$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4bae46-b367-48d0-8831-12876cafbdbd.roa File: 6e4bae46-b367-48d0-8831-12876cafbdbd.roa (raw, json) Hash identifier: dPvOzweOWbczldG6qWkU1uoeTL9f7WFBKM87Bbh23YQ= Subject key identifier: 73:E6:B6:DE:26:BC:3E:CE:32:2E:46:07:88:C2:B1:75:3D:80:88:F4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 70926CCC0EF5E36E6704CF8361FA091FD651FA33 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4bae46-b367-48d0-8831-12876cafbdbd.roa Signing time: Wed 18 Feb 2026 00:10:40 +0000 ROA not before: Wed 18 Feb 2026 00:10:40 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.64.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 70:92:6c:cc:0e:f5:e3:6e:67:04:cf:83:61:fa:09:1f:d6:51:fa:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 00:10:40 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=147e08021890bffab4e3f7362b8d32ff55e26c3c8c5669c3c0db3a1daf469479, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:13:37:d7:e4:0c:77:25:dd:97:59:eb:40:34: 80:3e:b9:27:03:12:36:a3:4e:64:ec:0b:be:fd:aa: d9:c1:07:8e:fb:30:f2:4b:c3:84:f8:d2:1d:0f:ad: 36:b8:64:b1:37:84:c3:aa:76:1e:1a:72:44:ea:65: bf:81:4c:7c:70:29:40:1f:47:08:53:cd:0c:9a:59: 61:c8:f9:12:5a:fd:e8:19:e9:53:58:9a:47:2e:3c: 7c:fd:e7:06:7e:b4:f0:75:ad:6a:6f:10:d9:93:b8: d4:d5:9e:d7:81:ae:7d:b4:64:5e:02:be:7c:a2:d7: 50:d6:82:77:85:4c:c9:f7:1e:ec:fe:5e:e7:c2:f5: df:1d:42:f9:e7:d3:49:e0:ca:6f:f4:0c:bc:be:be: 88:7a:4b:89:5e:ac:1d:98:39:67:07:61:a1:99:b1: 92:56:c9:c1:c9:8f:b7:80:0d:35:7d:be:12:6d:b4: 51:25:e9:c2:fd:86:13:b5:fc:bd:b2:a3:11:34:9f: 96:4a:56:08:4f:1d:15:ea:2b:55:e9:f4:27:23:bf: a5:5b:d5:86:a6:7f:4a:0c:a0:0d:5e:7b:9e:ae:68: ed:aa:a9:18:52:da:56:02:00:7a:aa:48:59:f7:d4: ce:4b:03:3c:be:68:75:28:47:35:8f:cc:ac:f5:bb: 28:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:E6:B6:DE:26:BC:3E:CE:32:2E:46:07:88:C2:B1:75:3D:80:88:F4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6e4bae46-b367-48d0-8831-12876cafbdbd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.64.0.0/17 Signature Algorithm: sha256WithRSAEncryption 26:f5:35:17:40:f2:bd:94:82:aa:86:af:bb:5a:de:3c:8e:13: d9:7f:21:3c:85:7a:bc:d8:33:9d:ab:76:fb:7f:77:53:b9:54: da:0c:ac:81:65:93:d0:e7:e6:dd:d9:de:5a:74:83:d5:17:6b: 93:40:5b:b6:1d:e0:a1:15:60:3a:82:c5:a9:a7:05:75:20:15: 9f:68:61:a8:e6:f9:55:48:31:56:78:b9:de:e7:78:8a:26:88: d2:23:21:6d:06:78:7a:50:1b:f4:8b:d1:49:ad:c6:51:c9:e8: 0d:0c:18:c4:9d:4f:44:eb:c4:b2:87:70:10:5a:10:d9:3b:ee: db:6b:1e:2a:34:b3:48:00:72:be:dc:29:2f:6a:2e:99:12:11: e1:ed:b4:64:5c:5b:c8:8c:68:8a:85:fa:a2:26:51:18:8b:4c: 09:8d:04:fc:e2:5a:c2:62:44:02:ad:c1:84:8c:0f:d1:32:6b: 9c:df:9c:a9:d1:d2:cd:0c:9d:fa:ba:8b:57:ae:4f:91:60:dd: 55:84:76:b0:af:54:ee:ce:7d:92:95:6f:b1:3a:d9:54:e1:5c: 32:29:d2:b4:05:ff:2f:02:5e:9a:20:fb:6a:eb:2a:26:28:a1: 1a:c1:28:74:94:1b:cb:8b:b8:7f:bc:51:74:20:12:22:82:41: 17:dc:45:45 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUcJJszA71425nBM+DYfoJH9ZR+jMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE4MDAxMDQwWhcNMjYwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDdlMDgwMjE4OTBiZmZhYjRlM2Y3MzYyYjhkMzJmZjU1 ZTI2YzNjOGM1NjY5YzNjMGRiM2ExZGFmNDY5NDc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrEzfX5Ax3Jd2XWetANIA+uScDEjajTmTsC779qtnBB477 MPJLw4T40h0PrTa4ZLE3hMOqdh4ackTqZb+BTHxwKUAfRwhTzQyaWWHI+RJa/egZ 6VNYmkcuPHz95wZ+tPB1rWpvENmTuNTVnteBrn20ZF4Cvnyi11DWgneFTMn3Huz+ XufC9d8dQvnn00ngym/0DLy+voh6S4lerB2YOWcHYaGZsZJWycHJj7eADTV9vhJt tFEl6cL9hhO1/L2yoxE0n5ZKVghPHRXqK1Xp9Ccjv6Vb1Yamf0oMoA1ee56uaO2q qRhS2lYCAHqqSFn31M5LAzy+aHUoRzWPzKz1uygRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUc+a23ia8Ps4yLkYHiMKxdT2AiPQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZlNGJhZTQ2LWIzNjctNDhkMC04ODMxLTEyODc2Y2FmYmRiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcQQAAwDQYJKoZIhvcNAQELBQADggEBACb1NRdA8r2UgqqGr7ta3jyOE9l/ ITyFerzYM52rdvt/d1O5VNoMrIFlk9Dn5t3Z3lp0g9UXa5NAW7Yd4KEVYDqCxamn BXUgFZ9oYajm+VVIMVZ4ud7neIomiNIjIW0GeHpQG/SL0UmtxlHJ6A0MGMSdT0Tr xLKHcBBaENk77ttrHio0s0gAcr7cKS9qLpkSEeHttGRcW8iMaIqF+qImURiLTAmN BPziWsJiRAKtwYSMD9Eya5zfnKnR0s0Mnfq6i1euT5Fg3VWEdrCvVO7OfZKVb7E6 2VThXDIp0rQF/y8CXpog+2rrKiYooRrBKHSUG8uLuH+8UXQgEiKCQRfcRUU= -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:24 2026 by rpki-client