$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f36eaca-de14-481f-ae4a-55c99b57e524.roa File: 8f36eaca-de14-481f-ae4a-55c99b57e524.roa (raw, json) Hash identifier: YRuNOQXlLc3j3AlhhwgyW3dBH1oxg6i09uAc2RZLDFY= Subject key identifier: 4E:CF:19:9C:0F:8E:46:18:89:99:5E:90:29:8D:8A:9B:3E:7E:E0:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 694F69872840A8A5675483AAC6F60E3C21CD00B6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f36eaca-de14-481f-ae4a-55c99b57e524.roa Signing time: Wed 25 Feb 2026 01:40:38 +0000 ROA not before: Wed 25 Feb 2026 01:40:38 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.66.128.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:4f:69:87:28:40:a8:a5:67:54:83:aa:c6:f6:0e:3c:21:cd:00:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:40:38 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=99b63192f53fb53e01b1a057efa6a7979a64010738d622a4730d178a42d452ba, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:55:af:ac:40:e0:d3:a3:86:2b:96:55:55:18: 21:e2:1e:6b:08:0f:6b:fb:30:d2:c2:39:66:2b:c1: 0d:60:a5:aa:56:97:48:38:72:0d:a0:70:c7:c6:48: 9d:ab:3e:67:8c:72:ca:c1:68:a6:7c:8b:86:d0:a2: 49:3b:fb:48:3a:a8:94:10:68:6a:5b:12:d7:95:1f: 78:06:84:05:ca:fa:86:c8:ef:4b:15:c8:d1:2c:45: 27:9f:66:2b:b3:7f:ab:f5:4a:0c:3a:3e:9e:0e:77: 96:12:55:77:a7:11:b6:ac:74:df:58:6f:35:dc:8b: b5:2e:44:a2:d0:89:9b:b9:35:15:43:56:f0:c7:26: e4:ba:da:d6:39:8d:4d:3d:17:e9:c7:3c:2f:44:37: 3c:3a:3d:70:2f:a0:da:5f:1f:3c:26:f4:93:db:32: 34:a1:3a:ce:5a:20:68:85:ce:69:0e:67:33:b4:01: 28:b5:59:81:1c:c0:75:ce:6f:65:2a:a0:be:c9:3f: 65:91:f7:5f:ce:55:58:d7:ca:8b:75:f6:93:b7:f7: 6f:dc:32:17:79:fe:72:87:ee:91:45:8b:6a:9e:03: 84:34:ed:a8:22:ff:a0:9e:83:56:0d:19:78:d3:8c: 68:fc:b3:4f:bf:2e:c6:36:32:85:2e:87:a4:91:85: 82:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:CF:19:9C:0F:8E:46:18:89:99:5E:90:29:8D:8A:9B:3E:7E:E0:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/8f36eaca-de14-481f-ae4a-55c99b57e524.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.66.128.0/18 Signature Algorithm: sha256WithRSAEncryption 22:02:0d:b2:97:8a:90:a6:f5:97:20:1a:a0:5a:3d:6b:27:61: 6e:d7:a2:87:33:52:2a:72:b3:dd:2d:6c:c6:27:16:e9:71:02: 5a:a0:fc:d2:17:a2:d3:e5:8a:28:bb:26:5c:f1:9d:86:f1:cc: 61:bc:5a:55:77:e7:54:72:50:0d:d0:ce:f7:7b:a5:14:23:08: 78:0c:26:c5:41:6f:66:c0:7c:cb:90:61:8f:ef:92:b8:69:5d: 4e:b9:ec:3a:b8:ad:da:cb:0a:ad:61:aa:ad:c7:e2:72:e7:b6: 5c:75:19:3d:65:fb:3e:b9:9c:a9:5d:36:46:c4:d1:5b:6c:e3: a7:db:db:e5:7a:dd:7f:8d:46:2d:7f:31:aa:5a:70:ea:95:49: c4:32:36:c0:c3:5f:b0:5b:4c:71:f5:fb:7d:1b:0d:41:f1:05: 7b:b6:07:76:ee:14:7a:1b:88:d5:87:8d:dd:d2:4e:05:f2:6f: 73:68:e2:96:24:d3:28:b9:29:4d:9b:34:d4:53:b6:e7:17:1a: 7b:98:fd:f3:ab:a7:ad:7e:87:c6:b0:9b:a6:9d:f2:b0:8c:05: 47:98:b6:ae:a5:6a:0c:7c:33:d8:15:5a:2e:28:91:cb:93:c2: 83:92:47:65:d5:3b:55:8b:83:64:dc:1f:09:eb:a0:60:ac:05: c6:2a:73:80 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUaU9phyhAqKVnVIOqxvYOPCHNALYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDE0MDM4WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OWI2MzE5MmY1M2ZiNTNlMDFiMWEwNTdlZmE2YTc5Nzlh NjQwMTA3MzhkNjIyYTQ3MzBkMTc4YTQyZDQ1MmJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCMVa+sQODTo4YrllVVGCHiHmsID2v7MNLCOWYrwQ1gpapW l0g4cg2gcMfGSJ2rPmeMcsrBaKZ8i4bQokk7+0g6qJQQaGpbEteVH3gGhAXK+obI 70sVyNEsRSefZiuzf6v1Sgw6Pp4Od5YSVXenEbasdN9YbzXci7UuRKLQiZu5NRVD VvDHJuS62tY5jU09F+nHPC9ENzw6PXAvoNpfHzwm9JPbMjShOs5aIGiFzmkOZzO0 ASi1WYEcwHXOb2UqoL7JP2WR91/OVVjXyot19pO392/cMhd5/nKH7pFFi2qeA4Q0 7agi/6Ceg1YNGXjTjGj8s0+/LsY2MoUuh6SRhYIRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUTs8ZnA+ORhiJmV6QKY2Kmz5+4FIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzhmMzZlYWNhLWRlMTQtNDgxZi1hZTRhLTU1Yzk5YjU3ZTUyNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAZAQoAwDQYJKoZIhvcNAQELBQADggEBACICDbKXipCm9ZcgGqBaPWsnYW7X ooczUipys90tbMYnFulxAlqg/NIXotPliii7JlzxnYbxzGG8WlV351RyUA3Qzvd7 pRQjCHgMJsVBb2bAfMuQYY/vkrhpXU657Dq4rdrLCq1hqq3H4nLntlx1GT1l+z65 nKldNkbE0Vts46fb2+V63X+NRi1/MapacOqVScQyNsDDX7BbTHH1+30bDUHxBXu2 B3buFHobiNWHjd3STgXyb3No4pYk0yi5KU2bNNRTtucXGnuY/fOrp61+h8awm6ad 8rCMBUeYtq6lagx8M9gVWi4okcuTwoOSR2XVO1WLg2TcHwnroGCsBcYqc4A= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:04 2026 by rpki-client