$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa File: 640db256-ea3a-41a0-b252-1d52034e7dfa.roa (raw, json) Hash identifier: vdDLCcLd675VYIYLEblsEDK+bqpekKzuAiJXZY/A6CQ= Subject key identifier: A1:A9:F2:41:25:D6:09:F6:71:8B:7C:D3:D0:EB:B1:46:A7:C7:66:04 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14D277D36C50405E166F9575AF97FC5A8AB2167D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa Signing time: Wed 25 Feb 2026 02:41:14 +0000 ROA not before: Wed 25 Feb 2026 02:41:14 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 110.239.29.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:d2:77:d3:6c:50:40:5e:16:6f:95:75:af:97:fc:5a:8a:b2:16:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:41:14 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=fd066bdda652ea35fa5d70fa5e5c91cba74a40edeef776d3436d65d0e1f26e3c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:72:ed:9f:c9:e0:57:96:90:b6:eb:08:6a:76: 89:b8:f8:e9:b9:36:bd:6c:92:6d:6f:d8:2c:9e:38: 82:c4:ca:14:55:5e:6d:8a:23:ed:b3:54:8f:84:a1: 8e:7b:27:5c:d0:b1:f0:58:7f:87:fa:2e:74:48:42: bf:c7:04:e7:fa:97:3c:77:8b:66:40:4b:d3:f4:24: b4:c5:47:58:6c:b2:59:bd:d8:49:23:94:72:ab:c2: 5c:b1:ca:8a:78:c8:61:6f:a5:e5:88:79:e0:bc:10: 66:ad:4c:81:c2:79:49:93:69:bd:c9:58:d9:c6:93: b2:3c:a8:e7:54:34:0b:16:e6:7a:cc:f9:9b:f7:89: 8d:c3:fe:46:ab:ee:07:f7:45:e0:46:3f:6a:8f:68: 5e:82:85:8e:0e:ef:68:98:34:e1:7c:7a:62:96:47: 8d:4b:ad:45:9e:5b:44:e5:bb:42:be:0a:fa:8a:5b: 42:54:f4:e1:aa:89:68:76:bf:86:ab:37:bd:4f:53: 99:af:1d:0b:0b:60:2f:64:f2:99:5c:69:e0:e7:02: 3f:1e:37:54:4d:e2:37:5c:4b:64:d6:6b:8d:23:84: c9:80:09:23:e1:f1:72:53:18:95:69:29:44:4f:7e: 2a:2b:a5:68:08:58:df:10:52:12:d4:0b:ff:92:10: dc:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:A9:F2:41:25:D6:09:F6:71:8B:7C:D3:D0:EB:B1:46:A7:C7:66:04 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/640db256-ea3a-41a0-b252-1d52034e7dfa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 110.239.29.0/24 Signature Algorithm: sha256WithRSAEncryption bd:99:86:b1:ee:91:ec:3f:07:c9:b0:be:b5:0b:a1:a1:14:45: 57:10:db:d2:64:ba:90:c6:76:65:ac:da:6a:ab:78:6c:71:e6: 49:3e:77:85:2e:5a:ca:25:d9:b5:0e:46:90:26:2e:2a:64:c9: 17:74:51:b6:aa:6a:f1:b2:73:bb:c7:64:93:b2:35:da:97:36: ad:60:62:cb:14:c6:cd:88:ae:5a:0b:69:a6:2f:9f:d0:b1:1c: 36:c1:93:e3:f7:40:6a:eb:1a:45:3a:22:1a:ff:4a:03:4f:9d: 0a:76:9a:29:d4:14:54:28:36:b9:82:31:75:24:15:06:c8:d8: 14:8a:f1:da:b3:ae:d5:1a:c3:bb:78:b4:81:53:ab:98:49:d9: c5:ae:4f:44:b7:ce:a0:a0:e6:3d:35:eb:1e:f2:aa:ca:f0:9f: f3:2e:a2:89:c8:ed:80:0e:ec:02:f5:43:a3:91:66:4a:84:38: 47:7c:ee:12:62:15:88:90:96:fc:0c:9b:54:b2:95:9a:8a:fc: ed:fd:b3:84:2e:36:dd:cc:94:04:ab:c4:be:ea:b3:0a:39:5e: be:c8:69:03:19:b3:19:b3:60:f4:7f:eb:58:b8:17:8b:55:01: 92:c1:1a:77:de:10:29:2c:5c:4d:14:b3:56:cb:b6:54:a9:fa: 60:d1:27:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFNJ302xQQF4Wb5V1r5f8WoqyFn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDI0MTE0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZDA2NmJkZGE2NTJlYTM1ZmE1ZDcwZmE1ZTVjOTFjYmE3 NGE0MGVkZWVmNzc2ZDM0MzZkNjVkMGUxZjI2ZTNjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQChcu2fyeBXlpC26whqdom4+Om5Nr1skm1v2CyeOILEyhRV Xm2KI+2zVI+EoY57J1zQsfBYf4f6LnRIQr/HBOf6lzx3i2ZAS9P0JLTFR1hsslm9 2EkjlHKrwlyxyop4yGFvpeWIeeC8EGatTIHCeUmTab3JWNnGk7I8qOdUNAsW5nrM +Zv3iY3D/kar7gf3ReBGP2qPaF6ChY4O72iYNOF8emKWR41LrUWeW0Tlu0K+CvqK W0JU9OGqiWh2v4arN71PU5mvHQsLYC9k8plcaeDnAj8eN1RN4jdcS2TWa40jhMmA CSPh8XJTGJVpKURPfiorpWgIWN8QUhLUC/+SENyzAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUoanyQSXWCfZxi3zT0OuxRqfHZgQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0MGRiMjU2LWVhM2EtNDFhMC1iMjUyLTFkNTIwMzRlN2RmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABu7x0wDQYJKoZIhvcNAQELBQADggEBAL2ZhrHukew/B8mwvrULoaEURVcQ 29JkupDGdmWs2mqreGxx5kk+d4UuWsol2bUORpAmLipkyRd0UbaqavGyc7vHZJOy NdqXNq1gYssUxs2IrloLaaYvn9CxHDbBk+P3QGrrGkU6Ihr/SgNPnQp2minUFFQo NrmCMXUkFQbI2BSK8dqzrtUaw7t4tIFTq5hJ2cWuT0S3zqCg5j016x7yqsrwn/Mu oonI7YAO7AL1Q6ORZkqEOEd87hJiFYiQlvwMm1SylZqK/O39s4QuNt3MlASrxL7q swo5Xr7IaQMZsxmzYPR/61i4F4tVAZLBGnfeECksXE0Us1bLtlSp+mDRJyg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:48 2026 by rpki-client