$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74a67a16-ec65-4294-84bf-ad2edc5d1909.roa File: 74a67a16-ec65-4294-84bf-ad2edc5d1909.roa (raw, json) Hash identifier: cGJJa2cSFhru9lrqOjlmSLSs/HdwZ2jJLZdNVBHRaFQ= Subject key identifier: 57:D9:16:BD:99:32:00:8F:53:D8:3C:AF:BB:2D:E6:50:DD:86:C1:C9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 18A332350EB380BB6BD4BC417639CE4CA3FC0C4D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74a67a16-ec65-4294-84bf-ad2edc5d1909.roa Signing time: Sat 28 Feb 2026 00:11:11 +0000 ROA not before: Sat 28 Feb 2026 00:11:11 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 43.243.40.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:a3:32:35:0e:b3:80:bb:6b:d4:bc:41:76:39:ce:4c:a3:fc:0c:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:11:11 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=fb7f0faa912b706d262df0583a7729b2c3254bda89eeb81b6450f8752819c47e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:49:5c:03:d6:e9:cf:e2:1c:36:e9:2b:bf:68: 5f:ad:85:dd:3a:57:96:9f:84:a6:77:67:7c:93:5b: cd:34:3c:3f:bd:6f:dc:ed:d4:86:3a:46:7b:96:6b: 39:9c:2b:78:fe:31:af:dd:70:b3:c0:8d:b8:99:58: 4f:8b:81:9b:ea:21:21:a2:08:93:26:ee:a1:df:ba: 75:9a:2d:d7:c2:90:f8:67:79:ed:3c:20:f0:4c:b9: 2b:44:dd:ef:20:dd:ea:00:b6:df:0b:11:9c:07:c4: 61:f9:0a:24:8b:2a:08:f8:44:3e:dd:1d:d9:90:2b: a8:d4:81:66:4e:18:64:6a:88:e6:1b:2d:aa:8a:14: d4:ac:b8:d9:6d:80:d9:a3:7f:98:fb:b5:53:2e:f9: 42:f5:a4:5a:11:7d:4a:63:ce:c0:d8:e8:9d:57:19: aa:e5:c5:2e:ae:bd:39:4e:d7:9e:57:c3:e9:6a:58: 6f:0b:ae:4c:fc:f5:ff:01:15:5c:01:18:ed:d7:45: 3d:c2:98:18:29:d4:b2:6c:18:0c:5e:ad:81:14:cc: 86:b3:23:73:cf:53:cf:65:cf:fe:27:1a:f4:f2:a2: 15:76:00:a2:c7:f2:04:50:38:7b:8b:fd:f8:12:d4: cc:c6:a9:96:17:26:22:44:51:87:ef:83:75:2a:ae: 18:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:D9:16:BD:99:32:00:8F:53:D8:3C:AF:BB:2D:E6:50:DD:86:C1:C9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/74a67a16-ec65-4294-84bf-ad2edc5d1909.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 43.243.40.0/22 Signature Algorithm: sha256WithRSAEncryption 1f:11:c2:b6:f8:a6:47:ec:1e:6c:99:80:31:b8:c2:96:85:e3: d5:27:b5:a3:6c:f2:67:48:f8:68:88:73:22:5c:d0:66:75:ad: d5:e0:5c:5b:7d:8d:1a:2b:10:fb:64:54:5a:21:85:35:44:9d: 99:1c:95:83:47:d0:bf:29:ad:de:0e:43:04:5b:5f:95:50:55: 7d:68:79:db:c7:ed:f3:19:74:6e:53:81:1d:03:01:ea:8d:54: f8:af:26:1a:6b:6b:7e:0d:e5:48:2b:5b:06:ae:16:3e:d3:73: be:fc:2d:28:e1:71:4d:4d:9c:c1:c0:e4:27:43:c6:e8:9d:4e: 57:3e:c2:06:b0:2d:57:08:1b:fd:38:20:02:05:5a:bb:fb:79: 24:bd:4e:50:1b:c0:ce:46:ac:59:a7:56:d1:99:5f:59:b6:b9: 82:59:7c:d5:a0:f9:f0:4f:02:11:8f:08:11:7d:f9:8b:f6:f6: 39:64:fe:16:0b:cc:ab:c9:16:4a:89:0d:86:2c:4c:68:d0:0b: 4d:b5:b0:0c:ee:77:ba:bd:c0:17:ea:c3:96:23:6b:36:b3:82: 79:c1:36:a4:ad:6e:a6:ab:35:05:ae:6c:8e:6d:76:76:b2:25: 32:57:12:b1:f8:4b:22:74:1b:8f:94:b2:61:12:ac:dd:df:b8: f0:ff:00:f0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUGKMyNQ6zgLtr1LxBdjnOTKP8DE0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAxMTExWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYjdmMGZhYTkxMmI3MDZkMjYyZGYwNTgzYTc3MjliMmMz MjU0YmRhODllZWI4MWI2NDUwZjg3NTI4MTljNDdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDMSVwD1unP4hw26Su/aF+thd06V5afhKZ3Z3yTW800PD+9 b9zt1IY6RnuWazmcK3j+Ma/dcLPAjbiZWE+LgZvqISGiCJMm7qHfunWaLdfCkPhn ee08IPBMuStE3e8g3eoAtt8LEZwHxGH5CiSLKgj4RD7dHdmQK6jUgWZOGGRqiOYb LaqKFNSsuNltgNmjf5j7tVMu+UL1pFoRfUpjzsDY6J1XGarlxS6uvTlO155Xw+lq WG8Lrkz89f8BFVwBGO3XRT3CmBgp1LJsGAxerYEUzIazI3PPU89lz/4nGvTyohV2 AKLH8gRQOHuL/fgS1MzGqZYXJiJEUYfvg3Uqrhh3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUV9kWvZkyAI9T2Dyvuy3mUN2GwckwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc0YTY3YTE2LWVjNjUtNDI5NC04NGJmLWFkMmVkYzVkMTkwOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIr8ygwDQYJKoZIhvcNAQELBQADggEBAB8Rwrb4pkfsHmyZgDG4wpaF49Un taNs8mdI+GiIcyJc0GZ1rdXgXFt9jRorEPtkVFohhTVEnZkclYNH0L8prd4OQwRb X5VQVX1oedvH7fMZdG5TgR0DAeqNVPivJhpra34N5UgrWwauFj7Tc778LSjhcU1N nMHA5CdDxuidTlc+wgawLVcIG/04IAIFWrv7eSS9TlAbwM5GrFmnVtGZX1m2uYJZ fNWg+fBPAhGPCBF9+Yv29jlk/hYLzKvJFkqJDYYsTGjQC021sAzud7q9wBfqw5Yj azazgnnBNqStbqarNQWubI5tdnayJTJXErH4SyJ0G4+UsmESrN3fuPD/APA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:21 2026 by rpki-client