$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e23500a-7ffd-453d-be04-82eab76a246d.roa File: 7e23500a-7ffd-453d-be04-82eab76a246d.roa (raw, json) Hash identifier: SA7XpN9Nh/swgXYsPwFHGsK7a4zaaVCTj08w2rpK3N8= Subject key identifier: E6:7F:30:C1:9B:A0:32:7A:28:73:F0:F4:BB:50:B1:2B:EF:A6:59:10 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35BF603924E0CADB0E721ECF6833346E2AB15A91 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e23500a-7ffd-453d-be04-82eab76a246d.roa Signing time: Sun 15 Feb 2026 00:30:41 +0000 ROA not before: Sun 15 Feb 2026 00:30:41 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.6.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:bf:60:39:24:e0:ca:db:0e:72:1e:cf:68:33:34:6e:2a:b1:5a:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:30:41 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=8d151139b68979e642ff561815eb6769f62a43fcc4d9ec096b93c061c8f952f7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:31:94:f0:14:9f:f5:d3:d2:06:83:2a:12:a3: 88:5c:b3:45:ec:ff:bf:3f:c4:34:33:15:ca:66:6b: 52:6c:dc:66:f4:46:5f:e7:df:d1:4c:4e:0c:12:5a: 64:9e:14:55:45:13:70:e3:9a:a0:18:4b:ce:e5:1f: 43:ee:15:f4:69:23:6a:1d:21:8e:2a:a6:58:56:8b: aa:12:37:09:96:fc:e3:e7:1b:75:21:66:8c:b1:c1: 61:42:6c:e1:ec:a6:7a:b4:24:31:8d:37:e0:92:81: c6:c2:97:fb:c4:89:13:fd:27:6f:cd:05:2e:cf:88: da:1e:fa:5e:ce:b9:4f:4b:62:e6:6d:2a:c1:8b:12: 84:bd:fc:6b:5c:60:bd:eb:57:2b:77:a7:d6:8c:cc: 6c:3a:2f:d2:1d:b1:73:e6:31:f2:c1:27:a7:18:83: 5a:86:06:4b:b3:d9:e5:bc:5a:42:c6:06:d4:8c:2c: 39:43:c4:b8:08:3e:25:2c:fb:61:75:a5:71:60:9c: da:6d:62:b0:b4:91:9a:a1:1a:a3:c6:76:2a:47:64: 8f:e3:57:6a:27:5e:e0:32:2d:3b:be:8a:fc:dc:d0: 5f:29:c7:6c:14:9d:30:ff:27:9c:63:b4:17:a4:3e: fc:e1:15:7d:c0:e3:d3:43:f2:dd:62:b8:38:d3:7c: c1:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7F:30:C1:9B:A0:32:7A:28:73:F0:F4:BB:50:B1:2B:EF:A6:59:10 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/7e23500a-7ffd-453d-be04-82eab76a246d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.6.0/24 Signature Algorithm: sha256WithRSAEncryption 50:86:b8:8f:60:25:52:8e:12:6d:85:7e:09:5b:4f:39:1f:a1: f8:3b:fb:8f:84:c2:a3:a7:b7:2a:80:f2:17:14:1e:5d:49:8e: 37:23:70:86:ae:84:fc:28:37:3d:89:8e:b8:e9:91:88:2a:ce: 99:4f:24:97:46:a8:a9:03:ca:4e:69:04:96:5c:2c:2e:74:36: 44:00:ad:6a:c4:4f:3a:06:ea:98:98:1f:7a:c4:c0:36:18:65: 56:cc:e8:d0:78:01:78:28:ff:8c:d7:90:d6:7f:a4:b4:be:28: 16:de:30:e0:0b:10:ac:3e:1f:c9:59:f6:10:1f:47:e8:c8:a1: 39:8f:5b:90:06:bd:46:51:81:6f:fd:b8:80:85:7e:1a:de:ca: 3a:2c:1c:08:32:b2:f7:cc:28:2d:bc:92:76:77:93:c7:a4:fa: 94:2c:ba:d1:2f:b2:9c:d6:29:5e:2d:28:89:24:28:49:7a:22: e7:37:03:a1:9b:35:df:5a:37:6f:c4:be:b5:3d:0f:a1:4d:2f: c1:fb:b3:27:4a:3f:5c:f3:e7:01:03:87:a8:a3:e7:ea:78:70: a8:4d:ae:5d:b7:ce:16:ea:f3:6c:46:d0:6d:ba:b3:b0:3b:9a: 6a:1b:d7:09:97:ba:49:d8:13:47:f2:02:81:a9:e7:eb:cf:f5: 0d:25:0b:7d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNb9gOSTgytsOch7PaDM0biqxWpEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAzMDQxWhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDE1MTEzOWI2ODk3OWU2NDJmZjU2MTgxNWViNjc2OWY2 MmE0M2ZjYzRkOWVjMDk2YjkzYzA2MWM4Zjk1MmY3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCDMZTwFJ/109IGgyoSo4hcs0Xs/78/xDQzFcpma1Js3Gb0 Rl/n39FMTgwSWmSeFFVFE3DjmqAYS87lH0PuFfRpI2odIY4qplhWi6oSNwmW/OPn G3UhZoyxwWFCbOHspnq0JDGNN+CSgcbCl/vEiRP9J2/NBS7PiNoe+l7OuU9LYuZt KsGLEoS9/GtcYL3rVyt3p9aMzGw6L9IdsXPmMfLBJ6cYg1qGBkuz2eW8WkLGBtSM LDlDxLgIPiUs+2F1pXFgnNptYrC0kZqhGqPGdipHZI/jV2onXuAyLTu+ivzc0F8p x2wUnTD/J5xjtBekPvzhFX3A49ND8t1iuDjTfMHHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5n8wwZugMnooc/D0u1CxK++mWRAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzdlMjM1MDBhLTdmZmQtNDUzZC1iZTA0LTgyZWFiNzZhMjQ2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjlgYwDQYJKoZIhvcNAQELBQADggEBAFCGuI9gJVKOEm2FfglbTzkfofg7 +4+EwqOntyqA8hcUHl1JjjcjcIauhPwoNz2JjrjpkYgqzplPJJdGqKkDyk5pBJZc LC50NkQArWrETzoG6piYH3rEwDYYZVbM6NB4AXgo/4zXkNZ/pLS+KBbeMOALEKw+ H8lZ9hAfR+jIoTmPW5AGvUZRgW/9uICFfhreyjosHAgysvfMKC28knZ3k8ek+pQs utEvspzWKV4tKIkkKEl6Iuc3A6GbNd9aN2/EvrU9D6FNL8H7sydKP1zz5wEDh6ij 5+p4cKhNrl23zhbq82xG0G26s7A7mmob1wmXuknYE0fyAoGp5+vP9Q0lC30= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:14 2026 by rpki-client