$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a78c2cf7-6f29-4895-8a2d-8271a22f1f21.roa File: a78c2cf7-6f29-4895-8a2d-8271a22f1f21.roa (raw, json) Hash identifier: EktYNJ5QpKtz7HE6JnJJNOymHzCToNVr5C8mvVUwIww= Subject key identifier: 0C:40:92:52:C5:E3:A0:5A:B9:07:20:65:18:39:70:B6:96:66:3F:A6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2DC23A29A8F06CFCA41C24C32A1B6348CC74074A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a78c2cf7-6f29-4895-8a2d-8271a22f1f21.roa Signing time: Fri 13 Feb 2026 00:10:30 +0000 ROA not before: Fri 13 Feb 2026 00:10:30 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 166.117.48.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:c2:3a:29:a8:f0:6c:fc:a4:1c:24:c3:2a:1b:63:48:cc:74:07:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:10:30 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=ccda9237f0f8a3f1fd0b76b51ddcc191dd00db8bf0dfb0b26a4237b8f7520597, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6a:f3:b0:76:bf:50:ec:44:c9:6a:fe:6a:ba: 34:5f:90:7b:cc:16:93:f0:35:80:4a:f8:52:4d:7d: 1c:94:9c:b9:d8:60:a5:0a:65:b1:52:f3:ab:63:19: 3e:6e:a2:e3:48:4d:09:04:bc:7b:1d:1b:fd:96:5d: af:80:2d:77:b0:a2:5e:47:7d:60:63:80:2a:00:8d: 3c:af:b5:e0:a6:5a:19:b8:37:22:73:55:80:c5:4d: f4:eb:9c:05:d3:50:48:50:55:9f:46:1f:f3:a1:b4: 53:a8:93:79:c3:8f:aa:7a:e1:17:18:82:b7:f4:4c: 87:35:a2:65:f1:e7:99:28:3b:3f:cc:cc:7d:6d:96: 96:70:60:a8:30:7a:fa:d5:9d:f0:ad:0d:50:28:50: 31:93:2a:26:e9:36:d0:0f:04:c4:a1:87:2f:cf:12: ca:63:b6:3d:29:67:e7:b6:55:8d:d9:33:95:4a:a5: 1c:fa:f8:09:14:14:94:eb:49:fa:39:79:c5:97:21: 4a:a1:bf:76:c1:72:af:02:fa:c0:cd:63:2f:fe:5f: 1f:03:78:c4:6a:47:49:e2:18:95:0d:14:c7:56:ec: 08:9f:1f:06:ff:2b:34:0e:18:de:40:ce:7d:e8:62: e3:27:24:50:de:81:58:81:8d:43:fa:2d:dd:e9:46: 12:11 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:40:92:52:C5:E3:A0:5A:B9:07:20:65:18:39:70:B6:96:66:3F:A6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a78c2cf7-6f29-4895-8a2d-8271a22f1f21.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 166.117.48.0/20 Signature Algorithm: sha256WithRSAEncryption 8e:47:ba:46:2d:5b:e3:73:9b:dc:86:ee:85:45:59:ba:ee:50: 4e:6d:b3:02:02:14:57:42:c9:f1:75:95:b1:57:62:3f:d6:e5: c8:2f:22:6f:1f:65:0e:21:18:40:3e:ab:fc:8c:2a:06:87:b4: 7f:51:c3:85:d7:01:18:4a:3f:a9:cc:73:23:00:21:f4:e7:f7: 5f:e8:f8:d9:71:4f:0f:c1:82:72:0e:81:04:ed:67:3c:67:52: a7:1c:bd:7d:70:4f:0a:40:cd:76:38:d5:3e:02:ee:e2:92:d8: f3:a0:de:e7:cb:10:a3:eb:29:2e:d6:3b:8b:02:0d:5e:56:f6: c2:7f:b0:f3:b6:cc:ef:67:78:ed:28:29:6e:5a:11:50:fe:41: 8c:70:e9:22:fe:7f:60:34:1d:77:c4:b8:a5:a5:0f:7d:17:1d: f2:d3:85:0f:9e:08:74:f5:cf:29:36:d3:e4:a5:a8:f0:df:75: 4e:b3:73:b5:78:a7:d8:68:7f:ab:4c:36:d3:85:c3:03:d7:ac: 57:12:2f:4d:b7:42:57:37:96:8b:14:6b:39:fe:a7:2b:74:e2: b1:20:b4:ac:a1:b9:e1:74:c4:12:f9:5a:e1:56:a5:4f:1d:bc: 57:34:8a:2a:1e:70:2b:b9:4a:88:84:30:96:d4:02:01:19:9f: 56:7c:72:6f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIULcI6KajwbPykHCTDKhtjSMx0B0owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAxMDMwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BjY2RhOTIzN2YwZjhhM2YxZmQwYjc2YjUxZGRjYzE5MWRk MDBkYjhiZjBkZmIwYjI2YTQyMzdiOGY3NTIwNTk3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxavOwdr9Q7ETJav5qujRfkHvMFpPwNYBK+FJNfRyUnLnY YKUKZbFS86tjGT5uouNITQkEvHsdG/2WXa+ALXewol5HfWBjgCoAjTyvteCmWhm4 NyJzVYDFTfTrnAXTUEhQVZ9GH/OhtFOok3nDj6p64RcYgrf0TIc1omXx55koOz/M zH1tlpZwYKgwevrVnfCtDVAoUDGTKibpNtAPBMShhy/PEspjtj0pZ+e2VY3ZM5VK pRz6+AkUFJTrSfo5ecWXIUqhv3bBcq8C+sDNYy/+Xx8DeMRqR0niGJUNFMdW7Aif Hwb/KzQOGN5Azn3oYuMnJFDegViBjUP6Ld3pRhIRAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDECSUsXjoFq5ByBlGDlwtpZmP6YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3OGMyY2Y3LTZmMjktNDg5NS04YTJkLTgyNzFhMjJmMWYyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBASmdTAwDQYJKoZIhvcNAQELBQADggEBAI5HukYtW+Nzm9yG7oVFWbruUE5t swICFFdCyfF1lbFXYj/W5cgvIm8fZQ4hGEA+q/yMKgaHtH9Rw4XXARhKP6nMcyMA IfTn91/o+NlxTw/BgnIOgQTtZzxnUqccvX1wTwpAzXY41T4C7uKS2POg3ufLEKPr KS7WO4sCDV5W9sJ/sPO2zO9neO0oKW5aEVD+QYxw6SL+f2A0HXfEuKWlD30XHfLT hQ+eCHT1zyk20+SlqPDfdU6zc7V4p9hof6tMNtOFwwPXrFcSL023Qlc3losUazn+ pyt04rEgtKyhueF0xBL5WuFWpU8dvFc0iioecCu5SoiEMJbUAgEZn1Z8cm8= -----END CERTIFICATE-----Generated at Mon Mar 2 03:06:58 2026 by rpki-client