$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa File: 63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa (raw, json) Hash identifier: RzIgemz2jf9602H1pKbRDDRpsHs9FUVvYKOfKaAJqjQ= Subject key identifier: 5D:EF:6A:BF:05:43:C8:B1:4F:2E:08:B3:85:F1:39:BD:41:52:B9:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 68695FED3ED704E7AB181FD66E6AD8A2C5165B96 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa Signing time: Tue 24 Feb 2026 01:31:04 +0000 ROA not before: Tue 24 Feb 2026 01:31:04 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.24.32.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:69:5f:ed:3e:d7:04:e7:ab:18:1f:d6:6e:6a:d8:a2:c5:16:5b:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:31:04 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=d880ef93908fe86f7cbaf6deacdc711bb91de70a2906e8cdcfea289ab8e958aa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:a9:3b:5a:e4:c8:e6:90:81:56:7b:8b:72:9f: 37:17:68:b9:0a:f5:3f:27:d8:c4:6a:98:2e:d9:a6: 75:9a:8a:06:88:b9:00:be:cf:b6:24:9d:ac:61:1b: 04:0c:21:82:f3:d0:b1:f1:46:2d:3d:4c:af:9b:9c: 1d:58:ac:e9:ad:e8:4a:dd:45:e4:90:c5:b5:fb:97: a0:11:45:7f:65:01:b8:76:e8:5e:d7:01:89:69:19: d7:14:44:4b:64:35:97:c7:fe:93:37:ff:9d:52:db: 63:ed:02:1f:f4:dc:85:63:40:22:39:f0:ca:48:fd: 39:c1:5b:4d:85:1a:51:96:d9:02:3d:e4:71:30:4f: 91:dd:33:9e:ee:48:58:d9:83:7d:fd:a3:64:93:9f: 6b:c1:75:40:b3:75:48:48:7e:56:2e:31:0d:8c:4a: e7:dc:b3:76:7c:11:1e:ab:e4:f3:26:2f:c7:c0:da: 65:9a:24:6f:10:27:9c:fe:5a:7b:9e:cb:03:43:f9: f6:a8:a6:09:24:8e:0e:99:c5:f3:29:47:9b:89:a1: ce:30:63:61:dc:7f:de:5e:b9:2b:94:8e:61:2e:7e: 33:a2:84:5b:6e:8b:2c:95:5b:fc:98:c2:e7:61:25: 1a:a9:fb:91:44:9c:a7:11:09:f7:91:cd:4a:c3:51: ba:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:EF:6A:BF:05:43:C8:B1:4F:2E:08:B3:85:F1:39:BD:41:52:B9:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/63a9fdb9-203f-44fc-be57-4c4b2236e6c1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.24.32.0/22 Signature Algorithm: sha256WithRSAEncryption b0:6f:0e:34:e5:86:c2:74:0f:35:b8:ce:2e:ae:0c:c4:55:20: f6:8e:ab:88:db:52:4e:53:f9:de:c8:3e:2e:c2:e5:a3:7b:d9: 5f:08:4e:a2:4c:c4:e0:65:a5:6b:9f:c5:32:34:1c:3c:2a:a9: df:63:50:3a:7f:cd:bf:a1:d4:fe:c8:bb:9b:ac:7e:1f:31:73: 32:46:02:eb:3e:56:ed:1d:71:d2:13:c4:e6:cf:55:65:06:c0: 93:b0:bc:18:56:4e:22:76:6c:d8:3a:0f:f3:fa:6a:33:67:10: 7e:7a:4c:0a:e0:f9:27:20:20:bf:b9:cd:27:c9:92:7f:a4:d7: cd:e3:74:f8:9e:2d:9a:df:bb:de:72:77:52:bc:f8:b0:40:e7: ec:22:59:f0:e1:6f:5e:35:86:49:8e:31:11:09:d3:f6:d3:72: 3f:57:44:8d:a0:86:9f:94:75:eb:2c:99:e3:9b:f3:11:1c:ab: 36:84:2c:70:c0:4d:02:de:76:38:33:01:ab:33:cf:64:b8:49: e7:46:4a:e3:9a:c5:4f:4f:82:b5:71:f2:62:f0:81:4b:0c:fe: 0a:fa:e2:08:63:7d:b7:7b:d3:83:ab:f2:0b:12:f2:a9:76:e5: 79:11:10:82:88:aa:4b:8a:2f:69:ab:20:83:cb:21:73:4f:cf: 3d:86:fd:cc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaGlf7T7XBOerGB/WbmrYosUWW5YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEzMTA0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkODgwZWY5MzkwOGZlODZmN2NiYWY2ZGVhY2RjNzExYmI5 MWRlNzBhMjkwNmU4Y2RjZmVhMjg5YWI4ZTk1OGFhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxqTta5MjmkIFWe4tynzcXaLkK9T8n2MRqmC7ZpnWaigaI uQC+z7YknaxhGwQMIYLz0LHxRi09TK+bnB1YrOmt6ErdReSQxbX7l6ARRX9lAbh2 6F7XAYlpGdcUREtkNZfH/pM3/51S22PtAh/03IVjQCI58MpI/TnBW02FGlGW2QI9 5HEwT5HdM57uSFjZg339o2STn2vBdUCzdUhIflYuMQ2MSufcs3Z8ER6r5PMmL8fA 2mWaJG8QJ5z+WnueywND+faopgkkjg6ZxfMpR5uJoc4wY2Hcf95euSuUjmEufjOi hFtuiyyVW/yYwudhJRqp+5FEnKcRCfeRzUrDUbotAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUXe9qvwVDyLFPLgizhfE5vUFSuUAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzYTlmZGI5LTIwM2YtNDRmYy1iZTU3LTRjNGIyMjM2ZTZjMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIQGCAwDQYJKoZIhvcNAQELBQADggEBALBvDjTlhsJ0DzW4zi6uDMRVIPaO q4jbUk5T+d7IPi7C5aN72V8ITqJMxOBlpWufxTI0HDwqqd9jUDp/zb+h1P7Iu5us fh8xczJGAus+Vu0dcdITxObPVWUGwJOwvBhWTiJ2bNg6D/P6ajNnEH56TArg+Scg IL+5zSfJkn+k183jdPieLZrfu95yd1K8+LBA5+wiWfDhb141hkmOMREJ0/bTcj9X RI2ghp+UdessmeOb8xEcqzaELHDATQLedjgzAaszz2S4SedGSuOaxU9PgrVx8mLw gUsM/gr64ghjfbd704Or8gsS8ql25XkREIKIqkuKL2mrIIPLIXNPzz2G/cw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:07 2026 by rpki-client