$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7c489b0-36dd-4531-842b-acab12d64317.roa File: a7c489b0-36dd-4531-842b-acab12d64317.roa (raw, json) Hash identifier: OLqhHCjUfmgNp+cVHX5Yucluz76HsLfJFhxXucuFUGw= Subject key identifier: 13:DB:2A:91:98:C6:A4:AA:55:C8:9A:48:F5:23:89:C7:79:03:E0:31 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 06A68C123EEC59576BD42449D729CF99B421B835 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7c489b0-36dd-4531-842b-acab12d64317.roa Signing time: Fri 13 Feb 2026 00:31:28 +0000 ROA not before: Fri 13 Feb 2026 00:31:28 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.64.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:a6:8c:12:3e:ec:59:57:6b:d4:24:49:d7:29:cf:99:b4:21:b8:35 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:31:28 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=bd558879ed8c5f063948ec34fef06ff7e5adc58a4f68c12a71f3cbddfde82163, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:15:51:10:09:4f:28:9e:be:8e:19:81:87:2f: fe:49:96:3b:e6:d2:13:e0:0a:68:12:ce:f1:ce:1b: cd:08:59:43:93:70:99:85:3a:11:d8:df:d1:c0:9c: 0a:60:b9:d8:b0:57:e5:8b:c1:f9:c2:3c:2d:a6:c1: f3:c9:87:d7:c9:c8:bd:16:46:cd:7e:22:ae:4b:70: ad:d0:51:8c:f1:39:f2:96:f0:bb:d2:0c:67:33:04: 17:e6:8e:37:d5:78:8d:13:7b:d5:48:aa:38:59:5b: 1b:68:a3:1f:a6:e1:90:97:70:d5:f3:c3:74:45:1d: e6:b2:48:ed:54:96:ba:af:d3:6b:2e:2b:f6:72:a1: bb:b8:d4:67:07:ed:eb:0b:17:21:61:6f:22:af:86: 06:f5:4d:55:49:dd:7d:3e:57:da:86:89:65:aa:55: 7a:43:e2:27:93:4b:2d:66:6f:c2:3b:2e:0e:20:31: 17:02:18:b2:2e:8c:4b:fa:ec:f0:01:01:9e:8a:9c: 0b:ca:aa:26:a5:13:83:4f:f9:79:ce:46:df:cc:e5: 57:67:b7:aa:23:c2:4c:b1:72:fa:96:35:d5:8c:22: ef:67:27:09:44:99:99:a0:7a:d7:f2:5a:28:c9:3c: 01:fe:21:e2:97:01:ef:7b:92:c6:90:c5:73:63:b9: cd:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:DB:2A:91:98:C6:A4:AA:55:C8:9A:48:F5:23:89:C7:79:03:E0:31 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/a7c489b0-36dd-4531-842b-acab12d64317.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.64.0/20 Signature Algorithm: sha256WithRSAEncryption 77:e4:de:d4:bd:dc:15:a1:54:d2:38:93:81:1a:82:4a:eb:98: 79:fd:47:df:2a:e3:a0:49:01:18:b3:ed:73:d5:99:ef:79:9d: 7d:c0:c0:6d:62:8d:af:31:85:86:69:f5:29:f5:cb:f2:34:54: e0:68:14:4a:4d:60:0d:c8:95:fe:7b:a1:94:73:5e:b9:82:29: c0:59:8a:b0:c7:5c:a9:98:10:de:df:d9:85:ea:7c:88:59:0a: 8c:1d:e4:e4:27:14:c4:3a:db:39:b5:51:55:7a:30:cd:63:f4: 6b:8e:46:8e:e8:f0:14:a5:95:d7:13:1b:3a:d8:c9:f8:fb:aa: 47:a1:ae:3e:7e:f5:2b:b2:e6:9f:aa:ea:a3:2d:e8:95:78:e8: 4f:46:f0:b2:01:2f:a5:26:a8:9f:34:05:06:ff:64:0e:fc:a2: 4f:49:ab:c9:5b:5c:36:d1:47:f6:b8:58:64:d7:06:77:30:cf: dc:35:69:21:7a:b3:90:f7:39:1c:95:21:38:f4:4f:a5:0b:4e: 73:fb:a7:b7:0b:09:07:fd:60:32:b5:0f:54:04:39:fe:3b:52: be:5d:6d:92:7d:86:d9:b6:d7:39:88:52:96:56:b3:d9:e6:41: dd:5f:59:b0:e0:c4:f6:f1:83:1e:4e:89:f3:2d:58:20:34:5c: 24:19:ad:66 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBqaMEj7sWVdr1CRJ1ynPmbQhuDUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAzMTI4WhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDU1ODg3OWVkOGM1ZjA2Mzk0OGVjMzRmZWYwNmZmN2U1 YWRjNThhNGY2OGMxMmE3MWYzY2JkZGZkZTgyMTYzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2FVEQCU8onr6OGYGHL/5Jljvm0hPgCmgSzvHOG80IWUOT cJmFOhHY39HAnApgudiwV+WLwfnCPC2mwfPJh9fJyL0WRs1+Iq5LcK3QUYzxOfKW 8LvSDGczBBfmjjfVeI0Te9VIqjhZWxtoox+m4ZCXcNXzw3RFHeaySO1Ulrqv02su K/Zyobu41GcH7esLFyFhbyKvhgb1TVVJ3X0+V9qGiWWqVXpD4ieTSy1mb8I7Lg4g MRcCGLIujEv67PABAZ6KnAvKqialE4NP+XnORt/M5Vdnt6ojwkyxcvqWNdWMIu9n JwlEmZmgetfyWijJPAH+IeKXAe97ksaQxXNjuc1nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUE9sqkZjGpKpVyJpI9SOJx3kD4DEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2E3YzQ4OWIwLTM2ZGQtNDUzMS04NDJiLWFjYWIxMmQ2NDMxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBARM30AwDQYJKoZIhvcNAQELBQADggEBAHfk3tS93BWhVNI4k4EagkrrmHn9 R98q46BJARiz7XPVme95nX3AwG1ija8xhYZp9Sn1y/I0VOBoFEpNYA3Ilf57oZRz XrmCKcBZirDHXKmYEN7f2YXqfIhZCowd5OQnFMQ62zm1UVV6MM1j9GuORo7o8BSl ldcTGzrYyfj7qkehrj5+9Suy5p+q6qMt6JV46E9G8LIBL6UmqJ80BQb/ZA78ok9J q8lbXDbRR/a4WGTXBncwz9w1aSF6s5D3ORyVITj0T6ULTnP7p7cLCQf9YDK1D1QE Of47Ur5dbZJ9htm21zmIUpZWs9nmQd1fWbDgxPbxgx5OifMtWCA0XCQZrWY= -----END CERTIFICATE-----Generated at Mon Mar 2 00:15:41 2026 by rpki-client