$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c0e199-49ca-4e9e-90e1-c595278d550d.roa File: b3c0e199-49ca-4e9e-90e1-c595278d550d.roa (raw, json) Hash identifier: CZsFhQ5vXp8t5pR66SzSwJm4MZs7gGIMlMJhf744HS8= Subject key identifier: 68:8D:B3:47:0F:7F:51:B0:C0:13:61:BF:93:38:FC:A3:D6:BA:75:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 48EC41B94AF6C4A1CED28F92047B32D8CE0FAA2C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c0e199-49ca-4e9e-90e1-c595278d550d.roa Signing time: Tue 17 Feb 2026 00:20:46 +0000 ROA not before: Tue 17 Feb 2026 00:20:46 +0000 ROA not after: Mon 18 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 94.36.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:ec:41:b9:4a:f6:c4:a1:ce:d2:8f:92:04:7b:32:d8:ce:0f:aa:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 17 00:20:46 2026 GMT Not After : May 18 23:59:59 2026 GMT Subject: serialNumber=e6f1ae06c3ce0641a6f8b896bb148a9bde7da76659a1f1e6501b6892ce5e61ec, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a2:39:91:6f:6c:1a:ea:57:b3:df:c5:40:03: 77:72:77:09:0e:93:a6:db:4a:99:07:94:6c:ed:77: c1:38:01:96:e3:a8:89:a3:78:0d:77:97:f9:a2:10: e0:27:d2:54:04:fd:2c:28:0a:e1:2c:8c:c3:1f:bb: 66:b7:29:0f:32:43:cd:f0:de:d5:62:1f:fb:6d:eb: 28:57:5c:cf:0c:c6:98:e8:1c:36:32:02:3b:d8:21: e4:70:a0:89:bf:c9:e2:74:13:ee:6b:80:04:5f:d3: 4c:e6:5b:a4:4b:7d:b9:cf:a3:c2:9c:e6:20:1b:58: 73:fd:6c:02:a2:ea:ec:28:fc:ce:51:a3:b0:25:ff: 21:a6:9b:55:7c:4d:32:5f:76:4a:d9:c5:f8:6e:ab: 72:2e:52:e1:b7:82:c8:50:03:70:11:cb:22:ba:3b: 30:11:d3:82:e1:1f:35:b6:ff:32:b7:36:4e:6d:57: 00:fa:7a:a3:30:9c:11:59:56:b4:72:df:8e:45:99: 0c:8a:f6:46:29:51:0b:43:e4:cd:7b:35:75:7d:8b: c3:84:02:5d:fc:4a:05:1a:50:b2:2e:6e:ed:83:fc: 26:38:1e:f4:f4:82:37:48:99:be:34:76:54:71:83: 15:78:c1:40:d1:20:4b:b1:7b:5e:4c:ba:d8:0a:ba: 24:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8D:B3:47:0F:7F:51:B0:C0:13:61:BF:93:38:FC:A3:D6:BA:75:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c0e199-49ca-4e9e-90e1-c595278d550d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.36.0.0/15 Signature Algorithm: sha256WithRSAEncryption a8:88:9c:54:dc:40:de:5a:69:72:e0:15:f7:17:8e:36:3f:12: ed:9c:72:30:12:9c:dd:f3:57:0c:fd:c8:00:0d:f8:64:7d:58: 33:8f:11:d4:35:c8:ca:fe:77:d0:73:f6:f9:e0:4b:bf:7d:27: e2:95:83:e6:ad:66:77:da:bb:77:45:b2:b4:31:bd:34:f9:76: 2d:26:08:e4:7e:f7:5b:55:c9:37:18:dc:94:11:9c:0e:88:d4: 07:42:a5:c5:86:24:4e:f6:94:63:d1:94:70:64:e2:fb:d3:07: 3b:33:2b:4e:64:44:b8:22:7e:18:8e:8b:f4:a3:a5:13:11:d5: 1c:bc:67:f7:76:4a:c3:90:fb:b6:80:55:a3:36:5b:28:7c:ee: c8:f8:2d:f4:73:66:c1:b5:62:ef:25:44:d3:a0:40:db:4e:e0: b8:66:55:c7:e9:49:f1:ca:ba:8a:20:16:81:46:19:26:cf:ad: 30:0e:3a:ef:63:53:d3:0e:de:4f:fb:ff:01:de:d5:6d:6f:3c: f7:9b:89:cb:7b:8a:f6:1e:02:f5:75:a9:4c:f4:68:ac:7b:e4: fa:c3:a1:28:e6:51:2f:81:9b:3b:93:4c:64:e4:d7:d0:a4:81: 6f:47:10:c9:1d:c6:b0:1b:01:2f:6e:5f:9e:b9:53:ff:6f:41: 73:de:8e:9b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUSOxBuUr2xKHO0o+SBHsy2M4PqiwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE3MDAyMDQ2WhcNMjYwNTE4MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNmYxYWUwNmMzY2UwNjQxYTZmOGI4OTZiYjE0OGE5YmRl N2RhNzY2NTlhMWYxZTY1MDFiNjg5MmNlNWU2MWVjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5ojmRb2wa6lez38VAA3dydwkOk6bbSpkHlGztd8E4AZbj qImjeA13l/miEOAn0lQE/SwoCuEsjMMfu2a3KQ8yQ83w3tViH/tt6yhXXM8Mxpjo HDYyAjvYIeRwoIm/yeJ0E+5rgARf00zmW6RLfbnPo8Kc5iAbWHP9bAKi6uwo/M5R o7Al/yGmm1V8TTJfdkrZxfhuq3IuUuG3gshQA3ARyyK6OzAR04LhHzW2/zK3Nk5t VwD6eqMwnBFZVrRy345FmQyK9kYpUQtD5M17NXV9i8OEAl38SgUaULIubu2D/CY4 HvT0gjdImb40dlRxgxV4wUDRIEuxe15MutgKuiRnAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaI2zRw9/UbDAE2G/kzj8o9a6dSgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzYzBlMTk5LTQ5Y2EtNGU5ZS05MGUxLWM1OTUyNzhkNTUwZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwFeJDANBgkqhkiG9w0BAQsFAAOCAQEAqIicVNxA3lppcuAV9xeONj8S7Zxy MBKc3fNXDP3IAA34ZH1YM48R1DXIyv530HP2+eBLv30n4pWD5q1md9q7d0WytDG9 NPl2LSYI5H73W1XJNxjclBGcDojUB0KlxYYkTvaUY9GUcGTi+9MHOzMrTmREuCJ+ GI6L9KOlExHVHLxn93ZKw5D7toBVozZbKHzuyPgt9HNmwbVi7yVE06BA207guGZV x+lJ8cq6iiAWgUYZJs+tMA4672NT0w7eT/v/Ad7VbW8895uJy3uK9h4C9XWpTPRo rHvk+sOhKOZRL4GbO5NMZOTX0KSBb0cQyR3GsBsBL25fnrlT/29Bc96Omw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:38 2026 by rpki-client