$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a537444f-9491-4144-a93b-138617032fc0.roa File: a537444f-9491-4144-a93b-138617032fc0.roa (raw, json) Hash identifier: HaUwhO2cp7Y6AV0pgh9Vjgn8+lk8jCWH+5BzwSpnfXs= Subject key identifier: 13:9E:75:80:D8:13:99:50:33:EB:F7:E6:EF:46:51:F6:AA:8B:2C:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E519D62B894F8EFBFA7A51A04FE6BB63B792D6A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a537444f-9491-4144-a93b-138617032fc0.roa Signing time: Tue 10 Feb 2026 00:40:56 +0000 ROA not before: Tue 10 Feb 2026 00:40:56 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.252.106.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:51:9d:62:b8:94:f8:ef:bf:a7:a5:1a:04:fe:6b:b6:3b:79:2d:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:40:56 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=174a4e7aa58a6c7273932b5a1b69e521996abcc7ccf15835ad5bb1be4b672ee5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:25:cc:94:15:6c:0f:9b:87:6f:e8:e6:a8:8a: 3f:7d:5c:bd:df:c0:20:7a:b6:ae:17:dd:86:ea:a3: eb:ae:ae:50:97:2f:26:bf:07:2d:c5:a8:a8:54:4f: 37:e2:da:5b:46:09:e4:20:df:52:fd:c8:6d:1b:7e: dc:b8:b0:85:d3:8e:04:59:f9:d6:84:4d:a9:80:12: 84:a5:f0:57:5f:2d:62:f8:98:1a:b5:67:48:c4:bb: 5f:75:be:2f:81:dd:43:68:7e:be:de:fc:a4:e8:d1: 9e:33:2b:34:d5:22:f7:af:14:e4:1a:bb:14:a7:e9: 1f:a8:b1:38:bf:88:d1:f4:55:af:da:c6:83:c7:3b: 6b:7d:ec:ab:9b:7a:64:a2:49:6d:a8:d4:bd:44:89: 56:52:aa:13:0d:89:b2:68:11:e3:fb:af:45:ec:bc: 5e:d8:27:9f:ba:e4:be:d4:fd:46:e8:79:6b:e7:83: 26:2f:cd:81:aa:9c:f0:b7:ed:0f:c3:28:7e:94:44: d9:eb:e8:6d:91:64:e5:66:ad:e7:5b:66:61:87:c7: c4:7f:29:02:06:6f:a0:b0:8a:48:2c:e3:46:ac:4d: 0e:3b:b9:98:89:dd:0c:70:69:2f:9f:58:c4:06:2d: cb:49:21:42:be:21:d3:f6:f5:c9:e2:22:61:80:bf: 79:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:9E:75:80:D8:13:99:50:33:EB:F7:E6:EF:46:51:F6:AA:8B:2C:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a537444f-9491-4144-a93b-138617032fc0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.252.106.0/24 Signature Algorithm: sha256WithRSAEncryption b6:f4:4a:5c:d2:7c:a4:b5:d4:66:25:08:bd:9d:fb:7f:2a:8a: 4f:60:ce:d2:2c:39:a2:73:b8:2a:08:b4:93:d2:7c:bc:d5:31: be:5a:17:47:84:1e:a1:67:5f:77:43:34:b3:ff:f8:af:8a:84: 15:1a:6a:2e:4d:f3:70:13:3b:f7:69:06:3a:c9:31:91:3f:4b: 83:f9:1e:e5:93:7a:dd:aa:7e:b5:ab:0c:d3:0c:44:fd:18:d5: 8a:34:bf:f6:35:92:68:e9:cf:ba:4e:04:f7:86:fc:16:d5:0e: 73:a9:8b:0a:79:44:fc:2d:ca:f6:48:1a:eb:66:89:00:e1:7c: 37:17:24:54:fc:0e:29:d7:61:4b:81:8f:5a:e2:dc:07:67:b3: 4c:10:4c:b0:f3:d5:05:ce:85:29:00:65:05:f8:70:47:65:5d: 32:a8:9a:4a:6f:a7:32:51:06:df:05:d8:2a:0d:cc:c1:4d:0a: 39:d5:fc:43:b0:49:dc:5d:81:ed:66:27:da:74:36:1b:e2:e9: c7:05:5b:e1:76:0b:c5:d9:f6:8a:64:59:9a:ae:5c:15:27:d8: 61:ab:0c:d5:cc:ac:1d:77:6e:06:b5:1c:a1:89:85:38:24:b9: b4:a3:7f:8f:60:ce:68:45:63:39:0a:cb:a3:34:ad:f0:bd:f4: 58:f8:d2:87 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDlGdYriU+O+/p6UaBP5rtjt5LWowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDA0MDU2WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0AxNzRhNGU3YWE1OGE2YzcyNzM5MzJiNWExYjY5ZTUyMTk5 NmFiY2M3Y2NmMTU4MzVhZDViYjFiZTRiNjcyZWU1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDGJcyUFWwPm4dv6Oaoij99XL3fwCB6tq4X3Ybqo+uurlCX Lya/By3FqKhUTzfi2ltGCeQg31L9yG0bfty4sIXTjgRZ+daETamAEoSl8FdfLWL4 mBq1Z0jEu191vi+B3UNofr7e/KTo0Z4zKzTVIvevFOQauxSn6R+osTi/iNH0Va/a xoPHO2t97KubemSiSW2o1L1EiVZSqhMNibJoEeP7r0XsvF7YJ5+65L7U/UboeWvn gyYvzYGqnPC37Q/DKH6URNnr6G2RZOVmredbZmGHx8R/KQIGb6Cwikgs40asTQ47 uZiJ3QxwaS+fWMQGLctJIUK+IdP29cniImGAv3npAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE551gNgTmVAz6/fm70ZR9qqLLAUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1Mzc0NDRmLTk0OTEtNDE0NC1hOTNiLTEzODYxNzAzMmZjMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABA/GowDQYJKoZIhvcNAQELBQADggEBALb0SlzSfKS11GYlCL2d+38qik9g ztIsOaJzuCoItJPSfLzVMb5aF0eEHqFnX3dDNLP/+K+KhBUaai5N83ATO/dpBjrJ MZE/S4P5HuWTet2qfrWrDNMMRP0Y1Yo0v/Y1kmjpz7pOBPeG/BbVDnOpiwp5RPwt yvZIGutmiQDhfDcXJFT8DinXYUuBj1ri3Adns0wQTLDz1QXOhSkAZQX4cEdlXTKo mkpvpzJRBt8F2CoNzMFNCjnV/EOwSdxdge1mJ9p0Nhvi6ccFW+F2C8XZ9opkWZqu XBUn2GGrDNXMrB13bga1HKGJhTgkubSjf49gzmhFYzkKy6M0rfC99Fj40oc= -----END CERTIFICATE-----Generated at Mon Mar 2 02:06:34 2026 by rpki-client