$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a4c448f-408f-4002-b06a-b0099e5c6ae9.roa File: 6a4c448f-408f-4002-b06a-b0099e5c6ae9.roa (raw, json) Hash identifier: Od2Nqd7QTNrPhaVuKRLOaif1VCIhwMApYkhOu3sQM6c= Subject key identifier: 19:23:59:4C:4A:97:F5:B1:BD:CA:FD:90:13:64:A8:16:45:6E:D3:EB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 472B68374EBF793A3AD43F42FA966973DA9490D5 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a4c448f-408f-4002-b06a-b0099e5c6ae9.roa Signing time: Tue 24 Feb 2026 01:40:11 +0000 ROA not before: Tue 24 Feb 2026 01:40:11 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 107.21.92.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 47:2b:68:37:4e:bf:79:3a:3a:d4:3f:42:fa:96:69:73:da:94:90:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:40:11 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=daf0d4f1b6f662546222a93fa110494bcb75053b0a68063fa9dff7304470e0d0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ef:b3:08:41:9a:2f:4d:d7:c9:fc:9f:81:f7: 06:1d:de:fe:df:c4:0a:07:4a:91:28:4c:66:a7:6e: 12:87:bc:df:d1:10:e2:a0:59:c7:b1:0c:c4:84:a3: 28:01:74:16:20:3b:b2:e8:52:4e:09:b3:c5:a1:97: a2:de:1e:0a:dc:d9:d6:94:ff:90:8d:da:53:3d:f5: 7b:10:ea:40:87:22:19:be:c1:64:1e:75:a9:75:d4: cf:23:30:08:c1:07:0f:d1:13:02:b6:54:68:66:b6: be:31:d1:f9:91:05:2a:bc:d1:3a:33:22:1e:ad:dc: 19:6b:fb:d0:70:85:55:0b:55:c1:39:5c:7f:08:84: 15:2e:86:57:c9:94:1d:31:a2:46:2e:22:68:c8:91: 96:0d:9a:69:7e:cf:9d:d3:47:08:a7:9d:a4:e3:04: 61:31:49:22:2e:d6:1e:a2:99:90:6d:64:96:32:15: a8:46:ff:e2:7e:11:b6:2c:4a:b1:aa:3d:ae:37:d2: 42:69:ff:48:99:74:2b:33:65:c0:60:47:b1:32:76: d1:56:3e:cc:8f:a6:e2:10:7c:d0:8b:88:0f:bf:e9: 81:07:47:10:f9:c2:07:10:18:d2:0b:48:ff:13:b9: f1:14:7a:b1:76:dd:9a:3b:4e:d0:37:1b:d0:b8:ce: 97:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:23:59:4C:4A:97:F5:B1:BD:CA:FD:90:13:64:A8:16:45:6E:D3:EB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a4c448f-408f-4002-b06a-b0099e5c6ae9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.21.92.0/22 Signature Algorithm: sha256WithRSAEncryption 9a:b0:95:de:8a:b7:cf:76:d4:11:2f:33:27:19:09:f0:98:1e: 0a:79:b1:0d:bc:7e:ec:bd:c7:be:1f:93:6d:48:9d:8d:36:bd: c8:37:ac:0e:cd:95:75:d9:82:80:95:f6:37:03:dd:22:50:20: 8f:45:55:d7:25:66:26:ba:3d:76:0e:44:68:47:3f:78:02:23: 85:c4:80:ec:b2:1e:62:9b:fb:4c:34:c1:46:1d:ea:16:fe:5b: e0:8f:34:aa:dd:8f:28:14:60:79:8c:81:ed:92:98:b8:72:75: b3:f5:b1:8b:ce:d8:62:6d:b7:ed:f1:6c:df:2d:54:7f:40:45: 76:57:27:1d:43:8f:c6:fa:ac:eb:3d:bd:59:c4:5c:80:e0:80: b7:9e:9f:38:5f:2c:be:f0:70:94:68:45:c2:c4:ed:3d:bf:55: 96:b9:4d:eb:7b:20:8c:de:49:3a:ca:c9:77:cc:09:f8:e8:d1: 32:14:1b:4c:9a:c6:4b:13:49:63:37:23:2d:d4:5d:d1:4f:b7: c6:2e:91:d1:74:fc:d3:c4:1b:db:1e:15:b7:f5:24:1c:62:d9: a4:59:05:50:b4:05:96:f5:e1:fa:a1:69:e8:62:71:79:d0:10: 06:7e:ba:5e:7e:8f:66:f8:1e:51:c1:ce:1a:bd:7e:71:60:ac: 6d:58:cd:20 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURytoN06/eTo61D9C+pZpc9qUkNUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDE0MDExWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYWYwZDRmMWI2ZjY2MjU0NjIyMmE5M2ZhMTEwNDk0YmNi NzUwNTNiMGE2ODA2M2ZhOWRmZjczMDQ0NzBlMGQwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCf77MIQZovTdfJ/J+B9wYd3v7fxAoHSpEoTGanbhKHvN/R EOKgWcexDMSEoygBdBYgO7LoUk4Js8Whl6LeHgrc2daU/5CN2lM99XsQ6kCHIhm+ wWQedal11M8jMAjBBw/REwK2VGhmtr4x0fmRBSq80TozIh6t3Blr+9BwhVULVcE5 XH8IhBUuhlfJlB0xokYuImjIkZYNmml+z53TRwinnaTjBGExSSIu1h6imZBtZJYy FahG/+J+EbYsSrGqPa430kJp/0iZdCszZcBgR7EydtFWPsyPpuIQfNCLiA+/6YEH RxD5wgcQGNILSP8TufEUerF23Zo7TtA3G9C4zpdXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGSNZTEqX9bG9yv2QE2SoFkVu0+swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNGM0NDhmLTQwOGYtNDAwMi1iMDZhLWIwMDk5ZTVjNmFlOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJrFVwwDQYJKoZIhvcNAQELBQADggEBAJqwld6Kt8921BEvMycZCfCYHgp5 sQ28fuy9x74fk21InY02vcg3rA7NlXXZgoCV9jcD3SJQII9FVdclZia6PXYORGhH P3gCI4XEgOyyHmKb+0w0wUYd6hb+W+CPNKrdjygUYHmMge2SmLhydbP1sYvO2GJt t+3xbN8tVH9ARXZXJx1Dj8b6rOs9vVnEXIDggLeenzhfLL7wcJRoRcLE7T2/VZa5 Tet7IIzeSTrKyXfMCfjo0TIUG0yaxksTSWM3Iy3UXdFPt8YukdF0/NPEG9seFbf1 JBxi2aRZBVC0BZb14fqhaehicXnQEAZ+ul5+j2b4HlHBzhq9fnFgrG1YzSA= -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:38 2026 by rpki-client