$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa File: 70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa (raw, json) Hash identifier: +hgWNATqy5Tv2udBUu1NPefoc4F2QNps67cPQgYkw3E= Subject key identifier: D4:FF:72:31:96:4F:CD:64:0B:CE:68:96:8B:59:74:73:A9:07:65:B2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 635314D20CABF7B2F95BEBB784134445A0398E7E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa Signing time: Wed 25 Feb 2026 01:21:14 +0000 ROA not before: Wed 25 Feb 2026 01:21:14 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.182.232.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:53:14:d2:0c:ab:f7:b2:f9:5b:eb:b7:84:13:44:45:a0:39:8e:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:21:14 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=58d799bd269746387e48d1157ff2fdc674b5087839a026ee01292127bcff9a9e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:36:84:ef:04:a3:92:37:89:de:18:36:d2:88: 10:f5:b4:e7:f2:2e:ac:18:7c:55:00:6d:5a:03:ae: 9b:0d:7e:79:f7:72:dc:dd:0f:07:08:7c:cd:c9:57: 89:11:79:d2:7c:48:d9:ce:2c:1c:59:e1:1a:f3:2a: 94:61:c6:d9:99:b7:49:54:fe:d8:5b:99:bb:f4:c3: 5c:10:80:0e:bd:26:d0:61:ca:da:d1:97:15:1c:71: 54:9a:6c:82:ac:0a:d5:2d:f5:eb:13:b6:4f:9a:2b: 8e:4d:b3:96:1b:b1:80:4d:c3:9c:6f:60:17:ac:fb: c2:e3:a2:81:5a:ea:ae:c5:67:68:af:97:a8:a6:92: 20:c1:25:1f:52:ab:55:a2:73:81:67:10:da:8c:29: f9:66:e0:f2:1b:31:b2:44:f2:10:90:98:5e:d6:8a: fb:d9:5a:d8:17:3b:86:a3:01:33:e0:75:55:a5:ed: 47:52:b6:c8:29:86:81:97:45:47:77:e4:79:07:8e: e4:17:80:a8:44:df:14:d5:b5:ec:98:ae:30:aa:0e: 5b:19:6d:01:d4:05:d2:8d:36:1b:2c:cc:d9:a8:e2: 92:df:78:03:f4:06:9c:1f:5d:b9:ed:3f:50:6a:cb: 26:86:a4:15:68:58:92:73:cf:66:5b:a8:a7:e5:fe: b6:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:FF:72:31:96:4F:CD:64:0B:CE:68:96:8B:59:74:73:A9:07:65:B2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/70aa4285-cbd0-450f-b52c-a70ba1e394d0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.182.232.0/22 Signature Algorithm: sha256WithRSAEncryption 06:ba:87:10:cc:cd:16:ac:8f:68:67:24:71:87:8d:39:20:52: 32:5e:31:4e:3d:bd:74:bf:52:dd:4a:8e:20:05:d2:51:7c:65: 79:0c:1f:84:bc:ed:7e:3e:86:32:f9:1c:75:d8:f0:be:e9:2b: 1f:b0:ea:5d:c0:e3:69:f8:82:52:37:b2:92:72:d2:a5:d3:75: f5:cb:d8:52:bd:10:fa:4a:07:13:26:7b:d9:62:08:c3:b5:60: 22:ce:83:be:65:41:ad:ad:80:e4:76:3d:c0:0c:16:d0:46:b7: 11:dc:e3:d6:4a:75:96:c8:07:ac:f8:82:b5:56:e3:84:cf:23: d8:fb:80:c9:ca:6c:cd:50:11:f7:ea:97:60:b6:55:1e:ab:58: b8:d2:81:a8:7b:48:92:1c:90:c3:c3:53:6a:5d:7e:d2:ad:f7: 7a:15:b4:f0:19:82:86:96:4b:cf:21:24:a7:49:bc:96:fd:06: 2a:d9:e6:4c:af:65:fa:a7:c0:55:68:23:b4:75:81:da:13:2b: e2:03:ce:19:35:21:c3:1c:95:70:6d:73:39:64:9a:32:71:c3: 06:7f:50:5e:e8:08:20:d6:cc:5c:52:6d:a5:8a:55:82:c5:7a: ee:b3:36:cd:0c:d3:0e:ff:a3:9f:70:93:ab:79:69:02:b0:df: 2e:fb:c7:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUY1MU0gyr97L5W+u3hBNERaA5jn4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMTE0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGQ3OTliZDI2OTc0NjM4N2U0OGQxMTU3ZmYyZmRjNjc0 YjUwODc4MzlhMDI2ZWUwMTI5MjEyN2JjZmY5YTllMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjNoTvBKOSN4neGDbSiBD1tOfyLqwYfFUAbVoDrpsNfnn3 ctzdDwcIfM3JV4kRedJ8SNnOLBxZ4RrzKpRhxtmZt0lU/thbmbv0w1wQgA69JtBh ytrRlxUccVSabIKsCtUt9esTtk+aK45Ns5YbsYBNw5xvYBes+8LjooFa6q7FZ2iv l6imkiDBJR9Sq1Wic4FnENqMKflm4PIbMbJE8hCQmF7WivvZWtgXO4ajATPgdVWl 7UdStsgphoGXRUd35HkHjuQXgKhE3xTVteyYrjCqDlsZbQHUBdKNNhsszNmo4pLf eAP0BpwfXbntP1BqyyaGpBVoWJJzz2ZbqKfl/rYNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1P9yMZZPzWQLzmiWi1l0c6kHZbIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcwYWE0Mjg1LWNiZDAtNDUwZi1iNTJjLWE3MGJhMWUzOTRkMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYtugwDQYJKoZIhvcNAQELBQADggEBAAa6hxDMzRasj2hnJHGHjTkgUjJe MU49vXS/Ut1KjiAF0lF8ZXkMH4S87X4+hjL5HHXY8L7pKx+w6l3A42n4glI3spJy 0qXTdfXL2FK9EPpKBxMme9liCMO1YCLOg75lQa2tgOR2PcAMFtBGtxHc49ZKdZbI B6z4grVW44TPI9j7gMnKbM1QEffql2C2VR6rWLjSgah7SJIckMPDU2pdftKt93oV tPAZgoaWS88hJKdJvJb9BirZ5kyvZfqnwFVoI7R1gdoTK+IDzhk1IcMclXBtczlk mjJxwwZ/UF7oCCDWzFxSbaWKVYLFeu6zNs0M0w7/o59wk6t5aQKw3y77x9M= -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:09 2026 by rpki-client