$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ecc3df1-ecf6-4f08-bedf-5f4f9b00a9a9.roa File: 9ecc3df1-ecf6-4f08-bedf-5f4f9b00a9a9.roa (raw, json) Hash identifier: jnXRGkrTVZpV6xeplRT3VMYGIgMEcuZ43Y3F2kF7qGw= Subject key identifier: 92:58:79:76:6C:29:06:C9:8A:97:EA:12:4B:42:50:27:F2:AD:C2:60 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6BE391F2179A392053E41D7F2F8354B3DFE644EE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ecc3df1-ecf6-4f08-bedf-5f4f9b00a9a9.roa Signing time: Thu 26 Feb 2026 00:51:09 +0000 ROA not before: Thu 26 Feb 2026 00:51:09 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 26982 IP address blocks: 192.31.213.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:e3:91:f2:17:9a:39:20:53:e4:1d:7f:2f:83:54:b3:df:e6:44:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:51:09 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=da20764783d8c89601eec813a6133d349a93fbae93c388b812773da7b4868ebf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:a9:21:d1:61:e5:52:a8:da:db:eb:29:20:69: 83:94:2d:9f:33:70:55:6a:1a:00:dc:21:67:c6:a5: e5:bd:2d:26:81:7d:59:b7:e5:9d:e8:b2:3b:48:9a: d7:87:54:7a:c2:76:1a:ef:91:98:e8:0e:e2:91:cd: 98:88:2a:18:26:9f:78:83:29:51:11:af:bb:4e:0e: b5:16:c1:07:d5:75:3c:82:e3:31:9d:85:3f:a6:a6: 5d:e2:50:71:c9:5e:46:e9:22:20:91:0d:87:43:d1: b4:0c:92:96:6e:0f:56:b1:66:21:be:77:96:e3:bf: 7b:0e:bb:b2:65:44:72:b4:f6:6f:c8:ca:81:32:fd: b1:d6:46:17:2f:4c:4b:ff:ac:fb:1a:03:56:d4:6c: 80:21:df:44:cc:ec:89:cf:17:22:37:cd:c5:fa:76: 7d:a7:ef:da:68:5d:e2:75:af:8e:ef:e2:c7:09:20: a0:28:1f:57:48:39:5b:73:3e:61:f5:57:a0:73:b7: e3:e7:95:f5:e1:97:73:08:75:bb:f7:d7:b1:9e:da: 19:86:a3:df:13:70:3f:79:59:7d:3f:31:28:ff:75: 94:8b:c2:c3:6e:84:af:e4:65:75:28:3d:95:2c:82: b5:7c:26:2b:79:83:5c:06:77:70:3b:d9:6a:0f:ad: 57:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:58:79:76:6C:29:06:C9:8A:97:EA:12:4B:42:50:27:F2:AD:C2:60 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/9ecc3df1-ecf6-4f08-bedf-5f4f9b00a9a9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.31.213.0/24 Signature Algorithm: sha256WithRSAEncryption 4b:6e:33:ca:f5:3e:6b:2e:97:fa:6c:a8:8a:53:28:e1:7d:ed: 42:37:27:2e:2f:df:a6:6f:f9:a7:a9:7e:4b:35:8d:b6:58:b5: 1c:74:ef:98:81:7d:8b:56:e8:fb:34:19:10:7b:07:2f:65:f2: c0:88:e7:ad:3a:d3:a3:c1:97:ba:c6:9d:19:64:92:f4:5d:5b: 97:cc:e0:fa:52:ef:1f:cf:0f:59:32:fa:fe:40:d5:5b:ed:35: c2:56:cd:8f:c9:99:48:05:b8:0f:1e:b2:6c:57:98:58:67:8d: a4:d9:71:65:4a:24:9e:73:85:49:07:6d:59:2d:7f:77:a6:2b: 12:2a:6c:e7:7b:50:ef:90:8a:ad:94:97:dc:ab:9b:c1:9c:4a: fc:2b:dc:00:3a:0b:1a:8d:04:2d:97:f0:1d:74:80:8c:20:ef: c7:bf:7e:73:6e:18:c4:7a:8d:b6:05:1f:ee:e0:b2:a5:1d:87: 05:d9:6b:8c:5a:22:4f:fe:c9:19:c8:84:33:9e:88:12:8a:9f: b3:57:a1:26:78:d9:0c:09:22:42:fd:81:07:24:65:48:7d:e2: 52:4c:31:8e:3e:45:36:06:d1:aa:4b:90:de:82:34:28:8f:8d: 13:5e:33:96:93:1c:db:a2:a3:53:11:c1:13:bd:11:33:e8:86: 57:d6:64:7a -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUa+OR8heaOSBT5B1/L4NUs9/mRO4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA1MTA5WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYTIwNzY0NzgzZDhjODk2MDFlZWM4MTNhNjEzM2QzNDlh OTNmYmFlOTNjMzg4YjgxMjc3M2RhN2I0ODY4ZWJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUqSHRYeVSqNrb6ykgaYOULZ8zcFVqGgDcIWfGpeW9LSaB fVm35Z3osjtImteHVHrCdhrvkZjoDuKRzZiIKhgmn3iDKVERr7tODrUWwQfVdTyC 4zGdhT+mpl3iUHHJXkbpIiCRDYdD0bQMkpZuD1axZiG+d5bjv3sOu7JlRHK09m/I yoEy/bHWRhcvTEv/rPsaA1bUbIAh30TM7InPFyI3zcX6dn2n79poXeJ1r47v4scJ IKAoH1dIOVtzPmH1V6Bzt+PnlfXhl3MIdbv317Ge2hmGo98TcD95WX0/MSj/dZSL wsNuhK/kZXUoPZUsgrV8Jit5g1wGd3A72WoPrVclAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUklh5dmwpBsmKl+oSS0JQJ/KtwmAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzllY2MzZGYxLWVjZjYtNGYwOC1iZWRmLTVmNGY5YjAwYTlhOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBADAH9UwDQYJKoZIhvcNAQELBQADggEBAEtuM8r1Pmsul/psqIpTKOF97UI3 Jy4v36Zv+aepfks1jbZYtRx075iBfYtW6Ps0GRB7By9l8sCI560606PBl7rGnRlk kvRdW5fM4PpS7x/PD1ky+v5A1VvtNcJWzY/JmUgFuA8esmxXmFhnjaTZcWVKJJ5z hUkHbVktf3emKxIqbOd7UO+Qiq2Ul9yrm8GcSvwr3AA6CxqNBC2X8B10gIwg78e/ fnNuGMR6jbYFH+7gsqUdhwXZa4xaIk/+yRnIhDOeiBKKn7NXoSZ42QwJIkL9gQck ZUh94lJMMY4+RTYG0apLkN6CNCiPjRNeM5aTHNuio1MRwRO9ETPohlfWZHo= -----END CERTIFICATE-----Generated at Mon Mar 2 03:05:10 2026 by rpki-client