$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c80caa3-8963-47f0-b26c-cfd40665af65.roa File: 5c80caa3-8963-47f0-b26c-cfd40665af65.roa (raw, json) Hash identifier: mBDoQ0Qh1sIpfvip9uzatPJOjtELAehOmWgkSoUx9EU= Subject key identifier: 59:89:D6:BB:51:AC:59:75:E4:DE:82:24:58:5F:2B:8B:7B:3A:C2:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C63EDE981BD2BB649775B74E0920038589D815C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c80caa3-8963-47f0-b26c-cfd40665af65.roa Signing time: Fri 06 Feb 2026 00:10:42 +0000 ROA not before: Fri 06 Feb 2026 00:10:42 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.236.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:63:ed:e9:81:bd:2b:b6:49:77:5b:74:e0:92:00:38:58:9d:81:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 6 00:10:42 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=cdc59e57f3881c2e89dc4016563d2deed27ad0b84f637f0007881b5062fd806a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:d3:af:ad:d7:f7:21:1b:42:2a:44:7e:3b:a8: 07:0c:68:c6:56:69:b2:aa:6b:b8:45:f9:5b:a5:20: 36:de:88:70:8f:98:fc:dd:71:7e:02:2a:82:76:23: fb:0c:50:05:17:e6:75:be:f8:df:60:77:36:0e:36: 34:5d:32:96:60:74:a5:d5:6e:54:55:88:cd:83:9f: e5:d5:09:63:32:0a:7a:b0:ec:73:3b:78:cf:7c:af: 95:52:af:2d:35:7d:30:69:84:86:07:f1:42:a1:d5: 64:8e:5e:43:08:51:76:4a:ec:d2:38:cc:fb:d4:17: 69:9e:f9:4d:20:75:4b:5c:d7:13:d5:29:6f:1d:bc: 8e:87:b3:1b:e5:a8:8a:03:dd:8e:d2:ce:62:50:60: 28:57:23:ca:4e:a8:7b:e3:7d:fa:26:06:38:37:f2: 7d:8d:e1:b1:55:90:81:e8:93:4d:2f:76:a5:c2:28: db:3a:a4:49:89:cb:81:93:8a:79:ad:2f:27:51:1a: 2e:70:84:b5:9c:63:fa:09:e5:88:6d:41:61:e9:f4: 2c:a8:7a:d8:4d:76:c5:7b:e5:4a:3f:64:ba:63:5d: ad:c9:3e:b4:0c:fb:1c:a4:ad:9d:00:67:b6:e6:62: db:f4:c6:e4:81:bd:b6:2b:80:5e:10:e4:47:8a:12: fc:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:89:D6:BB:51:AC:59:75:E4:DE:82:24:58:5F:2B:8B:7B:3A:C2:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5c80caa3-8963-47f0-b26c-cfd40665af65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.236.0.0/16 Signature Algorithm: sha256WithRSAEncryption 52:a5:c9:bf:ff:c6:00:f4:ed:38:32:5a:ec:cc:64:52:81:ba: 9a:27:22:36:77:eb:eb:6c:2c:ae:58:ef:b8:ac:31:b9:b8:4a: e6:b1:c7:af:e6:20:ef:e9:93:32:d9:38:b1:d7:38:bc:de:f2: c1:54:be:02:61:e2:ab:25:a2:30:ff:15:6f:97:99:62:ac:68: b5:77:03:f8:17:c5:47:4e:1c:0b:ca:eb:19:c6:1a:7b:5e:41: 80:67:e8:29:90:6c:79:86:2f:03:be:d7:46:e1:44:3b:47:3c: 69:fd:fc:b1:12:14:15:f1:df:75:cd:74:24:72:6a:b4:49:c6: 85:4a:c2:6c:7a:b8:56:8a:d3:9a:f5:e0:b8:92:44:c1:f8:38: dd:86:09:fa:d5:9f:50:b0:8d:72:4b:34:ef:54:1b:89:52:92: 38:8d:60:c3:85:71:a3:31:02:b0:11:04:e2:c9:25:ef:67:70: e0:5a:c7:bd:98:ee:76:b4:fe:27:44:6c:5e:48:a0:ba:92:52: 86:ac:66:9a:ce:6a:0d:68:43:58:ea:81:76:93:0c:66:a3:c9: 8c:78:99:f2:7e:6e:ba:ce:6f:4c:48:25:33:c6:cd:19:1c:f6: 23:58:ba:54:a1:6f:aa:ad:d6:d2:73:49:32:32:32:12:4f:9a: e0:bb:6e:51 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHGPt6YG9K7ZJd1t04JIAOFidgVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA2MDAxMDQyWhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjZGM1OWU1N2YzODgxYzJlODlkYzQwMTY1NjNkMmRlZWQy N2FkMGI4NGY2MzdmMDAwNzg4MWI1MDYyZmQ4MDZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCn06+t1/chG0IqRH47qAcMaMZWabKqa7hF+VulIDbeiHCP mPzdcX4CKoJ2I/sMUAUX5nW++N9gdzYONjRdMpZgdKXVblRViM2Dn+XVCWMyCnqw 7HM7eM98r5VSry01fTBphIYH8UKh1WSOXkMIUXZK7NI4zPvUF2me+U0gdUtc1xPV KW8dvI6HsxvlqIoD3Y7SzmJQYChXI8pOqHvjffomBjg38n2N4bFVkIHok00vdqXC KNs6pEmJy4GTinmtLydRGi5whLWcY/oJ5YhtQWHp9CyoethNdsV75Uo/ZLpjXa3J PrQM+xykrZ0AZ7bmYtv0xuSBvbYrgF4Q5EeKEvwvAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWYnWu1GsWXXk3oIkWF8ri3s6wq4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVjODBjYWEzLTg5NjMtNDdmMC1iMjZjLWNmZDQwNjY1YWY2NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCI7DANBgkqhkiG9w0BAQsFAAOCAQEAUqXJv//GAPTtODJa7MxkUoG6mici Nnfr62wsrljvuKwxubhK5rHHr+Yg7+mTMtk4sdc4vN7ywVS+AmHiqyWiMP8Vb5eZ YqxotXcD+BfFR04cC8rrGcYae15BgGfoKZBseYYvA77XRuFEO0c8af38sRIUFfHf dc10JHJqtEnGhUrCbHq4VorTmvXguJJEwfg43YYJ+tWfULCNcks071QbiVKSOI1g w4VxozECsBEE4skl72dw4FrHvZjudrT+J0RsXkigupJShqxmms5qDWhDWOqBdpMM ZqPJjHiZ8n5uus5vTEglM8bNGRz2I1i6VKFvqq3W0nNJMjIyEk+a4LtuUQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:30 2026 by rpki-client