$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa File: adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa (raw, json) Hash identifier: 6i2Pl/VSrSXHly91LxcPoPZx3LxOZkWrYLtvh1dj+yM= Subject key identifier: 19:3B:A1:E9:F3:31:E1:0B:A7:57:70:FA:9D:6A:71:ED:9B:9C:20:7E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 27EF32D59E660283F8C2132B982656FBED294150 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa Signing time: Wed 25 Feb 2026 01:20:04 +0000 ROA not before: Wed 25 Feb 2026 01:20:04 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 5.60.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:ef:32:d5:9e:66:02:83:f8:c2:13:2b:98:26:56:fb:ed:29:41:50 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:20:04 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=134093d17e91716f4a1e4648765a22e67e898ba007aaa38c1be9c276b4630cd7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:c6:bf:59:a3:65:d3:95:f1:05:e6:1f:fc:ab: e8:4a:0c:8e:e4:1d:33:5e:d5:43:c7:c0:f7:51:d9: 65:ff:24:41:11:03:09:f6:d7:7b:b7:c8:fa:bf:34: 77:87:d8:9a:36:5f:9c:67:98:8f:aa:69:18:86:16: 88:c4:dd:f7:f4:b3:4d:1a:4f:c0:24:d1:26:76:77: 17:94:4a:8e:9b:a3:e8:8c:5a:40:97:e3:69:af:c4: a2:30:d8:6c:3a:0b:7c:2b:b9:e0:f7:36:0e:37:44: 44:35:09:08:3a:36:33:41:6a:cf:fc:d8:b8:90:e5: 74:72:07:36:53:87:71:b5:92:e5:ca:73:0f:c7:2b: 44:e9:61:7b:d6:c3:e4:9d:28:82:e9:2e:36:bf:eb: 4f:f9:73:30:2c:aa:a3:1b:0a:44:ab:6c:d8:a1:1d: cf:fb:62:2d:b5:7d:45:e4:28:9b:9f:b2:0a:be:23: c5:d7:21:ea:9e:3a:a3:c4:2b:ba:e8:15:3d:1c:93: ca:0d:74:b7:13:1e:6b:d3:95:eb:6e:b0:87:48:b1: dc:b8:6a:46:43:e0:0d:08:ec:56:e4:51:1e:32:7c: b2:88:81:e0:c9:5e:1e:12:09:42:ea:6b:36:1b:88: 97:bd:58:6a:14:f3:c7:1e:f7:31:67:ee:bc:d9:ef: 41:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:3B:A1:E9:F3:31:E1:0B:A7:57:70:FA:9D:6A:71:ED:9B:9C:20:7E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/adf81dfa-321d-42a4-a1e7-eefec7d0a384.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption a3:2d:2f:33:0f:44:9e:35:cb:63:4e:69:dd:d8:95:3d:80:01: fd:25:bb:a4:be:f8:09:86:18:97:54:32:9d:10:10:d2:af:ca: d6:73:6d:04:94:83:79:cf:21:bd:94:a7:a0:e1:5c:db:0b:02: 09:a9:7f:79:0c:2c:d5:c9:15:5c:94:8d:a7:78:cf:32:e4:9d: 9b:a0:18:0b:a0:77:5b:2c:36:4c:6c:e2:3f:32:4f:79:86:ce: 1c:46:b4:95:8e:fc:54:e1:77:ed:f0:fc:4a:e0:dd:5d:0b:a7: a7:91:10:91:b6:6c:d2:02:81:88:6d:6a:8c:69:7e:31:72:14: 9a:83:7f:ee:f0:d6:84:0a:4e:ee:3d:24:95:80:66:09:43:25: 8f:80:1d:9d:89:4e:e2:d7:5e:6e:1e:85:c0:78:17:e4:a6:71: 20:eb:30:ae:74:d4:8a:51:52:f0:dd:85:44:67:2b:a0:47:fb: 64:1c:33:29:e9:e5:14:91:f5:1f:4a:d7:a1:3d:d0:29:7d:4b: ee:af:47:ed:aa:d7:5d:14:4a:dc:47:15:b0:eb:c8:4d:5d:f8: d3:50:26:02:57:de:a4:54:3b:5d:e7:e8:17:aa:51:79:45:3b: 4f:9c:32:c5:20:20:8a:d7:40:f3:13:e2:ce:0c:f9:50:a3:95: f9:26:b9:c2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJ+8y1Z5mAoP4whMrmCZW++0pQVAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMDA0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMzQwOTNkMTdlOTE3MTZmNGExZTQ2NDg3NjVhMjJlNjdl ODk4YmEwMDdhYWEzOGMxYmU5YzI3NmI0NjMwY2Q3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkxr9Zo2XTlfEF5h/8q+hKDI7kHTNe1UPHwPdR2WX/JEER Awn213u3yPq/NHeH2Jo2X5xnmI+qaRiGFojE3ff0s00aT8Ak0SZ2dxeUSo6bo+iM WkCX42mvxKIw2Gw6C3wrueD3Ng43REQ1CQg6NjNBas/82LiQ5XRyBzZTh3G1kuXK cw/HK0TpYXvWw+SdKILpLja/60/5czAsqqMbCkSrbNihHc/7Yi21fUXkKJufsgq+ I8XXIeqeOqPEK7roFT0ck8oNdLcTHmvTletusIdIsdy4akZD4A0I7FbkUR4yfLKI geDJXh4SCULqazYbiJe9WGoU88ce9zFn7rzZ70FBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUGTuh6fMx4QunV3D6nWpx7ZucIH4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2FkZjgxZGZhLTMyMWQtNDJhNC1hMWU3LWVlZmVjN2QwYTM4NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAFPDANBgkqhkiG9w0BAQsFAAOCAQEAoy0vMw9EnjXLY05p3diVPYAB/SW7 pL74CYYYl1QynRAQ0q/K1nNtBJSDec8hvZSnoOFc2wsCCal/eQws1ckVXJSNp3jP MuSdm6AYC6B3Wyw2TGziPzJPeYbOHEa0lY78VOF37fD8SuDdXQunp5EQkbZs0gKB iG1qjGl+MXIUmoN/7vDWhApO7j0klYBmCUMlj4AdnYlO4tdebh6FwHgX5KZxIOsw rnTUilFS8N2FRGcroEf7ZBwzKenlFJH1H0rXoT3QKX1L7q9H7arXXRRK3EcVsOvI TV3401AmAlfepFQ7XefoF6pReUU7T5wyxSAgitdA8xPizgz5UKOV+Sa5wg== -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:27 2026 by rpki-client