$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8246909b-ab11-4b61-9e42-799247fb2aab.roa File: 8246909b-ab11-4b61-9e42-799247fb2aab.roa (raw, json) Hash identifier: VJUH4o1Cv84M75IwUNRY67MXMfgI/RY14R9AXsLoAR4= Subject key identifier: 45:A3:D0:65:6F:FD:68:6D:FA:BF:AD:21:A1:75:D0:D8:15:14:B0:F2 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 19ADA27B4A4E36C85AC973699BC7BD3872F05FC4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8246909b-ab11-4b61-9e42-799247fb2aab.roa Signing time: Wed 25 Feb 2026 01:10:55 +0000 ROA not before: Wed 25 Feb 2026 01:10:55 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.8.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 19:ad:a2:7b:4a:4e:36:c8:5a:c9:73:69:9b:c7:bd:38:72:f0:5f:c4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:10:55 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=83d6d1cafb4c2dc4b07212f99b23cb386cee8566963576a474ab2a64949672fc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:c6:08:34:86:9d:39:5f:23:06:60:7f:b5:a3: 7f:6d:9c:8c:41:90:4f:7f:2d:c7:d0:10:d8:ed:bc: 87:30:e8:e5:4b:3d:f6:f2:86:b9:df:0a:89:4f:54: d1:72:c2:e2:0e:eb:a8:32:d1:5e:5e:97:1d:7c:1c: 85:e4:d1:d3:ea:83:1c:cf:04:6d:a4:6d:97:a9:3c: 3c:c8:db:ca:0e:a2:f0:dc:3e:9b:ba:3d:0b:c8:fe: 66:e7:b1:35:d6:5f:71:1f:ae:b8:02:9f:fb:3b:d7: 6b:6f:46:fd:4f:ca:35:0e:01:1f:3c:a0:27:a5:fd: 4f:5a:27:91:7a:c4:01:d1:f5:e2:a6:69:7f:5f:c7: 6d:00:64:9f:19:f3:1b:b3:c7:2a:55:26:f6:02:84: 02:67:07:ab:49:de:be:2b:db:0c:15:7d:f3:b8:bc: a5:7d:ce:e8:b5:88:e8:e3:69:d2:08:90:e8:bd:29: aa:09:94:6c:2b:aa:49:66:13:70:b1:c6:d0:c2:42: c2:19:c2:72:46:fa:7d:6c:3a:47:ef:37:e9:aa:4b: 52:12:79:eb:f1:4f:b6:dd:92:97:06:6b:9d:0f:9f: 8b:d3:dd:aa:6a:7a:d4:2b:14:5f:7d:d2:88:95:a0: 75:01:49:09:1e:b1:ce:d9:3b:60:03:52:20:0c:0f: 99:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 45:A3:D0:65:6F:FD:68:6D:FA:BF:AD:21:A1:75:D0:D8:15:14:B0:F2 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8246909b-ab11-4b61-9e42-799247fb2aab.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.8.0.0/14 Signature Algorithm: sha256WithRSAEncryption 1a:b5:1f:27:fd:a1:5f:27:58:1d:cb:3b:8e:4b:0a:da:ea:1d: 47:41:40:17:40:b4:98:ec:cd:2e:33:ab:be:a3:7e:8f:1a:b3: 1f:5a:30:b7:a0:0f:ef:c4:5e:33:5d:0e:c0:12:52:73:37:15: c8:17:fd:44:3e:1d:d6:a0:c4:d5:06:3b:d5:d8:2c:ff:6a:01: 24:85:f9:10:0d:32:ea:63:0f:7d:d5:c1:06:dc:ab:42:48:0e: e3:92:1a:e1:c5:33:65:3e:79:02:2f:04:79:9f:bf:72:12:60: 32:85:98:ac:1a:1f:73:70:84:78:66:cf:a5:b0:d6:e1:de:83: b1:6f:c8:39:cb:d0:e3:76:8c:28:44:a1:c9:39:15:16:cf:30: 5b:e5:3e:d7:ef:4e:a3:33:aa:a2:6d:b5:9e:a6:b8:e0:8e:b1: 12:f1:de:c4:c9:7a:6f:2a:2b:39:8f:d5:bc:2f:08:9b:3b:1b: 33:ab:74:97:12:c9:7e:0d:97:eb:5e:5f:e8:07:2c:0b:93:fb: 11:d8:92:e2:91:e4:38:5a:5b:1c:c8:24:be:46:93:7a:87:f7: d5:89:16:5d:ab:e4:df:89:e4:d6:ba:34:8c:70:c1:47:12:e9: 33:d7:f7:d3:da:bc:e5:98:dc:45:c6:c0:b3:aa:86:a3:fd:56: 9b:da:8a:03 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGa2ie0pONshayXNpm8e9OHLwX8QwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDExMDU1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4M2Q2ZDFjYWZiNGMyZGM0YjA3MjEyZjk5YjIzY2IzODZj ZWU4NTY2OTYzNTc2YTQ3NGFiMmE2NDk0OTY3MmZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDYxgg0hp05XyMGYH+1o39tnIxBkE9/LcfQENjtvIcw6OVL PfbyhrnfColPVNFywuIO66gy0V5elx18HIXk0dPqgxzPBG2kbZepPDzI28oOovDc Ppu6PQvI/mbnsTXWX3EfrrgCn/s712tvRv1PyjUOAR88oCel/U9aJ5F6xAHR9eKm aX9fx20AZJ8Z8xuzxypVJvYChAJnB6tJ3r4r2wwVffO4vKV9zui1iOjjadIIkOi9 KaoJlGwrqklmE3CxxtDCQsIZwnJG+n1sOkfvN+mqS1ISeevxT7bdkpcGa50Pn4vT 3apqetQrFF990oiVoHUBSQkesc7ZO2ADUiAMD5k9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQURaPQZW/9aG36v60hoXXQ2BUUsPIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzgyNDY5MDliLWFiMTEtNGI2MS05ZTQyLTc5OTI0N2ZiMmFhYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwJBCDANBgkqhkiG9w0BAQsFAAOCAQEAGrUfJ/2hXydYHcs7jksK2uodR0FA F0C0mOzNLjOrvqN+jxqzH1owt6AP78ReM10OwBJSczcVyBf9RD4d1qDE1QY71dgs /2oBJIX5EA0y6mMPfdXBBtyrQkgO45Ia4cUzZT55Ai8EeZ+/chJgMoWYrBofc3CE eGbPpbDW4d6DsW/IOcvQ43aMKEShyTkVFs8wW+U+1+9OozOqom21nqa44I6xEvHe xMl6byorOY/VvC8ImzsbM6t0lxLJfg2X615f6AcsC5P7EdiS4pHkOFpbHMgkvkaT eof31YkWXavk34nk1ro0jHDBRxLpM9f309q85ZjcRcbAs6qGo/1Wm9qKAw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:13 2026 by rpki-client