$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa File: b291d7d3-1582-4d15-9362-848d2950798a.roa (raw, json) Hash identifier: S96sQee/sr+xSlFj243ZgYLL8g4CqZ/yTDbOfxnfr/Q= Subject key identifier: A5:7F:EE:86:F4:2D:51:26:E0:3F:83:82:46:86:4E:29:44:07:0F:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58BF598C973CA89A31D88A58734E1611855B4166 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa Signing time: Sat 07 Feb 2026 00:20:05 +0000 ROA not before: Sat 07 Feb 2026 00:20:05 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 198.148.96.0/19 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:bf:59:8c:97:3c:a8:9a:31:d8:8a:58:73:4e:16:11:85:5b:41:66 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:20:05 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=4546cc52cb4223b6df615d7a6ef24822440e7343c1535fca108f4c3cfb41fe48, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:e0:a9:a1:3e:ed:30:63:16:da:7b:e7:51:ef: 41:a9:89:7b:45:bc:d4:c4:cf:22:56:7a:75:cc:1e: 7a:b7:e2:44:7f:ee:a0:67:80:f2:ba:13:10:b2:d8: 25:a3:19:7a:4c:60:7a:91:21:62:84:c5:69:49:9a: fc:7e:79:80:9e:72:57:de:70:34:d6:bb:3f:37:1f: 49:2f:78:63:ea:82:41:f2:2d:13:0f:5e:42:b2:d6: ff:05:29:71:29:c4:08:8e:76:53:af:df:5c:ee:57: 9d:e0:21:72:98:df:32:a7:54:7e:da:d1:ea:cf:e5: 46:a3:ff:9c:a1:20:3e:f6:e1:14:4c:f6:05:a5:7e: ba:61:f8:36:c4:33:5e:1b:9c:95:de:cd:13:be:ec: e0:8b:05:a8:38:a4:2c:31:53:83:e9:4f:d0:40:8c: 02:47:43:82:32:91:e6:76:b5:44:15:22:18:02:8a: 99:77:b2:ef:bc:40:14:df:8f:53:6a:c7:f0:d1:f0: 97:bc:8b:48:28:33:3e:23:d9:5d:76:07:49:b0:ad: c6:80:50:86:92:86:28:6d:1e:90:c8:b5:e4:59:2d: dc:26:8c:e4:9e:b1:db:0a:75:53:bb:00:4c:ad:7b: 5d:ae:45:20:c2:6a:ac:70:bf:49:8d:c1:a7:b6:be: 5f:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:7F:EE:86:F4:2D:51:26:E0:3F:83:82:46:86:4E:29:44:07:0F:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b291d7d3-1582-4d15-9362-848d2950798a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 198.148.96.0/19 Signature Algorithm: sha256WithRSAEncryption 4e:be:d5:c3:d6:e5:26:79:e3:59:e1:49:b4:48:fa:87:cb:33: ba:a9:84:14:23:22:90:ab:ca:82:e9:06:a0:a4:63:9e:eb:b4: b3:37:d9:a4:1a:3f:39:7f:a5:ac:76:44:2d:7a:88:69:d5:49: 1d:f3:c9:71:de:d3:3e:80:4c:44:9a:8f:b3:95:3b:32:8a:75: 37:22:e4:6a:dc:b5:3b:db:9d:0a:82:71:d3:ea:b5:0b:94:25: da:4a:f3:01:8f:fd:41:1d:95:be:aa:7c:95:33:a5:56:18:76: d9:53:5d:bf:f1:b3:74:fd:fb:f5:25:18:b2:cc:b4:a9:87:b6: ae:4b:bb:17:76:52:87:12:8a:18:47:6e:12:72:d1:ed:38:80: 65:0e:86:37:ce:83:83:08:db:c3:d5:d6:91:a6:68:f6:e5:5e: ac:3a:3b:29:6b:35:54:d9:a0:5a:1c:e8:6f:7f:df:76:35:1f: 82:73:0a:12:4d:3c:bf:c0:cd:d4:21:ec:13:a2:ea:5e:06:c4: 9f:c0:2a:16:50:89:92:82:7e:15:14:e5:7f:2b:63:d9:75:97: 4d:ed:3e:3a:2d:93:24:50:b1:58:df:7a:d4:09:60:55:f2:6f: c4:03:87:cc:68:63:b1:6b:2f:67:3c:99:ac:b5:bf:3f:79:46: 94:1c:68:2d -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWL9ZjJc8qJox2IpYc04WEYVbQWYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAyMDA1WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A0NTQ2Y2M1MmNiNDIyM2I2ZGY2MTVkN2E2ZWYyNDgyMjQ0 MGU3MzQzYzE1MzVmY2ExMDhmNGMzY2ZiNDFmZTQ4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb4KmhPu0wYxbae+dR70GpiXtFvNTEzyJWenXMHnq34kR/ 7qBngPK6ExCy2CWjGXpMYHqRIWKExWlJmvx+eYCeclfecDTWuz83H0kveGPqgkHy LRMPXkKy1v8FKXEpxAiOdlOv31zuV53gIXKY3zKnVH7a0erP5Uaj/5yhID724RRM 9gWlfrph+DbEM14bnJXezRO+7OCLBag4pCwxU4PpT9BAjAJHQ4IykeZ2tUQVIhgC ipl3su+8QBTfj1Nqx/DR8Je8i0goMz4j2V12B0mwrcaAUIaShihtHpDIteRZLdwm jOSesdsKdVO7AEyte12uRSDCaqxwv0mNwae2vl8XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUpX/uhvQtUSbgP4OCRoZOKUQHD6swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IyOTFkN2QzLTE1ODItNGQxNS05MzYyLTg0OGQyOTUwNzk4YS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAXGlGAwDQYJKoZIhvcNAQELBQADggEBAE6+1cPW5SZ541nhSbRI+ofLM7qp hBQjIpCryoLpBqCkY57rtLM32aQaPzl/pax2RC16iGnVSR3zyXHe0z6ATESaj7OV OzKKdTci5GrctTvbnQqCcdPqtQuUJdpK8wGP/UEdlb6qfJUzpVYYdtlTXb/xs3T9 +/UlGLLMtKmHtq5Luxd2UocSihhHbhJy0e04gGUOhjfOg4MI28PV1pGmaPblXqw6 OylrNVTZoFoc6G9/33Y1H4JzChJNPL/AzdQh7BOi6l4GxJ/AKhZQiZKCfhUU5X8r Y9l1l03tPjotkyRQsVjfetQJYFXyb8QDh8xoY7FrL2c8may1vz95RpQcaC0= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:39 2026 by rpki-client