$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9da483a9-cd37-4534-98c3-e7b7483347ef.roa File: 9da483a9-cd37-4534-98c3-e7b7483347ef.roa (raw, json) Hash identifier: X6iXtHOyBwZ4vLam4ZQ+f3X/ao7FNK3o2r0ftBTBR5s= Subject key identifier: 30:DB:6F:D2:66:BB:07:F7:80:46:41:73:06:71:37:BE:E5:75:54:0B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2AC7C84178E3E19D8588CD6CB857880A1B8885FF Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9da483a9-cd37-4534-98c3-e7b7483347ef.roa Signing time: Sun 08 Feb 2026 00:31:20 +0000 ROA not before: Sun 08 Feb 2026 00:31:20 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 207.94.64.0/20 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:c7:c8:41:78:e3:e1:9d:85:88:cd:6c:b8:57:88:0a:1b:88:85:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:31:20 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=30c8345a78fdd33856fcb9a1b8c7b18e5d4e9cd3e5cfcf26f66858cb67b11cc3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f1:d4:bc:ca:28:4f:fa:cf:a2:cc:85:66:55:b5: b8:bd:81:9f:89:c7:07:d8:f2:f8:a4:04:0a:4a:b8: e5:e7:c3:59:0c:b8:c9:2b:70:6c:d1:10:da:64:a8: 69:13:5a:9d:12:6a:40:7b:fe:5f:55:8f:2c:33:f0: 13:f2:aa:62:9b:27:b4:00:d7:bf:15:b5:bc:10:8b: 5c:9f:89:1e:4d:b3:69:8b:33:06:99:71:57:9a:ec: fd:53:7a:25:e7:43:7b:80:40:07:cd:99:79:d6:ce: ba:b6:00:40:f4:1e:7b:5b:d9:70:ce:ef:8f:91:bb: 51:42:a5:bf:b6:00:5f:d2:58:c4:f9:67:c6:f5:a8: 34:01:83:db:e9:83:69:af:7d:51:18:e2:95:6a:85: 51:cc:c6:a2:9d:1a:52:e5:90:97:12:d7:e1:0e:f4: 16:a8:c8:c1:98:ca:60:27:13:49:01:e0:58:de:a0: a4:da:79:64:d8:05:36:33:df:29:f5:89:85:42:84: 94:75:73:56:6e:68:52:3e:6c:5c:bb:56:fc:f2:a3: 8b:e2:c7:a7:90:5e:29:a8:a2:c0:78:88:6d:c0:b6: bf:e7:01:f9:05:0b:46:5a:c4:b1:10:1c:e6:fe:2f: fa:1f:13:74:76:4f:84:b2:81:de:a9:54:dc:ff:33: d8:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:DB:6F:D2:66:BB:07:F7:80:46:41:73:06:71:37:BE:E5:75:54:0B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9da483a9-cd37-4534-98c3-e7b7483347ef.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 207.94.64.0/20 Signature Algorithm: sha256WithRSAEncryption a0:9b:d9:6d:f3:7f:f7:19:38:0c:92:b1:6a:78:7c:7c:1c:68: b1:4a:ea:f7:fc:ff:97:31:4a:8a:2d:35:53:a7:4b:73:b0:92: 38:f3:f9:3c:65:20:00:7d:29:b1:7b:54:c5:fb:63:d1:f6:43: 61:09:ca:46:f0:96:a3:c5:f0:c9:b4:0a:73:d2:d7:2f:49:4b: 27:79:a4:9a:3b:df:28:68:3e:b6:3d:9e:77:52:3f:7d:48:fa: cb:20:85:34:a0:e5:15:ea:c4:d0:72:68:a7:cf:d3:30:c9:ee: 87:53:3e:d8:a0:44:7c:95:c7:d0:32:9f:fa:66:77:21:13:41: 88:14:70:a5:2d:09:19:bc:67:10:69:24:e5:19:28:e2:14:57: b3:3c:72:17:51:c7:76:0e:7c:01:19:38:54:d2:7f:58:c8:41: 92:4d:81:64:7e:c1:15:96:31:72:4e:dd:5d:b5:7d:eb:2a:46: a1:b2:8b:1e:5c:80:74:85:fb:cb:a5:02:86:cf:5b:58:65:88: cd:1e:5c:0c:e6:4e:57:05:10:e5:5c:3c:38:ad:a0:e8:b9:55: 8a:0f:62:81:91:97:59:c6:6c:47:aa:64:95:ea:94:2a:3e:e0: 48:01:2c:bc:ae:45:78:f0:45:b2:50:c7:3f:98:ea:f0:6f:13: e2:ff:d7:f7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKsfIQXjj4Z2FiM1suFeIChuIhf8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAzMTIwWhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMGM4MzQ1YTc4ZmRkMzM4NTZmY2I5YTFiOGM3YjE4ZTVk NGU5Y2QzZTVjZmNmMjZmNjY4NThjYjY3YjExY2MzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDx1LzKKE/6z6LMhWZVtbi9gZ+JxwfY8vikBApKuOXnw1kM uMkrcGzRENpkqGkTWp0SakB7/l9Vjywz8BPyqmKbJ7QA178VtbwQi1yfiR5Ns2mL MwaZcVea7P1TeiXnQ3uAQAfNmXnWzrq2AED0Hntb2XDO74+Ru1FCpb+2AF/SWMT5 Z8b1qDQBg9vpg2mvfVEY4pVqhVHMxqKdGlLlkJcS1+EO9BaoyMGYymAnE0kB4Fje oKTaeWTYBTYz3yn1iYVChJR1c1ZuaFI+bFy7Vvzyo4vix6eQXimoosB4iG3Atr/n AfkFC0ZaxLEQHOb+L/ofE3R2T4Sygd6pVNz/M9i9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMNtv0ma7B/eARkFzBnE3vuV1VAswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzlkYTQ4M2E5LWNkMzctNDUzNC05OGMzLWU3Yjc0ODMzNDdlZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATPXkAwDQYJKoZIhvcNAQELBQADggEBAKCb2W3zf/cZOAySsWp4fHwcaLFK 6vf8/5cxSootNVOnS3Owkjjz+TxlIAB9KbF7VMX7Y9H2Q2EJykbwlqPF8Mm0CnPS 1y9JSyd5pJo73yhoPrY9nndSP31I+ssghTSg5RXqxNByaKfP0zDJ7odTPtigRHyV x9Ayn/pmdyETQYgUcKUtCRm8ZxBpJOUZKOIUV7M8chdRx3YOfAEZOFTSf1jIQZJN gWR+wRWWMXJO3V21fesqRqGyix5cgHSF+8ulAobPW1hliM0eXAzmTlcFEOVcPDit oOi5VYoPYoGRl1nGbEeqZJXqlCo+4EgBLLyuRXjwRbJQxz+Y6vBvE+L/1/c= -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:27 2026 by rpki-client