$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa File: 59549cf5-0d12-4294-bde9-17545fc36227.roa (raw, json) Hash identifier: YQrbMGh7PhlEFReoojZLaonuEc7bwG5CaYCB0su3oX8= Subject key identifier: 59:B9:28:F7:E5:D1:CF:8C:CE:8F:41:99:31:33:AF:E0:4D:50:05:23 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4001C20F3B776758CF2429E1147D4F59E85FC101 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa Signing time: Sun 08 Feb 2026 00:40:06 +0000 ROA not before: Sun 08 Feb 2026 00:40:06 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.66.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:01:c2:0f:3b:77:67:58:cf:24:29:e1:14:7d:4f:59:e8:5f:c1:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:40:06 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=55a455ba727e9d94840587f06e8f95d14296cdb298ee04374018ecdcba69fdec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:01:e5:e4:f2:20:c5:f2:85:16:bc:c4:cf:4e: db:76:7f:9d:5d:04:29:00:e5:53:5e:5a:39:d0:f7: 9e:e7:e1:c8:6c:84:79:6b:21:b8:b6:aa:b9:45:6a: a3:31:52:4d:e1:b8:85:3a:a1:f0:a9:87:65:55:f0: 1f:40:71:5f:78:2b:aa:ec:cb:16:e1:11:ce:4a:20: d4:bd:07:66:19:dd:5c:7a:82:bd:b0:8b:7b:38:c0: 78:41:e8:6e:e8:ae:ce:ee:64:cc:a5:a9:32:a6:dd: 5c:fd:11:29:cf:ab:de:06:9b:c3:3b:b6:a0:37:48: b1:f0:56:d3:7b:b8:26:76:7a:66:f0:e5:dc:75:3c: 7a:0a:be:c6:52:32:13:85:57:df:d2:f8:f5:b2:7c: 6e:56:29:33:5d:60:89:f5:6b:d9:56:47:0f:3e:92: ba:fe:c4:20:96:bd:87:51:51:4e:48:1d:0a:45:d3: 81:61:d3:e7:54:35:3b:6e:67:a4:ea:29:65:8d:32: de:70:eb:95:0f:38:40:b2:9b:a1:04:0d:40:da:78: 83:b3:e1:85:2f:9b:33:2a:07:3b:33:33:ea:18:9b: e9:cc:49:51:a8:ec:c4:25:31:bb:aa:55:c1:14:08: b1:95:a5:96:60:41:0b:35:c4:b6:97:df:d4:c4:e1: 71:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:B9:28:F7:E5:D1:CF:8C:CE:8F:41:99:31:33:AF:E0:4D:50:05:23 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/59549cf5-0d12-4294-bde9-17545fc36227.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.66.0.0/16 Signature Algorithm: sha256WithRSAEncryption ba:ac:9c:49:a7:c0:34:69:85:4f:4c:2c:aa:ee:17:ff:a9:23: fd:c4:26:d5:fe:aa:7a:12:e9:2d:49:b2:46:e4:e7:9c:78:d0: 1c:19:7e:d6:26:6e:78:0e:c6:18:c5:78:2a:fe:3a:5b:8e:b0: ac:ce:6e:9e:10:fe:f1:a7:28:f5:1b:93:25:0b:04:17:64:ff: 0b:30:fa:0d:13:72:ff:8a:0d:a1:ba:45:44:e8:d6:16:70:22: f0:b4:5b:c0:d8:7e:61:64:c5:5a:d2:6c:63:71:d9:8c:8f:d8: 31:d2:64:18:ce:76:e9:9f:22:a1:e4:10:36:99:10:6c:5c:f3: 21:26:82:9e:14:35:71:fb:87:1d:c1:48:3c:93:86:18:4c:18: 15:49:27:8d:af:51:10:81:18:a6:9c:0e:17:d3:05:83:f3:63: f1:ac:19:62:b8:2e:bc:1b:14:d8:a4:e6:99:6b:9b:5f:a6:37: c1:bc:16:31:24:f4:fe:59:ea:cd:01:fb:ef:5e:ac:59:8c:e6: 95:12:13:ba:b5:12:eb:c3:09:7a:d0:f1:c2:af:a7:ce:cc:31: 3d:d8:2e:aa:04:b3:ab:97:67:97:b5:fb:d5:69:23:84:ff:61: bd:1e:34:c5:dc:00:7d:15:8a:18:65:22:64:5e:a7:62:81:e3: b0:0e:b1:48 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQAHCDzt3Z1jPJCnhFH1PWehfwQEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDA0MDA2WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWE0NTViYTcyN2U5ZDk0ODQwNTg3ZjA2ZThmOTVkMTQy OTZjZGIyOThlZTA0Mzc0MDE4ZWNkY2JhNjlmZGVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsAeXk8iDF8oUWvMTPTtt2f51dBCkA5VNeWjnQ957n4chs hHlrIbi2qrlFaqMxUk3huIU6ofCph2VV8B9AcV94K6rsyxbhEc5KINS9B2YZ3Vx6 gr2wi3s4wHhB6G7ors7uZMylqTKm3Vz9ESnPq94Gm8M7tqA3SLHwVtN7uCZ2embw 5dx1PHoKvsZSMhOFV9/S+PWyfG5WKTNdYIn1a9lWRw8+krr+xCCWvYdRUU5IHQpF 04Fh0+dUNTtuZ6TqKWWNMt5w65UPOECym6EEDUDaeIOz4YUvmzMqBzszM+oYm+nM SVGo7MQlMbuqVcEUCLGVpZZgQQs1xLaX39TE4XGnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWbko9+XRz4zOj0GZMTOv4E1QBSMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU5NTQ5Y2Y1LTBkMTItNDI5NC1iZGU5LTE3NTQ1ZmMzNjIyNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4QjANBgkqhkiG9w0BAQsFAAOCAQEAuqycSafANGmFT0wsqu4X/6kj/cQm 1f6qehLpLUmyRuTnnHjQHBl+1iZueA7GGMV4Kv46W46wrM5unhD+8aco9RuTJQsE F2T/CzD6DRNy/4oNobpFROjWFnAi8LRbwNh+YWTFWtJsY3HZjI/YMdJkGM526Z8i oeQQNpkQbFzzISaCnhQ1cfuHHcFIPJOGGEwYFUknja9REIEYppwOF9MFg/Nj8awZ YrguvBsU2KTmmWubX6Y3wbwWMST0/lnqzQH7716sWYzmlRITurUS68MJetDxwq+n zswxPdguqgSzq5dnl7X71WkjhP9hvR40xdwAfRWKGGUiZF6nYoHjsA6xSA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:04 2026 by rpki-client