$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa File: 65b2ca30-4204-45d1-b5e7-a65a4f605125.roa (raw, json) Hash identifier: 1sLC8gsWMZiJyUI+1nISuOzIvU0cwfnyxzVMHsoN6ZE= Subject key identifier: F4:2E:64:34:14:E7:4E:F2:A6:ED:71:AA:10:B1:9B:3A:63:EB:15:4A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7AACA3C303A3CED826499D2D0274DE85EC57CC46 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa Signing time: Fri 13 Feb 2026 00:11:33 +0000 ROA not before: Fri 13 Feb 2026 00:11:33 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 22394 IP address blocks: 139.56.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:ac:a3:c3:03:a3:ce:d8:26:49:9d:2d:02:74:de:85:ec:57:cc:46 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:11:33 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=da63396f57d46de01ba40040691a649b93e4602db0b1c0952a77268e7ae46c89, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:17:cc:ac:1d:fc:24:fc:0a:1a:01:91:96:83: d6:e3:98:ad:4a:e7:43:3b:e8:55:91:06:1a:f5:26: ac:d3:c0:d6:58:2d:e4:c7:ae:a7:cc:f6:42:82:02: 10:e2:12:c5:00:63:79:cb:23:a5:1f:13:60:54:68: 55:e8:cc:b9:91:ea:3e:0f:00:de:00:d8:3d:c5:e7: 6e:c5:c7:a1:1f:45:ee:4a:97:67:8b:b2:f4:a7:f3: 7b:3b:ce:52:fb:c1:09:d7:99:2c:a4:29:62:39:4a: aa:c8:ad:9d:2a:a0:26:64:83:d2:a3:85:03:48:a5: 45:db:18:93:24:98:9e:2a:ef:a8:5a:5b:ca:c0:1a: d1:f5:6b:6a:0b:08:1f:ff:f2:fc:19:14:05:67:bb: 20:14:fe:ce:34:33:e0:ef:40:3f:54:47:cb:ca:e4: f7:0a:5d:6d:40:78:c0:e6:1b:23:bd:cf:43:13:8c: 27:cc:78:e8:ad:d4:1e:c4:6c:26:34:28:29:23:ef: f4:81:e9:46:c5:ce:73:30:0b:b5:a7:9e:ec:90:1f: 70:2a:e6:30:42:2c:90:a3:42:70:a9:a7:3e:dc:b4: de:26:4e:34:fa:43:a5:c0:ba:1a:0e:91:a8:03:cc: d0:1c:6d:ae:9a:8f:16:70:ad:b9:96:a1:36:ad:2a: 93:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:2E:64:34:14:E7:4E:F2:A6:ED:71:AA:10:B1:9B:3A:63:EB:15:4A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/65b2ca30-4204-45d1-b5e7-a65a4f605125.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 139.56.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:f5:0b:8e:7d:84:32:da:6d:97:ed:6a:fa:bc:0a:fe:73:aa: 36:4b:7c:14:ef:78:40:1b:c5:56:28:ac:5d:14:a3:15:e7:11: 6d:5d:23:ed:0e:d8:a8:a1:cf:20:97:9b:b6:e3:13:18:58:15: c0:4a:0c:c4:f8:a9:d9:d1:ea:b4:56:41:d0:31:db:9f:3b:67: 7c:85:d4:c8:4d:dd:d5:09:62:2a:c2:86:c3:4b:10:90:1c:12: 55:ce:75:6b:de:cc:b2:a0:4c:94:26:85:a9:13:1e:b9:fe:d9: 2b:71:b0:bb:49:66:ba:40:e8:d6:47:1e:92:b9:ba:b9:36:84: e1:54:bb:8d:9d:69:36:75:a9:33:4d:fe:b3:e2:68:fa:d0:c5: d7:5e:be:f3:c7:fa:06:0f:1b:4a:e1:74:a6:dc:94:e6:8e:24: f7:59:e8:f6:40:62:be:0c:20:9f:ce:fb:d5:fc:98:47:e0:8a: cf:bd:f5:cc:d7:65:e2:fd:8b:45:9b:df:8d:52:54:33:78:f1: 43:a4:7f:2b:69:a9:cf:97:3a:8a:d8:c4:c2:4c:26:26:f5:05: 09:a4:c9:e1:b6:00:dd:e0:7c:6e:81:71:56:ed:15:de:50:36: 29:22:68:e4:3f:4d:d4:b6:58:ff:4a:9b:8f:dd:2e:d6:d9:41: 36:4a:14:c4 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeqyjwwOjztgmSZ0tAnTehexXzEYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAxMTMzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTYzMzk2ZjU3ZDQ2ZGUwMWJhNDAwNDA2OTFhNjQ5Yjkz ZTQ2MDJkYjBiMWMwOTUyYTc3MjY4ZTdhZTQ2Yzg5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDcF8ysHfwk/AoaAZGWg9bjmK1K50M76FWRBhr1JqzTwNZY LeTHrqfM9kKCAhDiEsUAY3nLI6UfE2BUaFXozLmR6j4PAN4A2D3F527Fx6EfRe5K l2eLsvSn83s7zlL7wQnXmSykKWI5SqrIrZ0qoCZkg9KjhQNIpUXbGJMkmJ4q76ha W8rAGtH1a2oLCB//8vwZFAVnuyAU/s40M+DvQD9UR8vK5PcKXW1AeMDmGyO9z0MT jCfMeOit1B7EbCY0KCkj7/SB6UbFznMwC7WnnuyQH3Aq5jBCLJCjQnCppz7ctN4m TjT6Q6XAuhoOkagDzNAcba6ajxZwrbmWoTatKpOZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU9C5kNBTnTvKm7XGqELGbOmPrFUowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY1YjJjYTMwLTQyMDQtNDVkMS1iNWU3LWE2NWE0ZjYwNTEyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCLODANBgkqhkiG9w0BAQsFAAOCAQEAJvULjn2EMtptl+1q+rwK/nOqNkt8 FO94QBvFViisXRSjFecRbV0j7Q7YqKHPIJebtuMTGFgVwEoMxPip2dHqtFZB0DHb nztnfIXUyE3d1QliKsKGw0sQkBwSVc51a97MsqBMlCaFqRMeuf7ZK3Gwu0lmukDo 1kcekrm6uTaE4VS7jZ1pNnWpM03+s+Jo+tDF116+88f6Bg8bSuF0ptyU5o4k91no 9kBivgwgn8771fyYR+CKz731zNdl4v2LRZvfjVJUM3jxQ6R/K2mpz5c6itjEwkwm JvUFCaTJ4bYA3eB8boFxVu0V3lA2KSJo5D9N1LZY/0qbj90u1tlBNkoUxA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:29 2026 by rpki-client