$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa File: acee793e-e4d8-4c60-8711-8877a8378aa0.roa (raw, json) Hash identifier: XCtBV5TebxWlB89GwKQDSFoWSrGqtGBl4+7E3DWMDas= Subject key identifier: 3A:53:6B:95:CB:F9:DC:C8:97:DD:06:61:5F:DF:53:7A:10:A9:B9:BC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17A8A1D09C40C8C6C3FB30EE48322FDA24AC59FC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa Signing time: Fri 13 Feb 2026 00:11:30 +0000 ROA not before: Fri 13 Feb 2026 00:11:30 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 44.216.188.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:a8:a1:d0:9c:40:c8:c6:c3:fb:30:ee:48:32:2f:da:24:ac:59:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:11:30 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=5c4d806efee8ed32c66a74edf60a7949bd628b1a04e510eac0b30618fe9e94f1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:7c:fc:8d:0a:03:69:fd:44:22:ba:d5:ee:8a: 42:d1:dd:bd:f1:64:73:3b:58:e9:7a:39:ec:99:7d: 76:3d:74:28:fd:fe:59:55:04:d5:b1:41:a3:06:2e: 28:d9:8a:5f:9f:c6:ae:9e:2e:2f:f6:48:81:9b:25: 60:98:03:fb:7d:00:08:70:85:26:57:c6:41:b4:4d: b1:17:be:cf:25:f5:7f:61:39:59:04:a5:aa:df:4d: 36:20:06:a1:3a:56:dc:d0:d8:3d:dd:56:1c:f1:49: e1:c8:be:61:3f:b0:48:04:df:6e:e9:eb:09:47:b3: 56:85:cd:9f:51:78:01:af:c8:96:8f:ef:db:37:ba: 5d:98:08:26:23:bb:f0:5d:37:4b:30:88:39:b1:f9: df:4a:e3:5d:d4:c8:4d:55:6e:2a:3f:b9:28:fe:56: 47:8d:fb:da:cb:f7:70:ac:0d:9c:d6:ad:ac:7e:73: f2:e0:93:d8:31:15:06:f8:13:05:9d:2a:4b:9d:c3: 7f:8b:64:3b:bb:94:32:ff:56:59:fa:5a:23:1e:64: 04:1b:a5:ec:cf:bb:23:db:67:67:7d:db:fe:da:5c: a5:e2:34:95:49:a0:fe:88:aa:63:23:e0:63:12:24: 10:d9:4a:65:77:f4:79:ee:fb:90:05:16:1c:e4:a5: 66:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:53:6B:95:CB:F9:DC:C8:97:DD:06:61:5F:DF:53:7A:10:A9:B9:BC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/acee793e-e4d8-4c60-8711-8877a8378aa0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 44.216.188.0/22 Signature Algorithm: sha256WithRSAEncryption 66:93:85:4a:be:5c:ad:4f:c0:10:db:8d:fa:d7:41:74:7c:8c: ac:c0:96:29:1f:f7:0f:92:64:ff:82:db:5b:c2:c5:76:d2:3a: c4:12:89:6d:78:bf:99:b1:26:e2:9c:3b:cb:ef:fa:d8:21:2b: 01:b5:bf:55:59:37:50:e3:91:88:cd:e9:e3:10:3d:f4:51:df: 10:cc:1f:34:03:13:3b:c2:8a:3a:1c:a4:7c:25:b1:a0:77:c5: a8:ed:26:dc:20:3e:ec:04:08:03:f8:67:bc:0e:78:c8:7d:5c: 7b:dd:d7:f2:a7:f8:39:98:eb:00:c0:82:b0:f6:22:2a:e2:ec: 0c:7e:18:10:6c:0f:56:77:ff:cb:8b:08:8b:00:eb:d9:d5:9c: 66:56:31:27:2b:00:ed:4a:09:39:41:f4:2f:b9:ed:f5:2c:f7: 8e:27:de:15:b1:a1:b5:04:1b:f3:18:74:1d:96:13:08:b2:8a: 54:6a:05:ab:5a:6a:10:7a:a9:60:a9:94:de:43:9a:7f:9d:29: 54:c2:84:96:92:a5:fb:a3:56:df:c6:2c:4a:45:6b:d1:ce:e4: ca:65:8a:6f:9f:15:5f:e2:3a:44:ac:79:d2:fd:00:f6:bc:4e: c8:cc:86:87:54:2e:41:ff:a5:1e:c5:fb:f1:74:46:e7:7e:f1: 3a:7e:c1:6b -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUF6ih0JxAyMbD+zDuSDIv2iSsWfwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAxMTMwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1YzRkODA2ZWZlZThlZDMyYzY2YTc0ZWRmNjBhNzk0OWJk NjI4YjFhMDRlNTEwZWFjMGIzMDYxOGZlOWU5NGYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWfPyNCgNp/UQiutXuikLR3b3xZHM7WOl6OeyZfXY9dCj9 /llVBNWxQaMGLijZil+fxq6eLi/2SIGbJWCYA/t9AAhwhSZXxkG0TbEXvs8l9X9h OVkEparfTTYgBqE6VtzQ2D3dVhzxSeHIvmE/sEgE327p6wlHs1aFzZ9ReAGvyJaP 79s3ul2YCCYju/BdN0swiDmx+d9K413UyE1Vbio/uSj+VkeN+9rL93CsDZzWrax+ c/Lgk9gxFQb4EwWdKkudw3+LZDu7lDL/Vln6WiMeZAQbpezPuyPbZ2d92/7aXKXi NJVJoP6IqmMj4GMSJBDZSmV39Hnu+5AFFhzkpWYrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUOlNrlcv53MiX3QZhX99TehCpubwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FjZWU3OTNlLWU0ZDgtNGM2MC04NzExLTg4NzdhODM3OGFhMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIs2LwwDQYJKoZIhvcNAQELBQADggEBAGaThUq+XK1PwBDbjfrXQXR8jKzA likf9w+SZP+C21vCxXbSOsQSiW14v5mxJuKcO8vv+tghKwG1v1VZN1DjkYjN6eMQ PfRR3xDMHzQDEzvCijocpHwlsaB3xajtJtwgPuwECAP4Z7wOeMh9XHvd1/Kn+DmY 6wDAgrD2Iiri7Ax+GBBsD1Z3/8uLCIsA69nVnGZWMScrAO1KCTlB9C+57fUs944n 3hWxobUEG/MYdB2WEwiyilRqBataahB6qWCplN5Dmn+dKVTChJaSpfujVt/GLEpF a9HO5Mplim+fFV/iOkSsedL9APa8TsjMhodULkH/pR7F+/F0Rud+8Tp+wWs= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:35 2026 by rpki-client