$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa File: 8d469487-1107-4d13-bd1f-6f60c5d3da36.roa (raw, json) Hash identifier: wFsNMcUkXIX5TLNVyp1YaqBXTPKQAirbuT5LoBzQVCw= Subject key identifier: 6E:CB:69:A0:71:B0:EF:62:0F:8F:14:AE:77:E8:77:73:1A:EC:47:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D237F684275457BC8C363E196CAA10B6317A3C6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa Signing time: Wed 25 Feb 2026 00:40:35 +0000 ROA not before: Wed 25 Feb 2026 00:40:35 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.23.0.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:23:7f:68:42:75:45:7b:c8:c3:63:e1:96:ca:a1:0b:63:17:a3:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:40:35 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=97813d42b174434f14b190668fb6329d4bfe21989fedafa75ebbd2827b44c7c6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:2a:ac:75:41:3f:37:2c:63:41:93:3b:74:fd: c6:0e:70:c1:b9:55:e4:1d:2d:71:a7:10:64:9c:65: 6d:de:cb:b4:1b:52:47:70:b2:8e:e7:e7:b8:39:05: b4:af:21:cf:8e:0d:a2:15:0f:a4:c9:be:6f:6e:a2: a9:5f:b8:b7:6c:33:84:51:39:51:97:c7:ae:29:82: 94:33:e1:19:a6:bf:10:c8:bc:de:53:6e:6c:99:c4: 84:86:7d:38:0b:59:a5:27:a5:b9:dc:cb:c3:56:b8: 3a:eb:5a:98:68:2e:55:37:1c:ab:17:86:bf:15:24: 70:12:26:14:58:09:73:4e:8b:c5:d4:83:0a:f0:77: 8d:ae:07:e6:58:f8:c5:84:bf:06:4b:ff:1a:a4:cd: 7c:b9:9d:5f:dd:4c:71:80:14:fe:18:21:a7:82:87: 8b:95:39:aa:78:e9:eb:ac:35:75:68:b6:90:83:c4: 53:85:25:aa:64:fb:97:2f:f1:ff:67:2d:62:1b:23: b1:4a:b5:a5:3d:f0:86:eb:18:6c:b8:64:cb:4a:2a: aa:69:e3:ea:53:bc:75:9e:d4:de:14:ad:66:09:e7: fc:d5:6c:e9:71:a7:89:fd:4d:98:a7:37:cc:2e:3d: 77:a8:e7:88:b5:b7:10:29:d2:df:3c:cc:66:de:14: 51:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:CB:69:A0:71:B0:EF:62:0F:8F:14:AE:77:E8:77:73:1A:EC:47:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8d469487-1107-4d13-bd1f-6f60c5d3da36.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.23.0.0/18 Signature Algorithm: sha256WithRSAEncryption 0b:4b:46:cf:c8:94:4b:df:72:a6:3f:2b:77:f3:c0:a5:50:fc: dc:1d:85:2a:d0:c2:de:9c:09:68:ca:4c:c1:4e:01:36:f0:29: cc:2f:10:46:c8:5d:86:58:5d:0d:72:b3:de:d4:0d:1e:e3:df: be:78:63:71:3f:93:43:ed:02:4b:63:6f:df:0f:bd:ae:9f:ab: a2:c6:6f:a5:bf:6a:39:0c:15:36:dc:e7:3f:06:21:03:15:75: 2a:6a:dc:f7:31:ea:f2:f4:d0:7d:44:7d:85:b9:72:77:08:03: c3:02:8d:d6:34:bc:98:29:f4:6e:9d:22:97:59:5a:37:d9:83: a4:71:f3:39:40:39:e1:31:a6:59:bc:7a:ef:8e:30:81:a1:54: d8:85:3f:58:64:6f:c5:56:a5:5e:d5:30:24:ba:df:e1:d6:f6: 22:d7:75:17:d8:f4:72:a3:95:0e:6b:89:93:e5:51:ed:e1:2e: c1:44:60:b0:ce:9f:72:0a:7a:9b:12:0f:3b:15:51:ab:59:8e: b8:cf:e3:b7:7a:08:07:1d:03:bd:e2:66:9f:c2:16:d0:81:b5: 5e:c6:b6:8e:64:69:78:64:82:aa:e6:30:13:8e:9a:10:8c:6d: 64:c7:a1:ac:19:2b:57:8a:11:aa:76:25:a3:56:e4:db:02:9c: 95:a4:84:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHSN/aEJ1RXvIw2PhlsqhC2MXo8YwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDA0MDM1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NzgxM2Q0MmIxNzQ0MzRmMTRiMTkwNjY4ZmI2MzI5ZDRi ZmUyMTk4OWZlZGFmYTc1ZWJiZDI4MjdiNDRjN2M2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/Kqx1QT83LGNBkzt0/cYOcMG5VeQdLXGnEGScZW3ey7Qb Ukdwso7n57g5BbSvIc+ODaIVD6TJvm9uoqlfuLdsM4RROVGXx64pgpQz4RmmvxDI vN5TbmyZxISGfTgLWaUnpbncy8NWuDrrWphoLlU3HKsXhr8VJHASJhRYCXNOi8XU gwrwd42uB+ZY+MWEvwZL/xqkzXy5nV/dTHGAFP4YIaeCh4uVOap46eusNXVotpCD xFOFJapk+5cv8f9nLWIbI7FKtaU98IbrGGy4ZMtKKqpp4+pTvHWe1N4UrWYJ5/zV bOlxp4n9TZinN8wuPXeo54i1txAp0t88zGbeFFF/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbstpoHGw72IPjxSud+h3cxrsR38wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhkNDY5NDg3LTExMDctNGQxMy1iZDFmLTZmNjBjNWQzZGEzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAFwAwDQYJKoZIhvcNAQELBQADggEBAAtLRs/IlEvfcqY/K3fzwKVQ/Nwd hSrQwt6cCWjKTMFOATbwKcwvEEbIXYZYXQ1ys97UDR7j3754Y3E/k0PtAktjb98P va6fq6LGb6W/ajkMFTbc5z8GIQMVdSpq3Pcx6vL00H1EfYW5cncIA8MCjdY0vJgp 9G6dIpdZWjfZg6Rx8zlAOeExplm8eu+OMIGhVNiFP1hkb8VWpV7VMCS63+HW9iLX dRfY9HKjlQ5riZPlUe3hLsFEYLDOn3IKepsSDzsVUatZjrjP47d6CAcdA73iZp/C FtCBtV7Gto5kaXhkgqrmMBOOmhCMbWTHoawZK1eKEap2JaNW5NsCnJWkhJ4= -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:45 2026 by rpki-client