$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa File: a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa (raw, json) Hash identifier: gk12Xrzq2TaBSaScS70OPX72vwvwAsMETuVunJXRESk= Subject key identifier: 6E:B2:54:0A:D3:C6:72:92:D7:9F:7C:3A:90:4E:7C:33:91:04:34:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0CF888C67D3EFACCDD9BBD90FFFD78B0C331BA81 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa Signing time: Tue 10 Feb 2026 00:10:10 +0000 ROA not before: Tue 10 Feb 2026 00:10:10 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.191.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:f8:88:c6:7d:3e:fa:cc:dd:9b:bd:90:ff:fd:78:b0:c3:31:ba:81 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:10:10 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=f1cd50c7ab7e4425289d50dd98113bd4467fd93ba98642e75856c57b2d45abfa, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1e:c9:bb:8c:32:5d:e2:e6:26:70:ab:3e:b7: 88:a9:c6:89:cb:07:f3:b4:c4:e4:a4:dd:77:08:86: c8:be:6c:c9:ea:08:e3:08:61:b6:b9:88:bb:83:f6: 06:c5:44:33:62:6b:8a:59:c3:c3:28:3b:22:03:7e: 15:b3:47:c2:8d:4d:dc:ec:ff:77:88:ca:8d:a8:3a: a0:46:51:01:c2:0b:c6:3a:53:24:30:4e:34:2d:50: 39:29:06:f2:ee:75:f3:c6:60:87:9e:c0:e7:78:38: 87:7f:59:e2:66:51:2e:80:7a:a1:1b:e8:91:73:b2: 50:5e:55:0a:cf:da:d6:49:82:8a:96:a0:fc:d0:29: f0:c9:10:2a:1d:fe:9b:df:07:99:c9:3f:de:19:1f: b9:5a:a7:5b:dd:9a:a2:0a:bd:57:a2:f3:eb:1f:95: f2:e4:4e:df:e2:d1:59:fe:17:8e:4b:08:0e:2b:d4: 49:85:44:88:db:2b:4c:b5:9b:79:28:ac:91:a8:a6: d1:1a:ee:4e:e9:3b:ec:f2:83:1a:07:51:fa:72:bb: 36:ef:44:c1:35:89:c9:d5:d0:6a:f4:c2:16:5d:22: f4:39:92:90:02:13:98:e4:3d:57:f6:a0:78:17:cd: 8c:81:cf:a4:f3:e3:37:bd:e5:54:ca:ce:76:ca:a7: ab:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:B2:54:0A:D3:C6:72:92:D7:9F:7C:3A:90:4E:7C:33:91:04:34:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a3275665-17d9-4bb2-8f2d-df1421f7adfe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.191.0/24 Signature Algorithm: sha256WithRSAEncryption 00:f1:7a:d1:57:f6:4e:8d:b4:2d:29:d9:94:6b:51:61:75:0e: 2c:0a:20:84:c3:a0:5b:bf:fd:26:b3:41:49:ea:89:d1:ba:08: 7d:cd:69:41:1b:f8:cf:be:2e:0e:4a:da:44:24:b0:dc:8f:77: 15:de:ad:e1:aa:79:40:c6:3b:ef:aa:9d:71:12:69:0b:5f:df: 07:7a:1f:81:b9:e5:d4:44:f9:8f:8d:b8:a1:e1:ae:f4:a8:d2: 40:05:b5:58:79:08:de:33:e7:86:e0:2a:9f:b0:5d:c8:84:de: 25:72:09:3d:dd:fc:d5:41:d8:da:5c:61:97:7e:79:74:fd:9c: 9d:92:a9:b9:1c:ca:97:b3:a0:f1:7f:c0:73:af:dc:e9:a3:78: 85:60:7f:f1:3b:20:c9:b3:ca:1a:41:29:d2:13:2e:7b:ee:05: 94:a1:df:e9:a4:c7:ec:44:0f:cb:2f:fc:36:37:30:f9:14:aa: 0f:8b:3d:cf:ae:ed:e5:69:09:73:25:39:60:90:6e:20:9c:58: 01:f1:84:20:f8:47:70:9f:e2:f2:8d:e9:4e:22:c4:53:19:c2: b4:22:47:f9:43:7c:64:5e:87:59:b0:a7:80:65:f4:05:20:82: c5:32:d3:13:62:ee:6d:dd:46:93:4e:09:7e:9a:79:79:89:85: a8:93:25:46 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDPiIxn0++szdm72Q//14sMMxuoEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAxMDEwWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BmMWNkNTBjN2FiN2U0NDI1Mjg5ZDUwZGQ5ODExM2JkNDQ2 N2ZkOTNiYTk4NjQyZTc1ODU2YzU3YjJkNDVhYmZhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDVHsm7jDJd4uYmcKs+t4ipxonLB/O0xOSk3XcIhsi+bMnq COMIYba5iLuD9gbFRDNia4pZw8MoOyIDfhWzR8KNTdzs/3eIyo2oOqBGUQHCC8Y6 UyQwTjQtUDkpBvLudfPGYIeewOd4OId/WeJmUS6AeqEb6JFzslBeVQrP2tZJgoqW oPzQKfDJECod/pvfB5nJP94ZH7lap1vdmqIKvVei8+sflfLkTt/i0Vn+F45LCA4r 1EmFRIjbK0y1m3korJGoptEa7k7pO+zygxoHUfpyuzbvRME1icnV0Gr0whZdIvQ5 kpACE5jkPVf2oHgXzYyBz6Tz4ze95VTKznbKp6u7AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUbrJUCtPGcpLXn3w6kE58M5EENFUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2EzMjc1NjY1LTE3ZDktNGJiMi04ZjJkLWRmMTQyMWY3YWRmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTb8wDQYJKoZIhvcNAQELBQADggEBAADxetFX9k6NtC0p2ZRrUWF1DiwK IITDoFu//SazQUnqidG6CH3NaUEb+M++Lg5K2kQksNyPdxXereGqeUDGO++qnXES aQtf3wd6H4G55dRE+Y+NuKHhrvSo0kAFtVh5CN4z54bgKp+wXciE3iVyCT3d/NVB 2NpcYZd+eXT9nJ2SqbkcypezoPF/wHOv3OmjeIVgf/E7IMmzyhpBKdITLnvuBZSh 3+mkx+xED8sv/DY3MPkUqg+LPc+u7eVpCXMlOWCQbiCcWAHxhCD4R3Cf4vKN6U4i xFMZwrQiR/lDfGReh1mwp4Bl9AUggsUy0xNi7m3dRpNOCX6aeXmJhaiTJUY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:29 2026 by rpki-client