$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854b0ccc-21b0-4120-9690-48e4d8492039.roa File: 854b0ccc-21b0-4120-9690-48e4d8492039.roa (raw, json) Hash identifier: YXhzbkGb/QYKOwBS+SxtuwvxWl2zbN3SSL8GGyT5KuA= Subject key identifier: 41:08:E2:B9:A0:39:0C:6F:24:0F:17:8D:BD:F3:5D:DE:C4:55:2F:63 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AD342569DDCF9E411394482C0C5A95A27534890 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854b0ccc-21b0-4120-9690-48e4d8492039.roa Signing time: Tue 24 Feb 2026 01:01:59 +0000 ROA not before: Tue 24 Feb 2026 01:01:59 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 164.152.228.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d3:42:56:9d:dc:f9:e4:11:39:44:82:c0:c5:a9:5a:27:53:48:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:01:59 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=d5a941415085cfa16be2b5ddf2fbc8969b865869344fbfb978d8de536ff4924a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:0e:02:f6:fe:d2:b2:3f:38:a0:a4:75:99:57: 92:ec:90:ce:c9:d9:7e:5b:c6:cd:01:c6:78:28:fb: ec:62:c7:86:64:69:b1:ee:b0:de:83:3f:ad:af:fc: 26:87:d0:8f:a0:b9:16:9a:cb:4d:0a:8b:e4:83:fa: 43:9d:bf:57:af:4f:3c:de:1f:89:72:b4:f7:af:fb: db:3a:e4:00:8f:8b:7c:58:65:18:d4:2c:be:1d:a7: b6:fb:3e:70:4b:87:ec:ee:aa:34:98:6a:62:b2:5a: df:ef:a9:35:9c:e3:69:7a:9d:3a:e4:5d:ca:1c:b4: 8d:3c:de:8c:98:ed:da:f1:04:af:29:85:eb:c6:e9: b0:9d:77:ba:e9:66:ed:84:b6:ca:1e:a3:81:bc:a2: f4:fa:fb:91:dd:9c:d1:10:c1:d2:c5:33:50:9b:ee: 6d:15:e5:36:20:8a:a9:3a:66:80:cd:6e:a8:98:57: 4c:8a:8e:60:98:8c:b9:95:ae:e3:f9:d4:8c:89:ab: e3:bd:d9:15:22:60:12:9c:50:d4:7c:2b:be:9e:2c: ab:f1:09:4c:6c:fa:be:00:21:13:b2:71:e4:f2:7b: d3:39:19:f0:35:53:5f:0e:bd:d6:cc:c5:d3:c3:1b: 13:18:14:74:1c:6c:aa:dd:df:e1:02:ee:eb:61:c4: 77:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 41:08:E2:B9:A0:39:0C:6F:24:0F:17:8D:BD:F3:5D:DE:C4:55:2F:63 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/854b0ccc-21b0-4120-9690-48e4d8492039.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.152.228.0/22 Signature Algorithm: sha256WithRSAEncryption 0e:32:47:65:ce:d6:ea:92:dd:dc:93:44:4d:97:f1:b0:5f:d3: 95:14:42:98:42:5d:c6:ef:1d:8a:e2:57:46:3e:58:dc:c3:06: 30:db:f4:52:20:3a:5d:20:31:5d:3a:44:23:07:e1:32:25:e8: 70:fb:48:56:22:bf:1e:6c:c4:fe:7a:6a:17:ba:f4:b1:ef:6c: 14:46:32:89:cc:5c:d8:91:5d:a4:bd:af:db:e6:84:7d:2d:17: 76:fe:a4:f6:97:c9:7a:20:58:83:71:51:39:32:58:2b:02:66: 62:3c:43:8b:52:e2:c7:97:8a:d5:01:4a:c1:98:04:74:5d:ca: 98:f9:20:a5:c3:38:3c:90:18:cd:52:bf:92:07:f4:13:01:d9: 66:eb:46:38:d2:26:5a:3f:c3:c4:2e:19:34:4b:5b:17:80:4a: 8a:89:f4:01:97:af:a5:37:f6:31:40:31:f1:cc:19:b8:cb:d0: f6:27:cc:ca:a6:b9:ac:b3:49:f7:ed:24:2d:d0:04:0a:0f:6e: 69:b5:58:22:bd:d5:ee:50:ab:7a:24:c2:01:54:d6:41:3c:f0: a5:0f:b6:a2:7c:8b:aa:3c:02:8a:6f:38:bb:42:05:da:cf:fe: 52:60:dc:f6:f2:5d:b5:c2:71:f5:fd:a2:c0:7a:17:bd:62:7a: 1a:1a:40:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKtNCVp3c+eQROUSCwMWpWidTSJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMTU5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BkNWE5NDE0MTUwODVjZmExNmJlMmI1ZGRmMmZiYzg5Njli ODY1ODY5MzQ0ZmJmYjk3OGQ4ZGU1MzZmZjQ5MjRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBDgL2/tKyPzigpHWZV5LskM7J2X5bxs0Bxngo++xix4Zk abHusN6DP62v/CaH0I+guRaay00Ki+SD+kOdv1evTzzeH4lytPev+9s65ACPi3xY ZRjULL4dp7b7PnBLh+zuqjSYamKyWt/vqTWc42l6nTrkXcoctI083oyY7drxBK8p hevG6bCdd7rpZu2Etsoeo4G8ovT6+5HdnNEQwdLFM1Cb7m0V5TYgiqk6ZoDNbqiY V0yKjmCYjLmVruP51IyJq+O92RUiYBKcUNR8K76eLKvxCUxs+r4AIROyceTye9M5 GfA1U18OvdbMxdPDGxMYFHQcbKrd3+EC7uthxHdjAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQQjiuaA5DG8kDxeNvfNd3sRVL2MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzg1NGIwY2NjLTIxYjAtNDEyMC05NjkwLTQ4ZTRkODQ5MjAzOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAKkmOQwDQYJKoZIhvcNAQELBQADggEBAA4yR2XO1uqS3dyTRE2X8bBf05UU QphCXcbvHYriV0Y+WNzDBjDb9FIgOl0gMV06RCMH4TIl6HD7SFYivx5sxP56ahe6 9LHvbBRGMonMXNiRXaS9r9vmhH0tF3b+pPaXyXogWINxUTkyWCsCZmI8Q4tS4seX itUBSsGYBHRdypj5IKXDODyQGM1Sv5IH9BMB2WbrRjjSJlo/w8QuGTRLWxeASoqJ 9AGXr6U39jFAMfHMGbjL0PYnzMqmuayzSfftJC3QBAoPbmm1WCK91e5Qq3okwgFU 1kE88KUPtqJ8i6o8AopvOLtCBdrP/lJg3PbyXbXCcfX9osB6F71iehoaQJU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:28 2026 by rpki-client