$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa File: 9e093b29-3153-49c7-bbdd-9089a1389778.roa (raw, json) Hash identifier: Dm7PwLmNxFPYXr5Kfg3wPV6sEdn8QMk+XrJNWIrIPA4= Subject key identifier: A3:C0:30:97:EA:4D:15:97:D4:EC:8F:A2:1C:07:60:93:1A:7D:58:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 73E94E99E9D7906EFCCE264418904E2F47590C71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa Signing time: Sun 08 Feb 2026 00:00:08 +0000 ROA not before: Sun 08 Feb 2026 00:00:08 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.169.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:e9:4e:99:e9:d7:90:6e:fc:ce:26:44:18:90:4e:2f:47:59:0c:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:00:08 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=722b4c19cceb7820c3eede81a2a9f75a58d5e16ed321e31bb8bd237982b4d70f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:51:65:0b:51:44:23:32:da:2a:f8:28:48:1c: d9:4d:a1:38:10:0d:90:f6:33:38:52:55:c7:9d:0e: bf:30:ec:d1:61:fc:f4:40:8c:d7:9a:4a:93:92:c5: b7:34:77:d4:fc:1f:e3:f3:46:ef:e1:eb:dd:78:0d: d6:cf:e7:40:57:5f:dc:8b:31:cd:14:68:4d:7e:7b: 35:c0:85:4c:90:5e:23:48:8c:75:05:bc:cb:fc:04: 93:55:19:7c:d7:cd:50:d4:30:4f:2c:48:0f:5a:47: b9:8e:b2:ff:ef:ef:1b:f4:61:c8:7a:2d:57:81:b7: c2:65:6c:ad:b9:ca:70:64:23:aa:20:f6:36:50:23: 7f:06:60:7a:ab:7b:f5:35:64:f2:99:25:9e:43:b7: b6:5e:14:89:d4:c0:17:cf:4d:a3:ce:e2:5b:01:0b: 16:de:43:68:82:bf:af:77:c4:9a:cf:6d:44:62:2d: 6e:79:81:22:66:6b:fa:83:76:e6:54:91:b6:52:f9: b6:5b:70:e1:e2:19:a2:d5:7b:f8:b1:6a:d2:9d:ec: 7d:e9:38:a5:38:d1:ae:65:02:46:8e:5b:85:bb:69: 88:3d:4f:9e:f6:d0:63:3b:75:62:bb:f7:09:4a:70: 27:ed:57:ea:77:44:da:27:df:3f:0a:e1:c7:80:ac: 05:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C0:30:97:EA:4D:15:97:D4:EC:8F:A2:1C:07:60:93:1A:7D:58:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9e093b29-3153-49c7-bbdd-9089a1389778.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.169.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9d:b9:be:0f:83:56:33:fb:c9:4c:de:e8:ef:3c:1f:7a:28:7f: 2d:98:12:55:bd:6a:ce:42:7d:bc:4f:ae:8b:ab:a5:49:e5:eb: aa:9f:94:4e:b4:a3:64:4d:6c:00:90:f1:47:ea:d5:58:74:0a: 3b:90:87:ee:02:a8:2a:83:f8:68:c1:cb:6b:c2:04:c3:10:13: 9c:c7:b9:1c:0f:c9:5b:79:94:43:ca:0a:13:5b:d4:84:e7:73: e7:0c:38:8b:d6:74:78:bb:0b:8e:70:d2:91:13:82:41:7d:b1: f3:fd:49:53:03:e9:15:41:81:e9:43:85:14:9c:57:7c:5f:37: d6:ad:91:87:80:55:6c:b3:55:24:84:c5:bf:aa:e7:0e:e9:2b: 38:43:bc:e6:59:49:52:7d:60:1a:ac:ed:d7:6c:95:b7:cb:9d: 17:4e:f0:2a:36:0d:c3:f3:9d:b5:a4:02:66:88:86:30:19:e0: e2:02:d9:33:72:9d:73:73:b0:70:88:49:e4:77:2c:50:f4:a0: 36:70:92:d6:df:82:3b:1f:fb:55:f0:b2:e9:29:79:47:eb:28: a7:6f:d9:bd:99:98:40:5e:4f:89:18:df:47:3c:bc:c4:5d:81: d7:28:49:d7:52:1f:a9:29:06:0d:5f:08:f7:df:d1:15:08:8f: 1c:2a:c8:be -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUc+lOmenXkG78ziZEGJBOL0dZDHEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAwMDA4WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjJiNGMxOWNjZWI3ODIwYzNlZWRlODFhMmE5Zjc1YTU4 ZDVlMTZlZDMyMWUzMWJiOGJkMjM3OTgyYjRkNzBmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDiUWULUUQjMtoq+ChIHNlNoTgQDZD2MzhSVcedDr8w7NFh /PRAjNeaSpOSxbc0d9T8H+PzRu/h6914DdbP50BXX9yLMc0UaE1+ezXAhUyQXiNI jHUFvMv8BJNVGXzXzVDUME8sSA9aR7mOsv/v7xv0Ych6LVeBt8JlbK25ynBkI6og 9jZQI38GYHqre/U1ZPKZJZ5Dt7ZeFInUwBfPTaPO4lsBCxbeQ2iCv693xJrPbURi LW55gSJma/qDduZUkbZS+bZbcOHiGaLVe/ixatKd7H3pOKU40a5lAkaOW4W7aYg9 T5720GM7dWK79wlKcCftV+p3RNon3z8K4ceArAVbAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUo8Awl+pNFZfU7I+iHAdgkxp9WGEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllMDkzYjI5LTMxNTMtNDljNy1iYmRkLTkwODlhMTM4OTc3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDMqTANBgkqhkiG9w0BAQsFAAOCAQEAnbm+D4NWM/vJTN7o7zwfeih/LZgS Vb1qzkJ9vE+ui6ulSeXrqp+UTrSjZE1sAJDxR+rVWHQKO5CH7gKoKoP4aMHLa8IE wxATnMe5HA/JW3mUQ8oKE1vUhOdz5ww4i9Z0eLsLjnDSkROCQX2x8/1JUwPpFUGB 6UOFFJxXfF831q2Rh4BVbLNVJITFv6rnDukrOEO85llJUn1gGqzt12yVt8udF07w KjYNw/OdtaQCZoiGMBng4gLZM3Kdc3OwcIhJ5HcsUPSgNnCS1t+COx/7VfCy6Sl5 R+sop2/ZvZmYQF5PiRjfRzy8xF2B1yhJ11IfqSkGDV8I99/RFQiPHCrIvg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:56 2026 by rpki-client