$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90ceb0ee-66d3-4c56-8825-2c68b02e5693.roa File: 90ceb0ee-66d3-4c56-8825-2c68b02e5693.roa (raw, json) Hash identifier: +gX10WTLLYuXko2pWAiwCDbLUhFAsHXbAQa5Y/icW6Q= Subject key identifier: 70:8E:1F:03:5E:F5:71:01:21:00:85:1A:B8:18:DF:31:BB:7C:EB:14 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C0A7A4E2CB8BC295A54D82D8B99C94928E77F6C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90ceb0ee-66d3-4c56-8825-2c68b02e5693.roa Signing time: Tue 10 Feb 2026 00:10:33 +0000 ROA not before: Tue 10 Feb 2026 00:10:33 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 96.0.92.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:0a:7a:4e:2c:b8:bc:29:5a:54:d8:2d:8b:99:c9:49:28:e7:7f:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:10:33 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=58f2dfe50b749dcefc52eed162d554d4cdfe61c92cee363bdc3fa4c2257999c5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:23:fc:59:03:b1:7d:5e:14:02:6c:c7:1a:c8: cf:12:72:37:17:0c:bb:18:0b:86:35:dd:7e:11:d5: 2e:15:4e:d3:a9:c1:a8:66:9b:23:58:37:75:2f:05: 90:4c:eb:07:c2:12:81:ca:b7:7b:12:28:bc:44:cf: ab:57:98:36:7d:ff:09:c8:9e:63:99:9f:f9:dc:21: 3c:cb:2b:4e:fd:fe:11:c1:8c:b6:ec:64:66:a8:4f: 38:ae:b4:73:1b:01:32:9b:44:92:1b:e3:9a:97:ec: af:07:83:49:3d:85:87:55:22:f2:d6:4c:2d:e9:3c: d9:57:73:c0:5c:ff:67:0c:05:e6:ae:fe:f3:fe:9f: b4:63:34:de:c9:4e:c8:87:37:d5:82:ed:5c:01:8a: 03:ac:7e:dc:b2:06:6b:ad:18:0d:f6:eb:62:21:01: a9:15:58:b5:1c:b1:9a:8b:78:58:89:bd:3a:79:40: 2b:b8:64:67:da:42:6d:2e:92:d2:aa:9e:14:df:f2: 75:9f:70:0e:84:d9:26:0c:7c:f2:72:ec:5f:2c:f3: f8:44:7c:e7:6a:9b:26:c0:02:25:85:be:8d:73:8a: ae:49:f5:c6:ed:92:eb:7a:39:ec:62:5c:64:44:44: 12:7f:f3:3c:30:2a:c4:6f:0d:a4:b0:c0:37:44:32: 16:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:8E:1F:03:5E:F5:71:01:21:00:85:1A:B8:18:DF:31:BB:7C:EB:14 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/90ceb0ee-66d3-4c56-8825-2c68b02e5693.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 96.0.92.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:50:bb:3a:fe:1e:a5:b4:f5:c4:9d:6a:b7:4d:d8:89:5c:7b: 25:47:2a:dc:b2:8a:65:0b:82:bc:7d:7b:57:a4:47:90:03:5e: 8e:5e:10:4e:68:e3:c5:cc:10:33:53:78:50:df:3f:c9:2e:46: 75:6b:2a:5a:41:77:5e:e6:30:a4:2d:0e:69:77:19:48:12:2d: b2:f2:48:5b:78:fd:1b:ba:46:e4:69:02:aa:70:33:58:04:19: cd:ca:63:7f:d0:40:d4:b4:88:2f:02:11:cb:b9:29:90:3d:ac: 0e:25:8e:9f:93:4f:b5:ab:86:c9:c1:8d:8f:f0:ca:1a:11:65: b4:9a:53:d5:6c:cd:b1:88:51:d1:93:f6:6c:5b:94:30:cb:78: 5b:1d:16:70:83:a3:22:09:8d:ae:78:e9:45:e9:ee:26:5f:85: 91:83:ff:f3:ee:a8:b1:43:8b:d2:9b:81:55:c0:44:64:81:cb: c1:62:a2:90:47:a7:f3:2d:04:4a:61:4d:92:2c:4f:f0:bc:c4: 27:fa:b4:93:3f:bf:79:86:cf:71:a5:1f:92:0b:73:f5:16:89: 5b:17:9a:f5:4f:80:2b:4d:db:b2:94:e6:2d:04:ed:71:64:7e: a7:ab:2a:3f:28:b6:93:e8:25:a7:81:3f:cd:1a:ed:cb:91:59: d1:a8:df:e0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHAp6Tiy4vClaVNgti5nJSSjnf2wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAxMDMzWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A1OGYyZGZlNTBiNzQ5ZGNlZmM1MmVlZDE2MmQ1NTRkNGNk ZmU2MWM5MmNlZTM2M2JkYzNmYTRjMjI1Nzk5OWM1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQI/xZA7F9XhQCbMcayM8ScjcXDLsYC4Y13X4R1S4VTtOp wahmmyNYN3UvBZBM6wfCEoHKt3sSKLxEz6tXmDZ9/wnInmOZn/ncITzLK079/hHB jLbsZGaoTziutHMbATKbRJIb45qX7K8Hg0k9hYdVIvLWTC3pPNlXc8Bc/2cMBeau /vP+n7RjNN7JTsiHN9WC7VwBigOsftyyBmutGA3262IhAakVWLUcsZqLeFiJvTp5 QCu4ZGfaQm0uktKqnhTf8nWfcA6E2SYMfPJy7F8s8/hEfOdqmybAAiWFvo1ziq5J 9cbtkut6OexiXGRERBJ/8zwwKsRvDaSwwDdEMhaLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUcI4fA171cQEhAIUauBjfMbt86xQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkwY2ViMGVlLTY2ZDMtNGM1Ni04ODI1LTJjNjhiMDJlNTY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFgAFwwDQYJKoZIhvcNAQELBQADggEBAJpQuzr+HqW09cSdardN2IlceyVH KtyyimULgrx9e1ekR5ADXo5eEE5o48XMEDNTeFDfP8kuRnVrKlpBd17mMKQtDml3 GUgSLbLySFt4/Ru6RuRpAqpwM1gEGc3KY3/QQNS0iC8CEcu5KZA9rA4ljp+TT7Wr hsnBjY/wyhoRZbSaU9VszbGIUdGT9mxblDDLeFsdFnCDoyIJja546UXp7iZfhZGD //PuqLFDi9KbgVXARGSBy8FiopBHp/MtBEphTZIsT/C8xCf6tJM/v3mGz3GlH5IL c/UWiVsXmvVPgCtN27KU5i0E7XFkfqerKj8otpPoJaeBP80a7cuRWdGo3+A= -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:18 2026 by rpki-client