$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b21853c-a5a3-4d69-83b3-47f3e075b504.roa File: 8b21853c-a5a3-4d69-83b3-47f3e075b504.roa (raw, json) Hash identifier: 7NJcRXGnCHovh2PYq8y4uC6UrV0wCy1RN3wQsFKRgLo= Subject key identifier: EB:08:36:0D:21:4C:A8:F4:DE:8F:67:D4:EC:15:FC:6E:01:AC:D7:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F48D2D45028731B0A002F1BF935ABA247EAE4AE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b21853c-a5a3-4d69-83b3-47f3e075b504.roa Signing time: Tue 24 Feb 2026 21:51:37 +0000 ROA not before: Tue 24 Feb 2026 21:51:37 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.192.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:48:d2:d4:50:28:73:1b:0a:00:2f:1b:f9:35:ab:a2:47:ea:e4:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 21:51:37 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=24f8ffc03f0b53de262a12d8e42b608ea06922a526d5a9ebc0af8769f937b4e2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:3e:dc:d6:fc:8e:b2:b6:5c:95:f6:d4:99:c0: 20:c5:21:48:a4:bc:7d:dc:fd:d1:8f:71:5a:66:18: a7:58:94:b6:78:53:e9:f8:e0:ee:71:04:0a:f8:de: ee:6e:19:ba:4e:51:b7:1d:1f:89:8f:9b:6b:0f:ae: a1:5c:28:6e:69:0e:ce:d3:72:fb:94:ca:aa:aa:8d: 89:38:5c:31:c1:94:f3:14:ef:1d:31:4d:8a:17:c6: 72:a6:47:7e:8d:4e:57:e2:1e:f2:74:ad:14:16:c6: 34:e5:cf:31:5d:93:a8:48:ea:f7:73:09:65:6c:b7: 8b:f4:62:65:6c:c3:5c:7b:d4:30:c7:ad:02:40:33: 3f:97:c0:c6:3c:db:51:7f:91:6d:7f:55:de:80:f9: dc:80:09:89:83:2e:14:a7:58:6a:11:51:a1:d1:82: b2:46:48:0b:bc:df:99:d9:1f:62:41:d2:77:df:be: 67:f4:de:03:2b:e0:23:f0:dc:bf:eb:79:5d:46:ae: e4:7d:a5:94:29:2c:62:f3:c5:31:87:7d:aa:3b:dd: 6f:fc:fa:18:54:87:c0:ca:1e:49:8c:4a:45:bd:ba: c9:73:03:61:71:c5:6b:f0:91:40:c6:1c:62:65:be: 9f:3e:5b:63:cf:05:d6:53:26:a8:c9:a4:52:b5:73: 51:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:08:36:0D:21:4C:A8:F4:DE:8F:67:D4:EC:15:FC:6E:01:AC:D7:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8b21853c-a5a3-4d69-83b3-47f3e075b504.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.192.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0e:a4:92:03:14:5a:2b:09:0c:dd:41:98:80:16:bc:33:a5:f1: 43:70:45:b6:25:48:54:a6:98:cf:94:40:b8:5a:85:86:ab:23: 52:97:90:89:85:81:ae:e6:a4:74:96:dd:e3:91:4d:36:c3:11: f5:65:c1:c1:af:99:b2:a6:e7:62:11:f4:41:5f:07:58:f7:b9: 33:5b:34:e1:2b:2a:0c:b7:8a:66:f3:58:c1:b8:33:26:a2:d8: f5:8c:ff:02:0b:95:2b:0e:2d:82:13:ab:78:38:ea:1a:61:24: 81:89:8f:f2:25:4d:df:11:c7:13:5d:19:ba:ab:71:e5:89:47: 3d:e7:14:af:04:d6:af:ef:ff:10:cd:87:b9:10:fa:0a:aa:43: d5:08:c9:11:99:bb:22:c2:7a:9d:dd:bd:13:a4:a4:c0:18:85: 65:3c:2b:7d:b9:ca:1b:b8:bb:a3:37:24:bd:cd:69:3f:1b:56: 9d:7a:2d:e4:29:2a:d6:b9:e8:89:4c:b8:85:ea:10:93:f3:47: 4c:c6:ad:8e:4b:3a:b0:29:c4:b7:5d:60:19:65:fb:a4:bd:2b: 2b:12:57:65:73:5e:da:e3:4f:73:6d:b5:c5:72:ee:80:30:cb: b2:fb:e6:eb:83:5f:6a:c1:9d:b8:80:62:a9:d8:db:55:f4:86: 99:3f:17:47 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUH0jS1FAocxsKAC8b+TWrokfq5K4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MjE1MTM3WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNGY4ZmZjMDNmMGI1M2RlMjYyYTEyZDhlNDJiNjA4ZWEw NjkyMmE1MjZkNWE5ZWJjMGFmODc2OWY5MzdiNGUyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfPtzW/I6ytlyV9tSZwCDFIUikvH3c/dGPcVpmGKdYlLZ4 U+n44O5xBAr43u5uGbpOUbcdH4mPm2sPrqFcKG5pDs7TcvuUyqqqjYk4XDHBlPMU 7x0xTYoXxnKmR36NTlfiHvJ0rRQWxjTlzzFdk6hI6vdzCWVst4v0YmVsw1x71DDH rQJAMz+XwMY821F/kW1/Vd6A+dyACYmDLhSnWGoRUaHRgrJGSAu835nZH2JB0nff vmf03gMr4CPw3L/reV1GruR9pZQpLGLzxTGHfao73W/8+hhUh8DKHkmMSkW9uslz A2FxxWvwkUDGHGJlvp8+W2PPBdZTJqjJpFK1c1HZAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU6wg2DSFMqPTej2fU7BX8bgGs16YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhiMjE4NTNjLWE1YTMtNGQ2OS04M2IzLTQ3ZjNlMDc1YjUwNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQwDANBgkqhkiG9w0BAQsFAAOCAQEADqSSAxRaKwkM3UGYgBa8M6XxQ3BF tiVIVKaYz5RAuFqFhqsjUpeQiYWBruakdJbd45FNNsMR9WXBwa+ZsqbnYhH0QV8H WPe5M1s04SsqDLeKZvNYwbgzJqLY9Yz/AguVKw4tghOreDjqGmEkgYmP8iVN3xHH E10Zuqtx5YlHPecUrwTWr+//EM2HuRD6CqpD1QjJEZm7IsJ6nd29E6SkwBiFZTwr fbnKG7i7ozckvc1pPxtWnXot5Ckq1rnoiUy4heoQk/NHTMatjks6sCnEt11gGWX7 pL0rKxJXZXNe2uNPc221xXLugDDLsvvm64NfasGduIBiqdjbVfSGmT8XRw== -----END CERTIFICATE-----Generated at Mon Mar 2 01:37:22 2026 by rpki-client