$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa File: 8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa (raw, json) Hash identifier: 7dtyWfHhj+DshjhWuA7kx/AqPGalsLA95j6EdqrWnYI= Subject key identifier: A7:95:F4:17:BC:89:B9:2B:8F:80:2D:D2:B1:B4:FB:D3:AD:23:00:4D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4FFF69F98661D901A83EC8B7C7EC360563257328 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa Signing time: Tue 24 Feb 2026 02:30:16 +0000 ROA not before: Tue 24 Feb 2026 02:30:16 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.184.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:ff:69:f9:86:61:d9:01:a8:3e:c8:b7:c7:ec:36:05:63:25:73:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:30:16 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=ac752afc24c48acef22bb2048292008d66533f8b6bc7bf4b3c32a8dd02cf0366, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:82:66:ff:53:87:2c:88:40:ef:82:8c:3a:1b: cd:1c:99:0c:be:96:f8:b8:c3:82:5b:b4:65:01:09: 27:82:1c:27:15:65:f7:16:57:6e:75:f6:3b:f0:fc: 3b:1d:58:2a:60:a6:77:f8:93:22:df:2a:b8:00:aa: 77:aa:71:e2:3c:b5:70:1c:5f:de:d5:90:af:61:53: 33:b7:04:4a:96:f8:b7:09:2a:9c:89:b3:20:dd:47: 7a:b0:ab:76:85:94:9e:3e:d5:72:62:0a:78:c3:95: 6a:20:6b:eb:e4:d6:c7:fa:fc:67:ff:49:31:54:96: ef:d4:81:65:0e:45:f7:37:e5:3a:d7:34:dc:2f:df: 0d:dc:1e:ba:11:b5:85:d2:b2:aa:8a:39:70:6e:39: 16:ed:16:8c:44:c2:b4:b0:82:9a:77:39:b7:8d:e2: c2:c8:9e:f5:70:39:d0:19:7c:a2:45:a7:8f:51:bc: da:83:df:5d:1b:02:47:80:e0:ac:7c:8e:4c:32:14: 1a:25:cd:e5:7c:a9:9c:89:59:eb:b1:b9:77:85:5f: cf:0e:b1:21:c8:36:d0:18:5d:8b:bd:99:3f:56:87: 5b:86:ef:33:e2:f2:f4:fd:a5:9e:2a:27:ce:51:bd: 3e:78:c4:40:cb:5d:be:86:ae:25:de:12:da:89:f3: bd:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:95:F4:17:BC:89:B9:2B:8F:80:2D:D2:B1:B4:FB:D3:AD:23:00:4D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8eaa4749-a045-4880-ab8c-90d7c1406a2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.184.0.0/16 Signature Algorithm: sha256WithRSAEncryption 90:ef:33:c0:fe:35:b3:6a:3b:3f:37:60:25:e5:d4:f9:9b:78: f7:48:0b:f8:db:63:f1:a9:8e:95:e5:84:c0:ac:1c:46:41:e4: 1e:4b:34:7b:c3:47:ad:14:0e:c8:09:c9:ba:62:44:f0:23:80: 4d:67:7a:c4:1e:61:2f:23:e6:4d:6c:02:c2:7a:19:c8:33:fb: b5:de:ea:29:b3:b0:03:e1:58:0a:e6:3d:4a:7f:34:96:80:ef: b0:50:29:98:ae:80:17:82:ba:5e:ea:8a:6b:00:5a:a8:b6:52: 73:23:38:3d:94:36:54:24:c6:89:44:5b:e4:ee:a7:13:66:3f: 45:2d:f3:10:dd:fd:e6:10:dc:92:1e:57:21:a1:e5:1b:ec:df: 93:20:4c:6f:5c:fd:cb:c9:50:68:b5:30:2d:8f:f5:d6:fd:da: 6b:ca:75:b3:63:e6:4c:8f:0d:05:7d:b1:82:f6:e2:e5:2d:61: 43:f7:dd:a5:ce:ce:e1:e4:4e:91:e4:90:bd:21:e9:82:10:67: d5:e3:4a:52:91:8d:44:6d:e0:af:48:1b:b3:02:b7:15:33:88: 42:63:5a:a9:e5:29:86:f8:2b:d9:e8:f2:78:6a:bd:51:34:f3: 18:3b:f2:e6:06:39:74:54:4b:1e:c2:ad:5f:b2:98:82:2e:f9: f7:e8:69:53 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT/9p+YZh2QGoPsi3x+w2BWMlcygwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMDE2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhYzc1MmFmYzI0YzQ4YWNlZjIyYmIyMDQ4MjkyMDA4ZDY2 NTMzZjhiNmJjN2JmNGIzYzMyYThkZDAyY2YwMzY2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCigmb/U4csiEDvgow6G80cmQy+lvi4w4JbtGUBCSeCHCcV ZfcWV2519jvw/DsdWCpgpnf4kyLfKrgAqneqceI8tXAcX97VkK9hUzO3BEqW+LcJ KpyJsyDdR3qwq3aFlJ4+1XJiCnjDlWoga+vk1sf6/Gf/STFUlu/UgWUORfc35TrX NNwv3w3cHroRtYXSsqqKOXBuORbtFoxEwrSwgpp3ObeN4sLInvVwOdAZfKJFp49R vNqD310bAkeA4Kx8jkwyFBolzeV8qZyJWeuxuXeFX88OsSHINtAYXYu9mT9Wh1uG 7zPi8vT9pZ4qJ85RvT54xEDLXb6GriXeEtqJ871RAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUp5X0F7yJuSuPgC3SsbT7060jAE0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhlYWE0NzQ5LWEwNDUtNDg4MC1hYjhjLTkwZDdjMTQwNmEyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQuDANBgkqhkiG9w0BAQsFAAOCAQEAkO8zwP41s2o7PzdgJeXU+Zt490gL +Ntj8amOleWEwKwcRkHkHks0e8NHrRQOyAnJumJE8COATWd6xB5hLyPmTWwCwnoZ yDP7td7qKbOwA+FYCuY9Sn80loDvsFApmK6AF4K6XuqKawBaqLZScyM4PZQ2VCTG iURb5O6nE2Y/RS3zEN395hDckh5XIaHlG+zfkyBMb1z9y8lQaLUwLY/11v3aa8p1 s2PmTI8NBX2xgvbi5S1hQ/fdpc7O4eROkeSQvSHpghBn1eNKUpGNRG3gr0gbswK3 FTOIQmNaqeUphvgr2ejyeGq9UTTzGDvy5gY5dFRLHsKtX7KYgi759+hpUw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:29 2026 by rpki-client