$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa File: 8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa (raw, json) Hash identifier: w1wVOBjQPpGYHaxiGbt08CrsX6v0gP+8BFMOaZ8+038= Subject key identifier: CA:5F:D6:2E:F9:A6:7F:29:7A:38:0C:EA:F1:48:AA:66:13:D1:9B:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7D0E71FAF9F93786EF4FD20E5025D10456976ACC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa Signing time: Sat 28 Feb 2026 00:30:12 +0000 ROA not before: Sat 28 Feb 2026 00:30:12 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 167.243.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:0e:71:fa:f9:f9:37:86:ef:4f:d2:0e:50:25:d1:04:56:97:6a:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:30:12 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=ba3e69c08a0b938b59b617872c917a36457a78cabb7d274fd258f20d7d1e82df, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:d8:24:53:53:f3:7a:69:b8:18:67:74:98:63: 71:b9:b9:bc:fb:b5:69:0e:cf:dd:12:9a:90:8d:10: f4:00:18:23:c4:d0:0e:14:67:72:2b:0e:00:88:ec: dd:61:9c:cb:2b:3e:b8:9b:d8:89:72:02:c5:74:76: de:01:42:3d:88:58:13:de:dc:57:71:9b:9c:93:93: 34:92:ea:ad:9a:b6:6c:3f:d6:9b:7e:30:c5:e7:b3: 0a:54:a3:a1:e8:d0:80:fb:cd:93:ae:a8:07:ef:8f: 3e:73:bd:17:93:93:aa:ac:29:c5:f8:c9:ad:0a:7a: 30:4f:4e:d7:71:a7:5d:a1:82:19:cd:1c:65:84:8a: 30:c5:6e:09:c8:af:79:25:12:e5:3a:8a:20:03:86: 88:ef:e6:c8:28:56:aa:2c:9c:ba:ca:4b:13:a5:2a: de:5b:ff:b6:a1:dd:3a:d7:b2:b4:05:c3:fa:a5:a9: c7:03:d9:c7:26:89:2a:96:83:ee:3a:ac:75:04:05: e8:e9:ca:d5:83:4a:54:aa:44:9a:35:24:c8:40:46: 22:09:f8:61:47:46:7e:91:eb:14:1f:f4:36:a1:69: 40:0f:09:ab:b1:a1:d3:52:34:56:66:a8:bb:a9:14: cd:7e:98:14:23:57:3e:3a:09:bd:ba:09:b8:bf:9d: 22:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:5F:D6:2E:F9:A6:7F:29:7A:38:0C:EA:F1:48:AA:66:13:D1:9B:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8e18da5a-f870-44ce-b5d0-8665afe2c5c7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 167.243.0.0/16 Signature Algorithm: sha256WithRSAEncryption b3:7f:44:72:fe:51:0b:77:59:a7:23:59:4b:c0:a3:04:63:93: 61:a8:32:06:7d:a3:6b:62:4e:77:7d:97:08:75:01:6c:c6:73: e9:23:37:74:f3:14:6b:8c:04:e9:52:8b:1e:35:ba:7b:79:dd: b3:d5:be:1f:12:85:0f:bd:7f:a0:72:c9:ff:6d:56:96:73:3b: ae:61:8b:9f:c0:1f:52:c7:b3:25:19:0a:d4:19:97:92:1c:45: 24:7a:9c:fe:0b:bf:9a:c7:13:2a:8a:70:ff:f0:be:a7:f8:03: d3:6e:14:66:b8:ef:d8:71:1a:3c:17:50:cc:d3:42:06:00:03: 0a:83:d6:1d:05:0e:b0:db:50:45:5f:83:1c:49:22:8e:ae:f7: 42:94:c2:7b:88:20:bd:d5:9c:64:57:c9:87:86:ed:99:bc:3e: 72:4c:49:94:28:5f:40:4a:e2:2e:12:fc:d0:81:04:04:9f:d8: 98:0c:63:3e:76:e0:5f:ed:3b:10:72:db:18:10:9f:35:49:42: a6:6c:b3:93:50:c2:2b:a8:cb:e0:71:e9:5d:17:ee:a8:fe:b8: f8:93:e3:7b:39:a4:6d:0f:37:4a:bc:8e:16:b1:33:40:5d:9d: a9:7c:ba:75:f9:74:3e:fb:89:3d:fa:dc:37:17:e6:a4:b7:09: da:13:1a:a0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfQ5x+vn5N4bvT9IOUCXRBFaXaswwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAzMDEyWhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYTNlNjljMDhhMGI5MzhiNTliNjE3ODcyYzkxN2EzNjQ1 N2E3OGNhYmI3ZDI3NGZkMjU4ZjIwZDdkMWU4MmRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDS2CRTU/N6abgYZ3SYY3G5ubz7tWkOz90SmpCNEPQAGCPE 0A4UZ3IrDgCI7N1hnMsrPrib2IlyAsV0dt4BQj2IWBPe3Fdxm5yTkzSS6q2atmw/ 1pt+MMXnswpUo6Ho0ID7zZOuqAfvjz5zvReTk6qsKcX4ya0KejBPTtdxp12hghnN HGWEijDFbgnIr3klEuU6iiADhojv5sgoVqosnLrKSxOlKt5b/7ah3TrXsrQFw/ql qccD2ccmiSqWg+46rHUEBejpytWDSlSqRJo1JMhARiIJ+GFHRn6R6xQf9DahaUAP CauxodNSNFZmqLupFM1+mBQjVz46Cb26Cbi/nSI9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyl/WLvmmfyl6OAzq8UiqZhPRm94wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlMThkYTVhLWY4NzAtNDRjZS1iNWQwLTg2NjVhZmUyYzVjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCn8zANBgkqhkiG9w0BAQsFAAOCAQEAs39Ecv5RC3dZpyNZS8CjBGOTYagy Bn2ja2JOd32XCHUBbMZz6SM3dPMUa4wE6VKLHjW6e3nds9W+HxKFD71/oHLJ/21W lnM7rmGLn8AfUsezJRkK1BmXkhxFJHqc/gu/mscTKopw//C+p/gD024UZrjv2HEa PBdQzNNCBgADCoPWHQUOsNtQRV+DHEkijq73QpTCe4ggvdWcZFfJh4btmbw+ckxJ lChfQEriLhL80IEEBJ/YmAxjPnbgX+07EHLbGBCfNUlCpmyzk1DCK6jL4HHpXRfu qP64+JPjezmkbQ83SryOFrEzQF2dqXy6dfl0PvuJPfrcNxfmpLcJ2hMaoA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:37:40 2026 by rpki-client