$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa File: 6776af38-515d-4b33-bc1f-9f781cacf369.roa (raw, json) Hash identifier: Jo3BKDS+ksod0T/rgcg2JhdiyUxpA7wL5hsk4DPo+Ls= Subject key identifier: D7:25:F7:48:3D:FA:43:8C:C8:F5:35:D0:CB:34:54:88:CF:A1:4E:D6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6B1FABEECC18F13F199B12E7C2D8FB29EAF65C94 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa Signing time: Tue 24 Feb 2026 02:30:13 +0000 ROA not before: Tue 24 Feb 2026 02:30:13 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.160.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:1f:ab:ee:cc:18:f1:3f:19:9b:12:e7:c2:d8:fb:29:ea:f6:5c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:30:13 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=f8bab89ef778ddbc70d81eb8885749f1f2e7835ad2f129699a7610d966020ccd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:01:8c:16:ce:3f:08:0f:1c:3d:d6:5a:f8:a8: db:a7:dc:d0:3b:88:a9:c8:b5:fc:27:52:e5:eb:75: 56:11:ed:b7:2b:57:fe:3c:31:c8:18:27:9d:ee:05: 14:a5:3f:75:2c:f5:89:df:cd:8b:af:b0:5b:83:56: 68:74:8d:bb:7f:dd:7a:56:08:cd:12:fe:b0:f9:e6: ba:93:d7:12:e0:db:a1:d0:e1:c1:16:a3:07:6d:d3: 44:24:b0:9c:0a:f9:20:b5:c4:30:cb:20:9a:00:76: c6:f6:99:de:b1:39:9c:96:35:a2:4c:a4:42:18:14: e5:14:18:d8:be:1b:b0:9d:88:88:9e:de:d0:4f:ff: 99:2b:a0:e8:99:d4:80:38:6b:ab:00:99:52:00:0f: 3a:da:6d:22:d2:fe:54:3b:45:e6:25:45:4a:21:4a: 9f:c4:7a:57:9b:0a:16:c2:91:ac:b5:e3:2c:fb:e4: ca:39:4d:e4:3a:6b:94:3b:60:92:18:14:c0:07:90: c4:2c:73:d5:bf:60:01:f3:dc:78:ee:bd:78:c5:fe: 0a:29:01:5c:d0:a3:96:aa:8a:55:1a:00:a9:2d:03: 1f:6b:94:c7:51:78:81:28:3e:89:81:2b:0a:10:e9: 43:4f:66:6e:b1:da:0b:91:01:d1:4e:2b:57:69:e8: c4:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:25:F7:48:3D:FA:43:8C:C8:F5:35:D0:CB:34:54:88:CF:A1:4E:D6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6776af38-515d-4b33-bc1f-9f781cacf369.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.160.0/19 Signature Algorithm: sha256WithRSAEncryption 47:ac:ed:21:77:69:6b:8a:a8:10:e6:ca:18:65:ae:12:ea:b3: 1c:95:6d:a5:99:e4:12:e2:35:e5:10:95:7f:6e:d6:2f:64:97: b5:4a:a2:ba:e3:01:69:fb:74:27:b0:eb:2c:d1:39:0c:fe:18: 04:6f:a8:a9:86:19:78:58:8b:7c:8a:dd:71:30:e2:b8:a0:f9: 21:7e:1b:68:ec:04:8d:12:e6:f8:ec:35:9c:9b:4c:45:64:96: 1d:58:39:45:73:40:f6:3f:bc:6a:b4:4b:35:ba:46:8c:99:c8: 16:47:9d:11:2a:36:5c:e8:01:47:f3:cb:d3:09:d1:91:4f:ce: 2b:d2:0c:8b:30:c8:11:5f:dc:9f:c9:7f:a8:1d:02:56:3f:ab: 50:32:86:24:f5:0a:42:40:0f:0c:d0:29:a8:bc:7d:21:6b:30: dd:d8:98:63:2a:19:a9:94:69:c6:31:64:7b:f1:43:1d:85:a2: 04:0b:19:07:7c:f5:87:67:97:95:15:89:bf:e5:56:b1:38:3d: f2:4c:8f:00:d9:32:58:d0:c8:1e:17:75:2a:e4:f6:d0:5c:36: 49:75:09:b4:ef:46:24:be:d7:50:95:28:60:80:69:82:b6:60: 2d:5e:97:69:36:94:e1:d2:8f:aa:81:41:78:2e:2c:b2:aa:86: b5:10:4e:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUax+r7swY8T8ZmxLnwtj7Ker2XJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMDEzWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmOGJhYjg5ZWY3NzhkZGJjNzBkODFlYjg4ODU3NDlmMWYy ZTc4MzVhZDJmMTI5Njk5YTc2MTBkOTY2MDIwY2NkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGAYwWzj8IDxw91lr4qNun3NA7iKnItfwnUuXrdVYR7bcr V/48McgYJ53uBRSlP3Us9YnfzYuvsFuDVmh0jbt/3XpWCM0S/rD55rqT1xLg26HQ 4cEWowdt00QksJwK+SC1xDDLIJoAdsb2md6xOZyWNaJMpEIYFOUUGNi+G7CdiIie 3tBP/5kroOiZ1IA4a6sAmVIADzrabSLS/lQ7ReYlRUohSp/EelebChbCkay14yz7 5Mo5TeQ6a5Q7YJIYFMAHkMQsc9W/YAHz3HjuvXjF/gopAVzQo5aqilUaAKktAx9r lMdReIEoPomBKwoQ6UNPZm6x2guRAdFOK1dp6MRNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1yX3SD36Q4zI9TXQyzRUiM+hTtYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY3NzZhZjM4LTUxNWQtNGIzMy1iYzFmLTlmNzgxY2FjZjM2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVrFKAwDQYJKoZIhvcNAQELBQADggEBAEes7SF3aWuKqBDmyhhlrhLqsxyV baWZ5BLiNeUQlX9u1i9kl7VKorrjAWn7dCew6yzROQz+GARvqKmGGXhYi3yK3XEw 4rig+SF+G2jsBI0S5vjsNZybTEVklh1YOUVzQPY/vGq0SzW6RoyZyBZHnREqNlzo AUfzy9MJ0ZFPzivSDIswyBFf3J/Jf6gdAlY/q1AyhiT1CkJADwzQKai8fSFrMN3Y mGMqGamUacYxZHvxQx2FogQLGQd89Ydnl5UVib/lVrE4PfJMjwDZMljQyB4XdSrk 9tBcNkl1CbTvRiS+11CVKGCAaYK2YC1el2k2lOHSj6qBQXguLLKqhrUQTrA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:11 2026 by rpki-client