$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7aa4feb0-318b-4ead-ae00-fd0114af0d1a.roa File: 7aa4feb0-318b-4ead-ae00-fd0114af0d1a.roa (raw, json) Hash identifier: pFPpCTBt8jhBhPAbmRWozcs43T3kNasFlEH05lNG2z4= Subject key identifier: 37:4C:48:45:E0:AB:5B:2C:EA:3B:6F:7C:08:4A:0A:82:CC:DC:92:B6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 13CCB15814B951570787ACBE115429E1EC531AEE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7aa4feb0-318b-4ead-ae00-fd0114af0d1a.roa Signing time: Sat 21 Feb 2026 01:40:35 +0000 ROA not before: Sat 21 Feb 2026 01:40:35 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.244.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:cc:b1:58:14:b9:51:57:07:87:ac:be:11:54:29:e1:ec:53:1a:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:40:35 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=c7ea14bbdc06c159cf811bef63090f1a2807d8b870ba475d44047bbbda3a538b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:78:ba:df:61:67:eb:fc:82:c1:ae:fd:4c:b7: df:74:12:70:d4:06:ad:d7:0a:9a:e8:95:a2:f7:33: fd:0e:40:20:3b:b5:4e:69:0e:b8:e9:78:48:22:18: ff:68:ac:5b:f5:69:11:70:72:0d:42:9c:a9:cd:f4: 1c:38:ae:d9:d6:39:43:e0:bf:1f:02:3a:62:21:f8: a5:66:d6:ce:74:77:dd:b0:39:08:39:73:d0:fc:eb: 20:7a:ae:50:d9:17:bd:79:36:90:ec:0b:b8:c2:e4: 32:57:9a:48:86:d6:0d:e4:87:22:fc:7b:81:a6:39: 6d:ab:dc:e1:75:60:34:89:5a:04:72:11:02:c2:08: 47:bf:07:8e:54:47:ce:28:c1:92:9b:45:d8:fb:e5: 74:7e:a4:19:8a:59:59:26:e5:ef:04:4a:d3:f6:0b: c8:96:8f:d1:28:32:a3:de:70:04:e9:87:24:cf:27: 3d:d3:38:11:44:25:1c:fa:49:a6:3a:ea:c6:eb:ea: f2:5c:f0:60:c4:98:a4:0a:ff:c2:a9:50:bd:3b:fd: a6:4c:17:a7:c1:00:d3:c0:4a:d7:cc:a9:b5:ac:c7: b2:e2:da:92:53:f0:67:ed:9f:51:61:af:85:be:59: 7b:b5:4a:f5:76:41:71:e0:2f:53:8a:a9:2e:e9:25: 92:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:4C:48:45:E0:AB:5B:2C:EA:3B:6F:7C:08:4A:0A:82:CC:DC:92:B6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7aa4feb0-318b-4ead-ae00-fd0114af0d1a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.244.0/24 Signature Algorithm: sha256WithRSAEncryption 6d:a1:bd:c0:cd:0a:98:e0:b9:e0:d6:51:ce:78:c8:1c:af:d0: 71:1e:24:bd:90:38:fd:9f:6e:04:08:04:99:e8:85:52:60:c7: 8c:69:d3:f8:e9:e8:f4:b5:8c:d4:7c:90:99:48:75:44:f8:bd: 04:8a:52:33:a7:16:23:ed:c8:fe:2f:a6:1d:c1:34:8b:e3:26: 61:11:51:89:39:a4:d7:b0:d8:bb:53:79:56:87:39:a8:50:94: 1f:dc:2e:25:54:d2:07:8e:ba:5d:06:d9:c8:88:fe:9a:e2:20: 55:e0:da:d6:8b:0a:eb:eb:dd:cc:d8:7a:71:c0:ce:e2:09:fd: c7:b3:be:bf:65:28:b8:db:1f:09:42:b5:13:41:b5:04:be:1f: c8:bd:b2:b5:c1:9f:3f:2b:22:a9:51:82:11:d6:63:ba:5f:27: af:05:c1:f4:18:b6:87:66:f1:bd:8a:d4:dd:9d:32:72:35:2a: cd:56:28:0e:4a:10:8f:0a:15:be:6a:11:b7:79:0f:6c:80:c1: a5:d5:8d:df:f9:0b:28:45:9c:d0:64:0d:0d:2e:0e:05:7e:94: 4b:8b:2d:58:80:4b:08:ee:a5:3f:8f:09:f6:ed:f8:f4:5e:34: f6:80:ae:f5:df:1d:b8:b2:18:dc:a5:93:b8:b5:41:4a:7f:13: 54:8f:a7:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE8yxWBS5UVcHh6y+EVQp4exTGu4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDE0MDM1WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BjN2VhMTRiYmRjMDZjMTU5Y2Y4MTFiZWY2MzA5MGYxYTI4 MDdkOGI4NzBiYTQ3NWQ0NDA0N2JiYmRhM2E1MzhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDAeLrfYWfr/ILBrv1Mt990EnDUBq3XCprolaL3M/0OQCA7 tU5pDrjpeEgiGP9orFv1aRFwcg1CnKnN9Bw4rtnWOUPgvx8COmIh+KVm1s50d92w OQg5c9D86yB6rlDZF715NpDsC7jC5DJXmkiG1g3khyL8e4GmOW2r3OF1YDSJWgRy EQLCCEe/B45UR84owZKbRdj75XR+pBmKWVkm5e8EStP2C8iWj9EoMqPecATphyTP Jz3TOBFEJRz6SaY66sbr6vJc8GDEmKQK/8KpUL07/aZMF6fBANPAStfMqbWsx7Li 2pJT8Gftn1Fhr4W+WXu1SvV2QXHgL1OKqS7pJZLvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN0xIReCrWyzqO298CEoKgszckrYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdhYTRmZWIwLTMxOGItNGVhZC1hZTAwLWZkMDExNGFmMGQxYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsPQwDQYJKoZIhvcNAQELBQADggEBAG2hvcDNCpjgueDWUc54yByv0HEe JL2QOP2fbgQIBJnohVJgx4xp0/jp6PS1jNR8kJlIdUT4vQSKUjOnFiPtyP4vph3B NIvjJmERUYk5pNew2LtTeVaHOahQlB/cLiVU0geOul0G2ciI/priIFXg2taLCuvr 3czYenHAzuIJ/cezvr9lKLjbHwlCtRNBtQS+H8i9srXBnz8rIqlRghHWY7pfJ68F wfQYtodm8b2K1N2dMnI1Ks1WKA5KEI8KFb5qEbd5D2yAwaXVjd/5CyhFnNBkDQ0u DgV+lEuLLViASwjupT+PCfbt+PReNPaArvXfHbiyGNylk7i1QUp/E1SPp2I= -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:50 2026 by rpki-client