$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa File: 9846244a-41d6-4a61-bc45-ec42cedff928.roa (raw, json) Hash identifier: gzf6VVWmc0RABq+5Wpi8/wo/mfTcrGvT4KA+BWFfjbM= Subject key identifier: 87:98:CA:8E:F8:11:CB:84:94:92:E7:BB:14:DE:21:90:7A:EC:F7:E0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A3C88DF961455F120D96AC2D24220AFD2566BA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa Signing time: Wed 25 Feb 2026 00:40:05 +0000 ROA not before: Wed 25 Feb 2026 00:40:05 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.208.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3c:88:df:96:14:55:f1:20:d9:6a:c2:d2:42:20:af:d2:56:6b:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:40:05 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a832142b2ab9fa42942f37703472b75b28956ecdc510c4c5acbeea499d23fe02, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:39:a5:a6:f0:74:c1:39:3c:ea:75:d6:89:ed: 7e:6b:bf:bb:f5:24:94:95:5e:bd:76:dc:61:64:e3: 5e:2e:07:6b:f3:b1:dd:d5:34:0b:2e:62:ea:73:59: 07:ad:3c:a1:a7:ed:ca:95:e0:c9:bf:9c:c5:4d:b4: 70:c5:7d:e9:64:c5:b1:cc:b1:f2:c8:d3:7d:96:cf: ed:ae:bd:d2:ae:9d:a1:a0:38:36:c8:3f:f4:8d:c0: 33:b8:95:89:9f:c4:c2:2d:90:22:0e:50:ee:16:5e: 29:07:13:96:87:90:18:3e:24:61:2c:89:f1:2a:1d: 62:06:ad:8d:93:f4:6b:69:3e:ed:bf:61:fd:6a:47: a4:41:f3:47:e9:6b:31:dd:f9:cc:39:12:9d:13:c3: 37:ba:23:06:e1:19:ae:02:41:83:a0:ca:2a:5a:00: 64:09:6e:ef:b0:ae:3d:c5:9e:8a:ac:c1:b8:5e:09: 6e:4b:11:6b:2c:4e:28:89:80:ec:d7:ba:be:84:08: 27:13:48:83:a4:a6:7b:d8:fd:fe:bc:44:c4:99:81: 4d:2d:a5:3f:e4:00:13:9e:ab:bd:4f:de:27:82:51: 27:fb:91:e9:9b:f0:db:ab:0c:9b:a9:40:6f:3c:40: 8f:5f:6c:6c:ab:e4:89:3c:e7:7f:8c:d8:82:56:b6: bc:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 87:98:CA:8E:F8:11:CB:84:94:92:E7:BB:14:DE:21:90:7A:EC:F7:E0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9846244a-41d6-4a61-bc45-ec42cedff928.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.208.0.0/16 Signature Algorithm: sha256WithRSAEncryption 33:62:b8:58:66:50:1b:b0:b1:92:61:ac:e2:bd:e7:33:e3:60: af:9f:fa:41:52:f4:c3:b9:48:59:81:af:0e:84:27:37:cc:78: 45:af:c2:b2:6c:c8:ea:71:37:4c:a1:fd:ba:2f:bd:64:46:cb: 35:2f:01:85:ad:aa:0d:5c:b5:5b:56:36:e1:2a:23:3a:0c:04: a7:2c:ee:a2:2b:a1:a2:1c:36:08:22:50:80:57:14:2a:7e:98: 84:94:8a:aa:4a:7b:2f:bd:1b:05:2b:ca:bf:ab:7e:40:97:3e: 15:64:0f:f7:4a:30:a6:0e:4b:06:54:03:8d:d6:3f:aa:87:9a: ba:60:e5:cc:5a:60:5b:18:56:c2:8f:2a:07:1c:ab:0e:4a:b4: be:e5:0e:88:e5:a3:97:c9:55:02:96:cc:b6:b8:69:9e:3f:ae: 9d:e8:aa:9a:c7:21:42:79:cf:36:13:a3:c3:af:8a:67:e9:d6: 46:ca:51:97:6e:a4:07:98:af:10:e6:4f:9e:0e:8b:8c:5f:32: 8b:5d:1f:10:39:c0:b1:02:12:ec:95:2b:c7:62:17:6c:bf:ae: 9d:58:96:b6:9e:3e:fd:a2:ba:29:c9:f8:ad:59:29:93:4e:86: 27:d7:72:59:45:50:f1:00:2a:5e:0b:51:4c:93:14:e3:02:09: 78:17:6f:86 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGjyI35YUVfEg2WrC0kIgr9JWa6kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDA0MDA1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhODMyMTQyYjJhYjlmYTQyOTQyZjM3NzAzNDcyYjc1YjI4 OTU2ZWNkYzUxMGM0YzVhY2JlZWE0OTlkMjNmZTAyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnOaWm8HTBOTzqddaJ7X5rv7v1JJSVXr123GFk414uB2vz sd3VNAsuYupzWQetPKGn7cqV4Mm/nMVNtHDFfelkxbHMsfLI032Wz+2uvdKunaGg ODbIP/SNwDO4lYmfxMItkCIOUO4WXikHE5aHkBg+JGEsifEqHWIGrY2T9GtpPu2/ Yf1qR6RB80fpazHd+cw5Ep0Twze6IwbhGa4CQYOgyipaAGQJbu+wrj3Fnoqswbhe CW5LEWssTiiJgOzXur6ECCcTSIOkpnvY/f68RMSZgU0tpT/kABOeq71P3ieCUSf7 kemb8NurDJupQG88QI9fbGyr5Ik853+M2IJWtry9AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUh5jKjvgRy4SUkue7FN4hkHrs9+AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4NDYyNDRhLTQxZDYtNGE2MS1iYzQ1LWVjNDJjZWRmZjkyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo0DANBgkqhkiG9w0BAQsFAAOCAQEAM2K4WGZQG7CxkmGs4r3nM+Ngr5/6 QVL0w7lIWYGvDoQnN8x4Ra/CsmzI6nE3TKH9ui+9ZEbLNS8Bha2qDVy1W1Y24Soj OgwEpyzuoiuhohw2CCJQgFcUKn6YhJSKqkp7L70bBSvKv6t+QJc+FWQP90owpg5L BlQDjdY/qoeaumDlzFpgWxhWwo8qBxyrDkq0vuUOiOWjl8lVApbMtrhpnj+uneiq mschQnnPNhOjw6+KZ+nWRspRl26kB5ivEOZPng6LjF8yi10fEDnAsQIS7JUrx2IX bL+unViWtp4+/aK6Kcn4rVkpk06GJ9dyWUVQ8QAqXgtRTJMU4wIJeBdvhg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:27 2026 by rpki-client