$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7865b6e9-bdb5-431a-96cd-04c3eebdad74.roa File: 7865b6e9-bdb5-431a-96cd-04c3eebdad74.roa (raw, json) Hash identifier: 55yZ+S9rtq4Ia7iVD0QSo1ekXTTqcG0LIWOV0WP5usk= Subject key identifier: B7:D6:21:79:F2:1C:6F:78:88:AA:51:1A:2F:F6:72:E3:92:45:6B:85 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4AA087145477047404F443CACADDCAFDF4DA17 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7865b6e9-bdb5-431a-96cd-04c3eebdad74.roa Signing time: Sun 15 Feb 2026 00:30:45 +0000 ROA not before: Sun 15 Feb 2026 00:30:45 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.24.192.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4a:a0:87:14:54:77:04:74:04:f4:43:ca:ca:dd:ca:fd:f4:da:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:30:45 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=ccf6fbf25c0a73902ea8aa84753df5c92cf8ebac85286900e56b75da8fe9deb6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7b:97:fa:fc:59:c0:7b:0b:b7:e3:cf:8a:47: b1:c2:0b:36:e7:e1:b8:56:af:eb:31:69:d8:5b:2a: 5a:f6:8a:87:75:51:83:f3:e1:76:c1:ef:fb:75:c0: 26:60:44:b7:8a:18:3e:77:c9:f9:70:2c:26:23:10: 3b:86:94:40:b6:13:46:75:1e:b6:ee:34:40:41:e4: ca:ef:89:6f:c7:95:11:f2:a4:c2:0c:94:4a:12:32: b5:56:3e:c4:47:2c:d2:b9:73:8b:26:bb:58:58:1e: e6:4a:d2:50:84:e6:72:cb:ef:59:f7:bb:6d:5f:ae: 08:be:fb:a4:6f:de:29:80:10:ec:c0:ea:b1:9e:48: 70:f4:98:d7:b5:a2:b5:70:dc:2a:42:8f:5c:b6:cb: fe:8f:63:f0:63:0c:db:ef:59:0d:29:17:59:80:27: 78:9e:28:88:08:70:8f:99:3e:d1:2e:0b:54:e0:45: 4c:ae:d9:70:77:03:d5:16:97:12:76:c5:76:ea:d3: 05:13:e2:9d:55:20:6f:0c:7c:b8:d5:9d:6c:d6:f1: 49:97:af:f8:dc:76:08:21:54:30:a7:a3:7c:1c:27: 8c:fc:f9:88:da:7c:e0:fa:4a:6a:89:b4:83:f8:0e: bb:f3:71:14:25:54:d2:d1:be:f3:af:0a:e3:25:93: ab:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:D6:21:79:F2:1C:6F:78:88:AA:51:1A:2F:F6:72:E3:92:45:6B:85 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7865b6e9-bdb5-431a-96cd-04c3eebdad74.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.24.192.0/20 Signature Algorithm: sha256WithRSAEncryption ac:3c:ff:ed:43:ab:09:ac:f9:8c:21:90:70:d6:c1:0a:5b:4f: 1a:96:71:a3:72:26:25:55:cc:d9:87:b9:9e:90:b2:5b:82:c6: ed:7b:eb:1c:1a:46:22:13:44:9e:5d:a4:6f:65:42:0a:d3:e2: 78:c9:d2:14:ac:84:36:ad:26:c7:b4:9f:89:03:b5:0f:b3:f1: 9b:10:9b:93:93:d7:8a:18:e5:02:b8:1e:55:d2:33:ca:43:ec: 06:75:c6:c5:c5:9c:54:ff:ff:2d:ad:03:a8:e4:b0:a0:f8:9c: 4d:80:5c:52:7d:68:6f:42:de:ca:9e:5b:56:12:0b:6d:9d:25: a2:dd:4a:dc:07:0b:ff:a6:16:6e:28:35:00:3a:f7:08:46:3d: 6c:52:00:12:c2:3f:db:6b:9c:98:db:db:21:ae:6a:e8:39:a8: b8:94:ca:52:30:d0:1e:5e:c4:6b:11:00:bb:e8:9a:85:be:0f: 76:c5:f5:3b:9a:df:ad:41:9c:03:86:17:79:1d:c9:07:8b:34: 0e:bb:e9:07:27:22:df:6f:3d:49:f0:ed:50:80:9d:83:09:2a: b6:fb:f4:a5:6d:2c:98:9b:18:b7:cc:8b:cd:9a:48:cb:83:24: cc:aa:23:c3:40:25:2e:c1:a5:95:98:3b:67:44:84:26:33:6d: 42:19:d2:62 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgITSqCHFFR3BHQE9EPKyt3K/fTaFzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjAyMTUwMDMwNDVaFw0yNjA1MTYyMzU5NTla MHoxSTBHBgNVBAUTQGNjZjZmYmYyNWMwYTczOTAyZWE4YWE4NDc1M2RmNWM5MmNm OGViYWM4NTI4NjkwMGU1NmI3NWRhOGZlOWRlYjYxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAJ57l/r8WcB7C7fjz4pHscILNufhuFav6zFp2FsqWvaKh3VR g/PhdsHv+3XAJmBEt4oYPnfJ+XAsJiMQO4aUQLYTRnUetu40QEHkyu+Jb8eVEfKk wgyUShIytVY+xEcs0rlziya7WFge5krSUITmcsvvWfe7bV+uCL77pG/eKYAQ7MDq sZ5IcPSY17WitXDcKkKPXLbL/o9j8GMM2+9ZDSkXWYAneJ4oiAhwj5k+0S4LVOBF TK7ZcHcD1RaXEnbFdurTBRPinVUgbwx8uNWdbNbxSZev+Nx2CCFUMKejfBwnjPz5 iNp84PpKaom0g/gOu/NxFCVU0tG+868K4yWTq58CAwEAAaOCArEwggKtMB0GA1Ud DgQWBBS31iF58hxveIiqURov9nLjkkVrhTAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNzg2NWI2ZTktYmRiNS00MzFhLTk2Y2QtMDRjM2VlYmRhZDc0LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEw BgMEBNgYwDANBgkqhkiG9w0BAQsFAAOCAQEArDz/7UOrCaz5jCGQcNbBCltPGpZx o3ImJVXM2Ye5npCyW4LG7XvrHBpGIhNEnl2kb2VCCtPieMnSFKyENq0mx7SfiQO1 D7PxmxCbk5PXihjlArgeVdIzykPsBnXGxcWcVP//La0DqOSwoPicTYBcUn1ob0Le yp5bVhILbZ0lot1K3AcL/6YWbig1ADr3CEY9bFIAEsI/22ucmNvbIa5q6DmouJTK UjDQHl7EaxEAu+iahb4PdsX1O5rfrUGcA4YXeR3JB4s0DrvpByci3289SfDtUICd gwkqtvv0pW0smJsYt8yLzZpIy4MkzKojw0AlLsGllZg7Z0SEJjNtQhnSYg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:55:08 2026 by rpki-client