$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa File: 6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa (raw, json) Hash identifier: vajqWZ20JIf1ANqw/tuHMpgtySnFjIgAg1XUtYkDRlU= Subject key identifier: EE:62:C1:43:C7:C0:56:C6:AF:B0:78:4F:66:13:B3:CF:5C:9D:0B:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 047C01F68E46BDF103BCC977D68EDDF1986ED085 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa Signing time: Sun 01 Mar 2026 00:30:12 +0000 ROA not before: Sun 01 Mar 2026 00:30:12 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 202.174.154.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:7c:01:f6:8e:46:bd:f1:03:bc:c9:77:d6:8e:dd:f1:98:6e:d0:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:30:12 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=ca37d17d23cbe3f6c50c9925cb332df767abdf7b75f5cb3653f2331941889f51, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:83:3c:44:e2:a0:f2:36:b7:f1:60:dc:e3:16: 29:96:69:2a:ab:3c:b3:ab:b4:ea:71:30:61:a0:9d: 26:b7:91:a3:ec:fd:af:f1:30:bc:89:d4:68:ef:9e: e0:31:5d:86:91:ae:4b:b7:4b:9b:2d:5e:6e:72:1d: 09:e2:8a:72:06:0b:3c:54:86:39:88:37:88:76:bc: ae:46:d2:02:1b:ee:17:25:18:74:f3:75:4a:fc:bd: 6a:b5:63:d2:b1:1e:29:da:1d:20:2a:17:01:43:98: 73:0b:37:6e:18:3a:4b:46:f3:48:0a:81:6e:a7:4e: c0:89:99:0e:49:20:27:77:c0:a4:1e:2c:d8:5e:b5: 46:d8:f2:6b:76:5b:cd:9b:6d:90:62:13:87:c6:d3: 35:d7:bd:91:03:4d:34:64:cc:9e:41:8b:9c:37:bb: da:12:b6:d9:a0:22:6d:5e:96:d5:65:a3:98:1d:a7: b4:4f:cd:22:ae:7d:7f:23:84:33:12:cb:b3:c8:99: fb:b9:f3:62:12:f5:27:c3:2b:27:a6:fc:b9:9e:da: 03:a4:2c:2d:d6:7b:87:2c:42:c2:f2:ff:e9:e5:ae: 89:7b:64:0c:66:d2:9b:00:7b:97:5e:35:5c:0f:5e: a8:a6:00:70:04:01:7a:c0:f8:07:4c:d3:1f:12:cb: fe:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:62:C1:43:C7:C0:56:C6:AF:B0:78:4F:66:13:B3:CF:5C:9D:0B:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6166f91a-82ea-4409-a825-27c3c3bcb4e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 202.174.154.0/24 Signature Algorithm: sha256WithRSAEncryption 3f:3f:46:f3:5d:15:e0:61:58:d9:34:a3:62:0c:38:1f:a0:a2: 66:45:88:e1:ec:91:9b:d0:5b:17:13:0a:33:2c:6a:98:1a:ff: 7e:42:25:fe:e2:48:37:8b:d3:3f:12:99:f1:d8:38:3c:b5:34: 1e:00:2a:57:1f:e8:53:62:67:c1:61:19:c2:6e:7e:fa:7e:a4: e4:52:b7:06:3f:53:e2:de:9d:8d:20:01:fc:80:17:72:41:4e: a3:83:52:52:62:3d:0e:62:9c:4b:80:e7:de:da:4c:6e:46:02: 92:fa:2b:a0:3c:fb:88:57:e3:50:53:07:15:fd:1e:b6:0d:53: b4:25:9d:fa:70:5c:61:f3:a3:e4:b8:92:53:1c:0b:c5:4b:be: b6:79:00:0a:85:42:bd:19:0e:b5:e1:af:84:36:f3:4e:34:a6: 3f:cf:2c:9b:96:dd:d0:47:17:60:60:00:a5:85:4d:ae:10:65: e2:36:f2:01:65:61:a0:4c:56:a5:21:c2:98:a4:49:99:b9:08: 33:e3:69:91:79:f6:b4:4b:41:86:2c:e6:e7:bf:89:3e:0d:c4: 2a:27:91:6f:b4:88:ac:81:d4:67:2f:08:61:02:8b:23:98:95: 3e:c5:a2:c1:03:07:75:48:95:dd:31:f5:02:88:d6:f9:9f:13: 79:d7:a9:b4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBHwB9o5GvfEDvMl31o7d8Zhu0IUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMDEyWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BjYTM3ZDE3ZDIzY2JlM2Y2YzUwYzk5MjVjYjMzMmRmNzY3 YWJkZjdiNzVmNWNiMzY1M2YyMzMxOTQxODg5ZjUxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsgzxE4qDyNrfxYNzjFimWaSqrPLOrtOpxMGGgnSa3kaPs /a/xMLyJ1GjvnuAxXYaRrku3S5stXm5yHQniinIGCzxUhjmIN4h2vK5G0gIb7hcl GHTzdUr8vWq1Y9KxHinaHSAqFwFDmHMLN24YOktG80gKgW6nTsCJmQ5JICd3wKQe LNhetUbY8mt2W82bbZBiE4fG0zXXvZEDTTRkzJ5Bi5w3u9oSttmgIm1eltVlo5gd p7RPzSKufX8jhDMSy7PImfu582IS9SfDKyem/Lme2gOkLC3We4csQsLy/+nlrol7 ZAxm0psAe5deNVwPXqimAHAEAXrA+AdM0x8Sy/5zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU7mLBQ8fAVsavsHhPZhOzz1ydCy8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYxNjZmOTFhLTgyZWEtNDQwOS1hODI1LTI3YzNjM2JjYjRlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADKrpowDQYJKoZIhvcNAQELBQADggEBAD8/RvNdFeBhWNk0o2IMOB+gomZF iOHskZvQWxcTCjMsapga/35CJf7iSDeL0z8SmfHYODy1NB4AKlcf6FNiZ8FhGcJu fvp+pORStwY/U+LenY0gAfyAF3JBTqODUlJiPQ5inEuA597aTG5GApL6K6A8+4hX 41BTBxX9HrYNU7QlnfpwXGHzo+S4klMcC8VLvrZ5AAqFQr0ZDrXhr4Q28040pj/P LJuW3dBHF2BgAKWFTa4QZeI28gFlYaBMVqUhwpikSZm5CDPjaZF59rRLQYYs5ue/ iT4NxConkW+0iKyB1GcvCGECiyOYlT7FosEDB3VIld0x9QKI1vmfE3nXqbQ= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:07 2026 by rpki-client