$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ebdabc7-1d2f-400b-87b6-425f71b87f6c.roa File: 9ebdabc7-1d2f-400b-87b6-425f71b87f6c.roa (raw, json) Hash identifier: hc/jOkB8bsldliqheg7P4dItC/lPaU4nGqPNF56L8co= Subject key identifier: EB:10:6F:50:DA:2C:AD:39:BF:C0:ED:9A:80:5C:AA:11:20:33:70:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4D0DB2544A4B2E79BBC5EFC43AA745DAFBD52927 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ebdabc7-1d2f-400b-87b6-425f71b87f6c.roa Signing time: Thu 26 Feb 2026 00:50:09 +0000 ROA not before: Thu 26 Feb 2026 00:50:09 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.200.0/23 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4d:0d:b2:54:4a:4b:2e:79:bb:c5:ef:c4:3a:a7:45:da:fb:d5:29:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:50:09 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=ed02a9903f3cbf5d9059ed31ad1e3c32cbf0443253050e2e27a1cb9f14ba2987, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:ac:1d:3a:c3:1a:ca:5d:8a:c1:49:79:43:47: 24:a1:d8:4b:87:6e:e4:a0:b3:81:83:4b:c0:6e:d7: 06:85:37:81:d7:a3:8d:59:cc:f4:30:fd:87:9f:75: c3:7f:72:86:ba:79:bd:04:d0:f5:ea:37:74:03:d9: 42:1c:db:7b:fd:36:b4:b6:1b:72:6b:7f:3f:6c:a7: 42:38:6c:8d:40:55:53:e0:17:05:a7:30:6d:26:26: dd:7b:46:a1:fe:bf:8c:8c:a4:cb:1a:d6:93:70:62: 7c:79:36:7e:52:4c:fc:12:7c:db:1b:85:90:41:c2: ed:02:c7:ed:56:80:0f:32:53:90:e1:96:56:0c:4d: f3:d2:28:99:26:25:77:f5:97:3b:3c:4e:ed:2e:0d: 38:49:00:a3:52:94:fb:3c:4e:2f:e1:6b:3e:36:a6: 0b:05:29:f0:79:a3:c2:3d:fb:ba:84:d0:bd:49:3a: bd:56:92:d1:31:33:ff:8e:03:ec:d8:f8:53:68:f0: cb:5b:32:8d:05:09:fd:d3:82:18:97:d3:77:8e:ba: 2b:1a:79:41:7b:72:26:44:bb:ce:e6:f3:fa:71:4e: 7f:c2:c3:e5:53:e8:c4:b4:c7:88:05:44:61:be:0a: 64:97:c8:fb:f6:d1:40:d8:ba:6f:65:6f:82:72:4c: 7f:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:10:6F:50:DA:2C:AD:39:BF:C0:ED:9A:80:5C:AA:11:20:33:70:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ebdabc7-1d2f-400b-87b6-425f71b87f6c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.200.0/23 Signature Algorithm: sha256WithRSAEncryption 13:39:7c:c5:a4:e5:82:26:3c:2b:f1:31:a6:2b:d3:1f:19:48: 04:c4:08:5c:40:ee:af:e3:42:f2:27:9f:dc:cd:fa:12:23:d0: 43:e7:6e:65:e3:37:f2:08:c7:f4:d4:8e:21:19:47:92:4b:df: 1e:2f:d8:7d:e9:1c:8e:82:21:ae:eb:2b:4d:8d:3e:0c:fa:8e: c0:eb:54:0e:0e:3e:e5:e5:4c:ab:57:5c:cd:84:e4:1b:c4:4a: 2c:ed:c9:38:b1:7c:4b:e6:24:e0:d5:fb:6a:df:91:0d:3c:3a: d2:fb:27:f3:b9:45:0f:05:90:b3:4f:88:0d:94:75:40:a7:5c: 5f:31:26:bc:c9:4b:1a:4a:18:19:82:be:07:67:95:36:ea:bd: 15:73:cb:16:03:78:d8:62:72:89:d5:64:e2:76:2c:44:4a:48: 2a:e0:d6:a1:8a:9f:9d:db:a3:83:d2:55:c7:66:c1:46:f5:f4: 5b:d1:38:41:2e:c1:eb:df:60:47:0b:0e:26:dc:c3:71:df:7a: 86:e7:14:b9:15:a0:a7:48:f4:e0:37:fa:f8:e3:82:78:fe:b4: 43:7e:79:bd:eb:b3:e9:00:43:61:06:f4:c2:2d:4e:64:ff:8c: ed:89:a8:38:ad:e9:c8:16:61:35:89:fb:3d:eb:1a:78:be:f9: 6a:45:41:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUTQ2yVEpLLnm7xe/EOqdF2vvVKScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA1MDA5WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlZDAyYTk5MDNmM2NiZjVkOTA1OWVkMzFhZDFlM2MzMmNi ZjA0NDMyNTMwNTBlMmUyN2ExY2I5ZjE0YmEyOTg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxrB06wxrKXYrBSXlDRySh2EuHbuSgs4GDS8Bu1waFN4HX o41ZzPQw/YefdcN/coa6eb0E0PXqN3QD2UIc23v9NrS2G3Jrfz9sp0I4bI1AVVPg FwWnMG0mJt17RqH+v4yMpMsa1pNwYnx5Nn5STPwSfNsbhZBBwu0Cx+1WgA8yU5Dh llYMTfPSKJkmJXf1lzs8Tu0uDThJAKNSlPs8Ti/haz42pgsFKfB5o8I9+7qE0L1J Or1WktExM/+OA+zY+FNo8MtbMo0FCf3TghiX03eOuisaeUF7ciZEu87m8/pxTn/C w+VT6MS0x4gFRGG+CmSXyPv20UDYum9lb4JyTH/zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU6xBvUNosrTm/wO2agFyqESAzcPwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllYmRhYmM3LTFkMmYtNDAwYi04N2I2LTQyNWY3MWI4N2Y2Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFFAMgwDQYJKoZIhvcNAQELBQADggEBABM5fMWk5YImPCvxMaYr0x8ZSATE CFxA7q/jQvInn9zN+hIj0EPnbmXjN/IIx/TUjiEZR5JL3x4v2H3pHI6CIa7rK02N Pgz6jsDrVA4OPuXlTKtXXM2E5BvESiztyTixfEvmJODV+2rfkQ08OtL7J/O5RQ8F kLNPiA2UdUCnXF8xJrzJSxpKGBmCvgdnlTbqvRVzyxYDeNhiconVZOJ2LERKSCrg 1qGKn53bo4PSVcdmwUb19FvROEEuwevfYEcLDibcw3HfeobnFLkVoKdI9OA3+vjj gnj+tEN+eb3rs+kAQ2EG9MItTmT/jO2JqDit6cgWYTWJ+z3rGni++WpFQbk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:18 2026 by rpki-client