$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d915e11-1ecf-426d-a2ad-f4d722628680.roa File: 6d915e11-1ecf-426d-a2ad-f4d722628680.roa (raw, json) Hash identifier: 2oSyCD3wnF+4oSijwKWW7dAFgWZ6gCDQ9HYxqVpUKXs= Subject key identifier: 10:78:06:6D:26:94:0B:FD:56:E3:D1:EE:59:40:33:BA:3C:31:BE:08 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6DFCA46F985FDCAF97A6F16F0379D58246DFF301 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d915e11-1ecf-426d-a2ad-f4d722628680.roa Signing time: Tue 24 Feb 2026 02:11:22 +0000 ROA not before: Tue 24 Feb 2026 02:11:22 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.192.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:fc:a4:6f:98:5f:dc:af:97:a6:f1:6f:03:79:d5:82:46:df:f3:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:11:22 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=854b42024c9c7eb594e4871e180e88f89fe72062075ff49bd1848076d8279c1b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:23:46:4f:32:fb:11:54:2a:0d:fc:a2:6c:e3: cc:3d:db:0e:37:93:17:38:29:86:65:9b:97:e3:4f: 43:29:94:86:9e:4d:1a:86:d3:63:f7:25:f8:cf:5e: bf:a7:ab:95:73:66:c8:dc:af:5f:fe:c8:1e:29:51: b8:2b:57:dc:04:87:a9:b1:a5:a8:84:8b:de:f9:22: ba:18:4b:4f:b4:26:bc:e8:d4:45:3b:42:53:13:af: 8b:b8:81:f2:5a:b0:d9:5d:38:bc:89:26:a6:07:40: 3f:d9:0f:67:98:9d:ee:ba:c1:62:6e:9e:7e:06:2b: 40:8a:6c:59:6b:ee:39:e5:89:42:2c:4c:c2:00:00: 70:d4:f3:b3:f3:30:70:6a:84:94:ca:65:19:16:6f: 15:2e:3c:1f:29:f8:5d:90:41:8d:48:39:c6:49:80: ed:25:f3:47:2a:e6:aa:5b:4c:6f:b9:ff:85:62:6a: fe:89:4b:89:2f:d7:bc:8a:1b:07:8a:46:ed:11:28: ac:04:b9:03:25:7c:1b:fb:d8:12:9e:d4:60:7e:72: fa:0e:a1:db:f9:94:14:de:b8:ec:4d:15:b8:c2:5a: a8:a3:b1:16:5c:cb:d5:34:12:c2:b4:5a:25:6c:94: f1:02:66:ed:43:a8:23:6e:ff:6f:a1:bc:0a:a1:24: e0:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:78:06:6D:26:94:0B:FD:56:E3:D1:EE:59:40:33:BA:3C:31:BE:08 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6d915e11-1ecf-426d-a2ad-f4d722628680.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 58:da:7e:9f:54:e2:57:6d:79:48:a3:81:37:b9:88:cc:7c:7a: 45:cf:fb:8c:c1:df:3e:0a:1d:2d:93:1b:80:f7:77:e3:8d:63: 66:52:ff:66:de:73:7d:30:ec:30:7a:1c:01:2a:35:c1:3f:69: a0:7d:a7:bc:c4:50:e6:7f:5e:17:7a:62:55:98:e1:47:dc:f3: 6d:4d:6a:e0:ea:f5:e9:f9:6a:cb:03:91:9c:32:02:0d:85:65: 1c:1a:50:f6:2c:d9:a7:03:7c:d1:44:89:04:07:00:ce:1d:3c: 6d:5e:27:08:20:a0:be:51:87:84:81:3c:f7:cd:96:7c:31:c1: 81:5c:6f:ec:2a:90:ff:c4:97:9f:e2:17:69:6d:25:6e:ba:b2: b3:fb:79:9e:6a:30:d7:cf:6b:ce:67:e4:dd:2a:a5:c4:aa:64: 1f:92:1f:76:b3:f6:fa:c9:fb:b3:a0:e6:65:17:a9:6f:cc:b9: 54:9f:c7:7a:50:40:f5:d3:a9:83:a1:f6:1b:73:d9:62:00:ce: 69:45:2c:f3:06:a7:4d:19:d8:88:d4:8a:14:72:ec:03:d5:0d: b3:f2:84:55:74:b0:54:bc:82:77:f4:32:93:e4:c8:74:3c:28: f0:43:30:95:b3:cb:18:01:ff:a2:d8:60:24:14:ca:f1:bc:9b: 27:3f:0a:41 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUbfykb5hf3K+XpvFvA3nVgkbf8wEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIxMTIyWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4NTRiNDIwMjRjOWM3ZWI1OTRlNDg3MWUxODBlODhmODlm ZTcyMDYyMDc1ZmY0OWJkMTg0ODA3NmQ4Mjc5YzFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0I0ZPMvsRVCoN/KJs48w92w43kxc4KYZlm5fjT0MplIae TRqG02P3JfjPXr+nq5VzZsjcr1/+yB4pUbgrV9wEh6mxpaiEi975IroYS0+0Jrzo 1EU7QlMTr4u4gfJasNldOLyJJqYHQD/ZD2eYne66wWJunn4GK0CKbFlr7jnliUIs TMIAAHDU87PzMHBqhJTKZRkWbxUuPB8p+F2QQY1IOcZJgO0l80cq5qpbTG+5/4Vi av6JS4kv17yKGweKRu0RKKwEuQMlfBv72BKe1GB+cvoOodv5lBTeuOxNFbjCWqij sRZcy9U0EsK0WiVslPECZu1DqCNu/2+hvAqhJOD5AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEHgGbSaUC/1W49HuWUAzujwxvggwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZkOTE1ZTExLTFlY2YtNDI2ZC1hMmFkLWY0ZDcyMjYyODY4MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwANwDANBgkqhkiG9w0BAQsFAAOCAQEAWNp+n1TiV215SKOBN7mIzHx6Rc/7 jMHfPgodLZMbgPd3441jZlL/Zt5zfTDsMHocASo1wT9poH2nvMRQ5n9eF3piVZjh R9zzbU1q4Or16flqywORnDICDYVlHBpQ9izZpwN80USJBAcAzh08bV4nCCCgvlGH hIE8982WfDHBgVxv7CqQ/8SXn+IXaW0lbrqys/t5nmow189rzmfk3SqlxKpkH5If drP2+sn7s6DmZRepb8y5VJ/HelBA9dOpg6H2G3PZYgDOaUUs8wanTRnYiNSKFHLs A9UNs/KEVXSwVLyCd/Qyk+TIdDwo8EMwlbPLGAH/othgJBTK8bybJz8KQQ== -----END CERTIFICATE-----Generated at Mon Mar 2 11:54:31 2026 by rpki-client