$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815dbd30-4974-4c77-9a27-6ac45a9fb646.roa File: 815dbd30-4974-4c77-9a27-6ac45a9fb646.roa (raw, json) Hash identifier: UVe9apgZ3+3ivuP/LNmPpGQ5iHLqWUGNkmIn9CCD4JQ= Subject key identifier: D4:17:81:4B:74:2D:0E:18:D2:6C:A6:C3:AC:84:FD:A4:02:50:49:E8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 77E6D9DD67AA615CCEEC608F4A90F7C37D90267C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815dbd30-4974-4c77-9a27-6ac45a9fb646.roa Signing time: Sun 01 Mar 2026 00:20:36 +0000 ROA not before: Sun 01 Mar 2026 00:20:36 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 22394 IP address blocks: 162.208.122.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:e6:d9:dd:67:aa:61:5c:ce:ec:60:8f:4a:90:f7:c3:7d:90:26:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:20:36 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=648f28dfe71903871d391d084b1faffa559f2a15cdfea8ce74e4c60bf106cf27, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:53:69:32:9a:c7:45:9b:5d:94:cd:69:7c:86: 14:4d:87:b2:96:f0:3a:d5:8e:c4:ad:bd:a8:dd:b2: 35:ac:c3:75:70:9e:68:55:48:a4:0f:d5:b6:11:a1: e2:df:fa:8f:83:c1:5e:a6:3e:3f:39:cd:54:59:a0: 73:57:09:b2:10:3a:1d:36:c8:fa:e2:3e:07:d4:06: a6:17:98:ce:03:1d:c0:0c:98:29:ed:ff:ee:7b:4c: 7a:a1:d9:3b:35:8b:90:16:bf:1e:d1:70:56:ea:49: 9e:31:8d:0e:d2:62:23:25:fd:e4:6d:85:30:f7:be: aa:09:80:4f:2e:dc:ae:e5:ab:b9:ca:45:36:eb:0d: 00:3d:a7:30:3e:0a:07:3c:98:c0:fc:56:ac:d7:cf: 56:96:7e:e9:fc:39:7d:30:3e:de:b7:7d:64:44:64: 02:d5:9a:42:ea:ec:00:3d:ec:b6:76:d5:e8:cc:2c: 50:33:85:e5:70:00:76:13:f1:61:41:2f:34:f1:3e: 10:1b:cf:d9:e2:3a:d1:5f:75:f6:cc:97:4a:a0:3e: 15:6a:8a:e0:d6:3e:23:3a:34:1e:b7:5b:8e:c2:34: ac:86:ba:a5:55:4d:49:66:0a:02:bf:93:78:19:c8: 78:6e:ff:6f:39:6d:6f:9d:f8:3f:ac:c3:17:6f:cb: 98:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:17:81:4B:74:2D:0E:18:D2:6C:A6:C3:AC:84:FD:A4:02:50:49:E8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/815dbd30-4974-4c77-9a27-6ac45a9fb646.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.208.122.0/24 Signature Algorithm: sha256WithRSAEncryption d0:13:d6:17:02:4f:b6:6a:82:85:43:f1:a6:6c:17:70:2a:01: 38:bd:3f:b4:e2:9e:e1:76:bc:97:2a:a7:23:5d:85:ca:84:15: 1f:d7:03:42:ef:1c:d4:f0:78:33:18:6c:95:bf:e2:ce:4a:9a: 60:ba:89:a7:ba:2d:82:89:6a:a1:6f:5d:70:5e:46:e6:5a:3c: 0b:d5:7f:48:94:d8:f4:b1:f7:4e:5b:78:05:c0:28:85:46:52: 3b:09:d8:1a:8d:53:62:a3:42:fd:8e:63:4d:c4:d2:69:9e:d8: 2c:8a:43:1c:95:10:d2:f4:45:c5:bd:2b:ac:e3:d4:11:6c:a0: 52:73:b5:0c:27:d5:55:52:91:56:1c:1d:9d:db:11:80:d0:bf: 65:85:23:18:2f:0c:e7:46:40:8c:d8:47:74:c0:0b:db:f0:70: 2c:2c:c7:1d:dd:e5:c0:4f:40:a5:a0:16:0c:09:2f:d5:0e:f0: cb:3d:08:df:2f:ae:a8:7c:ff:39:16:2e:96:7a:c0:99:5e:8c: c7:0c:01:f4:15:6d:0d:e0:1e:d2:f8:2a:7a:85:37:16:be:4b: 59:41:8a:d4:17:1b:f6:b9:5c:e7:51:bb:86:2c:2a:c8:97:5b: c1:16:51:c5:85:68:d8:97:58:9e:97:fb:ef:96:76:f4:e5:ae: a2:9a:74:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUd+bZ3WeqYVzO7GCPSpD3w32QJnwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMDM2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2NDhmMjhkZmU3MTkwMzg3MWQzOTFkMDg0YjFmYWZmYTU1 OWYyYTE1Y2RmZWE4Y2U3NGU0YzYwYmYxMDZjZjI3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1U2kymsdFm12UzWl8hhRNh7KW8DrVjsStvajdsjWsw3Vw nmhVSKQP1bYRoeLf+o+DwV6mPj85zVRZoHNXCbIQOh02yPriPgfUBqYXmM4DHcAM mCnt/+57THqh2Ts1i5AWvx7RcFbqSZ4xjQ7SYiMl/eRthTD3vqoJgE8u3K7lq7nK RTbrDQA9pzA+Cgc8mMD8VqzXz1aWfun8OX0wPt63fWREZALVmkLq7AA97LZ21ejM LFAzheVwAHYT8WFBLzTxPhAbz9niOtFfdfbMl0qgPhVqiuDWPiM6NB63W47CNKyG uqVVTUlmCgK/k3gZyHhu/285bW+d+D+swxdvy5h/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1BeBS3QtDhjSbKbDrIT9pAJQSegwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxNWRiZDMwLTQ5NzQtNGM3Ny05YTI3LTZhYzQ1YTlmYjY0Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi0HowDQYJKoZIhvcNAQELBQADggEBANAT1hcCT7ZqgoVD8aZsF3AqATi9 P7TinuF2vJcqpyNdhcqEFR/XA0LvHNTweDMYbJW/4s5KmmC6iae6LYKJaqFvXXBe RuZaPAvVf0iU2PSx905beAXAKIVGUjsJ2BqNU2KjQv2OY03E0mme2CyKQxyVENL0 RcW9K6zj1BFsoFJztQwn1VVSkVYcHZ3bEYDQv2WFIxgvDOdGQIzYR3TAC9vwcCws xx3d5cBPQKWgFgwJL9UO8Ms9CN8vrqh8/zkWLpZ6wJlejMcMAfQVbQ3gHtL4KnqF Nxa+S1lBitQXG/a5XOdRu4YsKsiXW8EWUcWFaNiXWJ6X+++WdvTlrqKadNM= -----END CERTIFICATE-----Generated at Mon Mar 2 05:40:29 2026 by rpki-client