$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c26edbe-f9e0-44ae-b884-a96f794843e1.roa File: 9c26edbe-f9e0-44ae-b884-a96f794843e1.roa (raw, json) Hash identifier: ehplukv9r/ccVOVHIDT6TCCVyzeQdBTaNXK+6E8vZuI= Subject key identifier: 7D:24:7E:91:CD:0E:79:81:61:71:89:5C:E1:4D:F3:C4:6D:D4:2D:BE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 234D45F53C1C9D15076A73881C4D403257C345F9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c26edbe-f9e0-44ae-b884-a96f794843e1.roa Signing time: Wed 25 Feb 2026 00:10:47 +0000 ROA not before: Wed 25 Feb 2026 00:10:47 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 184.175.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:4d:45:f5:3c:1c:9d:15:07:6a:73:88:1c:4d:40:32:57:c3:45:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:10:47 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=cabed01bb8c2345cd1b934ae6a244e645bdb7fc23198216749e9e1f27a57b2ec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7d:cc:37:24:34:ab:7f:5c:01:5d:27:41:09: d8:0f:66:42:53:67:08:39:0d:03:89:dd:4f:c3:af: c1:45:d0:1a:cb:e8:2c:88:10:33:56:b9:a5:e8:08: 14:69:55:a0:2b:29:91:83:f2:bc:c7:5f:4f:71:6e: 05:ce:82:fa:ee:8d:52:3b:a6:f9:22:6b:1e:ad:57: 4d:36:78:02:20:f3:83:c5:6e:df:09:0d:96:3e:0f: 32:19:6e:b5:ad:5c:9f:0e:f1:6d:f0:57:6b:85:7a: 72:65:b7:d9:31:ef:bc:65:bb:f9:dc:01:f3:f0:7c: 11:2e:7c:22:36:17:94:2d:26:45:e1:b4:f9:e6:16: 44:d9:8d:4b:4c:a4:22:65:cd:b1:1c:cb:dc:ca:93: ef:cd:3d:68:7c:4c:36:1a:d9:4c:32:97:4c:2b:75: 7e:b9:29:55:39:b8:a9:3c:9a:54:48:0b:63:36:52: db:d0:d2:4c:65:82:4a:ef:f4:ed:79:6f:fa:ed:f6: c4:41:81:3b:c3:50:a9:25:ba:10:1a:c3:6a:c0:e2: 76:74:ba:f9:a3:4a:c3:cd:0f:bb:5b:53:9c:b0:ce: e2:61:56:99:5f:0b:e0:06:57:03:7a:b8:4f:1e:2d: 43:2b:0e:ab:65:cb:3a:fd:ae:f5:24:1e:7d:bc:e4: 96:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:24:7E:91:CD:0E:79:81:61:71:89:5C:E1:4D:F3:C4:6D:D4:2D:BE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9c26edbe-f9e0-44ae-b884-a96f794843e1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 184.175.64.0/18 Signature Algorithm: sha256WithRSAEncryption d1:1a:7e:eb:3d:44:9a:21:c7:d7:06:03:0a:ba:2d:da:a9:0d: fa:8e:6a:f5:79:13:23:f1:76:e6:6b:e2:fc:44:8b:5c:a4:7f: db:4f:56:f8:ce:90:5c:0a:42:5b:0f:09:ee:df:7a:c7:05:00: 55:98:df:1b:a1:1a:98:68:94:fb:22:ee:f2:68:b5:fb:7b:76: 14:5a:d4:2f:95:ea:81:29:e6:d0:b6:ca:62:f6:91:e1:3e:41: 40:32:65:1a:03:67:7e:7b:c9:b1:65:d0:0a:41:5a:2d:c1:64: c7:29:59:79:5d:fb:df:22:bd:8d:ff:ee:f1:cd:d0:fa:32:53: c8:6d:26:ab:c8:1e:5e:08:ad:92:09:aa:a7:ec:dd:25:24:d9: 15:fb:fb:36:a5:9c:93:e1:7d:e7:3f:3c:0f:de:86:41:98:a8: d9:7c:1a:2c:52:17:a7:57:d2:92:2f:67:f0:4f:df:9e:dc:17: 30:ab:87:1e:97:9d:f4:6e:93:fe:4c:99:1f:38:72:02:54:ef: 1c:08:3f:d2:aa:43:aa:4f:db:6d:73:1f:90:8e:0c:42:3e:03: dc:75:8a:37:03:86:dc:a1:29:25:db:19:2c:10:68:ca:68:a2: 44:10:ff:aa:22:55:97:26:b8:70:c9:f7:ce:2c:f5:60:49:0f: 3b:f0:d9:75 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUI01F9TwcnRUHanOIHE1AMlfDRfkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAxMDQ3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWJlZDAxYmI4YzIzNDVjZDFiOTM0YWU2YTI0NGU2NDVi ZGI3ZmMyMzE5ODIxNjc0OWU5ZTFmMjdhNTdiMmVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUfcw3JDSrf1wBXSdBCdgPZkJTZwg5DQOJ3U/Dr8FF0BrL 6CyIEDNWuaXoCBRpVaArKZGD8rzHX09xbgXOgvrujVI7pvkiax6tV002eAIg84PF bt8JDZY+DzIZbrWtXJ8O8W3wV2uFenJlt9kx77xlu/ncAfPwfBEufCI2F5QtJkXh tPnmFkTZjUtMpCJlzbEcy9zKk+/NPWh8TDYa2Uwyl0wrdX65KVU5uKk8mlRIC2M2 UtvQ0kxlgkrv9O15b/rt9sRBgTvDUKkluhAaw2rA4nZ0uvmjSsPND7tbU5ywzuJh VplfC+AGVwN6uE8eLUMrDqtlyzr9rvUkHn285JbJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUfSR+kc0OeYFhcYlc4U3zxG3ULb4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzljMjZlZGJlLWY5ZTAtNDRhZS1iODg0LWE5NmY3OTQ4NDNlMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAa4r0AwDQYJKoZIhvcNAQELBQADggEBANEafus9RJohx9cGAwq6LdqpDfqO avV5EyPxduZr4vxEi1ykf9tPVvjOkFwKQlsPCe7fescFAFWY3xuhGpholPsi7vJo tft7dhRa1C+V6oEp5tC2ymL2keE+QUAyZRoDZ357ybFl0ApBWi3BZMcpWXld+98i vY3/7vHN0PoyU8htJqvIHl4IrZIJqqfs3SUk2RX7+zalnJPhfec/PA/ehkGYqNl8 GixSF6dX0pIvZ/BP357cFzCrhx6XnfRuk/5MmR84cgJU7xwIP9KqQ6pP221zH5CO DEI+A9x1ijcDhtyhKSXbGSwQaMpookQQ/6oiVZcmuHDJ984s9WBJDzvw2XU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:39:28 2026 by rpki-client