$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c748147-8998-4672-8c3d-5171a4d8afff.roa File: 7c748147-8998-4672-8c3d-5171a4d8afff.roa (raw, json) Hash identifier: EibbfiWQ97/FzHBqyzB1y76QdHHdeAIVNnMNQha9ktQ= Subject key identifier: 94:14:1F:00:50:C7:38:B9:CF:D2:A7:7E:27:E5:D6:9E:26:B3:35:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0A92CC4698F0BBDD6FD9C31247A48278BA26C23D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c748147-8998-4672-8c3d-5171a4d8afff.roa Signing time: Sun 08 Feb 2026 00:00:57 +0000 ROA not before: Sun 08 Feb 2026 00:00:57 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.52.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:92:cc:46:98:f0:bb:dd:6f:d9:c3:12:47:a4:82:78:ba:26:c2:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:57 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=d4f8f32dd163b6d4e03ee2c9e2f0f8c4a369fae8bc045599c05dc4f38a9e6e0d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:4a:34:d9:83:90:87:de:10:ce:1e:1c:ee:a7: 86:0a:25:6f:98:45:3b:a1:f7:3e:1a:7c:62:8b:56: 0b:50:6d:c7:eb:95:2c:a9:b7:69:12:77:81:fb:23: 26:25:7c:85:ff:a0:97:52:65:33:c0:09:a3:73:2c: 4d:9e:7c:5e:71:84:13:48:07:91:55:ec:22:cd:b3: b3:38:9b:72:93:19:0f:2b:15:29:d9:fc:ab:c2:87: 04:89:5b:3e:62:f9:cc:80:24:20:b5:d8:6c:ea:61: f8:0d:a9:32:10:33:00:f9:c7:96:9d:4a:66:c0:02: 06:b4:29:6f:e0:ed:ab:83:b5:f5:34:c7:7e:15:08: ba:9d:dd:9b:e0:64:f3:07:ee:55:01:0b:f2:9b:99: c1:74:91:ca:fd:e8:22:b5:33:6e:e3:78:39:f6:cb: 0a:c2:56:45:af:7b:5e:91:d7:ea:61:67:ca:7f:dc: f8:13:02:d5:56:6d:79:9c:be:af:0c:92:97:40:34: 3a:ea:2a:7c:77:83:d7:24:90:c1:34:c4:22:38:91: ac:f2:0b:53:a2:6f:6b:82:96:20:64:a2:4d:3a:5a: 40:48:f1:07:0c:59:6c:a5:ab:bc:30:2b:09:0a:de: 43:8b:1e:31:6b:45:14:da:22:c4:c1:17:55:ac:11: dd:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:14:1F:00:50:C7:38:B9:CF:D2:A7:7E:27:E5:D6:9E:26:B3:35:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7c748147-8998-4672-8c3d-5171a4d8afff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.52.0.0/14 Signature Algorithm: sha256WithRSAEncryption 27:2c:31:b0:72:c7:c6:9b:3b:2c:8f:a9:97:ba:1a:53:75:2f: 8c:97:69:87:28:c2:72:85:bc:10:26:34:97:6b:35:49:2c:97: b6:e3:15:7b:aa:c0:f1:1f:bb:c5:1d:a9:8b:70:24:89:f2:4c: 72:49:1b:14:74:7c:b5:4a:b2:62:5f:3e:cb:1b:f4:04:18:76: 7a:07:56:6e:99:2d:e9:40:16:f2:1a:6f:a4:0b:02:d7:13:fd: 87:77:c5:de:b8:14:fc:60:72:41:38:dc:1d:35:5c:76:f1:d2: c6:90:db:6f:91:e2:6d:b0:f6:84:76:e0:54:50:46:6f:48:ed: 19:db:b2:ff:9b:0b:5a:2b:b5:e7:62:cd:e3:d4:5b:cc:bb:9d: 43:72:95:6d:2b:98:b5:eb:5d:db:25:a9:00:b2:eb:ac:8e:38: 90:74:b0:7f:97:04:ea:d6:4d:6d:9d:11:73:91:0e:86:4c:ca: 0c:d7:3b:a7:41:b6:5f:9d:d7:83:e9:33:0b:40:40:97:59:20: 75:a0:f6:d0:83:ba:81:46:5c:93:cb:89:6a:ef:c6:25:3e:d6: a1:69:33:74:df:3a:e2:ce:ba:0f:b5:87:4f:e4:aa:c9:04:4f: 8e:3b:10:e5:ee:c0:7e:d9:98:fc:9c:68:dc:51:5d:34:be:f7: 9e:80:42:69 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCpLMRpjwu91v2cMSR6SCeLomwj0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAwMDU3WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNGY4ZjMyZGQxNjNiNmQ0ZTAzZWUyYzllMmYwZjhjNGEz NjlmYWU4YmMwNDU1OTljMDVkYzRmMzhhOWU2ZTBkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDISjTZg5CH3hDOHhzup4YKJW+YRTuh9z4afGKLVgtQbcfr lSypt2kSd4H7IyYlfIX/oJdSZTPACaNzLE2efF5xhBNIB5FV7CLNs7M4m3KTGQ8r FSnZ/KvChwSJWz5i+cyAJCC12GzqYfgNqTIQMwD5x5adSmbAAga0KW/g7auDtfU0 x34VCLqd3ZvgZPMH7lUBC/KbmcF0kcr96CK1M27jeDn2ywrCVkWve16R1+phZ8p/ 3PgTAtVWbXmcvq8MkpdANDrqKnx3g9ckkME0xCI4kazyC1Oib2uCliBkok06WkBI 8QcMWWylq7wwKwkK3kOLHjFrRRTaIsTBF1WsEd25AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlBQfAFDHOLnP0qd+J+XWniazNZIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdjNzQ4MTQ3LTg5OTgtNDY3Mi04YzNkLTUxNzFhNGQ4YWZmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIQNDANBgkqhkiG9w0BAQsFAAOCAQEAJywxsHLHxps7LI+pl7oaU3UvjJdp hyjCcoW8ECY0l2s1SSyXtuMVe6rA8R+7xR2pi3AkifJMckkbFHR8tUqyYl8+yxv0 BBh2egdWbpkt6UAW8hpvpAsC1xP9h3fF3rgU/GByQTjcHTVcdvHSxpDbb5HibbD2 hHbgVFBGb0jtGduy/5sLWiu152LN49RbzLudQ3KVbSuYtetd2yWpALLrrI44kHSw f5cE6tZNbZ0Rc5EOhkzKDNc7p0G2X53Xg+kzC0BAl1kgdaD20IO6gUZck8uJau/G JT7WoWkzdN864s66D7WHT+SqyQRPjjsQ5e7AftmY/Jxo3FFdNL73noBCaQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:31 2026 by rpki-client