$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa File: 690a6427-0431-4128-b562-6a43d052c2a9.roa (raw, json) Hash identifier: wXX7whPxIOw/1+an0Ak5DYWKDgiVrRid2C2foh0jS2Y= Subject key identifier: 2A:44:90:16:21:87:7E:4F:85:57:FA:0D:C1:1F:5E:B8:FD:B1:A7:D0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 275D90C50C0B59E896728742FBDD621C4C56CEF2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa Signing time: Wed 25 Feb 2026 00:20:56 +0000 ROA not before: Wed 25 Feb 2026 00:20:56 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.23.72.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:5d:90:c5:0c:0b:59:e8:96:72:87:42:fb:dd:62:1c:4c:56:ce:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:20:56 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=3acb04528cf8c4f7a32a4d7f0d726a05c78c784a62a0fdddafd5479cc9dd3c4b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:d1:cf:00:a1:f2:80:01:eb:5e:40:4b:c2:73: 26:7b:ab:99:3f:d1:14:51:b6:6a:04:cd:64:8c:95: 6d:81:1a:95:d0:13:d5:50:3e:fa:53:3b:05:21:64: 71:c3:84:ef:f7:65:42:4d:33:88:85:d7:5d:19:f4: 42:5f:3b:19:66:3f:0d:01:27:16:02:83:5e:77:cf: 5a:8a:4b:5f:e1:26:c1:8f:3c:46:4a:c7:d5:10:5b: 19:ce:32:8c:09:fa:06:e3:16:90:96:7b:02:28:a7: 3b:cb:a3:40:2c:ec:dc:13:7c:80:62:23:c2:3d:4d: c0:16:65:1d:4a:a9:35:8d:89:a5:a2:db:41:62:57: 8c:5e:58:3e:15:47:74:15:e3:bd:c8:79:91:31:f4: f3:eb:f9:3f:8e:0f:29:d7:23:52:65:cf:f9:2f:31: 06:4c:80:8e:ea:0a:41:01:11:4b:e9:a9:2c:3d:d5: 0a:c5:7e:3a:f6:00:c9:4d:01:8d:b1:18:ed:83:a8: bf:4f:d1:87:31:70:da:6e:7e:e9:29:05:4a:72:2b: 4b:ed:75:f0:76:aa:ca:fc:53:44:8e:f7:bf:ac:6a: c3:92:ac:f3:40:6f:3c:14:f5:6c:07:de:b2:27:48: 46:d1:9c:9f:c1:df:ed:ad:df:7c:14:9d:96:66:b8: b0:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2A:44:90:16:21:87:7E:4F:85:57:FA:0D:C1:1F:5E:B8:FD:B1:A7:D0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/690a6427-0431-4128-b562-6a43d052c2a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.72.0/22 Signature Algorithm: sha256WithRSAEncryption a6:5a:dc:73:d5:a1:c8:ae:ee:8f:ab:0d:42:32:32:9d:1b:c5: ea:06:70:0b:26:7e:6e:1a:23:a3:dd:4c:74:62:32:6d:a6:29: 13:6b:8f:0d:9e:52:a4:86:96:de:0a:db:ff:8b:47:f9:ca:c0: 80:17:a9:9b:01:4f:3a:ff:75:1c:27:bb:7f:0f:50:2e:21:f2: 6d:59:0f:ad:fa:bb:85:35:3a:ea:e5:67:23:6e:c6:ea:91:b2: 2a:07:8c:d9:c9:80:a0:57:57:61:f0:38:32:38:57:ad:b0:f6: d0:90:4e:b3:4d:80:83:cc:17:09:cb:c4:4d:34:fc:6f:d1:80: 0c:35:fd:99:28:f9:9b:29:ae:0a:7d:34:77:69:f0:73:01:cc: 88:87:8d:13:98:21:f0:e6:25:b8:13:56:2f:58:6a:49:e4:76: 6f:06:53:4f:55:9f:fd:69:a8:29:8c:87:86:e1:6d:53:0e:bf: 97:71:08:c8:84:d6:ca:20:96:2d:07:5e:47:91:a3:86:ae:04: 56:4c:0f:12:59:58:2c:94:1c:3a:a2:31:7a:38:70:a5:e5:72: f3:98:8b:18:bf:d1:da:a4:31:b4:9a:7e:fc:c5:c2:1d:69:e5: 17:c3:3e:38:ef:b4:73:3a:9d:54:21:28:15:cc:1a:e1:05:53: a9:b4:24:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUJ12QxQwLWeiWcodC+91iHExWzvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAyMDU2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYWNiMDQ1MjhjZjhjNGY3YTMyYTRkN2YwZDcyNmEwNWM3 OGM3ODRhNjJhMGZkZGRhZmQ1NDc5Y2M5ZGQzYzRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCj0c8AofKAAeteQEvCcyZ7q5k/0RRRtmoEzWSMlW2BGpXQ E9VQPvpTOwUhZHHDhO/3ZUJNM4iF110Z9EJfOxlmPw0BJxYCg153z1qKS1/hJsGP PEZKx9UQWxnOMowJ+gbjFpCWewIopzvLo0As7NwTfIBiI8I9TcAWZR1KqTWNiaWi 20FiV4xeWD4VR3QV473IeZEx9PPr+T+ODynXI1Jlz/kvMQZMgI7qCkEBEUvpqSw9 1QrFfjr2AMlNAY2xGO2DqL9P0YcxcNpufukpBUpyK0vtdfB2qsr8U0SO97+sasOS rPNAbzwU9WwH3rInSEbRnJ/B3+2t33wUnZZmuLAVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUKkSQFiGHfk+FV/oNwR9euP2xp9AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5MGE2NDI3LTA0MzEtNDEyOC1iNTYyLTZhNDNkMDUyYzJhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIXF0gwDQYJKoZIhvcNAQELBQADggEBAKZa3HPVociu7o+rDUIyMp0bxeoG cAsmfm4aI6PdTHRiMm2mKRNrjw2eUqSGlt4K2/+LR/nKwIAXqZsBTzr/dRwnu38P UC4h8m1ZD636u4U1OurlZyNuxuqRsioHjNnJgKBXV2HwODI4V62w9tCQTrNNgIPM FwnLxE00/G/RgAw1/Zko+Zsprgp9NHdp8HMBzIiHjROYIfDmJbgTVi9Yaknkdm8G U09Vn/1pqCmMh4bhbVMOv5dxCMiE1sogli0HXkeRo4auBFZMDxJZWCyUHDqiMXo4 cKXlcvOYixi/0dqkMbSafvzFwh1p5RfDPjjvtHM6nVQhKBXMGuEFU6m0JIY= -----END CERTIFICATE-----Generated at Mon Mar 2 02:07:08 2026 by rpki-client