$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa File: 99922d4f-b1fc-43d5-9674-a085ad312500.roa (raw, json) Hash identifier: igjDSN+v78MavnlfyN7z2LSHvfxAVwSIyGWmTMeblgw= Subject key identifier: 60:63:EB:85:DC:55:C8:C4:AB:C3:84:DF:F7:99:A9:ED:09:40:23:C5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 37D5AE295A35AE6C0C05E41615294C996C11EFEE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa Signing time: Fri 06 Feb 2026 00:10:04 +0000 ROA not before: Fri 06 Feb 2026 00:10:04 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 104.153.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37:d5:ae:29:5a:35:ae:6c:0c:05:e4:16:15:29:4c:99:6c:11:ef:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 6 00:10:04 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=297903bf9e9c44f5589c60f3e7a17e49794fa627975d08f767b449881a16e3e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f7:74:1b:7e:45:55:ae:0a:5e:90:68:49:90: a8:eb:2d:0e:bf:ed:ec:fe:3d:6e:d4:1e:8b:e9:e0: 05:49:d7:62:e3:6f:6d:c3:53:e7:a8:07:5e:4a:15: 41:07:9e:e6:94:45:cc:fc:d1:75:e0:37:c4:89:d3: 16:5d:3c:e3:21:9c:3b:ec:82:49:41:89:79:f0:9e: ef:d7:2e:78:40:75:ad:28:3d:b8:3d:b2:49:48:60: cc:62:93:90:46:34:69:24:51:2d:a0:09:18:a9:b3: eb:ee:59:32:40:5a:dd:57:a4:5d:42:b4:38:e2:95: 2f:74:24:95:3b:b1:60:b3:f4:94:20:79:70:58:31: c7:3b:c2:b5:80:12:42:21:04:23:2c:52:ba:2b:fd: a7:36:e0:27:fa:10:45:8b:39:25:98:86:e1:c9:63: 37:73:93:9b:5b:b1:2e:7e:25:13:40:09:07:41:b8: dd:e0:04:1a:6e:f7:f8:e4:e3:12:cf:ed:61:f6:ab: 38:27:0b:dd:dc:82:d5:08:ee:13:d0:cb:8a:b6:b9: b3:23:68:af:76:68:77:87:19:f0:65:1b:46:b0:a1: 1f:20:7e:5f:59:ed:bf:5d:b3:40:d7:fa:f5:5b:0e: dd:e7:4a:4c:bc:ac:98:35:90:3e:20:80:35:78:7b: 04:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 60:63:EB:85:DC:55:C8:C4:AB:C3:84:DF:F7:99:A9:ED:09:40:23:C5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/99922d4f-b1fc-43d5-9674-a085ad312500.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 104.153.118.0/24 Signature Algorithm: sha256WithRSAEncryption 74:5f:54:8b:9a:ce:33:bd:69:38:d4:a7:6f:fb:eb:4d:68:2b: 5a:27:8d:d9:3e:64:5e:94:50:5e:41:2e:ff:93:10:ac:c1:88: 43:90:52:c3:29:75:00:ee:ea:b1:5e:3f:2d:a1:4d:1e:aa:fa: 48:79:8d:b9:6a:ee:23:c9:2c:35:e3:11:bf:e4:ec:d1:29:ca: b4:9b:42:e2:fd:cf:68:a1:f6:11:50:09:71:98:9d:82:05:e0: 13:ca:0b:5a:d7:a0:ed:37:e9:fb:fa:e1:91:aa:ce:77:d8:da: 5a:09:28:98:98:2c:6e:18:ee:03:07:88:09:2b:29:1f:ee:ce: 08:a6:48:43:37:9b:eb:5a:0d:61:53:7a:ea:d6:22:97:ba:b3: f2:1c:0a:02:3e:d5:9d:aa:78:4e:17:01:8a:0e:de:d6:d4:72: fd:25:da:5f:1c:bd:ea:39:05:d2:f7:f0:ae:d0:68:12:2e:e6: 07:6b:92:ca:87:33:2b:eb:d9:8f:7d:e7:61:52:ef:1c:4c:78: a3:06:fc:c1:51:63:8c:83:8f:bc:c8:74:62:0d:e7:d8:d0:8b: 57:d5:e5:ec:aa:9d:40:57:77:a5:1c:a3:8d:08:ea:64:59:eb: d9:69:b8:67:c6:12:3b:f6:8d:d1:ca:f6:81:41:b7:ac:90:9d: 82:4d:7a:ec -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUN9WuKVo1rmwMBeQWFSlMmWwR7+4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA2MDAxMDA0WhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTc5MDNiZjllOWM0NGY1NTg5YzYwZjNlN2ExN2U0OTc5 NGZhNjI3OTc1ZDA4Zjc2N2I0NDk4ODFhMTZlM2U2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi93QbfkVVrgpekGhJkKjrLQ6/7ez+PW7UHovp4AVJ12Lj b23DU+eoB15KFUEHnuaURcz80XXgN8SJ0xZdPOMhnDvsgklBiXnwnu/XLnhAda0o Pbg9sklIYMxik5BGNGkkUS2gCRips+vuWTJAWt1XpF1CtDjilS90JJU7sWCz9JQg eXBYMcc7wrWAEkIhBCMsUror/ac24Cf6EEWLOSWYhuHJYzdzk5tbsS5+JRNACQdB uN3gBBpu9/jk4xLP7WH2qzgnC93cgtUI7hPQy4q2ubMjaK92aHeHGfBlG0awoR8g fl9Z7b9ds0DX+vVbDt3nSky8rJg1kD4ggDV4ewSZAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUYGPrhdxVyMSrw4Tf95mp7QlAI8UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzk5OTIyZDRmLWIxZmMtNDNkNS05Njc0LWEwODVhZDMxMjUwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABomXYwDQYJKoZIhvcNAQELBQADggEBAHRfVIuazjO9aTjUp2/7601oK1on jdk+ZF6UUF5BLv+TEKzBiEOQUsMpdQDu6rFePy2hTR6q+kh5jblq7iPJLDXjEb/k 7NEpyrSbQuL9z2ih9hFQCXGYnYIF4BPKC1rXoO036fv64ZGqznfY2loJKJiYLG4Y 7gMHiAkrKR/uzgimSEM3m+taDWFTeurWIpe6s/IcCgI+1Z2qeE4XAYoO3tbUcv0l 2l8cveo5BdL38K7QaBIu5gdrksqHMyvr2Y9952FS7xxMeKMG/MFRY4yDj7zIdGIN 59jQi1fV5eyqnUBXd6Uco40I6mRZ69lpuGfGEjv2jdHK9oFBt6yQnYJNeuw= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:24 2026 by rpki-client