$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a9db74d-2685-478a-8752-9a852c0bc6fc.roa File: 9a9db74d-2685-478a-8752-9a852c0bc6fc.roa (raw, json) Hash identifier: 2Uqil8xU/0XMX0Nc9FpUpc3Eg9uyzH0Jg1B8Tso29sE= Subject key identifier: 6C:41:97:60:DA:7A:2C:54:0F:99:90:2E:45:29:51:D2:09:93:DB:50 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0D74071419EAF78F0D5EC206AB5590D98AA4F73E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a9db74d-2685-478a-8752-9a852c0bc6fc.roa Signing time: Fri 13 Feb 2026 00:10:08 +0000 ROA not before: Fri 13 Feb 2026 00:10:08 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 50.16.160.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:74:07:14:19:ea:f7:8f:0d:5e:c2:06:ab:55:90:d9:8a:a4:f7:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:10:08 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=289321951025afc921f1eb4b732b5f2d3784cf20b4dd17976c8c992584b67b0f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9b:a8:58:91:50:bf:e5:06:fb:ab:37:70:34: 31:19:e7:74:17:c9:85:67:52:9a:b0:f5:24:37:33: d6:13:a3:e4:99:52:7b:08:cf:b8:a0:74:9f:9f:c9: 5a:8a:c2:77:73:01:9d:03:a8:46:8a:f8:2b:ab:a5: 71:8f:5a:99:1d:d6:fc:d5:7b:8c:73:04:85:fe:fe: 84:57:5c:7e:5a:1a:c0:7a:4f:c7:09:fe:1a:f3:be: 9c:d4:eb:6b:6e:87:c0:9b:05:34:c5:79:6a:97:d0: b5:54:ef:12:78:17:66:49:c4:f0:39:62:02:ec:c7: 20:73:e0:0f:0d:ca:23:d2:64:5c:ac:32:a5:83:ac: 16:91:b3:f9:a3:fe:be:86:3b:e9:88:2d:27:5b:ab: 26:59:c1:48:c5:65:e5:1c:e5:69:17:f4:61:e6:c6: 66:94:de:31:d2:ac:b5:0f:5e:c1:b5:69:2a:2e:65: bc:af:a4:d0:8b:27:13:c7:45:e8:c1:d7:c3:26:0e: 3c:fc:c0:b5:e0:63:a8:1f:7d:cf:9a:07:fd:f6:81: 2b:57:34:3d:9e:5a:fb:3d:df:a3:6d:68:52:1b:c7: 68:2b:ce:44:8f:51:a0:95:6e:74:66:b3:19:66:3e: 6f:68:54:39:39:05:80:13:9a:92:c2:81:0b:49:d7: cb:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:41:97:60:DA:7A:2C:54:0F:99:90:2E:45:29:51:D2:09:93:DB:50 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9a9db74d-2685-478a-8752-9a852c0bc6fc.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 50.16.160.0/20 Signature Algorithm: sha256WithRSAEncryption 05:6f:eb:27:7a:70:c0:81:d1:8c:86:de:a9:f2:75:a5:3a:dc: 12:5c:6c:57:bd:30:c6:c8:56:d9:63:09:da:51:8f:c9:ea:a6: b7:9d:a3:21:82:0d:59:4b:de:59:9e:3b:81:ba:f3:12:31:42: 0e:58:18:36:71:33:8f:1e:f3:22:aa:7c:0a:d3:d4:97:13:a0: 78:5d:c9:d9:bf:f6:bb:a0:1c:38:1a:4f:4c:54:cc:54:db:48: 45:74:1e:6c:55:d5:8f:47:7d:0a:3f:03:08:46:13:b1:94:aa: 67:43:d5:8c:cc:82:7b:f2:d5:12:56:f8:bf:63:1c:11:62:51: 8e:e8:ac:bb:6d:75:00:8f:54:d1:b5:29:d3:b5:78:d0:f2:35: 4a:13:ae:09:18:15:2e:a4:ed:d8:5e:91:e8:2c:97:61:08:65: 9a:5b:cc:21:77:2b:da:47:ef:fa:4e:77:ec:34:b2:dc:cf:3e: 30:18:0b:dd:af:50:20:fb:83:7b:2d:61:79:86:2b:22:8e:1a: c3:b3:85:aa:a3:74:23:f3:68:1d:a4:44:c8:a9:7b:02:2e:57: d0:d4:af:a0:50:2d:cf:a0:4d:ad:38:d0:5b:a3:1d:7f:f1:e4: 6b:a4:0c:a6:5f:68:a0:03:93:33:f5:b7:f3:3f:60:9a:6f:85: ae:e1:0f:1d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDXQHFBnq948NXsIGq1WQ2Yqk9z4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAxMDA4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AyODkzMjE5NTEwMjVhZmM5MjFmMWViNGI3MzJiNWYyZDM3 ODRjZjIwYjRkZDE3OTc2YzhjOTkyNTg0YjY3YjBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKm6hYkVC/5Qb7qzdwNDEZ53QXyYVnUpqw9SQ3M9YTo+SZ UnsIz7igdJ+fyVqKwndzAZ0DqEaK+CurpXGPWpkd1vzVe4xzBIX+/oRXXH5aGsB6 T8cJ/hrzvpzU62tuh8CbBTTFeWqX0LVU7xJ4F2ZJxPA5YgLsxyBz4A8NyiPSZFys MqWDrBaRs/mj/r6GO+mILSdbqyZZwUjFZeUc5WkX9GHmxmaU3jHSrLUPXsG1aSou ZbyvpNCLJxPHRejB18MmDjz8wLXgY6gffc+aB/32gStXND2eWvs936NtaFIbx2gr zkSPUaCVbnRmsxlmPm9oVDk5BYATmpLCgQtJ18sHAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbEGXYNp6LFQPmZAuRSlR0gmT21AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhOWRiNzRkLTI2ODUtNDc4YS04NzUyLTlhODUyYzBiYzZmYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAQyEKAwDQYJKoZIhvcNAQELBQADggEBAAVv6yd6cMCB0YyG3qnydaU63BJc bFe9MMbIVtljCdpRj8nqpredoyGCDVlL3lmeO4G68xIxQg5YGDZxM48e8yKqfArT 1JcToHhdydm/9rugHDgaT0xUzFTbSEV0HmxV1Y9HfQo/AwhGE7GUqmdD1YzMgnvy 1RJW+L9jHBFiUY7orLttdQCPVNG1KdO1eNDyNUoTrgkYFS6k7dhekegsl2EIZZpb zCF3K9pH7/pOd+w0stzPPjAYC92vUCD7g3stYXmGKyKOGsOzhaqjdCPzaB2kRMip ewIuV9DUr6BQLc+gTa040FujHX/x5GukDKZfaKADkzP1t/M/YJpvha7hDx0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:59 2026 by rpki-client