$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ada0f91-4f35-4189-b9db-6208680650ff.roa File: 9ada0f91-4f35-4189-b9db-6208680650ff.roa (raw, json) Hash identifier: Lm2DoefJbkZs5+kXnjRjcisI4DwJwydpTQpULuTPvhE= Subject key identifier: E4:4F:B9:DE:92:1D:31:7B:B5:A6:F6:4B:EC:49:4D:12:DF:AB:AC:9C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F98589AA9931B8EADEF10D37257491A08A07509 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ada0f91-4f35-4189-b9db-6208680650ff.roa Signing time: Tue 10 Feb 2026 00:00:53 +0000 ROA not before: Tue 10 Feb 2026 00:00:53 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 136.18.2.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:98:58:9a:a9:93:1b:8e:ad:ef:10:d3:72:57:49:1a:08:a0:75:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:53 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=d7e8c2746f8f1ec5c480778d4e336643c78af3d6f378d0972c36213e4bf15b1f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:c2:e8:3f:5a:c0:1f:b5:56:ed:1d:57:e8:3b: b7:be:3a:39:57:20:8d:a1:1d:bf:a0:4e:85:3c:06: d0:87:fe:35:b0:a4:35:00:4b:8d:82:6e:b9:dd:36: a9:44:23:d1:a2:3a:96:0e:f9:16:d0:70:62:d8:5d: 55:ea:db:f5:f6:ea:c6:9b:5c:07:5f:a3:96:96:71: 7b:c8:3f:c6:91:ec:f6:8d:2f:50:94:5e:ae:51:b6: f1:d7:9c:a4:d6:a4:38:93:9b:8f:19:d9:95:91:33: d6:45:83:e5:a6:83:22:e7:24:28:c7:22:29:1a:0a: 35:a0:88:28:83:96:92:a3:5a:d4:3c:fc:00:99:b0: d5:f5:d3:de:fa:ff:0c:25:49:7f:c5:bb:de:fe:51: c2:d9:4f:13:62:69:66:93:d5:50:fa:59:3b:b9:37: 1c:74:31:7c:29:f3:49:a4:ae:da:cd:6b:15:c5:f3: 61:22:16:0f:fa:c0:c4:45:1e:a3:d0:15:fb:55:79: 15:5b:c7:1b:7e:a2:a7:31:00:16:35:9e:45:9f:31: 37:ed:da:0b:1a:46:02:45:60:05:21:4a:54:6f:12: 3e:92:2e:93:a8:65:6e:62:db:fe:78:aa:76:b8:a9: d1:02:7d:35:51:55:e5:3b:36:8d:22:ac:25:0c:39: 8a:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:4F:B9:DE:92:1D:31:7B:B5:A6:F6:4B:EC:49:4D:12:DF:AB:AC:9C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ada0f91-4f35-4189-b9db-6208680650ff.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 136.18.2.0/24 Signature Algorithm: sha256WithRSAEncryption b2:d1:e1:34:b6:a5:f1:f7:24:a6:e6:d8:6b:e5:5a:86:34:3a: 08:54:3a:27:08:86:2c:af:a5:b1:f4:6a:3f:58:a1:b6:67:9d: 2d:99:52:b4:21:6f:27:f6:1f:c5:b0:d8:58:6b:af:a9:c5:31: 26:c0:91:5c:5d:db:5f:df:48:56:51:3f:43:9d:40:f0:e8:73: 33:b6:63:b1:a0:f0:09:d7:a6:ce:a5:db:4b:22:95:3f:64:cf: 91:41:07:92:bf:63:74:cc:06:91:09:3f:8d:ee:b9:d3:ce:da: 26:28:9f:e8:4f:f1:cc:84:d5:fa:6b:0f:07:c6:fa:51:e8:24: 7c:26:19:22:25:e7:2e:dc:e7:13:a9:1a:f8:ca:24:2b:59:cd: 5e:3f:c9:02:be:74:7e:46:43:42:fe:fd:ba:c5:25:4c:5d:44: 01:d2:05:d0:4b:69:ed:27:1c:a9:20:6c:29:b9:ab:e8:df:67: 71:7c:d6:c4:c0:e9:cd:96:78:80:78:de:a2:9c:f7:03:72:73: 02:90:64:21:ed:5d:b4:92:22:26:0b:de:b2:7c:4c:b3:a2:0e: a7:33:a6:24:cc:a2:fc:17:ef:03:57:a0:3c:89:77:0a:aa:89: 3c:96:8c:ab:7c:ca:e1:b5:a8:aa:2e:b8:27:f7:e7:7d:0b:e5: 50:db:18:fc -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT5hYmqmTG46t7xDTcldJGgigdQkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAwMDUzWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkN2U4YzI3NDZmOGYxZWM1YzQ4MDc3OGQ0ZTMzNjY0M2M3 OGFmM2Q2ZjM3OGQwOTcyYzM2MjEzZTRiZjE1YjFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDdwug/WsAftVbtHVfoO7e+OjlXII2hHb+gToU8BtCH/jWw pDUAS42CbrndNqlEI9GiOpYO+RbQcGLYXVXq2/X26sabXAdfo5aWcXvIP8aR7PaN L1CUXq5RtvHXnKTWpDiTm48Z2ZWRM9ZFg+WmgyLnJCjHIikaCjWgiCiDlpKjWtQ8 /ACZsNX10976/wwlSX/Fu97+UcLZTxNiaWaT1VD6WTu5Nxx0MXwp80mkrtrNaxXF 82EiFg/6wMRFHqPQFftVeRVbxxt+oqcxABY1nkWfMTft2gsaRgJFYAUhSlRvEj6S LpOoZW5i2/54qna4qdECfTVRVeU7No0irCUMOYrxAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU5E+53pIdMXu1pvZL7ElNEt+rrJwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlhZGEwZjkxLTRmMzUtNDE4OS1iOWRiLTYyMDg2ODA2NTBmZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACIEgIwDQYJKoZIhvcNAQELBQADggEBALLR4TS2pfH3JKbm2GvlWoY0OghU OicIhiyvpbH0aj9YobZnnS2ZUrQhbyf2H8Ww2Fhrr6nFMSbAkVxd21/fSFZRP0Od QPDoczO2Y7Gg8AnXps6l20silT9kz5FBB5K/Y3TMBpEJP43uudPO2iYon+hP8cyE 1fprDwfG+lHoJHwmGSIl5y7c5xOpGvjKJCtZzV4/yQK+dH5GQ0L+/brFJUxdRAHS BdBLae0nHKkgbCm5q+jfZ3F81sTA6c2WeIB43qKc9wNycwKQZCHtXbSSIiYL3rJ8 TLOiDqczpiTMovwX7wNXoDyJdwqqiTyWjKt8yuG1qKouuCf3530L5VDbGPw= -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:12 2026 by rpki-client