$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68af9002-6d9c-4a97-b412-41140a596dc9.roa File: 68af9002-6d9c-4a97-b412-41140a596dc9.roa (raw, json) Hash identifier: oZdwmfaFKQHD9fDL5zK4hky/VOLrsRFyj9eZ93nm5z8= Subject key identifier: 8D:01:A8:A1:6A:D4:0D:FF:2A:A8:1D:0F:34:F1:82:74:83:F4:D4:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27007FC18FBDBCB045AD2F0AF18E846867133622 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68af9002-6d9c-4a97-b412-41140a596dc9.roa Signing time: Sun 15 Feb 2026 00:10:11 +0000 ROA not before: Sun 15 Feb 2026 00:10:11 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.56.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:00:7f:c1:8f:bd:bc:b0:45:ad:2f:0a:f1:8e:84:68:67:13:36:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:10:11 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=17c8ccbb07c57b55231a32b69ed3ac1b59ce8757dff43ce376e523655fbb199f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:cd:7c:df:0b:40:aa:32:c7:7e:c9:fa:c5:7e: 9d:79:25:cd:59:bb:86:f7:db:ad:b9:d1:b4:08:ee: 6d:c7:0a:a2:22:40:6b:ed:41:ce:12:90:ae:50:9a: 95:b9:3e:2f:57:60:9c:4d:1a:8b:5e:f4:28:30:7c: 5a:a7:62:2d:a8:cd:f7:a2:b4:12:b0:fa:89:1e:be: 66:8a:a1:88:25:04:98:fe:42:36:08:f3:28:22:2e: d0:a7:d7:6c:32:b7:c5:29:fe:af:28:92:a9:c0:b1: 61:0b:65:36:0e:d0:29:b9:cb:a1:65:a6:30:43:2e: 33:03:67:37:91:54:ef:0c:a9:d1:b9:56:6a:f6:78: 45:46:04:20:3f:f6:d5:5f:25:87:20:c2:3e:38:24: 8e:6a:6b:48:b6:23:8a:d8:b3:f0:0b:21:08:67:c9: a4:a5:30:9a:07:a6:03:58:59:d5:a9:bd:81:a1:7a: 8a:44:be:b5:e7:de:32:1a:75:3a:8b:4b:0f:98:af: a8:c2:ca:d3:31:b7:f0:ac:91:c6:2c:0f:b2:db:c7: ba:d5:fc:7c:e7:9e:cb:87:fb:94:f8:3e:0f:ef:bb: 2b:eb:e8:a2:b3:2a:9f:68:8b:1d:8d:b9:33:c1:d7: d6:0d:2e:ae:b6:52:a5:c6:1c:41:13:38:8e:67:f0: 2f:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:01:A8:A1:6A:D4:0D:FF:2A:A8:1D:0F:34:F1:82:74:83:F4:D4:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/68af9002-6d9c-4a97-b412-41140a596dc9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.56.0/21 Signature Algorithm: sha256WithRSAEncryption cb:2f:c0:37:71:07:78:e6:ed:6c:b8:f9:ba:5a:18:2f:76:1f: 70:c9:10:26:12:52:d6:77:7a:48:36:70:fa:40:6a:81:75:e9: 42:95:c5:1f:38:4a:94:39:7c:f9:fd:1d:3d:c5:92:a4:00:2f: e1:0e:22:3e:ea:d0:fb:0c:6c:c3:af:05:d7:47:25:00:bf:bc: bc:66:b5:13:d7:43:24:8c:85:25:51:2e:a5:d6:3a:f8:0e:e1: ec:53:98:56:62:41:3d:46:a8:62:db:4f:48:62:75:0a:a9:70: 02:a8:a1:71:86:fc:1d:66:57:9c:e9:b1:5e:5c:a0:91:4c:e5: fb:b4:ac:28:98:bf:30:d7:6b:07:73:e1:73:f7:9b:9e:83:9e: e7:25:7b:56:b5:c9:80:e2:fa:e1:4d:d7:2f:2b:97:33:e4:2b: b3:57:de:87:c4:16:a4:d4:54:46:da:84:9a:23:bc:bd:9c:29: 1f:57:66:31:72:f8:4d:9a:ba:9f:b7:2c:9b:4d:69:31:37:3d: 92:29:83:ba:35:5b:38:7d:e7:ac:df:87:de:fc:45:2d:8f:71: 5f:41:88:c9:24:9f:f8:56:d3:bd:16:1c:52:48:9f:4c:67:2c: 5e:e2:c6:40:7c:0b:51:4e:af:ac:b8:56:66:f7:78:d0:60:22: 8b:81:40:f4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJwB/wY+9vLBFrS8K8Y6EaGcTNiIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAxMDExWhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxN2M4Y2NiYjA3YzU3YjU1MjMxYTMyYjY5ZWQzYWMxYjU5 Y2U4NzU3ZGZmNDNjZTM3NmU1MjM2NTVmYmIxOTlmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnzXzfC0CqMsd+yfrFfp15Jc1Zu4b326250bQI7m3HCqIi QGvtQc4SkK5QmpW5Pi9XYJxNGote9CgwfFqnYi2ozfeitBKw+okevmaKoYglBJj+ QjYI8ygiLtCn12wyt8Up/q8okqnAsWELZTYO0Cm5y6FlpjBDLjMDZzeRVO8MqdG5 Vmr2eEVGBCA/9tVfJYcgwj44JI5qa0i2I4rYs/ALIQhnyaSlMJoHpgNYWdWpvYGh eopEvrXn3jIadTqLSw+Yr6jCytMxt/CskcYsD7Lbx7rV/HznnsuH+5T4Pg/vuyvr 6KKzKp9oix2NuTPB19YNLq62UqXGHEETOI5n8C9fAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjQGooWrUDf8qqB0PNPGCdIP01G4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY4YWY5MDAyLTZkOWMtNGE5Ny1iNDEyLTQxMTQwYTU5NmRjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjljgwDQYJKoZIhvcNAQELBQADggEBAMsvwDdxB3jm7Wy4+bpaGC92H3DJ ECYSUtZ3ekg2cPpAaoF16UKVxR84SpQ5fPn9HT3FkqQAL+EOIj7q0PsMbMOvBddH JQC/vLxmtRPXQySMhSVRLqXWOvgO4exTmFZiQT1GqGLbT0hidQqpcAKooXGG/B1m V5zpsV5coJFM5fu0rCiYvzDXawdz4XP3m56Dnucle1a1yYDi+uFN1y8rlzPkK7NX 3ofEFqTUVEbahJojvL2cKR9XZjFy+E2aup+3LJtNaTE3PZIpg7o1Wzh956zfh978 RS2PcV9BiMkkn/hW070WHFJIn0xnLF7ixkB8C1FOr6y4Vmb3eNBgIouBQPQ= -----END CERTIFICATE-----Generated at Mon Mar 2 05:40:41 2026 by rpki-client