$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9209ec50-a97b-47cf-8683-65bfefcf5cee.roa File: 9209ec50-a97b-47cf-8683-65bfefcf5cee.roa (raw, json) Hash identifier: 2qzSgx9Fk2K+qwaxLhsA+0skAPkHTtvT3BDjqj6K0xQ= Subject key identifier: FD:18:C6:3E:3A:42:A5:DB:C8:7B:65:2F:96:DA:4C:A8:78:64:48:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3C2365A042844C50A7091463647B681339EB6911 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9209ec50-a97b-47cf-8683-65bfefcf5cee.roa Signing time: Mon 23 Feb 2026 00:00:45 +0000 ROA not before: Mon 23 Feb 2026 00:00:45 +0000 ROA not after: Sun 24 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 209.92.54.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:23:65:a0:42:84:4c:50:a7:09:14:63:64:7b:68:13:39:eb:69:11 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 23 00:00:45 2026 GMT Not After : May 24 23:59:59 2026 GMT Subject: serialNumber=980bd95d441986a691c71212d340ab7866158d35e8fb776133f41e895a0a391d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:ac:14:6e:21:9d:c5:aa:20:7f:9c:4a:e6:c0: 80:86:d0:02:bf:f1:57:33:85:54:db:3a:ef:26:5e: dc:27:10:d7:8b:78:fd:a5:4b:92:28:73:9f:b4:b4: 61:df:13:72:ff:b2:d0:9b:46:b0:ec:ec:eb:8c:36: d4:1c:28:ae:e9:63:82:0b:0d:8a:25:7e:7f:39:7c: 44:f6:de:ab:9c:13:66:1d:21:27:a3:5f:26:33:a7: 9b:c9:d0:f6:e2:35:17:86:8d:cd:dd:43:b6:53:0e: f8:af:d6:63:9b:d5:f1:60:37:c3:63:85:49:37:0d: cf:69:e5:ca:4f:97:c0:5f:4c:cf:e6:00:73:b2:ce: 41:9b:f2:2c:e8:14:2d:f6:03:ed:fe:a9:29:df:ad: 09:5a:b4:fb:32:54:c3:4f:90:23:4f:7c:94:26:ae: 94:69:c2:bf:c5:66:0b:81:7d:f5:d5:52:27:e6:24: 46:ff:b5:b3:2b:54:cc:e4:39:b2:e8:35:43:c9:97: 26:60:9b:66:5b:8d:9a:88:c8:d4:eb:b5:ba:37:15: c6:74:f6:2d:dd:83:b2:9e:73:94:f2:99:66:e2:03: 87:3c:9c:b7:53:2d:28:da:87:65:14:e9:57:1f:3c: b6:e9:10:9d:0d:3c:82:02:67:61:4e:70:a1:00:ab: 4d:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:18:C6:3E:3A:42:A5:DB:C8:7B:65:2F:96:DA:4C:A8:78:64:48:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9209ec50-a97b-47cf-8683-65bfefcf5cee.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 209.92.54.0/23 Signature Algorithm: sha256WithRSAEncryption 34:54:7a:7e:cd:eb:40:7a:50:56:f3:58:89:7f:a3:17:3e:1d: 96:5c:76:78:fd:18:84:05:ab:e4:48:4c:c1:43:66:61:6d:ad: d0:36:8c:56:50:67:66:a0:96:6d:f9:81:e5:10:c7:33:e1:06: 51:6d:7b:f5:8e:7c:53:56:32:27:36:88:9e:a5:45:4f:17:d3: ea:68:9a:d8:c4:0b:4e:5a:60:23:7b:74:f0:da:29:7b:58:60: 21:e5:a6:95:f1:73:76:98:75:6c:cf:c1:c3:af:c1:04:9a:d3: 35:bd:53:4b:e1:dd:26:b8:57:78:ba:6e:76:aa:c6:05:8c:29: fb:0a:76:83:96:7d:5d:aa:f7:ae:42:d1:0c:9e:f5:94:4d:0d: b0:cd:a8:6c:23:0a:05:ab:d3:49:cc:8c:f8:60:b9:2e:4f:20: a5:0a:48:aa:6b:55:20:0e:f0:63:d9:9d:71:89:f6:21:47:06: c0:82:29:04:ae:da:13:a9:5e:a5:bf:b1:c4:8a:77:a7:62:8f: a4:76:54:57:3a:32:56:48:e7:d0:01:99:2a:f6:83:2f:0c:b4: c1:f5:57:00:02:4a:b9:d0:c6:e8:d6:26:b7:77:eb:7b:87:b9: e5:05:48:e3:3b:82:f1:0c:fb:c5:14:fb:db:33:1e:2d:2e:96: 44:86:fd:8b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPCNloEKETFCnCRRjZHtoEznraREwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIzMDAwMDQ1WhcNMjYwNTI0MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ODBiZDk1ZDQ0MTk4NmE2OTFjNzEyMTJkMzQwYWI3ODY2 MTU4ZDM1ZThmYjc3NjEzM2Y0MWU4OTVhMGEzOTFkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfrBRuIZ3FqiB/nErmwICG0AK/8VczhVTbOu8mXtwnENeL eP2lS5Ioc5+0tGHfE3L/stCbRrDs7OuMNtQcKK7pY4ILDYolfn85fET23qucE2Yd ISejXyYzp5vJ0PbiNReGjc3dQ7ZTDviv1mOb1fFgN8NjhUk3Dc9p5cpPl8BfTM/m AHOyzkGb8izoFC32A+3+qSnfrQlatPsyVMNPkCNPfJQmrpRpwr/FZguBffXVUifm JEb/tbMrVMzkObLoNUPJlyZgm2ZbjZqIyNTrtbo3FcZ09i3dg7Kec5TymWbiA4c8 nLdTLSjah2UU6VcfPLbpEJ0NPIICZ2FOcKEAq001AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/RjGPjpCpdvIe2UvltpMqHhkSC4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyMDllYzUwLWE5N2ItNDdjZi04NjgzLTY1YmZlZmNmNWNlZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAHRXDYwDQYJKoZIhvcNAQELBQADggEBADRUen7N60B6UFbzWIl/oxc+HZZc dnj9GIQFq+RITMFDZmFtrdA2jFZQZ2aglm35geUQxzPhBlFte/WOfFNWMic2iJ6l RU8X0+pomtjEC05aYCN7dPDaKXtYYCHlppXxc3aYdWzPwcOvwQSa0zW9U0vh3Sa4 V3i6bnaqxgWMKfsKdoOWfV2q965C0Qye9ZRNDbDNqGwjCgWr00nMjPhguS5PIKUK SKprVSAO8GPZnXGJ9iFHBsCCKQSu2hOpXqW/scSKd6dij6R2VFc6MlZI59ABmSr2 gy8MtMH1VwACSrnQxujWJrd363uHueUFSOM7gvEM+8UU+9szHi0ulkSG/Ys= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:15 2026 by rpki-client