$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98c01ba7-e498-4554-afa3-0957c093e390.roa File: 98c01ba7-e498-4554-afa3-0957c093e390.roa (raw, json) Hash identifier: II5VyfPqvK6zdYYSZyv4+mRX1TW6NjDNo87nDBs2nyI= Subject key identifier: 82:91:6B:C6:E2:5F:60:62:65:BF:18:AD:AD:7D:EA:64:14:29:87:51 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A425053EFD8A391BC9676E7648CC527FAC94EDA Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98c01ba7-e498-4554-afa3-0957c093e390.roa Signing time: Fri 13 Feb 2026 00:30:38 +0000 ROA not before: Fri 13 Feb 2026 00:30:38 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 13.128.0.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:42:50:53:ef:d8:a3:91:bc:96:76:e7:64:8c:c5:27:fa:c9:4e:da Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:30:38 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=078e8462fedafd26faeee89a82a643096dc344862ce2d8abe1305b6b849cbd28, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:a0:a5:b6:d2:ce:4c:f5:bb:38:45:4f:eb:bb: 40:c5:e6:00:fa:a0:75:fe:37:f0:99:79:c2:fc:7d: 08:e6:26:fe:cf:1f:24:c9:a9:d5:09:7f:82:10:c3: 11:3b:74:15:e2:e2:ad:ff:88:08:ce:8d:e3:29:56: 5e:e0:7f:4b:a1:26:5c:94:86:13:91:4b:05:1a:fa: 2f:a1:5e:cb:b8:6a:4d:1a:bf:56:de:9c:cd:47:ca: bd:ff:ec:82:9a:e4:b8:95:b7:6a:91:43:7e:a3:27: 9f:af:fb:2f:f6:02:78:de:57:3c:89:ed:56:c5:43: ae:f2:08:4f:f8:85:a0:85:c2:d7:3b:66:32:71:a2: bd:b3:5a:1b:1f:55:46:ae:19:27:a8:8e:de:80:35: 49:96:6c:fe:f2:48:7a:09:d2:89:81:83:76:01:be: ee:04:b4:4a:30:6e:65:a1:c8:a7:1b:73:64:cc:98: 70:c3:64:f9:03:2e:6f:dc:78:86:35:c5:28:dd:2a: 72:52:7b:7c:51:7c:fa:33:d5:db:78:0c:ac:8c:41: 38:00:ed:c1:0d:ae:7c:be:e8:fa:a2:c1:23:c5:c5: 79:a5:9b:8a:6a:e7:75:76:a8:d3:94:1b:76:00:37: 00:23:8a:be:97:dd:5c:f4:00:84:f6:6b:b7:d4:0f: fd:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:91:6B:C6:E2:5F:60:62:65:BF:18:AD:AD:7D:EA:64:14:29:87:51 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/98c01ba7-e498-4554-afa3-0957c093e390.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.0.0/20 Signature Algorithm: sha256WithRSAEncryption 70:0f:67:56:ce:ed:bd:e8:60:7e:72:b7:45:78:44:18:b3:65: 44:6e:21:85:df:94:1d:c4:02:08:8f:f9:32:e7:c5:5d:96:c4: a4:56:6f:cb:92:12:25:5a:35:92:e4:d6:59:54:4f:f7:a4:30: 87:a9:10:cf:de:28:83:88:a7:75:51:44:bc:64:32:db:6b:b6: 0a:a7:7d:4a:c8:48:54:b7:22:6a:e7:e2:30:04:58:99:ab:f9: f8:c1:28:79:51:31:c3:a0:d4:5b:12:90:57:f7:6a:5b:8c:39: 64:bf:d2:a5:74:17:ed:68:e5:02:67:2f:76:c2:d6:14:04:88: fa:7f:0a:bf:05:0a:c7:69:07:bf:d8:1d:da:d1:6c:9f:7c:68: b1:42:e5:01:61:ea:ce:f9:87:04:67:3e:0b:45:b3:26:69:01: 57:8c:e3:81:fa:d6:50:d6:46:d7:49:60:fe:d0:1a:c9:64:d3: 9b:cc:52:11:6f:36:23:0a:fc:7a:ae:ae:01:3c:18:ef:e6:63: 3d:d1:6d:70:99:51:67:c8:45:b9:81:f5:64:a0:c9:b0:06:df: ba:cb:5b:85:3f:d0:34:14:fd:a3:30:8c:55:77:c6:a6:a3:75: 9f:6d:0c:5f:17:e9:be:a2:1d:9e:3d:a6:05:56:54:74:43:6a: 9f:e9:af:c4 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWkJQU+/Yo5G8lnbnZIzFJ/rJTtowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAzMDM4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNzhlODQ2MmZlZGFmZDI2ZmFlZWU4OWE4MmE2NDMwOTZk YzM0NDg2MmNlMmQ4YWJlMTMwNWI2Yjg0OWNiZDI4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaoKW20s5M9bs4RU/ru0DF5gD6oHX+N/CZecL8fQjmJv7P HyTJqdUJf4IQwxE7dBXi4q3/iAjOjeMpVl7gf0uhJlyUhhORSwUa+i+hXsu4ak0a v1benM1Hyr3/7IKa5LiVt2qRQ36jJ5+v+y/2AnjeVzyJ7VbFQ67yCE/4haCFwtc7 ZjJxor2zWhsfVUauGSeojt6ANUmWbP7ySHoJ0omBg3YBvu4EtEowbmWhyKcbc2TM mHDDZPkDLm/ceIY1xSjdKnJSe3xRfPoz1dt4DKyMQTgA7cENrny+6PqiwSPFxXml m4pq53V2qNOUG3YANwAjir6X3Vz0AIT2a7fUD/3xAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUgpFrxuJfYGJlvxitrX3qZBQph1EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk4YzAxYmE3LWU0OTgtNDU1NC1hZmEzLTA5NTdjMDkzZTM5MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQNgAAwDQYJKoZIhvcNAQELBQADggEBAHAPZ1bO7b3oYH5yt0V4RBizZURu IYXflB3EAgiP+TLnxV2WxKRWb8uSEiVaNZLk1llUT/ekMIepEM/eKIOIp3VRRLxk MttrtgqnfUrISFS3Imrn4jAEWJmr+fjBKHlRMcOg1FsSkFf3aluMOWS/0qV0F+1o 5QJnL3bC1hQEiPp/Cr8FCsdpB7/YHdrRbJ98aLFC5QFh6s75hwRnPgtFsyZpAVeM 44H61lDWRtdJYP7QGslk05vMUhFvNiMK/HqurgE8GO/mYz3RbXCZUWfIRbmB9WSg ybAG37rLW4U/0DQU/aMwjFV3xqajdZ9tDF8X6b6iHZ49pgVWVHRDap/pr8Q= -----END CERTIFICATE-----Generated at Mon Mar 2 02:01:07 2026 by rpki-client