$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/819627c3-8ccc-4425-9f4f-1398f87c84d3.roa File: 819627c3-8ccc-4425-9f4f-1398f87c84d3.roa (raw, json) Hash identifier: hx+VBtoXykAdDs/bhv5lCzISLi9oxRIdDalwU9CvvqM= Subject key identifier: 7E:26:AC:66:90:7A:49:8C:EB:55:26:A1:03:24:9A:B8:E3:31:28:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66197DBAE9054D7D2644F3CED558DEBB232236A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/819627c3-8ccc-4425-9f4f-1398f87c84d3.roa Signing time: Fri 13 Feb 2026 01:01:24 +0000 ROA not before: Fri 13 Feb 2026 01:01:24 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.128.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:19:7d:ba:e9:05:4d:7d:26:44:f3:ce:d5:58:de:bb:23:22:36:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 01:01:24 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=70a6ce4ae95c1947d6785e0e371fc5f589d675ae172035c5e47eac29438bbe98, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:9e:74:c3:45:b5:67:25:56:3e:4a:f2:19:91: fa:59:47:bc:d6:07:f7:d2:b9:d2:90:5d:35:bb:12: 4b:78:bd:48:e4:a7:4b:b3:3c:eb:a2:1f:cb:4e:50: d8:27:96:aa:74:13:85:24:e3:61:2f:9d:86:a3:ea: e5:be:e6:5e:88:35:87:19:51:bf:a2:98:47:cc:df: 71:86:f0:4d:94:d2:43:3a:56:70:ea:ab:cd:ef:c6: fd:72:5a:8b:48:dd:29:fc:63:5c:ee:01:cc:4e:b8: 6d:fa:db:01:c3:29:5e:99:26:d5:95:5b:37:f1:49: b3:39:80:dd:7d:93:a3:48:0b:fb:f4:e9:a5:02:90: fe:34:9d:c2:8f:aa:ec:46:df:c2:a2:3f:cc:07:cb: f9:eb:7f:40:0f:92:1f:ee:2b:53:cc:a4:40:d4:52: 58:c5:b5:26:4a:5a:b8:c3:0c:cd:16:7c:7b:85:ed: 99:1f:83:42:78:e4:ad:ba:6a:20:3c:e4:25:a6:5d: f5:50:85:72:a3:fe:cf:58:c3:f9:fc:7d:e9:42:6c: a8:f5:21:90:6e:4f:fd:06:d8:09:5a:e3:0b:9d:50: f3:f4:83:7d:ba:06:bc:a8:46:ef:cb:55:9e:f7:d9: 79:26:b0:01:ca:b8:95:05:dc:34:b1:78:c0:96:1e: 52:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:26:AC:66:90:7A:49:8C:EB:55:26:A1:03:24:9A:B8:E3:31:28:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/819627c3-8ccc-4425-9f4f-1398f87c84d3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.128.0/20 Signature Algorithm: sha256WithRSAEncryption ac:85:18:10:d6:2f:2f:e7:e6:4c:e7:69:c3:98:24:5f:76:1f: d1:4e:1f:c0:b9:2e:f2:48:79:ae:0f:ee:b7:7e:8b:b5:26:a6: 9f:7c:d6:4d:95:a6:23:e4:fa:cf:77:45:93:f6:8f:e3:f6:ef: ca:3e:65:c6:3d:73:76:bd:ad:87:01:80:d3:11:06:2d:61:17: 8e:46:b1:28:17:9d:dd:f1:ba:8d:c7:78:77:c4:5c:3a:7b:53: 8e:96:94:3c:6d:30:6e:85:ee:71:39:6a:95:a1:a9:60:3c:05: 41:af:5f:26:b9:3a:95:ff:a1:83:ec:d2:1e:40:70:ad:eb:20: dd:34:fe:7f:a2:70:90:ff:80:08:f5:2e:05:81:86:b9:6b:a9: 2f:3e:af:00:0a:6f:80:db:0c:ca:c1:8b:e7:1f:1e:5f:28:23: 32:ca:e1:6a:f9:99:a3:85:fd:61:04:24:31:4a:d9:f5:07:2c: bd:02:21:bf:17:e4:fa:87:50:7f:06:1e:7b:97:a1:dc:21:da: 3d:b8:8b:7c:26:f0:1a:a3:01:70:69:cb:9c:d7:a8:85:44:d2: 34:f5:16:ab:43:58:dd:b0:19:d0:d1:e3:74:e2:dc:69:76:02: 08:41:68:4d:80:00:5d:29:ed:c4:fd:10:d2:44:48:85:4b:da: fd:44:80:5f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZhl9uukFTX0mRPPO1VjeuyMiNqEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDEwMTI0WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MGE2Y2U0YWU5NWMxOTQ3ZDY3ODVlMGUzNzFmYzVmNTg5 ZDY3NWFlMTcyMDM1YzVlNDdlYWMyOTQzOGJiZTk4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCrnnTDRbVnJVY+SvIZkfpZR7zWB/fSudKQXTW7Ekt4vUjk p0uzPOuiH8tOUNgnlqp0E4Uk42EvnYaj6uW+5l6INYcZUb+imEfM33GG8E2U0kM6 VnDqq83vxv1yWotI3Sn8Y1zuAcxOuG362wHDKV6ZJtWVWzfxSbM5gN19k6NIC/v0 6aUCkP40ncKPquxG38KiP8wHy/nrf0APkh/uK1PMpEDUUljFtSZKWrjDDM0WfHuF 7Zkfg0J45K26aiA85CWmXfVQhXKj/s9Yw/n8felCbKj1IZBuT/0G2Ala4wudUPP0 g326BryoRu/LVZ732XkmsAHKuJUF3DSxeMCWHlKHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfiasZpB6SYzrVSahAySauOMxKC8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgxOTYyN2MzLThjY2MtNDQyNS05ZjRmLTEzOThmODdjODRkMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgIAwDQYJKoZIhvcNAQELBQADggEBAKyFGBDWLy/n5kznacOYJF92H9FO H8C5LvJIea4P7rd+i7Umpp981k2VpiPk+s93RZP2j+P278o+ZcY9c3a9rYcBgNMR Bi1hF45GsSgXnd3xuo3HeHfEXDp7U46WlDxtMG6F7nE5apWhqWA8BUGvXya5OpX/ oYPs0h5AcK3rIN00/n+icJD/gAj1LgWBhrlrqS8+rwAKb4DbDMrBi+cfHl8oIzLK 4Wr5maOF/WEEJDFK2fUHLL0CIb8X5PqHUH8GHnuXodwh2j24i3wm8BqjAXBpy5zX qIVE0jT1FqtDWN2wGdDR43Ti3Gl2AghBaE2AAF0p7cT9ENJESIVL2v1EgF8= -----END CERTIFICATE-----Generated at Mon Mar 2 03:56:31 2026 by rpki-client