$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b85564a-7b8e-482c-82f2-955d84a48b12.roa File: 9b85564a-7b8e-482c-82f2-955d84a48b12.roa (raw, json) Hash identifier: SpGxoMgyc9/auQ3XdwFlwUzMjlcJkkMx2hbZhg41F8E= Subject key identifier: 3E:D3:B5:9F:FC:EF:50:E6:CB:93:7B:A5:F0:E3:FF:E6:F2:7D:B7:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C5550B98D372883C25DB57E32E93560F06D4193 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b85564a-7b8e-482c-82f2-955d84a48b12.roa Signing time: Wed 25 Feb 2026 02:40:03 +0000 ROA not before: Wed 25 Feb 2026 02:40:03 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.247.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:55:50:b9:8d:37:28:83:c2:5d:b5:7e:32:e9:35:60:f0:6d:41:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:40:03 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=b25c406b63837de2097062af3bf3bfb5d4d15369f02a3ae6c34569fe6e71cf32, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:27:33:0f:60:35:c4:c6:fe:c3:09:36:ae:e7: 06:45:4b:c7:dd:c7:23:c8:f5:49:1c:1a:a0:38:20: 89:fa:0d:48:a2:60:f1:c8:3d:f8:8c:2f:35:92:93: 96:f8:ce:80:f5:39:2a:96:70:ef:73:13:09:8f:5f: 64:da:a7:e0:ee:53:90:49:36:56:7f:d7:3e:03:9a: 86:7b:0b:a1:da:15:f4:48:42:d9:ba:48:c6:ad:75: 9e:f6:c3:c9:cf:21:64:46:b1:ce:8c:33:ee:1f:e4: a6:98:29:1d:a0:d3:8a:de:68:4c:9d:0f:6b:a8:85: 9d:ee:ec:61:7b:0e:b9:23:61:04:9f:95:58:43:57: ea:bb:f2:d2:a4:0b:a4:4e:dc:01:d1:45:96:39:8a: 04:01:99:e7:aa:22:c5:ae:b7:a8:d3:51:d3:32:05: 55:7c:ae:b8:8f:b3:20:fe:db:9c:50:1b:75:76:3a: 28:f3:53:ef:ca:ad:61:83:7e:6f:b7:0c:1f:7b:8e: bc:7e:bf:24:31:76:b7:5b:59:8a:a3:43:6f:d7:7a: 93:10:a2:8d:54:da:af:c3:eb:b8:2a:4b:32:4b:df: a1:d5:74:b3:92:9b:0a:3b:b3:15:49:e4:dc:d6:7e: f2:e3:c4:93:fe:a3:06:67:33:6b:c1:20:98:1a:30: c9:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:D3:B5:9F:FC:EF:50:E6:CB:93:7B:A5:F0:E3:FF:E6:F2:7D:B7:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9b85564a-7b8e-482c-82f2-955d84a48b12.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.247.0.0/16 Signature Algorithm: sha256WithRSAEncryption 13:eb:24:a5:84:ed:86:bd:91:f9:e2:00:dc:ba:88:22:5d:10: 36:6c:a5:d2:f1:bd:bd:c6:df:31:8b:b3:df:d7:d4:05:d2:b0: f7:d1:ea:ad:ba:8a:f1:90:f0:f8:e7:82:18:87:ae:1a:4f:68: 36:75:4b:9b:20:8a:77:9c:f6:6d:b1:8b:64:bc:30:4e:03:c3: 15:84:90:81:9c:10:60:a7:0a:37:b5:9c:1e:91:ee:4d:57:0e: 5e:f7:c8:bf:5f:c9:de:12:7f:fc:3a:a1:2c:fc:39:ae:91:07: 2c:0f:f1:86:76:b4:bf:e7:3c:f3:7a:13:be:f1:f4:d6:6b:02: f4:e1:bd:12:6b:03:b8:b1:bd:20:99:ae:37:cb:c3:e4:38:1a: 98:7b:ac:d0:b6:6d:87:fe:aa:d1:2d:f2:d9:88:dc:70:18:41: ff:38:22:ec:85:cc:07:88:13:38:61:65:59:3f:42:1a:48:9a: 59:94:52:50:91:c6:75:e5:ff:17:c0:fa:2f:51:51:d3:ae:92: df:ac:1c:1a:40:2e:a3:55:b3:79:b3:a6:b1:a4:3d:84:5e:36: 4a:64:49:94:17:b8:9f:93:5c:aa:27:96:0c:e8:66:03:a4:82: 8b:12:b3:f1:5b:71:58:ab:08:0f:58:d8:ab:e3:a6:9a:ba:53: c2:a0:f6:98 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDFVQuY03KIPCXbV+Muk1YPBtQZMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDI0MDAzWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiMjVjNDA2YjYzODM3ZGUyMDk3MDYyYWYzYmYzYmZiNWQ0 ZDE1MzY5ZjAyYTNhZTZjMzQ1NjlmZTZlNzFjZjMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDJzMPYDXExv7DCTau5wZFS8fdxyPI9UkcGqA4IIn6DUii YPHIPfiMLzWSk5b4zoD1OSqWcO9zEwmPX2Tap+DuU5BJNlZ/1z4DmoZ7C6HaFfRI Qtm6SMatdZ72w8nPIWRGsc6MM+4f5KaYKR2g04reaEydD2uohZ3u7GF7DrkjYQSf lVhDV+q78tKkC6RO3AHRRZY5igQBmeeqIsWut6jTUdMyBVV8rriPsyD+25xQG3V2 OijzU+/KrWGDfm+3DB97jrx+vyQxdrdbWYqjQ2/XepMQoo1U2q/D67gqSzJL36HV dLOSmwo7sxVJ5NzWfvLjxJP+owZnM2vBIJgaMMkTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUPtO1n/zvUObLk3ul8OP/5vJ9tygwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzliODU1NjRhLTdiOGUtNDgyYy04MmYyLTk1NWQ4NGE0OGIxMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAg9zANBgkqhkiG9w0BAQsFAAOCAQEAE+skpYTthr2R+eIA3LqIIl0QNmyl 0vG9vcbfMYuz39fUBdKw99HqrbqK8ZDw+OeCGIeuGk9oNnVLmyCKd5z2bbGLZLww TgPDFYSQgZwQYKcKN7WcHpHuTVcOXvfIv1/J3hJ//DqhLPw5rpEHLA/xhna0v+c8 83oTvvH01msC9OG9EmsDuLG9IJmuN8vD5DgamHus0LZth/6q0S3y2YjccBhB/zgi 7IXMB4gTOGFlWT9CGkiaWZRSUJHGdeX/F8D6L1FR066S36wcGkAuo1WzebOmsaQ9 hF42SmRJlBe4n5NcqieWDOhmA6SCixKz8VtxWKsID1jYq+OmmrpTwqD2mA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:18 2026 by rpki-client