$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa File: ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa (raw, json) Hash identifier: ENQwU4Bm10h9Jdu4QD2hzpFIVMpuDVYvcnVOB2RqpP8= Subject key identifier: 75:DF:CE:2A:9E:FA:64:B4:A9:D4:C8:4D:92:1B:6C:0D:DF:01:28:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 78B53231EFCBAF0C2129874D7875EBF968C4F715 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa Signing time: Wed 25 Feb 2026 00:30:09 +0000 ROA not before: Wed 25 Feb 2026 00:30:09 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.224.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 78:b5:32:31:ef:cb:af:0c:21:29:87:4d:78:75:eb:f9:68:c4:f7:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:30:09 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=295cf15059343711b550b5cc902578876713901470cb8a57f17f4f5c22777649, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:88:d2:5c:26:60:91:15:c8:5b:f4:57:af:cd:4a: 35:43:d0:77:4c:6f:90:f6:da:49:2b:20:77:54:44: a9:6a:16:16:cb:c1:9d:fb:26:dd:c4:95:2b:19:bb: f7:a4:d0:9d:c7:3c:00:bf:14:02:4e:4c:04:05:77: 41:39:19:57:3a:ca:0c:73:29:69:94:4f:d8:b9:7e: 74:c6:36:52:b8:65:8d:41:62:e1:30:b2:0a:fa:0d: d3:b9:eb:aa:fc:c7:22:bd:ae:41:94:2c:21:97:ac: 35:95:38:10:d3:82:11:ab:79:c1:21:92:4d:55:ec: 48:33:79:16:1e:68:0e:73:65:57:ab:15:ff:3b:ef: 05:36:bf:a3:5d:9b:f8:21:4d:f4:85:09:c0:04:1b: 2d:84:bc:9a:76:fc:e2:ff:b6:75:ca:fe:29:01:7e: 8e:4b:f2:d5:c2:d8:36:64:97:07:f1:22:c1:8b:06: 33:cb:3d:08:e0:52:85:b3:8a:06:3c:21:99:9c:9f: 12:4c:57:9f:0c:63:ed:44:19:75:68:41:9b:2d:19: 51:04:2c:6c:be:01:0a:94:0e:f5:a4:da:fd:76:78: 5d:25:a6:bc:f3:7b:9d:90:c9:95:be:cd:a3:7e:6a: 50:26:28:d7:75:6a:69:f0:ab:f9:f7:3d:d2:6a:b6: b1:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:DF:CE:2A:9E:FA:64:B4:A9:D4:C8:4D:92:1B:6C:0D:DF:01:28:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ab4207a9-6bfe-48f8-9c57-11c598dea35d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.224.0/20 Signature Algorithm: sha256WithRSAEncryption 75:a2:bb:40:52:55:de:45:6c:c6:95:7d:54:37:47:63:9f:b7: 75:c2:cf:11:a7:06:6d:c3:bb:41:80:de:d2:ff:0e:23:28:e3: 38:a4:0e:05:dc:9d:78:6b:3a:76:ac:e3:34:f3:93:8b:1f:55: 6f:a1:9b:2c:95:d1:c0:88:29:e8:2b:a7:c3:a2:a2:28:ae:4e: bb:a4:d2:7f:5d:2d:fa:8e:c7:51:90:a4:64:18:ef:c4:66:b6: ba:9a:19:ca:ac:c5:e7:a7:78:07:94:cb:e3:c2:76:d7:51:77: cd:cb:99:56:0e:17:e8:50:a0:9a:8a:4c:38:be:1f:41:e4:03: 68:29:f3:08:28:c9:44:c6:f9:dd:27:6a:2e:e3:1a:85:61:0d: 21:5e:f6:74:5b:1f:4c:de:25:a0:a3:7e:3c:2d:cd:35:82:25: f6:a0:9a:f3:e9:7c:8b:1e:10:d5:4a:f5:af:bb:0a:47:38:4e: 46:33:19:60:d0:2d:3f:1a:5d:70:95:ab:6f:ce:da:8c:d0:0e: 78:d9:aa:53:f8:85:30:cf:1d:cc:00:3c:df:ea:ff:5f:67:1d: 05:11:81:a2:4a:d0:b2:cd:a8:1c:a1:05:1e:16:4f:65:27:b6: 48:70:9f:7b:7f:06:02:a9:0b:32:0b:3e:13:61:a0:4b:5d:af: 67:d1:37:61 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUeLUyMe/LrwwhKYdNeHXr+WjE9xUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMDA5WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyOTVjZjE1MDU5MzQzNzExYjU1MGI1Y2M5MDI1Nzg4NzY3 MTM5MDE0NzBjYjhhNTdmMTdmNGY1YzIyNzc3NjQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCI0lwmYJEVyFv0V6/NSjVD0HdMb5D22kkrIHdURKlqFhbL wZ37Jt3ElSsZu/ek0J3HPAC/FAJOTAQFd0E5GVc6ygxzKWmUT9i5fnTGNlK4ZY1B YuEwsgr6DdO566r8xyK9rkGULCGXrDWVOBDTghGrecEhkk1V7EgzeRYeaA5zZVer Ff877wU2v6Ndm/ghTfSFCcAEGy2EvJp2/OL/tnXK/ikBfo5L8tXC2DZklwfxIsGL BjPLPQjgUoWzigY8IZmcnxJMV58MY+1EGXVoQZstGVEELGy+AQqUDvWk2v12eF0l przze52QyZW+zaN+alAmKNd1amnwq/n3PdJqtrEnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUdd/OKp76ZLSp1MhNkhtsDd8BKFIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FiNDIwN2E5LTZiZmUtNDhmOC05YzU3LTExYzU5OGRlYTM1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7OAwDQYJKoZIhvcNAQELBQADggEBAHWiu0BSVd5FbMaVfVQ3R2Oft3XC zxGnBm3Du0GA3tL/DiMo4zikDgXcnXhrOnas4zTzk4sfVW+hmyyV0cCIKegrp8Oi oiiuTruk0n9dLfqOx1GQpGQY78RmtrqaGcqsxeeneAeUy+PCdtdRd83LmVYOF+hQ oJqKTDi+H0HkA2gp8wgoyUTG+d0nai7jGoVhDSFe9nRbH0zeJaCjfjwtzTWCJfag mvPpfIseENVK9a+7Ckc4TkYzGWDQLT8aXXCVq2/O2ozQDnjZqlP4hTDPHcwAPN/q /19nHQURgaJK0LLNqByhBR4WT2Untkhwn3t/BgKpCzILPhNhoEtdr2fRN2E= -----END CERTIFICATE-----Generated at Mon Mar 2 00:15:03 2026 by rpki-client