$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62fa966b-6278-48a5-a55f-412c17efff96.roa File: 62fa966b-6278-48a5-a55f-412c17efff96.roa (raw, json) Hash identifier: I/o5wdwxt4BwjTEfz3iIRD8m+2ejn/m+2EqiSpxOSNM= Subject key identifier: 12:DF:77:2C:F9:84:21:0E:91:2E:BB:B1:C3:13:04:96:C0:A4:45:A2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A5F0FEC95AA0F50D310A895AE82D7C191B196C5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62fa966b-6278-48a5-a55f-412c17efff96.roa Signing time: Sat 21 Feb 2026 01:41:45 +0000 ROA not before: Sat 21 Feb 2026 01:41:45 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.78.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:5f:0f:ec:95:aa:0f:50:d3:10:a8:95:ae:82:d7:c1:91:b1:96:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:41:45 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=9ec2c8e0ed587d241a4e199ecddd6e53c2407d3368463afced1fda6351486a90, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ef:3e:83:fc:a3:37:02:cd:62:b8:9c:d7:9a:b8: d2:00:b6:c3:e6:45:6b:c6:ee:87:51:39:cf:59:f5: 52:dd:5a:1b:95:b0:10:49:e3:3f:27:81:30:8e:3f: 26:b9:35:9a:20:f9:de:88:ec:df:fc:55:d5:e7:8b: 9f:d6:15:16:8f:61:cc:a4:18:0d:d3:fd:82:88:a1: fd:5d:0c:62:f0:d0:2f:63:4e:55:cb:d4:32:2c:3b: 55:aa:4a:f5:e2:cd:b3:35:77:95:89:8e:43:1c:69: 3a:91:b9:8f:20:ef:5a:1a:19:23:41:c9:c4:3f:9a: 1a:21:5b:5c:43:e4:fa:1e:53:84:f6:f4:93:f5:4d: 99:cf:64:e9:92:42:f3:0b:ed:89:9c:fc:0b:2d:bc: 9c:6d:1f:19:e8:a2:b6:c2:ac:a6:88:78:07:96:03: c3:37:30:53:45:f5:3d:c1:68:48:5f:15:3e:45:9a: ff:e6:b5:e4:28:43:b2:5d:37:19:76:ec:5a:af:64: 2f:ac:10:7e:ef:69:6b:55:2c:39:bf:a2:e5:3d:61: d9:b3:98:78:e0:fb:f4:71:28:05:2d:b9:de:1b:f3: ea:34:4f:4a:ce:f9:27:47:4c:ec:6c:5d:ab:97:97: ca:ff:f9:65:f7:f4:7d:35:67:49:36:87:fb:8d:19: e9:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:DF:77:2C:F9:84:21:0E:91:2E:BB:B1:C3:13:04:96:C0:A4:45:A2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/62fa966b-6278-48a5-a55f-412c17efff96.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.78.0/23 Signature Algorithm: sha256WithRSAEncryption 71:76:1a:67:6f:09:8e:46:fb:e3:76:37:b9:3b:85:09:03:3b: 03:8d:50:b6:85:ee:cb:95:ae:d0:b5:79:ff:76:37:cf:e3:8f: 59:e2:8d:82:a9:fb:be:b6:31:06:4d:d0:09:aa:d5:6f:bc:52: bb:c4:4d:4c:d5:2d:f0:95:08:95:de:ef:de:a7:e4:85:f7:eb: 92:ab:da:c4:4a:fa:6e:aa:5e:2f:dc:08:bf:54:2f:79:2b:31: 96:7a:90:85:56:1b:b8:cf:4f:14:d5:55:e1:0c:c2:57:24:e9: c2:56:81:22:32:f9:e6:01:28:25:a6:5d:6e:d3:83:59:ad:f5: eb:cc:10:a6:d1:e4:81:3c:d3:7a:bd:0d:cd:63:3c:bb:a5:4e: 1e:a0:d3:72:15:11:58:3f:52:ab:ed:78:e4:f0:dc:10:0c:f8: 67:9d:a9:d6:81:58:51:fb:b3:fb:be:e9:2a:1f:fd:68:47:ee: 3c:5d:3d:bc:8c:a3:c9:98:4d:6d:30:85:c6:0b:9d:ed:b5:72: d7:df:2c:97:3a:40:30:3a:83:f3:b7:b1:ff:d5:5c:54:25:a2: de:50:56:ad:48:75:9f:b6:1a:38:d3:c9:10:1b:75:7d:8b:8f: 08:9f:06:70:a4:8c:e8:8e:c8:50:85:4e:98:f7:8c:93:75:de: a6:aa:7a:c1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOl8P7JWqD1DTEKiVroLXwZGxlsUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDE0MTQ1WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWMyYzhlMGVkNTg3ZDI0MWE0ZTE5OWVjZGRkNmU1M2My NDA3ZDMzNjg0NjNhZmNlZDFmZGE2MzUxNDg2YTkwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDvPoP8ozcCzWK4nNeauNIAtsPmRWvG7odROc9Z9VLdWhuV sBBJ4z8ngTCOPya5NZog+d6I7N/8VdXni5/WFRaPYcykGA3T/YKIof1dDGLw0C9j TlXL1DIsO1WqSvXizbM1d5WJjkMcaTqRuY8g71oaGSNBycQ/mhohW1xD5PoeU4T2 9JP1TZnPZOmSQvML7Ymc/AstvJxtHxnoorbCrKaIeAeWA8M3MFNF9T3BaEhfFT5F mv/mteQoQ7JdNxl27FqvZC+sEH7vaWtVLDm/ouU9YdmzmHjg+/RxKAUtud4b8+o0 T0rO+SdHTOxsXauXl8r/+WX39H01Z0k2h/uNGenfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUEt93LPmEIQ6RLruxwxMElsCkRaIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyZmE5NjZiLTYyNzgtNDhhNS1hNTVmLTQxMmMxN2VmZmY5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAGCsE4wDQYJKoZIhvcNAQELBQADggEBAHF2GmdvCY5G++N2N7k7hQkDOwON ULaF7suVrtC1ef92N8/jj1nijYKp+762MQZN0Amq1W+8UrvETUzVLfCVCJXe796n 5IX365Kr2sRK+m6qXi/cCL9UL3krMZZ6kIVWG7jPTxTVVeEMwlck6cJWgSIy+eYB KCWmXW7Tg1mt9evMEKbR5IE803q9Dc1jPLulTh6g03IVEVg/UqvteOTw3BAM+Ged qdaBWFH7s/u+6Sof/WhH7jxdPbyMo8mYTW0whcYLne21ctffLJc6QDA6g/O3sf/V XFQlot5QVq1IdZ+2GjjTyRAbdX2LjwifBnCkjOiOyFCFTpj3jJN13qaqesE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:54 2026 by rpki-client