$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa File: 907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa (raw, json) Hash identifier: LM/3iVE9rk/StRzSyQBMpXBUgKp4dMT5Q/vxSFG9x+s= Subject key identifier: C2:2B:8F:C1:26:04:BC:CC:E6:59:DA:3E:84:1B:B6:60:1E:05:84:A0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4027FDAAAE8AF996D930A40C667801ADBCD5BF1B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa Signing time: Sun 08 Feb 2026 00:10:29 +0000 ROA not before: Sun 08 Feb 2026 00:10:29 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.187.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 40:27:fd:aa:ae:8a:f9:96:d9:30:a4:0c:66:78:01:ad:bc:d5:bf:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:29 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=a5066a4fb6e56bec813811d1679961cb5d49dceaaa269c04c06cb9aa02b1ce28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:dc:d7:d7:80:69:33:5a:69:fb:e6:6b:16:21: 9a:09:29:a7:02:44:40:02:02:01:fb:d3:6e:5b:d1: 4e:63:0c:a4:34:a3:f8:05:2b:a1:19:f5:fa:0e:1a: 53:9f:75:9e:a9:db:2f:1e:08:2a:32:6a:75:c9:c7: 47:ba:3c:a0:16:95:36:85:dc:8b:e9:23:08:22:1a: be:66:a9:fd:97:df:8e:3e:e1:2a:3c:75:03:74:c3: c4:3f:eb:1d:42:83:8c:21:f6:c8:3c:85:5c:df:38: b8:00:de:25:e7:45:c0:da:e5:71:91:69:67:2c:91: f7:e3:43:b4:63:2a:7b:19:db:bc:11:81:4c:e8:ce: 92:b0:f9:14:1c:b3:52:4f:9f:15:35:1c:9d:0e:f5: 4b:e4:17:62:8b:8c:03:cc:f0:fb:a2:fe:8a:07:08: b4:3d:b7:d8:73:ec:3b:3a:82:a4:fd:a2:75:38:65: b7:5f:7a:75:ee:16:47:35:dc:42:95:55:86:17:fc: ba:bb:93:9f:28:c4:fd:e2:e9:da:06:89:bf:0c:84: f6:17:75:01:46:26:36:6c:9f:79:ea:f9:58:cd:7c: a8:92:4e:f2:f5:0c:04:0e:d1:d9:42:a8:57:16:0b: f0:61:13:4d:74:f5:1e:99:37:da:ef:1a:42:8d:d1: 35:6d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:2B:8F:C1:26:04:BC:CC:E6:59:DA:3E:84:1B:B6:60:1E:05:84:A0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/907d1ff6-b72d-4eb8-81e9-4b99b5824d76.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.187.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1d:67:dc:03:4e:ad:c0:6f:8b:ba:82:6d:d1:78:3e:d7:29:57: e4:90:27:a9:ec:51:b6:e8:12:53:1d:56:30:c9:9b:db:e9:2d: 9a:d7:a8:d7:c9:43:3e:92:15:b5:5b:c8:2a:5c:b7:93:30:3e: c7:a5:9b:55:98:16:74:42:bd:eb:76:dc:41:4e:38:e4:54:4b: 10:0e:e8:d4:24:e0:6a:f0:24:61:f6:4e:3c:ef:42:31:3e:47: 8b:c4:9f:57:60:02:11:1a:b8:5b:9b:4f:a0:7a:06:f9:27:ce: 15:a7:74:9d:08:1a:13:2a:90:97:cb:9b:87:fa:0d:93:13:32: 25:6b:04:69:0c:59:a8:a4:26:5e:b1:d9:0e:f1:46:97:f4:1f: 83:fc:4d:7d:cc:38:23:53:d4:cc:a5:28:db:e5:ad:d6:f7:6e: 34:70:ea:97:61:6e:1a:83:b8:0a:22:cb:f1:d7:1f:59:96:45: 12:ee:7d:66:50:f5:ae:68:1e:13:a0:ed:97:de:2e:70:44:fe: b1:ba:f6:12:62:3a:de:45:8d:6d:9c:7a:51:71:45:e5:02:e9: 6f:32:5e:47:3d:75:c4:d0:7b:72:3e:ed:f7:23:72:90:cc:3a: 66:36:4d:6b:2f:c7:da:7e:44:67:bd:9d:73:09:fb:54:b3:4f: 43:fb:88:1b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUQCf9qq6K+ZbZMKQMZngBrbzVvxswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDI5WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNTA2NmE0ZmI2ZTU2YmVjODEzODExZDE2Nzk5NjFjYjVk NDlkY2VhYWEyNjljMDRjMDZjYjlhYTAyYjFjZTI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU3NfXgGkzWmn75msWIZoJKacCREACAgH7025b0U5jDKQ0 o/gFK6EZ9foOGlOfdZ6p2y8eCCoyanXJx0e6PKAWlTaF3IvpIwgiGr5mqf2X344+ 4So8dQN0w8Q/6x1Cg4wh9sg8hVzfOLgA3iXnRcDa5XGRaWcskffjQ7RjKnsZ27wR gUzozpKw+RQcs1JPnxU1HJ0O9UvkF2KLjAPM8Pui/ooHCLQ9t9hz7Ds6gqT9onU4 ZbdfenXuFkc13EKVVYYX/Lq7k58oxP3i6doGib8MhPYXdQFGJjZsn3nq+VjNfKiS TvL1DAQO0dlCqFcWC/BhE0109R6ZN9rvGkKN0TVtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwiuPwSYEvMzmWdo+hBu2YB4FhKAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwN2QxZmY2LWI3MmQtNGViOC04MWU5LTRiOTliNTgyNGQ3Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4uzANBgkqhkiG9w0BAQsFAAOCAQEAHWfcA06twG+LuoJt0Xg+1ylX5JAn qexRtugSUx1WMMmb2+ktmteo18lDPpIVtVvIKly3kzA+x6WbVZgWdEK963bcQU44 5FRLEA7o1CTgavAkYfZOPO9CMT5Hi8SfV2ACERq4W5tPoHoG+SfOFad0nQgaEyqQ l8ubh/oNkxMyJWsEaQxZqKQmXrHZDvFGl/Qfg/xNfcw4I1PUzKUo2+Wt1vduNHDq l2FuGoO4CiLL8dcfWZZFEu59ZlD1rmgeE6Dtl94ucET+sbr2EmI63kWNbZx6UXFF 5QLpbzJeRz11xNB7cj7t9yNykMw6ZjZNay/H2n5EZ72dcwn7VLNPQ/uIGw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:18 2026 by rpki-client