$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab17b00c-5682-4262-aca5-543d0e297451.roa File: ab17b00c-5682-4262-aca5-543d0e297451.roa (raw, json) Hash identifier: LQYbH6bOxsrQd7ws9nG1hVM6wnMnlXShLnVlrMtUisQ= Subject key identifier: B3:75:6C:F1:8A:A1:CF:E7:BC:1D:01:C5:B8:91:29:DC:32:DE:13:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 280235B1B180EC2FF386DC496D594E5FD02A9994 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab17b00c-5682-4262-aca5-543d0e297451.roa Signing time: Sat 21 Feb 2026 01:11:02 +0000 ROA not before: Sat 21 Feb 2026 01:11:02 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.216.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:02:35:b1:b1:80:ec:2f:f3:86:dc:49:6d:59:4e:5f:d0:2a:99:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:11:02 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=dd6b49443db96e49a4e02bfa9c5846679c1802bda61ec054eaf0f61fc691af84, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:99:be:d0:43:13:69:13:ce:ff:c6:04:8f:ef: 09:8c:92:de:8b:e9:93:b0:ee:2c:0e:54:76:bd:cc: 2f:2a:91:39:ce:d9:c7:0b:e9:3c:c5:26:ae:bb:71: 7e:3f:4c:c7:81:1b:1d:9a:12:0c:b3:8b:94:bc:2d: 56:79:fd:07:6f:bf:4e:7f:8e:c7:e6:a2:90:16:60: e9:e6:11:67:53:e4:06:fa:0a:1a:17:37:d5:f9:d9: 7e:a0:b2:74:c0:12:56:67:e0:7d:00:ce:d3:23:a7: 86:da:46:de:d6:36:2d:a2:f2:c9:d2:c9:23:bb:b1: ef:38:a8:a4:26:6d:ae:f4:27:ce:d8:63:88:0e:b5: 33:69:45:2b:57:ed:a6:86:8b:40:4f:e3:0c:e6:a3: b9:38:d8:d2:ae:d0:19:ac:48:d0:7c:f0:b8:5a:60: 71:d9:29:de:4c:62:0a:f2:34:d6:0c:b6:6d:f3:4c: 69:0b:8c:df:8d:3d:ea:ae:92:b5:b9:99:84:c7:22: f1:82:a2:37:c9:9c:49:39:59:bd:1d:c7:ff:25:83: 61:e9:ce:21:4c:ea:dc:15:ed:37:c1:c4:d8:85:03: 8b:3c:a3:c8:92:36:d2:f9:b9:25:30:dd:e1:51:37: 3c:e3:4f:b1:7f:79:aa:48:79:f2:db:d0:d8:7c:bf: c9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:75:6C:F1:8A:A1:CF:E7:BC:1D:01:C5:B8:91:29:DC:32:DE:13:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab17b00c-5682-4262-aca5-543d0e297451.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.216.0/24 Signature Algorithm: sha256WithRSAEncryption 94:50:82:8f:c9:33:f3:7d:66:86:60:d4:e9:bb:89:79:65:24: 4c:e8:8e:d8:54:9b:ff:16:3c:21:64:d5:84:92:ad:23:9d:ec: f6:5b:9e:cf:49:6f:db:6e:c4:b1:20:c3:13:74:15:3a:10:0c: c5:15:c6:ca:a2:44:36:4a:57:ff:5f:f4:ae:d3:a1:88:08:f7: b5:48:5c:f8:d6:36:6a:bb:d2:d5:c9:f8:92:83:52:57:9f:b0: 4b:df:ee:70:a5:36:b2:44:14:9d:99:e7:38:09:0e:2e:fd:20: bb:08:48:57:01:4e:b5:6e:33:cd:e0:90:32:31:25:f4:c1:08: 3b:8e:34:cd:85:77:9a:0e:ad:88:35:d2:0e:55:ef:6a:8c:54: 8c:78:ad:00:f3:e2:c9:72:7c:48:6b:83:a2:4f:f6:6b:7d:49: 27:8a:48:8f:8a:e9:b8:f5:20:06:60:3f:57:a4:28:da:57:de: ac:3a:79:d0:d0:ff:ca:c9:0c:2c:e9:83:96:46:ac:61:6a:92: 04:ba:7b:99:db:57:a9:30:8b:4f:bc:e7:98:01:1e:41:fa:bf: cd:6d:31:bf:ea:41:ff:cb:d7:23:7e:bd:be:af:b7:db:6a:08: 1e:6a:e8:00:7d:46:69:ae:24:9e:c8:62:18:cd:11:dc:ec:7a: 5f:9e:bb:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKAI1sbGA7C/zhtxJbVlOX9AqmZQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDExMTAyWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZDZiNDk0NDNkYjk2ZTQ5YTRlMDJiZmE5YzU4NDY2Nzlj MTgwMmJkYTYxZWMwNTRlYWYwZjYxZmM2OTFhZjg0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnmb7QQxNpE87/xgSP7wmMkt6L6ZOw7iwOVHa9zC8qkTnO 2ccL6TzFJq67cX4/TMeBGx2aEgyzi5S8LVZ5/Qdvv05/jsfmopAWYOnmEWdT5Ab6 ChoXN9X52X6gsnTAElZn4H0AztMjp4baRt7WNi2i8snSySO7se84qKQmba70J87Y Y4gOtTNpRStX7aaGi0BP4wzmo7k42NKu0BmsSNB88LhaYHHZKd5MYgryNNYMtm3z TGkLjN+NPequkrW5mYTHIvGCojfJnEk5Wb0dx/8lg2HpziFM6twV7TfBxNiFA4s8 o8iSNtL5uSUw3eFRNzzjT7F/eapIefLb0Nh8v8mDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUs3Vs8Yqhz+e8HQHFuJEp3DLeExMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiMTdiMDBjLTU2ODItNDI2Mi1hY2E1LTU0M2QwZTI5NzQ1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsNgwDQYJKoZIhvcNAQELBQADggEBAJRQgo/JM/N9ZoZg1Om7iXllJEzo jthUm/8WPCFk1YSSrSOd7PZbns9Jb9tuxLEgwxN0FToQDMUVxsqiRDZKV/9f9K7T oYgI97VIXPjWNmq70tXJ+JKDUlefsEvf7nClNrJEFJ2Z5zgJDi79ILsISFcBTrVu M83gkDIxJfTBCDuONM2Fd5oOrYg10g5V72qMVIx4rQDz4slyfEhrg6JP9mt9SSeK SI+K6bj1IAZgP1ekKNpX3qw6edDQ/8rJDCzpg5ZGrGFqkgS6e5nbV6kwi0+855gB HkH6v81tMb/qQf/L1yN+vb6vt9tqCB5q6AB9RmmuJJ7IYhjNEdzsel+euyg= -----END CERTIFICATE-----Generated at Mon Mar 2 00:24:10 2026 by rpki-client