$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92f15bca-51be-4291-9efa-b2392d67d840.roa File: 92f15bca-51be-4291-9efa-b2392d67d840.roa (raw, json) Hash identifier: bG60bADex185Iusgqa0gTSsmxNF12zXrk05go02WmhE= Subject key identifier: 95:DC:B6:E4:B4:D5:15:6E:7B:5B:02:A1:BD:6B:42:CE:6C:56:A4:22 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 511BD37CB9DBEEE84321BA5EE15D0A268BB06E50 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92f15bca-51be-4291-9efa-b2392d67d840.roa Signing time: Tue 24 Feb 2026 02:31:01 +0000 ROA not before: Tue 24 Feb 2026 02:31:01 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 149.128.128.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:1b:d3:7c:b9:db:ee:e8:43:21:ba:5e:e1:5d:0a:26:8b:b0:6e:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:31:01 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=589275862d01843b22d316768c036385968cd42e8cc16c5305f0546e1d9313fa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:46:79:09:f6:36:40:d5:81:04:13:2d:3e:bd: 2e:69:99:98:4e:93:94:b0:ef:3e:30:1d:cc:15:2a: 37:7a:2c:05:6f:34:3d:0e:69:4f:0b:84:d7:ba:66: 3e:3f:9c:4e:79:92:82:79:db:6a:67:0b:b6:fc:74: 6b:4a:cb:d7:58:98:93:4e:62:5f:3e:0d:59:a2:85: e7:dd:09:a9:f3:ad:41:81:a6:e9:d6:67:5d:9b:91: 18:71:e9:78:4f:8d:d4:8d:72:87:37:fe:80:67:1b: cd:3f:bf:c1:ae:5d:a9:1f:f1:51:9d:1d:03:2a:dd: 25:74:b3:21:88:1c:7f:f5:ff:aa:5e:53:a3:c1:40: 90:13:3c:85:f6:96:d9:ca:f0:68:da:88:67:47:5b: d0:db:1a:5b:31:9e:b7:f7:26:42:f6:d4:bb:85:72: b2:27:08:16:5e:9b:6e:3c:82:7b:dd:1a:81:c2:5c: e3:a2:f2:60:60:e4:4d:49:ae:58:4e:cc:92:9b:cb: 5a:73:ac:a1:37:91:95:f1:97:6c:b7:56:6a:94:b6: e6:c4:90:37:c2:25:07:6b:44:12:df:ab:0a:9d:44: 31:56:cd:1d:13:71:63:ef:76:5e:51:3c:bd:52:3f: 73:f1:74:41:bf:14:3a:19:69:85:41:98:af:c7:58: 53:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:DC:B6:E4:B4:D5:15:6E:7B:5B:02:A1:BD:6B:42:CE:6C:56:A4:22 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/92f15bca-51be-4291-9efa-b2392d67d840.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 149.128.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1f:cb:4f:d5:91:a5:32:e9:4f:77:8d:9b:fd:05:05:30:c2:89: 6c:ba:22:d2:aa:7c:c0:b5:cc:68:d1:4c:01:3e:c5:a7:41:4a: 8c:1b:29:4e:da:af:ad:f9:79:8b:c7:ae:2e:36:e1:a2:64:51: e9:4a:cc:fa:5e:65:fd:9f:d4:72:80:1b:f7:1f:f0:58:31:dd: 1a:92:06:04:50:b1:f0:f9:26:f7:df:13:ec:bb:c8:25:1e:2c: 6e:f5:25:ee:82:31:ae:a0:bf:8e:4d:3b:c9:70:01:4e:43:3c: 20:4b:bf:cc:84:f7:09:9a:16:1b:95:37:55:c7:81:f0:a5:14: f6:a4:6d:71:47:b0:43:87:03:5c:52:b7:62:3d:69:59:16:29: c5:55:7b:f2:98:ef:6c:4b:f2:99:5e:21:40:31:4d:0c:09:4b: fb:ea:9d:ac:6d:62:8c:d2:2b:47:da:42:8d:b6:9a:ea:d8:d8: dc:06:cb:58:b6:c5:b7:2d:8d:89:98:6d:7a:a6:3a:b8:8b:76: 2c:b5:d2:d6:37:0d:6c:d7:9f:5f:a0:7b:26:e6:fe:73:ae:a9: 00:1e:ed:13:d5:b2:ea:c9:2f:3f:ce:ff:b5:e8:17:ff:49:ff: e6:1d:5c:92:16:53:2f:ae:4a:66:19:78:50:48:3d:87:aa:6a: 76:3e:16:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUURvTfLnb7uhDIbpe4V0KJouwblAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMTAxWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1ODkyNzU4NjJkMDE4NDNiMjJkMzE2NzY4YzAzNjM4NTk2 OGNkNDJlOGNjMTZjNTMwNWYwNTQ2ZTFkOTMxM2ZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqRnkJ9jZA1YEEEy0+vS5pmZhOk5Sw7z4wHcwVKjd6LAVv ND0OaU8LhNe6Zj4/nE55koJ522pnC7b8dGtKy9dYmJNOYl8+DVmihefdCanzrUGB punWZ12bkRhx6XhPjdSNcoc3/oBnG80/v8GuXakf8VGdHQMq3SV0syGIHH/1/6pe U6PBQJATPIX2ltnK8GjaiGdHW9DbGlsxnrf3JkL21LuFcrInCBZem248gnvdGoHC XOOi8mBg5E1JrlhOzJKby1pzrKE3kZXxl2y3VmqUtubEkDfCJQdrRBLfqwqdRDFW zR0TcWPvdl5RPL1SP3PxdEG/FDoZaYVBmK/HWFN7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUldy25LTVFW57WwKhvWtCzmxWpCIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkyZjE1YmNhLTUxYmUtNDI5MS05ZWZhLWIyMzkyZDY3ZDg0MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAeVgIAwDQYJKoZIhvcNAQELBQADggEBAB/LT9WRpTLpT3eNm/0FBTDCiWy6 ItKqfMC1zGjRTAE+xadBSowbKU7ar635eYvHri424aJkUelKzPpeZf2f1HKAG/cf 8Fgx3RqSBgRQsfD5JvffE+y7yCUeLG71Je6CMa6gv45NO8lwAU5DPCBLv8yE9wma FhuVN1XHgfClFPakbXFHsEOHA1xSt2I9aVkWKcVVe/KY72xL8pleIUAxTQwJS/vq naxtYozSK0faQo22murY2NwGy1i2xbctjYmYbXqmOriLdiy10tY3DWzXn1+geybm /nOuqQAe7RPVsurJLz/O/7XoF/9J/+YdXJIWUy+uSmYZeFBIPYeqanY+FtE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:14 2026 by rpki-client