$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65567a94-d95d-47b7-8408-7d05fa62f0ba.roa File: 65567a94-d95d-47b7-8408-7d05fa62f0ba.roa (raw, json) Hash identifier: Ytjg0p8q+VSk5xO6iZ7BCfFV22uQUW2LKlDICQos5xk= Subject key identifier: 1B:FE:80:78:63:41:5B:15:00:08:15:88:E9:03:45:2C:E8:FC:2A:00 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 33A8B87EE5AAE5229BD46FB584C0E358F372BF00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65567a94-d95d-47b7-8408-7d05fa62f0ba.roa Signing time: Tue 24 Feb 2026 00:21:15 +0000 ROA not before: Tue 24 Feb 2026 00:21:15 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 108.137.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:a8:b8:7e:e5:aa:e5:22:9b:d4:6f:b5:84:c0:e3:58:f3:72:bf:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:21:15 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=abd1fadf38dab734428f2607120ad999941f6194e7e326113fa8fb67ef3e223f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:d4:9f:97:26:bd:a5:71:0f:ad:9e:f4:be:51: 54:34:71:17:a1:62:b4:af:5b:fc:7c:b3:54:4d:d7: 54:32:be:b4:e6:ce:12:df:a2:1d:f1:4f:04:f6:fb: e9:44:c4:16:b6:1f:54:98:eb:cf:08:61:e1:92:5b: fa:88:f2:27:22:2e:9a:08:43:a2:a2:f0:36:01:e1: a7:11:68:02:9f:ed:93:ab:cd:00:4b:22:84:f5:e5: 8b:ae:9a:9f:f7:6f:5c:df:73:fc:af:b0:2e:0d:c0: ca:eb:44:29:e8:85:48:b8:ef:ea:0d:4a:84:4a:64: f5:6a:32:e9:4d:35:ef:51:ca:83:c6:6e:14:ff:d8: 76:86:f3:24:9d:dd:c0:35:2b:0d:10:0d:2e:73:91: ac:f7:35:17:de:a2:de:99:6a:41:97:b9:4a:cb:be: 57:7c:e2:52:f8:15:47:08:cd:fb:ea:c7:bf:4c:5e: 65:86:d3:0c:9b:e8:cf:aa:ae:d6:c5:29:2c:2b:56: 46:95:ef:b5:ed:96:31:0c:7a:58:e7:60:3b:a7:83: 4f:f2:bb:f3:e1:7c:53:a4:00:5e:71:93:c5:2e:1b: 09:56:13:23:be:ae:31:0e:40:87:c8:82:05:29:94: d8:6a:6f:2a:78:89:aa:5a:db:29:cc:52:ca:05:f6: 5c:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:FE:80:78:63:41:5B:15:00:08:15:88:E9:03:45:2C:E8:FC:2A:00 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65567a94-d95d-47b7-8408-7d05fa62f0ba.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.137.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8e:e7:61:b3:ed:14:53:28:bf:92:02:ac:8d:19:89:67:60:73: 06:34:6f:71:79:77:a7:3e:69:ab:c0:fa:1a:58:aa:1c:4a:0a: 3e:dc:b7:9c:7e:a1:54:94:99:a7:6d:91:c5:f7:0a:c8:24:97: fe:0e:d3:ee:29:6e:87:d8:6e:02:c0:c1:43:a9:ad:31:a5:30: 53:dc:7f:a9:0b:39:87:c8:89:78:53:ff:84:5a:6d:c5:f1:a5: 65:9b:2d:23:38:b6:d6:ab:2b:d2:9d:69:fa:0c:8b:b6:d5:9e: f1:a2:a4:01:68:fc:9c:ae:83:e9:06:ee:e6:56:b0:aa:d4:da: f7:21:43:80:19:95:27:83:1d:39:71:42:58:ec:9d:e2:f3:56: 52:34:30:5e:64:e2:99:d1:3f:19:59:60:0b:0a:ec:68:c4:20: 9c:50:90:5f:b8:4b:68:dc:f9:be:e9:a7:46:c6:20:ac:fc:19: 99:3a:49:68:c2:1e:a5:14:38:72:a4:c9:0d:c1:27:65:9e:a2: 10:c8:97:d9:15:68:43:aa:4c:e3:23:d5:ef:63:f9:42:aa:ff: be:57:bf:84:d5:33:3b:01:4b:d7:1d:a3:7b:db:0e:46:23:93: ba:b4:76:1a:6f:b2:c0:f4:90:f5:7e:41:e6:0c:40:32:c0:79: d1:7d:0a:0b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUM6i4fuWq5SKb1G+1hMDjWPNyvwAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAyMTE1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYmQxZmFkZjM4ZGFiNzM0NDI4ZjI2MDcxMjBhZDk5OTk0 MWY2MTk0ZTdlMzI2MTEzZmE4ZmI2N2VmM2UyMjNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCs1J+XJr2lcQ+tnvS+UVQ0cRehYrSvW/x8s1RN11QyvrTm zhLfoh3xTwT2++lExBa2H1SY688IYeGSW/qI8iciLpoIQ6Ki8DYB4acRaAKf7ZOr zQBLIoT15Yuump/3b1zfc/yvsC4NwMrrRCnohUi47+oNSoRKZPVqMulNNe9RyoPG bhT/2HaG8ySd3cA1Kw0QDS5zkaz3NRfeot6ZakGXuUrLvld84lL4FUcIzfvqx79M XmWG0wyb6M+qrtbFKSwrVkaV77XtljEMeljnYDung0/yu/PhfFOkAF5xk8UuGwlW EyO+rjEOQIfIggUplNhqbyp4iapa2ynMUsoF9lzzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG/6AeGNBWxUACBWI6QNFLOj8KgAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1NTY3YTk0LWQ5NWQtNDdiNy04NDA4LTdkMDVmYTYyZjBiYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBsiTANBgkqhkiG9w0BAQsFAAOCAQEAjudhs+0UUyi/kgKsjRmJZ2BzBjRv cXl3pz5pq8D6GliqHEoKPty3nH6hVJSZp22RxfcKyCSX/g7T7iluh9huAsDBQ6mt MaUwU9x/qQs5h8iJeFP/hFptxfGlZZstIzi21qsr0p1p+gyLttWe8aKkAWj8nK6D 6Qbu5lawqtTa9yFDgBmVJ4MdOXFCWOyd4vNWUjQwXmTimdE/GVlgCwrsaMQgnFCQ X7hLaNz5vumnRsYgrPwZmTpJaMIepRQ4cqTJDcEnZZ6iEMiX2RVoQ6pM4yPV72P5 Qqr/vle/hNUzOwFL1x2je9sORiOTurR2Gm+ywPSQ9X5B5gxAMsB50X0KCw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:28 2026 by rpki-client