$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7bfdfc37-13e7-4b3d-b083-7c1d8cf07ad8.roa File: 7bfdfc37-13e7-4b3d-b083-7c1d8cf07ad8.roa (raw, json) Hash identifier: Dg8oMfjO3ASp0hl7K8H3FTh88ZrrYkpoiKNBJgUtRrs= Subject key identifier: 42:04:8D:05:D9:69:DA:D3:8E:4F:A6:BD:54:3E:06:66:49:27:13:AE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C155EF9B971835DC3C778E3A3C4F8F93AD61AF8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7bfdfc37-13e7-4b3d-b083-7c1d8cf07ad8.roa Signing time: Sat 07 Feb 2026 00:10:37 +0000 ROA not before: Sat 07 Feb 2026 00:10:37 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.53.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:15:5e:f9:b9:71:83:5d:c3:c7:78:e3:a3:c4:f8:f9:3a:d6:1a:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:10:37 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=9fb63c768b2e396fd0b60ffbb3cf30fe00575486f2264d2c2ac196ff1e985177, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ef:3a:38:ea:a8:bc:52:b9:f6:10:b0:df:65: 82:33:db:c6:a6:19:77:f2:67:3f:95:31:f6:7d:fb: d4:ee:0c:00:0d:47:a1:28:5b:c2:94:23:01:7b:95: ee:f0:ff:83:8b:21:29:32:8b:02:1a:d3:80:0e:40: 84:b7:a6:18:54:65:b4:7e:15:c1:92:6d:1a:d5:80: bb:e4:63:3e:17:d3:c0:32:c0:78:6d:46:b1:05:95: 94:e4:60:66:89:5b:dc:82:f7:43:d5:dd:42:0d:27: 90:99:fc:12:be:2d:c5:45:c9:64:e9:26:ba:3d:f1: 70:47:3c:4f:dd:c5:ec:c1:11:64:1d:90:70:d9:29: 6f:94:8d:f0:89:97:2c:3a:08:19:13:12:e1:bd:db: 62:73:68:4d:3a:c8:03:82:78:dc:8d:73:fb:0e:75: 4f:c0:ce:83:71:2f:ab:bf:e9:75:4f:c7:7e:d3:9c: 58:5e:4c:57:1a:80:1d:0e:20:83:09:ae:58:fd:bf: b1:8b:dc:10:9b:95:19:05:51:28:66:35:4c:9c:85: fb:ef:6f:e6:b2:56:2c:a6:3f:aa:e1:aa:78:a1:d4: 53:42:29:3b:b5:40:32:35:92:2a:7d:c5:50:04:ed: 34:b5:83:40:14:a5:d8:a6:84:77:30:ef:0b:57:dd: ec:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:04:8D:05:D9:69:DA:D3:8E:4F:A6:BD:54:3E:06:66:49:27:13:AE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7bfdfc37-13e7-4b3d-b083-7c1d8cf07ad8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.53.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:30:86:b3:07:28:31:c2:1f:de:5d:5a:fe:69:25:10:bc:11: 36:ae:e6:41:27:80:52:ac:96:b9:41:d7:10:e7:e4:3e:b5:d3: d9:4d:2c:2f:ec:bb:57:8f:45:77:94:e3:1f:20:2b:7f:fe:2d: 8f:a5:ac:23:8b:2d:34:d0:0b:e5:b7:95:a9:ed:3b:bc:13:bc: f2:7c:6b:f2:94:f5:16:4c:c5:72:c1:ff:4d:6b:1c:60:04:4b: 07:0b:82:d0:88:c2:78:07:cf:db:9d:86:dd:5c:c6:e1:6b:e5: d8:a7:63:69:a5:8b:02:42:43:3d:ef:5f:2d:9b:b3:e2:aa:c0: 11:cf:29:0e:01:c5:55:2a:b8:16:f8:4c:4c:32:13:00:1c:4b: f6:93:f5:26:b5:53:b6:c1:e1:cb:14:a6:2c:4f:4e:94:9f:6f: b5:35:ef:67:3a:02:c3:f8:fe:eb:ac:dc:81:be:80:29:4f:01: c0:9e:90:5c:37:04:07:27:1d:4f:c9:74:47:29:d2:06:d3:99: 7f:79:10:a1:63:c8:a8:cc:52:34:16:e8:f5:fc:f5:51:70:ab: 0e:dd:c5:f7:a6:1f:f8:de:2a:e6:40:e4:5f:9a:98:c7:9f:b3: dc:69:7c:dc:82:46:91:8a:71:67:6f:b5:80:50:f7:1a:43:25: 3a:66:5d:fc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHBVe+blxg13Dx3jjo8T4+TrWGvgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAxMDM3WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmI2M2M3NjhiMmUzOTZmZDBiNjBmZmJiM2NmMzBmZTAw NTc1NDg2ZjIyNjRkMmMyYWMxOTZmZjFlOTg1MTc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCv7zo46qi8Urn2ELDfZYIz28amGXfyZz+VMfZ9+9TuDAAN R6EoW8KUIwF7le7w/4OLISkyiwIa04AOQIS3phhUZbR+FcGSbRrVgLvkYz4X08Ay wHhtRrEFlZTkYGaJW9yC90PV3UINJ5CZ/BK+LcVFyWTpJro98XBHPE/dxezBEWQd kHDZKW+UjfCJlyw6CBkTEuG922JzaE06yAOCeNyNc/sOdU/AzoNxL6u/6XVPx37T nFheTFcagB0OIIMJrlj9v7GL3BCblRkFUShmNUychfvvb+ayViymP6rhqnih1FNC KTu1QDI1kip9xVAE7TS1g0AUpdimhHcw7wtX3ezVAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUQgSNBdlp2tOOT6a9VD4GZkknE64wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdiZmRmYzM3LTEzZTctNGIzZC1iMDgzLTdjMWQ4Y2YwN2FkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQNTANBgkqhkiG9w0BAQsFAAOCAQEATjCGswcoMcIf3l1a/mklELwRNq7m QSeAUqyWuUHXEOfkPrXT2U0sL+y7V49Fd5TjHyArf/4tj6WsI4stNNAL5beVqe07 vBO88nxr8pT1FkzFcsH/TWscYARLBwuC0IjCeAfP252G3VzG4Wvl2KdjaaWLAkJD Pe9fLZuz4qrAEc8pDgHFVSq4FvhMTDITABxL9pP1JrVTtsHhyxSmLE9OlJ9vtTXv ZzoCw/j+66zcgb6AKU8BwJ6QXDcEBycdT8l0RynSBtOZf3kQoWPIqMxSNBbo9fz1 UXCrDt3F96Yf+N4q5kDkX5qYx5+z3Gl83IJGkYpxZ2+1gFD3GkMlOmZd/A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:07 2026 by rpki-client