$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa File: a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa (raw, json) Hash identifier: TH9DNIJ0+xF5AyQlmDGmVPOJOZHqNGD8dotBCnXel5c= Subject key identifier: B4:9D:00:08:9B:CB:F6:23:6B:6D:DB:6B:29:B0:32:6E:D0:5A:13:5F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0E98DA312FB0E86645D85EFD8B0A28821E670BEB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa Signing time: Tue 24 Feb 2026 02:40:41 +0000 ROA not before: Tue 24 Feb 2026 02:40:41 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.24.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:98:da:31:2f:b0:e8:66:45:d8:5e:fd:8b:0a:28:82:1e:67:0b:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:40:41 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=5120d99524a43e17f5fc4c8a2ad863e9b5b941414440cd0e050af4cbb84ba91e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:11:8d:1e:0e:87:aa:c7:f1:98:54:14:79:f4: f8:fa:e3:8d:1e:c0:ad:43:b1:9b:9f:2f:d4:ee:fe: bb:52:2f:49:35:dc:d9:76:0f:b1:67:1c:69:6d:1c: bf:84:d5:f3:58:aa:4f:31:72:83:66:53:58:05:11: f7:c9:76:e6:d7:73:17:21:f3:5c:8a:98:5e:45:02: 6f:0c:f9:9d:8d:5c:b2:a4:89:fc:12:34:94:5a:86: 46:ab:15:2c:51:d0:a4:35:bf:4e:cf:cd:88:35:c8: aa:ab:a8:8b:05:9e:f4:2f:41:82:19:27:6a:db:ce: d4:95:76:00:71:60:5c:46:f8:5a:95:f4:b7:81:7d: a0:d9:90:10:89:2d:84:5b:0b:2b:07:90:b1:ec:7a: ed:17:95:75:89:85:ea:e9:3a:8b:28:ee:be:21:48: 3a:7c:22:42:11:5a:fa:ca:5e:f4:11:63:33:d5:47: b0:cb:93:e8:d4:39:a5:77:8e:22:5b:ef:6f:6f:49: 84:3f:00:ec:88:c0:13:4a:1c:01:3f:af:5d:07:10: b7:53:62:00:74:44:15:2a:59:db:08:3c:d8:5a:0e: 11:6e:a3:e0:73:4f:6d:99:8e:7e:c7:b8:e3:1e:f5: bd:de:a0:87:34:26:01:3e:f1:0e:69:36:bb:ef:ce: be:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:9D:00:08:9B:CB:F6:23:6B:6D:DB:6B:29:B0:32:6E:D0:5A:13:5F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a5a2f6a8-3e69-4d87-82a9-ab06bfa8dc23.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.24.0.0/15 Signature Algorithm: sha256WithRSAEncryption a5:bc:b0:c9:bd:e5:1d:2e:ab:07:f0:1b:ff:a9:93:ef:2a:a4: 7e:bf:38:90:e6:a3:0a:7b:ef:5e:29:cd:45:06:7b:6e:83:7c: 2f:a8:ba:28:d2:3f:9c:51:40:64:cf:93:ed:76:43:74:65:62: e0:13:00:ae:48:39:85:c0:c6:87:b4:92:92:08:d7:e7:b1:81: 5b:f4:c1:a6:76:83:51:f6:20:0f:88:7a:b9:1b:43:0a:d7:e2: e0:01:19:96:13:db:20:6f:2f:fa:dc:4b:e7:7c:d4:01:7b:1f: ad:ff:c6:d1:f9:ab:43:cc:55:60:05:22:90:90:25:54:d5:18: 17:f4:e2:35:fc:6e:0a:ac:ca:7d:d6:15:e6:53:32:71:93:1a: 10:79:55:7d:d6:0a:c5:8c:a8:f5:39:12:40:98:90:95:fa:10: 50:b8:ee:d8:e3:86:82:95:75:f3:3d:7f:1f:06:dd:d2:f5:a4: 7b:be:c2:0e:22:6e:b7:ee:af:07:1e:56:71:e2:9c:ee:95:1b: fe:9f:75:c6:5c:11:11:c6:30:98:cc:c9:93:b5:ae:0d:3e:cc: d9:0c:4e:c2:63:b8:c3:ea:ac:e6:7f:0c:e9:bd:ad:5a:ad:75: 25:d0:ee:45:49:e3:9b:e2:0b:c5:56:8c:73:47:12:f3:f9:f0: f9:35:1c:3e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUDpjaMS+w6GZF2F79iwoogh5nC+swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDI0MDQxWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MTIwZDk5NTI0YTQzZTE3ZjVmYzRjOGEyYWQ4NjNlOWI1 Yjk0MTQxNDQ0MGNkMGUwNTBhZjRjYmI4NGJhOTFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5EY0eDoeqx/GYVBR59Pj6440ewK1DsZufL9Tu/rtSL0k1 3Nl2D7FnHGltHL+E1fNYqk8xcoNmU1gFEffJdubXcxch81yKmF5FAm8M+Z2NXLKk ifwSNJRahkarFSxR0KQ1v07PzYg1yKqrqIsFnvQvQYIZJ2rbztSVdgBxYFxG+FqV 9LeBfaDZkBCJLYRbCysHkLHseu0XlXWJherpOoso7r4hSDp8IkIRWvrKXvQRYzPV R7DLk+jUOaV3jiJb729vSYQ/AOyIwBNKHAE/r10HELdTYgB0RBUqWdsIPNhaDhFu o+BzT22Zjn7HuOMe9b3eoIc0JgE+8Q5pNrvvzr5xAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUtJ0ACJvL9iNrbdtrKbAybtBaE18wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E1YTJmNmE4LTNlNjktNGQ4Ny04MmE5LWFiMDZiZmE4ZGMyMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQGDANBgkqhkiG9w0BAQsFAAOCAQEApbywyb3lHS6rB/Ab/6mT7yqkfr84 kOajCnvvXinNRQZ7boN8L6i6KNI/nFFAZM+T7XZDdGVi4BMArkg5hcDGh7SSkgjX 57GBW/TBpnaDUfYgD4h6uRtDCtfi4AEZlhPbIG8v+txL53zUAXsfrf/G0fmrQ8xV YAUikJAlVNUYF/TiNfxuCqzKfdYV5lMycZMaEHlVfdYKxYyo9TkSQJiQlfoQULju 2OOGgpV18z1/Hwbd0vWke77CDiJut+6vBx5WceKc7pUb/p91xlwREcYwmMzJk7Wu DT7M2QxOwmO4w+qs5n8M6b2tWq11JdDuRUnjm+ILxVaMc0cS8/nw+TUcPg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:11 2026 by rpki-client