$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61065a77-618e-47cc-a114-a9c0237ae690.roa File: 61065a77-618e-47cc-a114-a9c0237ae690.roa (raw, json) Hash identifier: 9F6dmSCTH8c9b7xAaetPgm5gdK2JyaqgcpCHwBi4HqY= Subject key identifier: 64:86:48:9D:31:70:C9:84:F2:8C:3C:1F:60:08:BC:F0:8C:13:6F:C3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 797AC0A6B3F29F6DA8329236E33B6702CD6AB766 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61065a77-618e-47cc-a114-a9c0237ae690.roa Signing time: Fri 13 Feb 2026 00:30:11 +0000 ROA not before: Fri 13 Feb 2026 00:30:11 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 5.174.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:7a:c0:a6:b3:f2:9f:6d:a8:32:92:36:e3:3b:67:02:cd:6a:b7:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:30:11 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=19b78b8314487bf540f31c3ed377816dff6bf0aa300d77ab3a66b03d7d51b08a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:e9:4a:fa:65:76:b0:db:0f:fb:f1:9e:ef:e5: 45:1d:5b:41:1c:e5:61:5c:bd:4c:5c:f7:94:ef:95: f7:f1:27:11:52:8f:49:ec:52:a3:c4:d5:f4:92:61: e2:fe:ef:be:cd:af:5f:5b:f2:fb:bb:84:21:85:e3: 03:3a:e7:a9:a7:62:70:8e:5c:95:db:f7:24:01:7d: ff:bf:6f:7e:c4:f7:89:05:f1:16:f6:9c:b6:ee:87: 39:59:72:6d:72:3c:2e:e6:1d:45:ce:a7:c5:2f:81: f0:a6:5d:4d:72:07:94:70:1d:59:c3:2e:e8:d0:6c: 74:f0:6d:fa:71:ad:7a:55:0a:ad:5f:e2:c9:e7:4e: 02:c1:bc:73:ed:9e:2a:4f:bc:36:c4:c0:be:fe:28: 22:1f:63:8e:71:9d:85:02:01:87:7f:53:0f:dc:d5: 27:65:df:42:21:da:c9:1e:2a:55:50:71:d8:02:6b: ac:4c:07:8e:5e:cc:53:5f:09:92:2a:bf:86:80:6d: d7:ed:f0:c4:ef:84:70:24:db:0f:7e:d6:09:85:26: a5:e1:39:9d:d7:34:1e:c9:15:76:08:0c:83:0d:17: 14:42:ff:f2:d1:60:15:3b:3f:5e:54:cf:0e:df:bf: ef:fa:09:b7:a1:f5:91:71:ea:61:81:f5:ce:f1:cc: ef:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:86:48:9D:31:70:C9:84:F2:8C:3C:1F:60:08:BC:F0:8C:13:6F:C3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/61065a77-618e-47cc-a114-a9c0237ae690.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.174.64.0/20 Signature Algorithm: sha256WithRSAEncryption 80:1f:8e:af:4c:9d:18:b6:5f:c3:6b:85:b0:3f:d3:b9:61:29: d7:82:77:0a:b8:4e:c1:9b:53:66:3e:d8:e6:a6:89:da:78:7f: 92:51:83:5b:7e:22:ed:d1:6e:bf:4d:5f:f4:2e:7f:ad:6c:d6: 77:78:ed:15:75:0e:4b:80:6e:0a:ec:1a:5d:d2:0a:17:1d:74: 29:77:8a:75:de:f3:9c:b5:d6:38:e1:ab:f6:79:f8:04:e8:e2: 8e:4d:82:5b:67:c9:7b:d1:ea:dc:c1:1d:fe:73:d5:6c:a4:cb: d4:eb:75:5e:df:08:8e:fd:1b:9e:1f:8f:28:ac:49:17:3a:73: 46:d2:65:18:ea:32:49:79:c1:d2:30:3d:9e:78:45:a3:12:f7: cd:3a:26:67:f1:69:a0:a0:95:45:af:28:a0:1c:27:db:4f:a3: e0:1a:d0:a9:83:10:be:f1:f9:5b:f8:93:f2:b5:fa:ba:9c:7f: 71:36:f5:1b:a3:0a:74:ad:ce:6c:06:48:3c:e7:70:08:51:ae: 2f:7f:43:eb:70:e3:e5:9a:cc:4e:8d:85:f4:43:39:a5:4f:38: 53:18:37:f0:9d:57:73:c6:e6:e3:8c:ae:10:f5:e7:ab:16:d6: 5f:78:c9:6b:e9:9c:0d:1a:d4:12:fb:20:c9:35:f2:a9:a5:ee: 03:8c:95:3e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeXrAprPyn22oMpI24ztnAs1qt2YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAzMDExWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AxOWI3OGI4MzE0NDg3YmY1NDBmMzFjM2VkMzc3ODE2ZGZm NmJmMGFhMzAwZDc3YWIzYTY2YjAzZDdkNTFiMDhhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDM6Ur6ZXaw2w/78Z7v5UUdW0Ec5WFcvUxc95TvlffxJxFS j0nsUqPE1fSSYeL+777Nr19b8vu7hCGF4wM656mnYnCOXJXb9yQBff+/b37E94kF 8Rb2nLbuhzlZcm1yPC7mHUXOp8UvgfCmXU1yB5RwHVnDLujQbHTwbfpxrXpVCq1f 4snnTgLBvHPtnipPvDbEwL7+KCIfY45xnYUCAYd/Uw/c1Sdl30Ih2skeKlVQcdgC a6xMB45ezFNfCZIqv4aAbdft8MTvhHAk2w9+1gmFJqXhOZ3XNB7JFXYIDIMNFxRC //LRYBU7P15Uzw7fv+/6Cbeh9ZFx6mGB9c7xzO9tAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUZIZInTFwyYTyjDwfYAi88IwTb8MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxMDY1YTc3LTYxOGUtNDdjYy1hMTE0LWE5YzAyMzdhZTY5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQFrkAwDQYJKoZIhvcNAQELBQADggEBAIAfjq9MnRi2X8NrhbA/07lhKdeC dwq4TsGbU2Y+2Oamidp4f5JRg1t+Iu3Rbr9NX/Quf61s1nd47RV1DkuAbgrsGl3S ChcddCl3inXe85y11jjhq/Z5+ATo4o5NgltnyXvR6tzBHf5z1Wyky9TrdV7fCI79 G54fjyisSRc6c0bSZRjqMkl5wdIwPZ54RaMS9806JmfxaaCglUWvKKAcJ9tPo+Aa 0KmDEL7x+Vv4k/K1+rqcf3E29RujCnStzmwGSDzncAhRri9/Q+tw4+WazE6NhfRD OaVPOFMYN/CdV3PG5uOMrhD156sW1l94yWvpnA0a1BL7IMk18qml7gOMlT4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:03 2026 by rpki-client