$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa File: a3189a3e-1053-49b0-891d-b315bf3a899d.roa (raw, json) Hash identifier: yuDG45BXSOs7Fy09lbuu/4fpXhrqKCBvOjSvF9KrKPU= Subject key identifier: C3:10:A9:DF:6F:4E:00:B8:BD:A4:04:76:0E:38:08:D7:6D:61:80:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A9CB3F3D33D41A352900096D48C51A4E05CF31D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa Signing time: Sun 08 Feb 2026 00:20:59 +0000 ROA not before: Sun 08 Feb 2026 00:20:59 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 54.109.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:9c:b3:f3:d3:3d:41:a3:52:90:00:96:d4:8c:51:a4:e0:5c:f3:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:20:59 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=9b4db6049ed9766857b0200171c18e1b48a9afe59532e400d027673ea87e8d3f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:7e:c8:02:33:43:09:97:22:f6:50:ee:20:87: 3d:fe:46:cd:b1:81:72:1c:1a:34:a1:75:90:c9:8c: 93:69:4d:2f:0d:41:2a:72:14:5d:e6:c8:51:17:98: 88:33:1e:04:50:01:41:7c:83:2f:67:c4:68:f6:6f: 12:42:a4:bf:41:b5:82:8b:6a:bd:3f:d7:ce:c4:a6: 6c:fb:45:9f:10:5b:b2:00:bf:b6:31:9a:c0:11:0a: d2:48:14:20:42:44:8f:e6:60:c1:46:c0:39:52:57: 6a:37:60:59:1a:34:66:08:4d:68:b0:1f:04:92:7e: 8f:50:a3:e2:69:e0:21:5a:16:35:8a:54:cb:56:3d: 9f:4a:05:70:22:60:4b:77:a4:ab:c1:cf:89:0c:f8: fd:46:4c:e8:a1:34:3e:d8:4c:2f:19:cb:50:7c:58: 73:11:9d:29:fb:87:99:7f:1e:f6:45:7d:23:2b:05: 4d:41:40:0c:0c:7a:f2:ea:e9:3a:9f:7b:ee:b8:ca: 79:76:4d:64:e9:b6:c4:62:37:b6:94:39:74:a5:12: 83:5a:79:3c:a2:b8:47:00:47:ee:9a:b7:a1:43:15: 51:64:d6:84:16:47:34:cc:63:4b:c2:4e:86:09:ec: 24:59:f8:ef:46:4b:f8:7d:2b:f1:d9:e3:1d:99:97: a1:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:10:A9:DF:6F:4E:00:B8:BD:A4:04:76:0E:38:08:D7:6D:61:80:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3189a3e-1053-49b0-891d-b315bf3a899d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 54.109.0.0/16 Signature Algorithm: sha256WithRSAEncryption 26:57:60:99:37:e0:c8:fb:c2:01:fc:4f:81:3e:50:1b:e8:95: 06:bd:e7:84:f7:42:bb:54:b0:42:a5:66:67:63:58:8d:a4:2b: 32:38:38:7d:c7:15:52:8c:17:e0:06:6e:1e:d0:98:d1:80:2f: 6f:c2:d8:12:e1:be:de:4d:2a:9b:08:82:1e:89:fd:a6:ce:b8: 69:9b:4b:43:db:de:1e:a8:c3:61:3c:8a:83:bf:6c:74:6d:50: c2:e0:75:26:70:44:e5:d2:56:cd:be:39:97:c3:7c:9f:cc:fa: 56:fd:a9:bd:cd:9e:5d:ce:a4:1c:0a:09:83:d0:c5:df:3f:89: 3d:d3:f3:62:40:91:67:01:40:94:53:db:d4:15:c7:50:f3:09: 4f:84:74:5f:09:43:d8:d3:25:2f:d6:11:cf:e4:22:86:1e:46: 4d:f4:cf:a6:54:e2:fe:10:88:a2:37:00:8e:d7:13:65:6a:3a: 0f:de:f3:31:4c:6c:6a:8e:f8:63:9d:5e:9d:ac:cf:a8:dd:69: 28:9a:bf:fc:33:82:20:24:c9:37:c6:11:47:1a:3d:ca:bd:15: 5a:80:c2:57:dc:6a:1b:2c:cd:d9:94:65:3f:9a:50:43:bb:0c: 76:36:04:34:e4:86:be:d9:6e:e8:15:42:d1:0c:cc:ce:27:a2: 8e:c6:d1:ea -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUOpyz89M9QaNSkACW1IxRpOBc8x0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAyMDU5WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5YjRkYjYwNDllZDk3NjY4NTdiMDIwMDE3MWMxOGUxYjQ4 YTlhZmU1OTUzMmU0MDBkMDI3NjczZWE4N2U4ZDNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLfsgCM0MJlyL2UO4ghz3+Rs2xgXIcGjShdZDJjJNpTS8N QSpyFF3myFEXmIgzHgRQAUF8gy9nxGj2bxJCpL9BtYKLar0/187Epmz7RZ8QW7IA v7YxmsARCtJIFCBCRI/mYMFGwDlSV2o3YFkaNGYITWiwHwSSfo9Qo+Jp4CFaFjWK VMtWPZ9KBXAiYEt3pKvBz4kM+P1GTOihND7YTC8Zy1B8WHMRnSn7h5l/HvZFfSMr BU1BQAwMevLq6Tqfe+64ynl2TWTptsRiN7aUOXSlEoNaeTyiuEcAR+6at6FDFVFk 1oQWRzTMY0vCToYJ7CRZ+O9GS/h9K/HZ4x2Zl6H7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUwxCp329OALi9pAR2DjgI121hgFQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzMTg5YTNlLTEwNTMtNDliMC04OTFkLWIzMTViZjNhODk5ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA2bTANBgkqhkiG9w0BAQsFAAOCAQEAJldgmTfgyPvCAfxPgT5QG+iVBr3n hPdCu1SwQqVmZ2NYjaQrMjg4fccVUowX4AZuHtCY0YAvb8LYEuG+3k0qmwiCHon9 ps64aZtLQ9veHqjDYTyKg79sdG1QwuB1JnBE5dJWzb45l8N8n8z6Vv2pvc2eXc6k HAoJg9DF3z+JPdPzYkCRZwFAlFPb1BXHUPMJT4R0XwlD2NMlL9YRz+Qihh5GTfTP plTi/hCIojcAjtcTZWo6D97zMUxsao74Y51enazPqN1pKJq//DOCICTJN8YRRxo9 yr0VWoDCV9xqGyzN2ZRlP5pQQ7sMdjYENOSGvtlu6BVC0QzMzieijsbR6g== -----END CERTIFICATE-----Generated at Mon Mar 2 00:10:46 2026 by rpki-client