$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940d4db1-8435-4b14-9f65-40384956f3cf.roa File: 940d4db1-8435-4b14-9f65-40384956f3cf.roa (raw, json) Hash identifier: xQAloUFGwdnuIQlFL/3Q0stM0MexJ1i3sruHlShfJkg= Subject key identifier: A5:35:C0:7D:DD:DD:25:F5:16:E4:D1:7F:0D:C3:49:CF:FD:85:1F:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D7A41E4E259B3A2BC0E0D58674BE95A8747CBC0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940d4db1-8435-4b14-9f65-40384956f3cf.roa Signing time: Sun 01 Mar 2026 00:11:21 +0000 ROA not before: Sun 01 Mar 2026 00:11:21 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.51.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:7a:41:e4:e2:59:b3:a2:bc:0e:0d:58:67:4b:e9:5a:87:47:cb:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:11:21 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=78de37298074d4a04ecb96cecc3255ddb06b7a369cea7376cc2dc0e93595ba77, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:db:77:be:b2:03:ab:2c:b0:a3:d9:b8:25:3e: 1f:c6:ab:9b:28:f0:8a:87:47:78:6d:b9:c5:89:e9: 19:a5:bc:2c:44:6d:bf:16:e5:64:f4:95:5c:53:b8: ed:9b:72:b5:82:e5:d9:f6:b6:67:88:81:5b:a7:71: 02:2f:78:56:9a:74:fa:d2:a5:5f:31:8d:58:32:62: a3:fb:d8:c2:72:53:9b:2e:f2:44:c7:1f:1e:c6:40: ab:6e:b3:5a:09:4f:cd:7c:8c:2b:7b:98:c2:06:bb: 99:68:78:2a:f3:d3:71:e8:9c:be:25:29:a2:19:49: f6:a7:68:01:e9:99:6e:2e:e8:da:f9:a8:a9:88:b1: b4:19:9c:95:5e:b4:e8:7d:74:c4:e3:c3:3f:09:dc: fc:b9:6f:f9:92:92:c6:b6:0e:57:90:ca:55:2c:ce: b9:92:69:ea:f3:74:1e:c2:80:57:0c:61:c0:91:cf: 75:c6:46:ca:09:13:ab:fa:e8:5c:68:ce:31:9f:a4: fa:9e:74:67:89:b1:1f:e6:73:cc:f7:b9:7e:f8:8a: fb:16:eb:e9:4f:af:fe:ed:89:46:85:f2:55:c6:c6: 0f:7b:1c:a3:c5:2c:5e:38:9e:27:38:d7:d8:0c:73: f5:2c:63:2d:84:db:64:48:84:64:74:2d:3c:b1:05: 87:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:35:C0:7D:DD:DD:25:F5:16:E4:D1:7F:0D:C3:49:CF:FD:85:1F:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/940d4db1-8435-4b14-9f65-40384956f3cf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.51.0.0/16 Signature Algorithm: sha256WithRSAEncryption 6e:39:b6:d2:76:d3:08:12:38:05:fe:8a:69:1f:71:ad:09:e1: 73:d2:c5:d0:b3:37:99:52:60:75:0c:2b:6c:0d:04:c0:b1:88: 6b:93:14:fd:9e:c0:e7:00:8f:8f:b1:32:67:8f:ae:ec:40:cc: a0:14:a0:0f:45:39:46:cb:e8:87:63:cd:ed:eb:28:43:31:02: 4d:6a:35:ce:fd:0e:06:c6:29:51:e8:84:e3:f2:ff:6c:7a:d1: 23:fc:95:19:b7:4f:f2:a0:c7:06:04:22:69:69:6d:34:ec:b6: 05:cc:79:cf:fd:a8:4e:8a:25:31:2c:18:53:23:17:cc:9e:78: 12:37:e2:77:17:b2:0d:39:e5:f6:6d:8f:45:39:e0:d9:da:0a: f4:63:08:a0:39:49:e2:65:21:de:ad:b9:67:c3:83:2f:09:4e: cf:c5:30:4a:dc:27:98:1b:b7:01:54:79:59:1c:dc:29:27:db: 29:76:48:be:6f:2e:72:08:cb:17:b8:15:3d:f1:b2:b7:43:c3: 5a:cd:11:69:e5:d8:83:01:6c:6c:4f:87:e8:c5:b0:da:63:2c: 3f:a2:3f:5c:46:c3:70:92:03:99:6a:8a:fa:69:17:29:e3:28: 41:a9:0b:12:0b:7a:49:22:cc:e7:05:70:b8:41:6e:be:b5:8b: e4:6d:45:cc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUTXpB5OJZs6K8Dg1YZ0vpWodHy8AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAxMTIxWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3OGRlMzcyOTgwNzRkNGEwNGVjYjk2Y2VjYzMyNTVkZGIw NmI3YTM2OWNlYTczNzZjYzJkYzBlOTM1OTViYTc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCW23e+sgOrLLCj2bglPh/Gq5so8IqHR3htucWJ6RmlvCxE bb8W5WT0lVxTuO2bcrWC5dn2tmeIgVuncQIveFaadPrSpV8xjVgyYqP72MJyU5su 8kTHHx7GQKtus1oJT818jCt7mMIGu5loeCrz03HonL4lKaIZSfanaAHpmW4u6Nr5 qKmIsbQZnJVetOh9dMTjwz8J3Py5b/mSksa2DleQylUszrmSaerzdB7CgFcMYcCR z3XGRsoJE6v66FxozjGfpPqedGeJsR/mc8z3uX74ivsW6+lPr/7tiUaF8lXGxg97 HKPFLF44nic419gMc/UsYy2E22RIhGR0LTyxBYfzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpTXAfd3dJfUW5NF/DcNJz/2FH5gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk0MGQ0ZGIxLTg0MzUtNGIxNC05ZjY1LTQwMzg0OTU2ZjNjZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjMzANBgkqhkiG9w0BAQsFAAOCAQEAbjm20nbTCBI4Bf6KaR9xrQnhc9LF 0LM3mVJgdQwrbA0EwLGIa5MU/Z7A5wCPj7EyZ4+u7EDMoBSgD0U5Rsvoh2PN7eso QzECTWo1zv0OBsYpUeiE4/L/bHrRI/yVGbdP8qDHBgQiaWltNOy2Bcx5z/2oTool MSwYUyMXzJ54EjfidxeyDTnl9m2PRTng2doK9GMIoDlJ4mUh3q25Z8ODLwlOz8Uw StwnmBu3AVR5WRzcKSfbKXZIvm8ucgjLF7gVPfGyt0PDWs0RaeXYgwFsbE+H6MWw 2mMsP6I/XEbDcJIDmWqK+mkXKeMoQakLEgt6SSLM5wVwuEFuvrWL5G1FzA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:17 2026 by rpki-client