$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c68e2-068c-4875-946d-f411c456d71c.roa File: 696c68e2-068c-4875-946d-f411c456d71c.roa (raw, json) Hash identifier: qt+mKqAV0uesNUFhuRKmBXyi5FoV9hNjXfXQXHt5Bpo= Subject key identifier: 8F:BC:A2:8D:1E:06:AE:5D:A1:DF:AC:24:8C:48:00:79:8C:DD:68:26 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 419059206CC8B98094095864C2E88F07973DAB0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c68e2-068c-4875-946d-f411c456d71c.roa Signing time: Sat 21 Feb 2026 01:11:39 +0000 ROA not before: Sat 21 Feb 2026 01:11:39 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.133.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:90:59:20:6c:c8:b9:80:94:09:58:64:c2:e8:8f:07:97:3d:ab:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:11:39 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=9d6a7c3ec4d3cd01437a382670affeb8275293d7926804f39863f9044056326b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:6c:f5:99:18:fd:63:9e:65:ef:00:7e:07:78: 99:23:95:0b:16:70:79:54:71:55:5b:6d:a9:d2:c8: ba:4e:a9:c6:d2:bf:d5:b9:4f:9f:b5:17:c8:90:13: 2e:eb:0b:fb:61:1f:97:3b:86:fc:e7:2a:ef:a5:2e: 5a:6c:68:83:f8:a7:2b:cf:a8:c9:1f:a4:e7:90:1d: 6f:5d:85:49:4d:df:75:e5:34:6e:d8:be:3e:59:e6: 17:96:7e:04:b1:3b:d0:db:c7:c4:8f:48:bc:2d:94: 8d:ed:2d:64:5c:96:bc:f6:0f:62:81:90:85:fb:58: 4d:ca:e6:c3:46:84:3c:10:4e:70:f1:e5:ca:f4:c6: 82:a9:f8:36:9b:cb:fa:88:66:4e:5f:b2:10:19:57: 8a:59:61:dc:6b:7d:0b:15:16:96:07:c0:aa:0c:ba: 69:c4:c6:9c:85:86:6c:a2:37:9c:fd:e0:57:0a:4b: 84:e3:11:a3:b0:10:11:be:d6:74:d6:d3:c9:d0:13: cb:d6:ea:f8:7c:75:48:72:22:8d:20:e8:f0:db:b1: 30:ba:73:f9:80:0a:8c:62:c8:7e:de:91:9e:e0:5d: 87:e5:21:38:53:91:a8:1c:1e:c8:99:7a:a3:1f:a4: 33:15:b2:b3:e6:d1:6c:18:82:4a:3b:32:f6:1b:06: ce:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:BC:A2:8D:1E:06:AE:5D:A1:DF:AC:24:8C:48:00:79:8C:DD:68:26 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/696c68e2-068c-4875-946d-f411c456d71c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.133.0/24 Signature Algorithm: sha256WithRSAEncryption 70:11:4c:d4:17:d2:6f:7a:54:bd:57:8e:f4:24:b3:bd:87:16: 8e:35:93:e3:6e:31:f9:1b:a9:de:72:e5:eb:ad:9b:8a:60:35: 42:4a:e7:ea:e9:05:c4:ed:fc:b5:ff:35:40:f7:e7:77:f7:ef: 87:e6:f2:7e:5d:9a:e9:a5:96:37:de:db:7b:70:06:80:82:23: dd:c0:5e:c2:14:68:5a:4d:15:34:64:8d:6f:64:cb:64:66:3d: 23:0a:f0:21:de:a0:6e:e5:50:be:9d:1d:9f:f3:22:68:7b:b8: f1:ed:17:72:b4:5b:b9:2b:2e:5c:4b:ba:30:dd:51:18:ca:32: 75:36:f1:cb:0e:f2:04:d1:2c:9e:8f:16:d4:17:6e:b2:70:a7: a5:9b:41:b9:24:13:75:3d:87:72:ef:9a:3f:d5:0f:12:13:ec: 2a:5f:f2:ec:fa:78:7d:f7:c4:67:df:ab:79:35:1d:6a:b1:03: 79:04:5a:16:28:9b:2a:03:08:a4:b1:ca:a0:d0:57:1f:74:72: c9:84:fe:cf:b9:f3:22:60:22:8c:80:2d:60:76:8e:38:22:40: 94:46:6b:54:fd:b1:d0:c2:41:f2:54:a6:9e:6e:57:78:97:f8: d8:25:46:4b:22:a1:65:dc:77:c9:2d:02:f4:91:25:af:38:63: 08:f4:20:fe -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQZBZIGzIuYCUCVhkwuiPB5c9qwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDExMTM5WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZDZhN2MzZWM0ZDNjZDAxNDM3YTM4MjY3MGFmZmViODI3 NTI5M2Q3OTI2ODA0ZjM5ODYzZjkwNDQwNTYzMjZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLbPWZGP1jnmXvAH4HeJkjlQsWcHlUcVVbbanSyLpOqcbS v9W5T5+1F8iQEy7rC/thH5c7hvznKu+lLlpsaIP4pyvPqMkfpOeQHW9dhUlN33Xl NG7Yvj5Z5heWfgSxO9Dbx8SPSLwtlI3tLWRclrz2D2KBkIX7WE3K5sNGhDwQTnDx 5cr0xoKp+Daby/qIZk5fshAZV4pZYdxrfQsVFpYHwKoMumnExpyFhmyiN5z94FcK S4TjEaOwEBG+1nTW08nQE8vW6vh8dUhyIo0g6PDbsTC6c/mACoxiyH7ekZ7gXYfl IThTkagcHsiZeqMfpDMVsrPm0WwYgko7MvYbBs4TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUj7yijR4Grl2h36wkjEgAeYzdaCYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzY5NmM2OGUyLTA2OGMtNDg3NS05NDZkLWY0MTFjNDU2ZDcxYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsIUwDQYJKoZIhvcNAQELBQADggEBAHARTNQX0m96VL1XjvQks72HFo41 k+NuMfkbqd5y5eutm4pgNUJK5+rpBcTt/LX/NUD353f374fm8n5dmumlljfe23tw BoCCI93AXsIUaFpNFTRkjW9ky2RmPSMK8CHeoG7lUL6dHZ/zImh7uPHtF3K0W7kr LlxLujDdURjKMnU28csO8gTRLJ6PFtQXbrJwp6WbQbkkE3U9h3Lvmj/VDxIT7Cpf 8uz6eH33xGffq3k1HWqxA3kEWhYomyoDCKSxyqDQVx90csmE/s+58yJgIoyALWB2 jjgiQJRGa1T9sdDCQfJUpp5uV3iX+NglRksioWXcd8ktAvSRJa84Ywj0IP4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:36:36 2026 by rpki-client