$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d0d6a5a-16aa-4b09-a02b-98190290d009.roa File: 5d0d6a5a-16aa-4b09-a02b-98190290d009.roa (raw, json) Hash identifier: KaO3h/yz1yFtIGYwM8RZ4Modou8+TaE0EyDeoxx60kM= Subject key identifier: 80:AC:D1:92:E2:4E:F8:05:BC:A7:B3:4D:B5:38:D2:C1:06:A0:9A:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BADF11A7DBA9DC62D4DCF5988469E04180BF259 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d0d6a5a-16aa-4b09-a02b-98190290d009.roa Signing time: Tue 24 Feb 2026 01:00:09 +0000 ROA not before: Tue 24 Feb 2026 01:00:09 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.22.152.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:ad:f1:1a:7d:ba:9d:c6:2d:4d:cf:59:88:46:9e:04:18:0b:f2:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:00:09 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=8ea328cfaba02be3fe4d91b3fc9af84e1bc96657a5805522c32559176665e931, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ee:5b:12:13:eb:86:45:78:37:bf:a4:89:12: 0c:46:1b:63:c9:99:22:f4:bc:4b:5f:ab:94:26:d0: 2e:55:f1:3d:e7:0e:42:17:98:c6:77:21:da:cd:ac: 97:e9:14:a9:df:44:91:bc:08:7c:a0:76:55:83:27: 66:db:5c:4b:f7:5b:67:d3:1c:b2:30:ab:28:a5:a5: 40:a9:d3:b3:2f:7f:87:c3:5c:cc:97:49:53:a0:b4: c4:3b:21:69:f9:16:d5:65:54:68:2c:60:db:4a:c3: a1:4e:8a:3d:55:de:1e:2d:ad:a5:5e:53:f5:9f:ee: 3f:e5:51:bb:3e:eb:93:1b:88:b7:4b:20:5d:62:72: c8:b6:19:3e:fe:14:c1:e5:3e:8f:83:2e:33:b1:09: e8:bb:85:83:96:62:cb:14:8e:d0:d0:33:2c:e3:f2: b9:0d:45:f6:8d:3e:89:67:14:44:8c:94:07:6b:aa: 98:01:88:7e:8c:e4:1e:53:2a:2e:61:be:a9:88:ae: 5c:9b:68:a0:e1:a3:3e:70:3e:db:84:4d:4f:d0:41: 28:4d:29:3b:a8:cf:b0:cf:e8:0f:c6:c9:d1:55:9c: 61:2d:f9:61:c1:3a:f3:b9:26:81:aa:80:4c:e8:bb: fa:ed:91:ae:e5:fd:53:ac:76:3b:12:0d:94:15:ed: 4a:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:AC:D1:92:E2:4E:F8:05:BC:A7:B3:4D:B5:38:D2:C1:06:A0:9A:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5d0d6a5a-16aa-4b09-a02b-98190290d009.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.22.152.0/22 Signature Algorithm: sha256WithRSAEncryption d2:b2:9d:99:2a:77:0b:c8:f9:25:e0:88:b1:4f:84:6d:0f:27: cc:32:0d:b2:94:41:86:52:61:57:f1:33:06:9f:6c:e8:46:68: de:3a:cd:a3:55:a7:00:88:57:e1:71:00:8d:ad:c9:4d:07:a5: a2:be:c2:1e:9f:95:9c:89:e3:1e:4a:ec:d6:23:a2:98:46:e4: e1:c9:14:43:11:85:0f:e3:e6:c7:80:63:42:59:e6:bd:43:a7: 34:66:9e:6d:fa:14:cc:b1:0c:bd:87:0c:3a:fc:44:00:6f:75: 2b:b9:6b:80:52:2d:87:ad:a8:86:5a:39:e1:3e:39:0e:c8:ae: d6:e4:62:b5:9c:5c:fb:65:b5:4c:72:08:1b:f0:8c:7f:55:2c: 05:a1:cd:57:b8:00:ba:27:d5:58:5a:19:5b:18:8f:f5:6c:df: ae:49:10:58:fa:78:f4:94:17:b5:2c:81:80:fb:82:4a:c8:3f: 40:dd:b7:01:d4:88:12:0c:bf:34:86:ae:65:0c:bc:ad:59:25: 4c:ff:cc:1e:57:10:f1:55:9e:a3:ad:4f:f6:01:9f:f8:5c:36: 00:42:5c:67:fa:ac:7b:37:68:50:b9:c7:c4:85:37:a6:32:7b: 7c:15:08:fb:5c:69:0a:2e:7d:e1:d1:65:97:e8:20:9a:89:a7: 3a:bf:1c:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa63xGn26ncYtTc9ZiEaeBBgL8lkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMDA5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZWEzMjhjZmFiYTAyYmUzZmU0ZDkxYjNmYzlhZjg0ZTFi Yzk2NjU3YTU4MDU1MjJjMzI1NTkxNzY2NjVlOTMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDU7lsSE+uGRXg3v6SJEgxGG2PJmSL0vEtfq5Qm0C5V8T3n DkIXmMZ3IdrNrJfpFKnfRJG8CHygdlWDJ2bbXEv3W2fTHLIwqyilpUCp07Mvf4fD XMyXSVOgtMQ7IWn5FtVlVGgsYNtKw6FOij1V3h4traVeU/Wf7j/lUbs+65MbiLdL IF1icsi2GT7+FMHlPo+DLjOxCei7hYOWYssUjtDQMyzj8rkNRfaNPolnFESMlAdr qpgBiH6M5B5TKi5hvqmIrlybaKDhoz5wPtuETU/QQShNKTuoz7DP6A/GydFVnGEt +WHBOvO5JoGqgEzou/rtka7l/VOsdjsSDZQV7UoDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgKzRkuJO+AW8p7NNtTjSwQagmsAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVkMGQ2YTVhLTE2YWEtNGIwOS1hMDJiLTk4MTkwMjkwZDAwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFpgwDQYJKoZIhvcNAQELBQADggEBANKynZkqdwvI+SXgiLFPhG0PJ8wy DbKUQYZSYVfxMwafbOhGaN46zaNVpwCIV+FxAI2tyU0HpaK+wh6flZyJ4x5K7NYj ophG5OHJFEMRhQ/j5seAY0JZ5r1DpzRmnm36FMyxDL2HDDr8RABvdSu5a4BSLYet qIZaOeE+OQ7IrtbkYrWcXPtltUxyCBvwjH9VLAWhzVe4ALon1VhaGVsYj/Vs365J EFj6ePSUF7UsgYD7gkrIP0DdtwHUiBIMvzSGrmUMvK1ZJUz/zB5XEPFVnqOtT/YB n/hcNgBCXGf6rHs3aFC5x8SFN6Yye3wVCPtcaQoufeHRZZfoIJqJpzq/HGE= -----END CERTIFICATE-----Generated at Mon Mar 2 00:06:45 2026 by rpki-client