$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a78ff198-e6dd-430d-9225-4f016327415c.roa File: a78ff198-e6dd-430d-9225-4f016327415c.roa (raw, json) Hash identifier: 7bV9ltM349IREKLwioZ/hCwjRqKHnqkgBrImtB72gdc= Subject key identifier: 5F:CA:DA:E8:A3:7C:88:05:C3:E7:84:CE:2C:E0:C4:2A:1B:01:28:C4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A936738CD6E7F4B168624393E6B7C03ABD21C94 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a78ff198-e6dd-430d-9225-4f016327415c.roa Signing time: Sat 14 Feb 2026 00:20:42 +0000 ROA not before: Sat 14 Feb 2026 00:20:42 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.129.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:93:67:38:cd:6e:7f:4b:16:86:24:39:3e:6b:7c:03:ab:d2:1c:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 14 00:20:42 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=77f81e38f7f12dd885cf33960412a651b8ea597fc4127395f00d985096d84717, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:30:5d:b6:e6:df:54:3b:5c:87:47:7a:c3:bb: 29:f9:1f:7f:9b:d2:f7:f3:9d:46:2d:a5:30:85:52: 0e:e3:c5:e9:6a:90:b2:fd:92:21:1c:a0:ce:2a:54: ec:6c:bf:45:f1:79:3c:52:93:c0:b5:f6:f4:94:b6: 80:d1:a0:b9:52:bd:ba:ed:20:e0:17:fd:d3:33:5b: 0a:ca:3b:98:ef:12:79:85:c2:cd:fa:bd:f4:6b:d7: 12:1d:e1:af:0e:c8:62:13:9f:a6:97:e6:28:d4:a4: da:df:fe:eb:4e:1c:f5:2e:c3:5c:49:b9:1f:0b:7d: 5f:fc:14:fe:fe:61:f1:6b:04:47:e4:d7:62:2d:81: 38:f3:f3:ae:96:dc:c8:80:1c:0f:76:e7:2b:d3:31: 10:7f:4c:32:f8:5f:47:2a:80:ca:90:51:1f:ac:4e: 9e:be:b6:5b:06:2e:e3:c0:c8:3d:87:1d:3f:27:a6: 19:17:55:78:55:4d:5f:9f:bf:97:41:66:83:89:f0: d6:ec:b1:22:70:40:05:ca:5d:94:69:1e:08:dd:6b: 2e:d1:a2:78:39:cd:9a:16:df:f3:58:02:57:94:86: f2:03:63:74:35:eb:d3:65:ff:b1:a6:71:7b:0e:ba: be:2c:4e:6f:91:73:1e:22:b5:bc:41:17:4e:f1:af: f3:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:CA:DA:E8:A3:7C:88:05:C3:E7:84:CE:2C:E0:C4:2A:1B:01:28:C4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a78ff198-e6dd-430d-9225-4f016327415c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.129.0.0/16 Signature Algorithm: sha256WithRSAEncryption 02:02:19:5b:42:b9:6e:1c:63:cc:28:9c:76:ba:de:79:a0:06: e9:08:a2:22:60:25:c8:ae:9a:7f:ac:cc:8b:56:94:a1:7e:6f: e7:6e:71:28:9e:b4:f7:99:26:f7:80:1f:e2:8a:f3:ac:a4:73: 25:c5:ae:bd:06:00:c4:2e:b0:b7:e8:80:bc:ba:20:32:0d:c9: bd:22:8b:e1:df:42:06:df:c6:b6:c8:a3:41:77:e9:4d:a4:27: 77:ef:6b:cb:f1:56:e3:fd:e8:8a:f4:98:b2:48:fd:f5:84:dd: 92:bc:0e:51:0f:8a:f6:f5:c5:4e:ad:ad:19:78:4b:f9:7b:7b: 16:8f:91:f5:4c:73:7e:89:47:1e:76:52:d2:2a:07:98:ac:4c: 57:57:b4:eb:d3:72:02:35:4f:66:2a:3e:db:80:23:1b:31:36: fc:7f:71:e3:63:9a:72:9c:29:60:65:8b:cc:13:bf:00:e3:f8: 21:3b:51:f3:4f:7f:65:4d:d0:4f:2d:41:c2:ac:99:3b:d8:26: 3c:30:f2:ce:df:b3:d7:2b:a9:ad:f0:95:c5:e1:0b:74:6e:1c: 41:55:62:9c:53:40:86:e3:a7:b2:eb:c7:44:c6:00:87:f4:43: 0e:12:96:e3:c9:fc:2c:76:b1:d8:b4:08:e7:78:b9:42:47:54: ef:b0:78:be -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWpNnOM1uf0sWhiQ5Pmt8A6vSHJQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE0MDAyMDQyWhcNMjYwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3N2Y4MWUzOGY3ZjEyZGQ4ODVjZjMzOTYwNDEyYTY1MWI4 ZWE1OTdmYzQxMjczOTVmMDBkOTg1MDk2ZDg0NzE3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJMF225t9UO1yHR3rDuyn5H3+b0vfznUYtpTCFUg7jxelq kLL9kiEcoM4qVOxsv0XxeTxSk8C19vSUtoDRoLlSvbrtIOAX/dMzWwrKO5jvEnmF ws36vfRr1xId4a8OyGITn6aX5ijUpNrf/utOHPUuw1xJuR8LfV/8FP7+YfFrBEfk 12ItgTjz866W3MiAHA925yvTMRB/TDL4X0cqgMqQUR+sTp6+tlsGLuPAyD2HHT8n phkXVXhVTV+fv5dBZoOJ8NbssSJwQAXKXZRpHgjday7Rong5zZoW3/NYAleUhvID Y3Q169Nl/7GmcXsOur4sTm+Rcx4itbxBF07xr/ODAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUX8ra6KN8iAXD54TOLODEKhsBKMQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3OGZmMTk4LWU2ZGQtNDMwZC05MjI1LTRmMDE2MzI3NDE1Yy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4gTANBgkqhkiG9w0BAQsFAAOCAQEAAgIZW0K5bhxjzCicdrreeaAG6Qii ImAlyK6af6zMi1aUoX5v525xKJ6095km94Af4orzrKRzJcWuvQYAxC6wt+iAvLog Mg3JvSKL4d9CBt/GtsijQXfpTaQnd+9ry/FW4/3oivSYskj99YTdkrwOUQ+K9vXF Tq2tGXhL+Xt7Fo+R9UxzfolHHnZS0ioHmKxMV1e069NyAjVPZio+24AjGzE2/H9x 42OacpwpYGWLzBO/AOP4ITtR809/ZU3QTy1BwqyZO9gmPDDyzt+z1yuprfCVxeEL dG4cQVVinFNAhuOnsuvHRMYAh/RDDhKW48n8LHax2LQI53i5QkdU77B4vg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:01 2026 by rpki-client