$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa File: 6a62da10-7a91-4f00-8d90-807e784a45e8.roa (raw, json) Hash identifier: tEYcNvUggLOk1TZWnQdGVu8KjwvPtK/kAoV2iVdFGkY= Subject key identifier: 8E:C0:ED:C5:A9:3E:43:62:CA:2C:F6:89:A8:30:B8:94:52:38:62:21 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 022E55D78D6FF7F6376D1B7BA163001C607BA4E9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa Signing time: Wed 25 Feb 2026 01:40:34 +0000 ROA not before: Wed 25 Feb 2026 01:40:34 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.23.96.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:2e:55:d7:8d:6f:f7:f6:37:6d:1b:7b:a1:63:00:1c:60:7b:a4:e9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:40:34 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=2720c0810bb133bba6d9f2c79d5946e18d0d96165b598b81397d6c05c29920a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ae:d5:14:8c:54:54:0a:bf:21:c4:3b:1c:13: 7e:d5:a3:7a:85:46:5f:1c:f4:d6:f9:76:2a:7f:31: cf:a3:99:c9:86:74:11:d0:22:de:90:5a:57:b6:ed: c8:f4:37:19:23:9a:9b:8d:60:27:10:87:3c:2f:3c: 8d:97:08:f3:03:c6:7a:14:38:c4:fc:0b:b1:5d:e1: 6e:2d:df:a4:a5:dd:d2:5b:76:eb:15:ba:79:16:2a: 50:1f:27:02:39:47:29:af:ee:8d:45:46:e0:b6:e7: 72:64:52:b1:84:08:fe:ee:f4:73:99:bf:a1:9a:ce: fb:a4:18:ae:87:6c:9d:7d:fc:38:80:88:1b:b3:54: 08:86:2f:28:d3:40:58:13:b6:af:d6:06:29:10:75: b5:e9:4d:c7:f2:d6:8d:a3:e1:01:b3:3b:2e:84:68: 55:33:95:dd:61:18:bd:ad:2b:06:ae:34:77:d7:db: 02:88:d4:19:c2:be:d9:3b:5c:8e:55:e9:0c:49:38: fe:4c:72:27:c4:79:31:86:42:8b:97:47:b9:75:e3: c0:80:36:71:db:0d:09:e1:2e:83:17:b9:12:82:b8: a4:39:1e:30:1b:86:c5:71:cf:91:9d:94:fd:c8:28: d3:12:38:35:07:78:6d:c6:65:64:f7:ce:20:4a:0f: dc:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:C0:ED:C5:A9:3E:43:62:CA:2C:F6:89:A8:30:B8:94:52:38:62:21 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6a62da10-7a91-4f00-8d90-807e784a45e8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.23.96.0/19 Signature Algorithm: sha256WithRSAEncryption 91:33:df:19:37:f2:19:e2:29:f7:11:a8:04:6d:b2:5a:41:3a: ea:35:7b:84:d0:6c:d5:e8:9f:93:6d:1b:53:18:a0:3a:6e:cf: bd:fb:0a:b4:21:f1:e8:68:19:60:f0:9d:88:16:2f:a2:90:ce: 6b:b0:c5:7e:bd:20:8a:73:a0:e3:f4:05:17:d0:d5:83:bf:ca: fe:d8:84:70:42:5c:0d:ea:18:54:d4:91:4a:c9:e1:35:52:18: fa:92:4e:0d:50:38:48:5b:08:e5:01:e0:62:d3:16:ba:ce:0c: a6:87:46:3a:a4:04:de:97:74:c1:da:88:9e:de:24:55:ba:72: c8:65:99:2f:6d:ea:f7:c6:da:0d:bc:7d:33:31:d8:0c:36:61: 1e:5e:06:7d:33:1c:ef:61:4c:13:35:31:dd:e9:1f:48:2f:27: a4:6f:3a:f9:2b:8c:ed:0d:52:bd:5c:8b:cd:e9:f6:05:70:1b: 13:b4:fb:09:e9:48:db:ef:5d:c8:10:99:79:72:09:e0:cb:dd: 0a:7f:11:92:00:b4:9d:cd:b1:3b:a8:02:ff:ea:12:8f:08:70: 87:9b:38:bd:c6:fd:71:2e:52:8f:a7:14:29:eb:94:1e:a3:57: 33:da:1d:79:4b:68:2a:ff:49:9d:d9:ea:ac:79:a8:a5:1f:1a: 3a:a7:ca:2a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAi5V141v9/Y3bRt7oWMAHGB7pOkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDE0MDM0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNzIwYzA4MTBiYjEzM2JiYTZkOWYyYzc5ZDU5NDZlMThk MGQ5NjE2NWI1OThiODEzOTdkNmMwNWMyOTkyMGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9rtUUjFRUCr8hxDscE37Vo3qFRl8c9Nb5dip/Mc+jmcmG dBHQIt6QWle27cj0NxkjmpuNYCcQhzwvPI2XCPMDxnoUOMT8C7Fd4W4t36Sl3dJb dusVunkWKlAfJwI5Rymv7o1FRuC253JkUrGECP7u9HOZv6GazvukGK6HbJ19/DiA iBuzVAiGLyjTQFgTtq/WBikQdbXpTcfy1o2j4QGzOy6EaFUzld1hGL2tKwauNHfX 2wKI1BnCvtk7XI5V6QxJOP5McifEeTGGQouXR7l148CANnHbDQnhLoMXuRKCuKQ5 HjAbhsVxz5GdlP3IKNMSODUHeG3GZWT3ziBKD9zHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUjsDtxak+Q2LKLPaJqDC4lFI4YiEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZhNjJkYTEwLTdhOTEtNGYwMC04ZDkwLTgwN2U3ODRhNDVlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAUXF2AwDQYJKoZIhvcNAQELBQADggEBAJEz3xk38hniKfcRqARtslpBOuo1 e4TQbNXon5NtG1MYoDpuz737CrQh8ehoGWDwnYgWL6KQzmuwxX69IIpzoOP0BRfQ 1YO/yv7YhHBCXA3qGFTUkUrJ4TVSGPqSTg1QOEhbCOUB4GLTFrrODKaHRjqkBN6X dMHaiJ7eJFW6cshlmS9t6vfG2g28fTMx2Aw2YR5eBn0zHO9hTBM1Md3pH0gvJ6Rv OvkrjO0NUr1ci83p9gVwGxO0+wnpSNvvXcgQmXlyCeDL3Qp/EZIAtJ3NsTuoAv/q Eo8IcIebOL3G/XEuUo+nFCnrlB6jVzPaHXlLaCr/SZ3Z6qx5qKUfGjqnyio= -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:37 2026 by rpki-client