$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa File: 683f0f25-6fc4-4076-b464-0eae077d79de.roa (raw, json) Hash identifier: gAGmeY09N8dKvUWru2Vvny70jRgTfaWmxFmAHFudrnA= Subject key identifier: 9A:B8:F5:C6:16:A2:A8:9E:FC:E6:39:DD:47:0B:40:2A:86:3E:10:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0869FE7FD623B17614F3936D595DCDB9AC545D20 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa Signing time: Sun 01 Mar 2026 00:30:47 +0000 ROA not before: Sun 01 Mar 2026 00:30:47 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.54.57.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:69:fe:7f:d6:23:b1:76:14:f3:93:6d:59:5d:cd:b9:ac:54:5d:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:30:47 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=9dcd78713d799447d3dabd4b77275fcd80767d79ea24f0c12544835d71e45d75, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:bd:95:a3:2c:e6:01:aa:d0:66:5a:82:06:6a: 51:19:de:8b:bb:a9:a8:4d:8f:aa:88:04:74:e6:5c: 92:7f:09:25:f4:c6:63:ab:05:cf:27:a1:19:26:e3: 9a:05:61:5a:c8:6b:5c:f6:53:7d:02:50:d9:a6:38: ec:b8:60:4a:79:34:83:26:ee:e8:86:41:4f:76:12: 9a:76:e4:25:c6:fb:5b:02:19:fc:e8:75:88:f8:a4: a7:ea:7e:77:37:2a:f0:a7:70:3b:ca:a8:06:92:4b: ef:a5:10:ae:b7:cf:14:d4:f7:87:0c:d4:58:30:aa: 57:40:4e:4d:5d:4d:90:cd:32:54:9f:29:16:73:74: d2:ce:0d:b9:f1:b8:f2:02:de:77:e8:9c:fe:7b:6f: 55:7a:14:62:fa:4b:5a:4a:07:98:c4:81:96:e9:cc: c3:48:0f:47:db:6e:1d:54:be:b7:1c:78:89:8a:4a: 74:28:34:28:ec:e6:b9:00:85:1e:5c:12:82:ef:0b: ef:6c:24:00:1e:bd:6f:cb:59:d1:c7:e9:99:81:8b: 41:a1:b3:fb:d0:69:9f:f5:29:b2:a4:e2:2c:75:fc: c7:02:8c:f9:6e:cc:66:99:78:2b:78:c3:1e:a0:d0: 25:4f:12:c7:03:7f:17:ad:26:50:1c:4e:26:03:8c: db:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9A:B8:F5:C6:16:A2:A8:9E:FC:E6:39:DD:47:0B:40:2A:86:3E:10:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/683f0f25-6fc4-4076-b464-0eae077d79de.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.54.57.0/24 Signature Algorithm: sha256WithRSAEncryption b1:71:0e:fe:9c:a1:a9:53:13:25:71:bd:5f:1a:79:88:d1:06: 4f:f9:40:62:c0:c3:e2:95:c6:4f:73:54:e9:02:7c:c1:5d:c1: f5:50:e9:1d:6a:be:e6:52:29:ef:8e:4a:b7:43:a0:fc:fe:7d: 04:02:0f:37:0b:93:51:a0:fc:d3:0b:93:49:ab:4c:9e:eb:4c: 3e:75:ce:0b:0a:27:35:99:88:ef:7a:18:d8:0f:bd:7c:1a:1e: 8e:6f:7c:8b:9c:d5:1c:33:e1:61:1f:8b:47:36:b1:4f:c4:87: 7d:b3:e8:40:d1:ca:c3:04:e9:6c:8d:42:c8:26:fe:88:59:3a: fb:97:fe:57:7c:46:a1:0b:8b:a5:81:78:ba:0e:04:9c:93:f7: 1f:3b:49:96:a0:e2:74:91:4d:59:16:54:88:21:ce:a8:74:4d: 9a:4e:c8:dd:d3:e0:8c:b9:b7:a4:9e:a0:8a:77:59:c9:54:8c: b5:a9:00:07:2a:25:6c:05:cf:34:bd:c9:73:0f:9c:b4:d0:f4: d1:a6:b4:92:f3:29:c7:86:30:a5:5c:fb:d2:5b:a7:e9:5f:9d: 22:95:70:f3:5f:6a:b9:b2:69:ee:25:37:2d:e2:a4:f6:bc:45: 82:68:95:1f:b6:3a:7d:eb:a9:33:18:73:fe:41:ea:da:95:66: 41:5c:9e:b1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCGn+f9YjsXYU85NtWV3NuaxUXSAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMDQ3WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZGNkNzg3MTNkNzk5NDQ3ZDNkYWJkNGI3NzI3NWZjZDgw NzY3ZDc5ZWEyNGYwYzEyNTQ0ODM1ZDcxZTQ1ZDc1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDsvZWjLOYBqtBmWoIGalEZ3ou7qahNj6qIBHTmXJJ/CSX0 xmOrBc8noRkm45oFYVrIa1z2U30CUNmmOOy4YEp5NIMm7uiGQU92Epp25CXG+1sC GfzodYj4pKfqfnc3KvCncDvKqAaSS++lEK63zxTU94cM1FgwqldATk1dTZDNMlSf KRZzdNLODbnxuPIC3nfonP57b1V6FGL6S1pKB5jEgZbpzMNID0fbbh1UvrcceImK SnQoNCjs5rkAhR5cEoLvC+9sJAAevW/LWdHH6ZmBi0Ghs/vQaZ/1KbKk4ix1/McC jPluzGaZeCt4wx6g0CVPEscDfxetJlAcTiYDjNslAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUmrj1xhaiqJ785jndRwtAKoY+ELUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4M2YwZjI1LTZmYzQtNDA3Ni1iNDY0LTBlYWUwNzdkNzlkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAjNjkwDQYJKoZIhvcNAQELBQADggEBALFxDv6coalTEyVxvV8aeYjRBk/5 QGLAw+KVxk9zVOkCfMFdwfVQ6R1qvuZSKe+OSrdDoPz+fQQCDzcLk1Gg/NMLk0mr TJ7rTD51zgsKJzWZiO96GNgPvXwaHo5vfIuc1Rwz4WEfi0c2sU/Eh32z6EDRysME 6WyNQsgm/ohZOvuX/ld8RqELi6WBeLoOBJyT9x87SZag4nSRTVkWVIghzqh0TZpO yN3T4Iy5t6SeoIp3WclUjLWpAAcqJWwFzzS9yXMPnLTQ9NGmtJLzKceGMKVc+9Jb p+lfnSKVcPNfarmyae4lNy3ipPa8RYJolR+2On3rqTMYc/5B6tqVZkFcnrE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:53 2026 by rpki-client