$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa File: 6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa (raw, json) Hash identifier: xbCDCslrK7djkKHh4jw2YcbBS18cgFIEo6mfHQ42/8I= Subject key identifier: 9B:3F:48:E5:A8:EC:80:E5:44:BD:B6:AB:B3:96:DF:ED:57:FC:11:C8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2EF304FE139B443DF9B0E62CB15355817C61909D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa Signing time: Sun 01 Mar 2026 00:21:13 +0000 ROA not before: Sun 01 Mar 2026 00:21:13 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.11.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2e:f3:04:fe:13:9b:44:3d:f9:b0:e6:2c:b1:53:55:81:7c:61:90:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:21:13 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=a8a7de46ecca274e9f4bb8ef8e65049b3901bef8ba006164d58ec91f72647ee0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:31:4d:36:84:a5:38:06:71:6e:d4:f2:50:6c: ff:22:cc:a1:0d:eb:2a:ca:68:62:4e:b9:19:be:db: e1:6b:cc:3e:55:1d:b5:d9:bf:dd:7f:89:a4:d8:69: d3:5c:40:16:8a:57:23:62:bf:4e:49:a9:2e:d9:fc: 07:d8:21:9b:36:48:97:47:5d:b4:9a:9c:a6:6a:85: 48:6a:2d:16:80:b9:dc:f5:5c:00:d3:17:24:9d:8d: 73:71:39:82:b2:79:3c:fe:ab:99:49:58:5c:36:24: fc:b9:8b:cc:59:61:52:6b:9c:92:19:1b:b0:6e:cd: 3b:a9:ea:f9:30:c0:8e:ea:c6:b8:f1:6a:82:da:8b: 18:c5:d5:91:3d:aa:5e:b1:77:d1:bd:a0:40:20:be: cc:27:d9:89:53:d0:b8:c5:70:23:2d:51:0b:68:58: b9:0b:e6:3b:90:a2:8c:d6:24:19:23:03:9f:dd:dc: 0c:1e:bc:b3:6c:e7:59:80:a5:b1:7d:6c:d8:f1:4e: e8:65:49:84:ea:db:99:00:49:59:d6:2b:28:a9:f2: 2f:76:52:3b:a0:f6:ef:78:ac:c4:fa:9d:29:5d:56: 8e:af:92:35:b4:0e:92:0b:3f:c2:64:28:4c:00:d4: c8:ba:a1:f2:9a:13:fa:f0:3e:55:5b:1a:b6:5a:f8: 9f:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:3F:48:E5:A8:EC:80:E5:44:BD:B6:AB:B3:96:DF:ED:57:FC:11:C8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6f4424f1-a154-4dc3-838e-553cde0d6d3a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.11.0.0/16 Signature Algorithm: sha256WithRSAEncryption 14:dc:50:e4:fe:b9:1b:3a:8f:d3:46:92:9d:11:cb:fb:ba:a0: ef:2d:3f:11:35:2a:c0:3e:14:2c:70:87:62:e6:84:dd:9c:36: a3:5f:e6:12:3c:24:fb:5f:a5:a8:33:da:d7:99:fa:7b:c4:35: 1f:41:50:a9:bc:b8:e5:26:59:c6:b7:c5:19:4c:aa:ab:95:72: bb:e8:d2:27:fc:6d:f2:4c:da:fa:a2:53:9d:6b:b4:5a:02:6f: 43:84:4b:fa:1e:9d:1a:19:c1:1c:f8:57:aa:cd:ce:92:c0:54: 3a:fc:2e:28:68:90:73:f7:9e:7d:7e:33:f7:9f:38:32:9d:fc: 67:72:fe:b6:df:8a:36:7c:ce:2d:c4:17:88:01:54:d3:e5:5e: af:89:b2:bf:f2:1c:0e:30:bc:d1:ea:5b:09:8d:2d:85:3e:93: 6f:a4:95:e8:ef:71:8e:f2:db:d7:d0:60:fc:06:b8:ee:42:76: ef:e4:80:5f:63:96:d4:76:05:53:fa:1f:cf:9a:5e:e6:14:18: fe:26:99:9e:ef:da:fc:95:47:a4:6b:26:8c:4f:cc:e6:44:e7: 39:99:6a:20:7a:7d:b3:ce:d1:6b:c7:bf:c0:a7:17:a8:c6:9f: 38:14:89:95:21:4f:3e:85:a2:1e:78:79:f7:fc:ee:ea:0b:74: 53:39:d4:87 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIULvME/hObRD35sOYssVNVgXxhkJ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMTEzWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOGE3ZGU0NmVjY2EyNzRlOWY0YmI4ZWY4ZTY1MDQ5YjM5 MDFiZWY4YmEwMDYxNjRkNThlYzkxZjcyNjQ3ZWUwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdMU02hKU4BnFu1PJQbP8izKEN6yrKaGJOuRm+2+FrzD5V HbXZv91/iaTYadNcQBaKVyNiv05JqS7Z/AfYIZs2SJdHXbSanKZqhUhqLRaAudz1 XADTFySdjXNxOYKyeTz+q5lJWFw2JPy5i8xZYVJrnJIZG7BuzTup6vkwwI7qxrjx aoLaixjF1ZE9ql6xd9G9oEAgvswn2YlT0LjFcCMtUQtoWLkL5juQoozWJBkjA5/d 3AwevLNs51mApbF9bNjxTuhlSYTq25kASVnWKyip8i92Ujug9u94rMT6nSldVo6v kjW0DpILP8JkKEwA1Mi6ofKaE/rwPlVbGrZa+J/jAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUmz9I5ajsgOVEvbars5bf7Vf8EcgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzZmNDQyNGYxLWExNTQtNGRjMy04MzhlLTU1M2NkZTBkNmQzYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQCzANBgkqhkiG9w0BAQsFAAOCAQEAFNxQ5P65GzqP00aSnRHL+7qg7y0/ ETUqwD4ULHCHYuaE3Zw2o1/mEjwk+1+lqDPa15n6e8Q1H0FQqby45SZZxrfFGUyq q5Vyu+jSJ/xt8kza+qJTnWu0WgJvQ4RL+h6dGhnBHPhXqs3OksBUOvwuKGiQc/ee fX4z9584Mp38Z3L+tt+KNnzOLcQXiAFU0+Ver4myv/IcDjC80epbCY0thT6Tb6SV 6O9xjvLb19Bg/Aa47kJ27+SAX2OW1HYFU/ofz5pe5hQY/iaZnu/a/JVHpGsmjE/M 5kTnOZlqIHp9s87Ra8e/wKcXqMafOBSJlSFPPoWiHnh59/zu6gt0UznUhw== -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:12 2026 by rpki-client