$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa File: 66e59786-c1f4-4146-bccb-708e47a5469a.roa (raw, json) Hash identifier: twUHQFqHQK5ozUT+bSfJOzzaJ00m2YWn6Gq5tc0Y0Gc= Subject key identifier: 68:F1:DF:4E:8A:32:FA:6C:69:1C:7E:4A:F9:3E:0D:10:C9:5B:F7:1B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7873198F90AE2D5B3A24010FC22499B9022EE83C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa Signing time: Wed 25 Feb 2026 00:41:07 +0000 ROA not before: Wed 25 Feb 2026 00:41:07 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.48.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:73:19:8f:90:ae:2d:5b:3a:24:01:0f:c2:24:99:b9:02:2e:e8:3c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:41:07 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=f86e955699c5689e0f7997a4bfb7c09920c5d92142ea67007b0a01180ca06661, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:3e:4f:08:07:56:09:73:a0:97:27:bf:3e:da: fc:d1:d0:79:c4:ae:71:2c:e2:bd:14:9c:37:9e:22: 3e:f1:73:c9:bb:bd:76:16:67:a0:59:7e:e1:84:5a: b2:62:6e:83:52:64:42:97:d0:e4:aa:da:c8:62:72: 16:e8:7f:50:e3:6f:b0:48:95:ef:f9:f5:5e:89:14: c2:73:78:70:33:64:5c:56:43:f3:26:f2:b8:95:6f: 3e:f1:44:af:42:b4:47:be:e5:92:4b:11:94:ae:94: 35:39:73:8e:2b:48:31:e5:5f:ff:41:e0:8f:9a:97: 2e:40:c5:e6:c6:c7:71:6c:98:ce:28:51:ae:23:c8: 7c:69:37:95:ac:03:58:02:dd:95:88:a8:36:40:0c: 8a:07:fa:17:6d:e2:10:23:a1:8e:66:6e:b1:05:20: d3:c7:28:c0:c0:67:42:de:2a:7a:c1:49:58:d5:e0: da:41:cc:1d:d8:bd:aa:20:8f:41:e3:56:71:75:ad: 69:2c:af:92:23:ed:f0:45:e5:e2:8a:40:92:46:da: 42:f7:59:49:12:dd:1b:0d:10:80:44:5a:e7:49:dd: c3:68:f7:cc:4d:a6:fb:05:68:eb:18:66:9f:81:09: d5:ea:b6:57:4a:07:23:c6:cc:e3:b5:b9:8e:5e:21: 85:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:F1:DF:4E:8A:32:FA:6C:69:1C:7E:4A:F9:3E:0D:10:C9:5B:F7:1B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/66e59786-c1f4-4146-bccb-708e47a5469a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.48.0.0/16 Signature Algorithm: sha256WithRSAEncryption 65:49:3a:2c:81:58:df:fa:80:0a:7c:cf:3a:0f:c3:00:f6:b7: e4:06:f7:d7:3f:7b:65:ab:0e:e7:f8:79:8a:5c:f7:f4:b4:c9: 47:76:2b:ff:2c:94:50:b3:66:e6:7d:88:9a:95:d4:c4:eb:79: 03:72:ef:08:a0:18:f4:68:b6:8c:4e:50:57:94:58:c3:89:47: cb:50:71:f1:bc:1b:c8:60:9d:7e:6a:f2:0e:79:c6:0b:50:94: dd:8d:3c:99:41:38:c9:6f:51:17:6b:32:72:d9:67:23:35:42: 36:1e:18:2c:c5:5a:9e:c7:ae:5b:51:19:d1:99:24:68:35:a0: 59:77:0f:e0:96:17:a9:5f:72:c8:02:5f:3e:39:1c:c7:cf:77: 0d:d4:90:93:b6:81:99:40:90:24:98:a3:f1:d0:4c:66:9f:ff: 23:78:17:37:52:83:7d:9a:df:a9:0c:e6:ed:a8:b2:3c:13:3e: e0:3e:ed:07:aa:cb:e5:1b:ae:bd:b1:84:2d:d0:c4:55:a9:1d: 0d:ad:3b:f6:a0:f8:7f:81:24:45:cb:70:53:a0:bf:fe:06:88: 21:a5:00:79:a7:2f:8a:21:5f:46:ee:17:c2:19:8c:7b:1a:a6: b1:61:7b:1c:73:20:88:08:d5:19:4f:b4:b2:78:d8:f7:ca:7f: bf:5e:fc:82 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeHMZj5CuLVs6JAEPwiSZuQIu6DwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDA0MTA3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmODZlOTU1Njk5YzU2ODllMGY3OTk3YTRiZmI3YzA5OTIw YzVkOTIxNDJlYTY3MDA3YjBhMDExODBjYTA2NjYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqPk8IB1YJc6CXJ78+2vzR0HnErnEs4r0UnDeeIj7xc8m7 vXYWZ6BZfuGEWrJiboNSZEKX0OSq2shichbof1Djb7BIle/59V6JFMJzeHAzZFxW Q/Mm8riVbz7xRK9CtEe+5ZJLEZSulDU5c44rSDHlX/9B4I+aly5AxebGx3FsmM4o Ua4jyHxpN5WsA1gC3ZWIqDZADIoH+hdt4hAjoY5mbrEFINPHKMDAZ0LeKnrBSVjV 4NpBzB3Yvaogj0HjVnF1rWksr5Ij7fBF5eKKQJJG2kL3WUkS3RsNEIBEWudJ3cNo 98xNpvsFaOsYZp+BCdXqtldKByPGzOO1uY5eIYWDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaPHfTooy+mxpHH5K+T4NEMlb9xswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY2ZTU5Nzg2LWMxZjQtNDE0Ni1iY2NiLTcwOGU0N2E1NDY5YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoMDANBgkqhkiG9w0BAQsFAAOCAQEAZUk6LIFY3/qACnzPOg/DAPa35Ab3 1z97ZasO5/h5ilz39LTJR3Yr/yyUULNm5n2ImpXUxOt5A3LvCKAY9Gi2jE5QV5RY w4lHy1Bx8bwbyGCdfmryDnnGC1CU3Y08mUE4yW9RF2syctlnIzVCNh4YLMVanseu W1EZ0ZkkaDWgWXcP4JYXqV9yyAJfPjkcx893DdSQk7aBmUCQJJij8dBMZp//I3gX N1KDfZrfqQzm7aiyPBM+4D7tB6rL5RuuvbGELdDEVakdDa079qD4f4EkRctwU6C/ /gaIIaUAeacviiFfRu4XwhmMexqmsWF7HHMgiAjVGU+0snjY98p/v178gg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:47 2026 by rpki-client