$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa File: 9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa (raw, json) Hash identifier: PpK1xKcH6nKzXHl8eetEHtcQOJIlww5PSEquqnH+sV4= Subject key identifier: 96:9A:22:44:B0:A6:9D:3B:E5:C8:DE:99:DB:0A:9D:7E:4D:96:8A:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 29058A92440B4D051E76F9E8E78F88B36BE6EAFD Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa Signing time: Sun 01 Mar 2026 00:30:18 +0000 ROA not before: Sun 01 Mar 2026 00:30:18 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 57.251.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:05:8a:92:44:0b:4d:05:1e:76:f9:e8:e7:8f:88:b3:6b:e6:ea:fd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:30:18 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=9fa94e0cec376f38d196e568d352353bbfd434995f036a94e902348b84aa1384, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:06:af:4d:53:49:97:c9:af:f9:4f:f9:5f:d6: 9c:08:8b:a5:bc:ca:56:f7:34:1c:0d:ad:b6:e3:77: 46:a5:b9:ca:4e:8e:84:9a:33:45:cc:64:07:9b:3a: a6:a1:9b:13:b6:b8:a9:fb:cb:d3:9e:14:3e:61:f4: e3:af:86:c1:3c:c0:6a:dc:a1:a1:d7:9e:23:d5:f3: b7:8c:77:05:8d:86:76:0a:f2:69:d9:93:9b:b1:18: a3:a9:aa:06:06:59:47:01:18:1e:53:98:32:fe:15: 50:fc:33:2c:84:c9:26:81:0e:63:59:3d:fa:fd:26: 02:9d:79:7a:3b:33:19:bc:09:95:d6:16:af:fa:b5: 06:53:12:00:1b:81:44:cf:d9:1c:88:8d:7a:37:4e: 64:96:8a:61:d5:77:5f:3e:db:2d:07:ea:62:a8:62: 98:6c:e8:27:fd:21:57:b7:18:f9:07:2b:3e:00:27: 65:9b:4b:26:4f:42:84:c0:2a:c2:1d:5c:5d:2a:0f: 5c:f9:16:1a:05:e5:27:f2:e2:17:56:be:10:27:72: fa:d9:79:14:aa:9c:8a:a6:1d:97:b8:17:7b:47:0e: ef:52:2a:af:0a:5f:2b:ae:0c:ee:94:b2:0f:02:d2: 9c:02:96:9c:4d:87:e6:a5:16:91:9e:2d:1c:2e:4b: 81:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:9A:22:44:B0:A6:9D:3B:E5:C8:DE:99:DB:0A:9D:7E:4D:96:8A:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a8d5db4-e57a-43d4-b37b-f75971c4a85c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.251.0.0/16 Signature Algorithm: sha256WithRSAEncryption 32:2e:cf:ef:04:93:32:1e:4e:2a:46:56:64:be:d2:b4:d9:b5: b7:44:2f:57:bf:e0:d5:e4:67:66:5c:26:ef:10:9f:f1:b8:2a: c0:4f:09:64:8b:db:b6:7f:35:aa:74:99:c2:eb:d5:55:6e:fd: 99:43:0e:62:e8:bc:fd:b1:71:ec:0e:24:07:d2:29:84:00:15: e1:f0:20:f9:b9:32:47:76:81:2d:1d:64:67:3b:df:26:43:91: 6d:ce:15:9c:c6:f8:cd:14:33:56:ba:63:bd:18:bc:d6:12:00: 90:0c:aa:b3:f4:69:bb:25:54:4a:76:87:2d:c7:35:67:5f:e0: b8:17:22:4f:44:23:67:0b:fb:4e:0b:ac:ce:b0:f5:cf:e8:81: 3d:53:61:7c:9d:04:6d:1f:93:3f:b2:a2:22:b9:ef:d4:3f:47: 1d:fb:03:af:0b:8b:50:42:78:f4:63:01:ec:9f:e6:80:a4:9f: 9d:23:c2:d3:7f:87:1d:a7:5b:f5:69:29:a9:9f:08:64:8d:18: 83:cd:ce:c2:c5:3c:8c:32:61:01:94:a2:03:f2:6a:91:6b:f4: 6e:89:a5:5c:5b:71:5c:a8:d9:2a:c1:e3:df:b2:c6:7d:73:ae: 0a:fc:16:f9:53:a1:5b:d4:c4:0e:53:0c:db:88:77:7c:51:ef: 61:21:a2:33 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKQWKkkQLTQUedvno54+Is2vm6v0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMDE4WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmE5NGUwY2VjMzc2ZjM4ZDE5NmU1NjhkMzUyMzUzYmJm ZDQzNDk5NWYwMzZhOTRlOTAyMzQ4Yjg0YWExMzg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDFBq9NU0mXya/5T/lf1pwIi6W8ylb3NBwNrbbjd0alucpO joSaM0XMZAebOqahmxO2uKn7y9OeFD5h9OOvhsE8wGrcoaHXniPV87eMdwWNhnYK 8mnZk5uxGKOpqgYGWUcBGB5TmDL+FVD8MyyEySaBDmNZPfr9JgKdeXo7Mxm8CZXW Fq/6tQZTEgAbgUTP2RyIjXo3TmSWimHVd18+2y0H6mKoYphs6Cf9IVe3GPkHKz4A J2WbSyZPQoTAKsIdXF0qD1z5FhoF5Sfy4hdWvhAncvrZeRSqnIqmHZe4F3tHDu9S Kq8KXyuuDO6Usg8C0pwClpxNh+alFpGeLRwuS4GzAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUlpoiRLCmnTvlyN6Z2wqdfk2Wio0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhOGQ1ZGI0LWU1N2EtNDNkNC1iMzdiLWY3NTk3MWM0YTg1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5+zANBgkqhkiG9w0BAQsFAAOCAQEAMi7P7wSTMh5OKkZWZL7StNm1t0Qv V7/g1eRnZlwm7xCf8bgqwE8JZIvbtn81qnSZwuvVVW79mUMOYui8/bFx7A4kB9Ip hAAV4fAg+bkyR3aBLR1kZzvfJkORbc4VnMb4zRQzVrpjvRi81hIAkAyqs/RpuyVU SnaHLcc1Z1/guBciT0QjZwv7TguszrD1z+iBPVNhfJ0EbR+TP7KiIrnv1D9HHfsD rwuLUEJ49GMB7J/mgKSfnSPC03+HHadb9WkpqZ8IZI0Yg83OwsU8jDJhAZSiA/Jq kWv0bomlXFtxXKjZKsHj37LGfXOuCvwW+VOhW9TEDlMM24h3fFHvYSGiMw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:08:11 2026 by rpki-client