbGj8nxxF24nPe76mcCAeF9 AE05B1sN+ARcTVirVyV1F6ry6lGHatPDafQ7xBUmtJHYufp/JD2KwUn+p+Hqa/6V GhznIFDGJ0B+00GLpSErgbJHkLmT3rAvvnzPqpbqt/npNcnK0FeKJIsj6bOKTw3H OjHzZYYiBK5vKwP3/DOpJ0TookqvMLbnQ4HIGlxUGIpLl1JeGktltTSymVE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:04:58 2026 by rpki-client