$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93ccc0a4-0d16-4bb0-9555-a1c615a9f8dd.roa File: 93ccc0a4-0d16-4bb0-9555-a1c615a9f8dd.roa (raw, json) Hash identifier: QmLVrrjhkiOgS7hlitCZjy30E2EvPf1NIaPwkERCCzc= Subject key identifier: EE:1D:44:11:4D:8A:46:13:39:7D:15:82:F2:D6:F8:C7:3F:47:F4:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 189F1FD8C0DE8235226B94CE48B3A86C5267471C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93ccc0a4-0d16-4bb0-9555-a1c615a9f8dd.roa Signing time: Sun 01 Mar 2026 00:21:18 +0000 ROA not before: Sun 01 Mar 2026 00:21:18 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.131.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:9f:1f:d8:c0:de:82:35:22:6b:94:ce:48:b3:a8:6c:52:67:47:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:21:18 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=2b2b8f71b10a9e4146e09752c3e7e1951e293919fa26a6a7c378d15b853146f2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:34:f0:dd:12:0c:eb:68:e2:75:c3:dd:65:9f: e8:87:02:d4:30:ee:df:48:37:e8:34:0e:af:96:4c: 5d:84:51:31:cb:f6:ae:36:76:57:4e:b9:62:ba:45: a9:69:90:d5:41:6f:e0:8e:9a:22:42:41:bc:31:98: d3:7f:85:87:05:91:a7:ff:f6:0c:38:ac:2e:2d:21: a2:67:dd:fc:0c:ec:63:d4:4a:d5:e5:68:80:bf:d7: 9e:60:e7:56:85:eb:0c:66:2c:a6:4a:76:3f:b8:11: 14:3c:77:23:2e:44:24:6f:ea:de:5e:f3:71:31:d5: 11:a7:aa:ed:5e:16:7f:16:48:77:f5:79:4e:67:bd: fc:1f:71:11:ce:bd:55:7b:65:82:b6:9f:87:05:6c: e5:8a:9a:b3:02:81:7e:26:38:e6:f4:1d:87:76:75: 2e:01:28:78:a8:28:d4:cf:57:6b:8f:a4:38:77:24: 80:f8:85:e0:cf:92:ec:80:0b:83:c3:9e:66:8d:6c: e0:b9:37:93:1d:d9:31:eb:6a:6a:96:23:09:8b:77: d4:f8:2b:c3:b9:53:aa:ec:04:53:e3:af:7c:e6:bd: 2b:36:29:2c:a1:a2:13:50:4c:57:c9:d6:65:fd:48: 6b:d4:fe:f7:d7:f6:ff:18:0d:c7:99:f8:07:9e:1d: 89:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EE:1D:44:11:4D:8A:46:13:39:7D:15:82:F2:D6:F8:C7:3F:47:F4:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/93ccc0a4-0d16-4bb0-9555-a1c615a9f8dd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.131.0.0/16 Signature Algorithm: sha256WithRSAEncryption 5d:66:fe:5b:b2:f9:4d:fd:18:17:9c:6f:bd:12:0b:a0:85:bf: 2c:d0:98:95:cd:5b:93:fc:60:8a:3b:35:5e:3b:cb:30:e5:43: 65:43:80:5c:1b:c3:24:e2:cf:f4:83:e7:6e:5f:51:63:d7:54: 68:19:19:c2:b2:c1:bb:3a:28:86:24:d5:72:6c:3b:4d:08:3a: 9a:08:e1:99:f9:c9:ec:59:45:c5:fd:73:c7:c1:85:e2:c5:58: 2a:ec:a3:f3:24:a9:0a:0d:4a:b9:d5:f2:46:58:b6:a1:29:73: da:21:53:29:b7:f9:85:73:51:fb:01:d3:7b:9e:ba:dd:4b:cc: 2f:53:e3:11:43:10:ea:0f:59:d8:89:09:9e:97:56:22:5d:d3: 9b:29:d0:19:25:43:b1:c5:81:8f:fe:23:7b:ff:74:f5:cb:cb: fc:01:f0:6a:c6:16:aa:98:c2:62:5a:b2:46:c2:d5:b6:0e:c1: 34:6a:7d:a7:75:b2:c5:b1:96:68:a7:79:70:c7:d0:f3:28:d9: 22:14:d6:bc:10:96:15:64:ac:eb:55:e7:26:5a:f0:fb:2a:73: 12:2d:3e:bf:18:d2:91:4d:7e:c9:ea:f6:83:46:88:18:21:0b: 8b:fb:96:87:c8:11:72:92:0f:13:5d:90:0f:f3:18:11:2f:aa: d2:4e:8b:aa -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGJ8f2MDegjUia5TOSLOobFJnRxwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMTE4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyYjJiOGY3MWIxMGE5ZTQxNDZlMDk3NTJjM2U3ZTE5NTFl MjkzOTE5ZmEyNmE2YTdjMzc4ZDE1Yjg1MzE0NmYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1NPDdEgzraOJ1w91ln+iHAtQw7t9IN+g0Dq+WTF2EUTHL 9q42dldOuWK6RalpkNVBb+COmiJCQbwxmNN/hYcFkaf/9gw4rC4tIaJn3fwM7GPU StXlaIC/155g51aF6wxmLKZKdj+4ERQ8dyMuRCRv6t5e83Ex1RGnqu1eFn8WSHf1 eU5nvfwfcRHOvVV7ZYK2n4cFbOWKmrMCgX4mOOb0HYd2dS4BKHioKNTPV2uPpDh3 JID4heDPkuyAC4PDnmaNbOC5N5Md2THramqWIwmLd9T4K8O5U6rsBFPjr3zmvSs2 KSyhohNQTFfJ1mX9SGvU/vfX9v8YDceZ+AeeHYkJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU7h1EEU2KRhM5fRWC8tb4xz9H9DMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzkzY2NjMGE0LTBkMTYtNGJiMC05NTU1LWExYzYxNWE5ZjhkZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQgzANBgkqhkiG9w0BAQsFAAOCAQEAXWb+W7L5Tf0YF5xvvRILoIW/LNCY lc1bk/xgijs1XjvLMOVDZUOAXBvDJOLP9IPnbl9RY9dUaBkZwrLBuzoohiTVcmw7 TQg6mgjhmfnJ7FlFxf1zx8GF4sVYKuyj8ySpCg1KudXyRli2oSlz2iFTKbf5hXNR +wHTe5663UvML1PjEUMQ6g9Z2IkJnpdWIl3TmynQGSVDscWBj/4je/909cvL/AHw asYWqpjCYlqyRsLVtg7BNGp9p3WyxbGWaKd5cMfQ8yjZIhTWvBCWFWSs61XnJlrw +ypzEi0+vxjSkU1+yer2g0aIGCELi/uWh8gRcpIPE12QD/MYES+q0k6Lqg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:26 2026 by rpki-client