$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953ce4b2-ba0e-4d99-859d-54846af6ab6e.roa File: 953ce4b2-ba0e-4d99-859d-54846af6ab6e.roa (raw, json) Hash identifier: rjKazLqfiBFXJqrA4gc5bYic2Fsv+mCklidFTmFCt+w= Subject key identifier: 05:41:AE:BC:C3:69:C9:46:A1:70:97:35:4E:A8:01:31:50:EF:05:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5B99AA731BC9D0B1724CA07C0824AA5D854C13CC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953ce4b2-ba0e-4d99-859d-54846af6ab6e.roa Signing time: Wed 25 Feb 2026 02:31:14 +0000 ROA not before: Wed 25 Feb 2026 02:31:14 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.129.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:99:aa:73:1b:c9:d0:b1:72:4c:a0:7c:08:24:aa:5d:85:4c:13:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:31:14 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=80ccf55c87b2b2f31c32bb84b10c6bdbebb0840c91398da819c9d4f4ad2da0a6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:06:39:c0:65:78:bc:36:0f:9f:f2:dc:59:af: 54:8c:aa:9a:94:bf:fa:0e:40:4d:cc:4a:73:84:73: 02:a6:06:25:99:db:98:e4:94:ad:be:b1:0a:d1:e4: 53:3e:25:3f:2b:26:38:cd:72:9d:29:82:43:fc:27: bf:57:38:59:09:04:57:0c:7b:10:90:3b:43:e4:06: 39:ad:fb:37:48:40:0d:1d:cc:fc:00:1a:3c:18:0e: 8b:67:42:79:02:07:e9:e0:bc:c1:ba:b2:ba:ed:d1: 63:e9:fb:4f:ff:9c:ca:6c:b1:7f:c1:07:09:2a:9b: dc:da:a7:91:e8:01:b5:31:9c:e1:10:32:8c:63:ef: 74:b4:af:ed:5a:3b:89:a7:16:c2:ec:4e:31:2f:57: 44:50:92:8e:a5:f2:55:85:67:10:e7:a5:bc:aa:ac: 96:3e:be:19:75:d5:b2:7b:61:33:35:fd:f1:5a:e5: 59:bc:2e:ef:0f:d3:af:78:80:d2:dd:ed:5c:c4:3f: bf:4a:eb:ea:0d:84:cf:bf:67:0e:c1:80:58:80:76: 7e:8c:66:9d:52:84:81:04:d2:30:54:34:ef:50:66: 11:14:d7:aa:05:67:b3:77:d2:f1:c7:62:5c:fc:f2: 5f:4b:6b:1f:e1:62:63:ff:48:9d:7c:c4:65:6b:35: 9e:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:41:AE:BC:C3:69:C9:46:A1:70:97:35:4E:A8:01:31:50:EF:05:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/953ce4b2-ba0e-4d99-859d-54846af6ab6e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.129.0/24 Signature Algorithm: sha256WithRSAEncryption b8:c0:ca:c0:ec:13:87:d1:cc:58:41:c9:16:7d:3b:d5:8d:d6: 14:3d:c9:fc:f4:5e:02:b2:51:97:3c:da:91:f4:12:17:48:73: 2a:4c:af:1b:32:9f:e6:3a:c8:3b:13:14:02:40:01:2d:29:13: 0e:3c:02:75:46:2e:dc:25:65:a8:f9:a8:d4:6a:a9:42:1f:90: 09:10:97:c8:be:4b:f9:ff:16:a8:96:35:65:5b:5f:3e:dd:c0: cc:ea:be:61:45:bd:08:41:6b:44:74:04:46:3e:f6:0c:69:1b: 86:f4:3c:37:f6:61:c0:49:26:40:67:8c:f0:bf:f1:37:e5:db: 6b:da:e3:c1:74:fe:af:aa:e6:11:8b:1a:00:19:bc:04:5f:24: a1:c2:c6:c6:a9:49:22:d3:47:e5:0d:64:b3:41:a6:bc:8e:ad: b5:56:ce:56:7a:87:16:bb:4c:94:8f:56:6f:7b:81:f6:f4:bb: e1:c9:05:4c:cc:49:fe:f0:06:01:52:5f:a8:5e:86:3c:90:f3: ae:a6:d2:9a:e2:21:4d:ea:13:62:dc:eb:8c:1a:d9:c6:a9:da: 94:52:2f:4d:71:f6:a5:9b:92:dd:2b:3f:70:bd:90:bf:f3:76: 76:8a:6e:c9:f8:69:fa:76:78:e1:31:3b:b8:7c:64:0b:f4:9d: 81:ae:17:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUW5mqcxvJ0LFyTKB8CCSqXYVME8wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIzMTE0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MGNjZjU1Yzg3YjJiMmYzMWMzMmJiODRiMTBjNmJkYmVi YjA4NDBjOTEzOThkYTgxOWM5ZDRmNGFkMmRhMGE2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+BjnAZXi8Ng+f8txZr1SMqpqUv/oOQE3MSnOEcwKmBiWZ 25jklK2+sQrR5FM+JT8rJjjNcp0pgkP8J79XOFkJBFcMexCQO0PkBjmt+zdIQA0d zPwAGjwYDotnQnkCB+ngvMG6srrt0WPp+0//nMpssX/BBwkqm9zap5HoAbUxnOEQ Moxj73S0r+1aO4mnFsLsTjEvV0RQko6l8lWFZxDnpbyqrJY+vhl11bJ7YTM1/fFa 5Vm8Lu8P0694gNLd7VzEP79K6+oNhM+/Zw7BgFiAdn6MZp1ShIEE0jBUNO9QZhEU 16oFZ7N30vHHYlz88l9Lax/hYmP/SJ18xGVrNZ5LAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBUGuvMNpyUahcJc1TqgBMVDvBZgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk1M2NlNGIyLWJhMGUtNGQ5OS04NTlkLTU0ODQ2YWY2YWI2ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADM7IEwDQYJKoZIhvcNAQELBQADggEBALjAysDsE4fRzFhByRZ9O9WN1hQ9 yfz0XgKyUZc82pH0EhdIcypMrxsyn+Y6yDsTFAJAAS0pEw48AnVGLtwlZaj5qNRq qUIfkAkQl8i+S/n/FqiWNWVbXz7dwMzqvmFFvQhBa0R0BEY+9gxpG4b0PDf2YcBJ JkBnjPC/8Tfl22va48F0/q+q5hGLGgAZvARfJKHCxsapSSLTR+UNZLNBpryOrbVW zlZ6hxa7TJSPVm97gfb0u+HJBUzMSf7wBgFSX6hehjyQ866m0priIU3qE2Lc64wa 2cap2pRSL01x9qWbkt0rP3C9kL/zdnaKbsn4afp2eOExO7h8ZAv0nYGuF+w= -----END CERTIFICATE-----Generated at Mon Mar 2 00:10:47 2026 by rpki-client