$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/647019d0-aed8-481b-971d-49bbf00e94fc.roa File: 647019d0-aed8-481b-971d-49bbf00e94fc.roa (raw, json) Hash identifier: ipwW6ATysuoIHYb/QMfdUWeiBMiVO4Shm+8yPMbbRNE= Subject key identifier: DF:76:4F:3C:E8:03:30:86:73:E8:8C:BD:E0:F2:73:04:48:2D:8E:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 722C1F76E27D48CAC7617D91446E4BA138C44D71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/647019d0-aed8-481b-971d-49bbf00e94fc.roa Signing time: Fri 13 Feb 2026 01:00:07 +0000 ROA not before: Fri 13 Feb 2026 01:00:07 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 31.220.253.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:2c:1f:76:e2:7d:48:ca:c7:61:7d:91:44:6e:4b:a1:38:c4:4d:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 01:00:07 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=b6f5d3fceda6bd60a2c75cb7a039ffbdd87cf396fef9311988525accacac5eb8, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d9:4c:f6:03:29:6a:a5:f1:01:cd:0f:ad:ca: de:5e:b0:c9:86:9c:9f:cb:19:50:75:b6:6c:8d:fb: f6:78:53:96:6b:b3:1a:24:10:40:88:a8:68:ca:88: 3b:29:2f:74:fa:62:65:b9:d7:a8:ef:75:0d:c0:b0: 1e:4a:bb:7a:7a:02:90:aa:8e:90:14:99:7d:cf:3d: 92:51:15:5e:cd:35:5a:26:63:67:aa:94:8a:63:f4: 1d:86:7d:67:54:22:6f:f2:71:c2:6f:5a:3c:a6:1b: c7:6f:e3:c9:9d:97:25:54:79:80:a4:48:f1:bd:1c: 9d:da:a5:04:7c:60:87:11:cb:5c:c9:78:92:e9:be: 14:91:77:60:41:8e:8b:a4:37:aa:47:82:e2:e7:9a: a2:33:c3:9b:fa:58:c2:52:de:fe:5f:d8:e8:ab:25: ff:39:2d:1e:57:f2:b6:21:0b:f6:7c:0c:29:b4:de: 05:25:8e:14:89:be:fd:86:5a:54:05:5b:c6:68:cb: 6f:94:2e:ab:a3:6b:df:f1:3c:81:bc:e8:64:5a:dc: 9d:91:98:ea:2c:c0:dc:21:6f:d8:e4:48:7c:b0:bd: 5c:fe:93:0d:4a:16:b4:2d:84:af:6f:c2:89:49:3c: 8a:d8:75:23:f6:4b:d7:1d:57:4b:be:41:23:44:5b: 27:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:76:4F:3C:E8:03:30:86:73:E8:8C:BD:E0:F2:73:04:48:2D:8E:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/647019d0-aed8-481b-971d-49bbf00e94fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.220.253.0/24 Signature Algorithm: sha256WithRSAEncryption 66:99:de:a8:d7:20:4d:6b:1d:15:8a:61:12:c3:8e:ab:d9:43: 7c:1e:f2:63:d5:28:ff:cd:6f:79:9f:e5:5e:fc:85:3e:d7:e3: f7:d0:da:4d:79:80:68:f3:8b:4b:7e:34:c5:d4:c5:1e:6d:e9: b0:bd:a1:a4:10:27:8b:d1:f7:e1:9b:13:3d:54:aa:0e:42:ea: 04:4b:c6:d8:f0:8a:37:e3:e3:ea:30:92:26:4c:28:68:dc:03: e2:8c:2d:f4:56:08:39:cb:50:19:97:e9:81:44:4c:02:7f:cb: 99:02:b8:b3:d0:c4:35:61:51:e5:ea:59:8b:51:97:2e:0c:48: 33:de:ed:80:7c:9b:ca:e3:6a:ea:86:61:b9:fe:49:cd:7f:ba: 38:13:99:56:01:41:f3:e9:de:9a:79:6e:fb:c2:29:c2:35:a7: eb:cc:e0:20:14:7c:fa:b0:26:6a:63:a3:fc:46:9c:dc:d0:a8: d4:f9:e7:7a:04:b3:44:c2:d3:56:3d:91:ec:68:54:ba:1f:ad: 5c:36:57:ad:ac:77:ec:fe:1c:b4:4f:aa:de:5c:ae:cd:51:3f: af:99:48:25:a9:16:fa:d7:42:88:86:cc:2e:72:b7:48:b9:a7: 72:41:6b:1f:87:09:47:ad:f8:0b:b8:c4:88:db:64:74:b9:da: fa:eb:c6:b6 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUciwfduJ9SMrHYX2RRG5LoTjETXEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDEwMDA3WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNmY1ZDNmY2VkYTZiZDYwYTJjNzVjYjdhMDM5ZmZiZGQ4 N2NmMzk2ZmVmOTMxMTk4ODUyNWFjY2FjYWM1ZWI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx2Uz2AylqpfEBzQ+tyt5esMmGnJ/LGVB1tmyN+/Z4U5Zr sxokEECIqGjKiDspL3T6YmW516jvdQ3AsB5Ku3p6ApCqjpAUmX3PPZJRFV7NNVom Y2eqlIpj9B2GfWdUIm/yccJvWjymG8dv48mdlyVUeYCkSPG9HJ3apQR8YIcRy1zJ eJLpvhSRd2BBjoukN6pHguLnmqIzw5v6WMJS3v5f2OirJf85LR5X8rYhC/Z8DCm0 3gUljhSJvv2GWlQFW8Zoy2+ULquja9/xPIG86GRa3J2RmOoswNwhb9jkSHywvVz+ kw1KFrQthK9vwolJPIrYdSP2S9cdV0u+QSNEWyf9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU33ZPPOgDMIZz6Iy94PJzBEgtjqYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY0NzAxOWQwLWFlZDgtNDgxYi05NzFkLTQ5YmJmMDBlOTRmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAf3P0wDQYJKoZIhvcNAQELBQADggEBAGaZ3qjXIE1rHRWKYRLDjqvZQ3we 8mPVKP/Nb3mf5V78hT7X4/fQ2k15gGjzi0t+NMXUxR5t6bC9oaQQJ4vR9+GbEz1U qg5C6gRLxtjwijfj4+owkiZMKGjcA+KMLfRWCDnLUBmX6YFETAJ/y5kCuLPQxDVh UeXqWYtRly4MSDPe7YB8m8rjauqGYbn+Sc1/ujgTmVYBQfPp3pp5bvvCKcI1p+vM 4CAUfPqwJmpjo/xGnNzQqNT553oEs0TC01Y9kexoVLofrVw2V62sd+z+HLRPqt5c rs1RP6+ZSCWpFvrXQoiGzC5yt0i5p3JBax+HCUet+Au4xIjbZHS52vrrxrY= -----END CERTIFICATE-----Generated at Mon Mar 2 12:34:19 2026 by rpki-client