$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa File: b3c97cba-7083-48f3-8280-ad90bc3bee59.roa (raw, json) Hash identifier: yYaXDWoFzLRltPDg5UoHACJQsmFDKnGuGEEIb0xgs+M= Subject key identifier: C3:D8:13:A7:BD:D4:CC:DD:B5:2B:07:42:BB:E0:46:AD:B0:27:99:70 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 15AD909A69D8465344E9F56868F6276C56487FB9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa Signing time: Tue 10 Feb 2026 00:31:38 +0000 ROA not before: Tue 10 Feb 2026 00:31:38 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 192.10.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:ad:90:9a:69:d8:46:53:44:e9:f5:68:68:f6:27:6c:56:48:7f:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:31:38 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=727c89783a19e1859fc288ffd5a31fab95f23f91c354b4c78f53ca752c7f5432, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:38:47:af:a8:96:f4:42:da:fb:a5:11:3f:ff: 77:b0:34:a9:d6:57:67:a9:85:8e:a7:8f:11:0b:65: 39:f7:ed:af:e2:eb:52:bf:93:0d:38:86:39:97:fc: b3:cc:e1:f1:e4:53:e6:1f:1d:99:a8:b3:3f:d6:1a: bb:18:2f:58:6e:4f:3a:8a:84:64:85:aa:c7:2d:c0: 9b:da:80:96:ab:06:9a:0f:e9:30:cc:55:4c:d9:82: 6d:42:d8:7e:dc:98:47:ac:f1:78:89:59:8a:95:5b: 6f:58:ad:11:89:65:bb:6d:e6:64:45:12:a8:30:56: 55:54:2a:05:4a:a0:22:fb:b9:ed:86:a5:01:24:27: d2:5c:af:5f:cf:e6:86:77:b7:f9:3a:f0:80:41:09: 59:be:fa:b4:41:26:bf:a0:c4:9f:bd:7b:c1:7c:4f: cf:21:85:d8:0f:87:46:aa:80:53:8e:db:68:11:3f: 42:1d:e2:7e:0d:2f:45:34:52:df:44:9a:de:f6:0e: 89:1c:ac:7f:ca:b8:b4:c8:94:fe:60:16:78:6a:98: 78:51:36:77:a0:2a:e9:52:09:d8:57:c1:8d:fd:6a: f4:28:36:55:d1:0f:54:06:32:b5:11:17:d1:94:89: 23:79:09:e0:15:2f:b4:ca:57:a9:3a:be:8e:fa:7c: ac:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C3:D8:13:A7:BD:D4:CC:DD:B5:2B:07:42:BB:E0:46:AD:B0:27:99:70 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b3c97cba-7083-48f3-8280-ad90bc3bee59.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 192.10.0.0/16 Signature Algorithm: sha256WithRSAEncryption 54:1a:2d:a0:02:55:c5:fc:dc:b5:31:ae:52:dd:a7:4c:42:29: fd:09:0c:8e:1f:9b:e4:93:35:fa:28:25:3c:a5:0d:8d:e3:6b: bc:a2:76:05:cf:67:0d:4f:08:0e:56:6d:d8:e8:ca:a8:de:df: 02:54:d7:2b:49:1c:a4:1d:0f:55:24:af:8d:d7:df:62:4a:86: 9a:3c:02:82:4b:76:47:fe:2d:65:5b:b9:47:f7:d1:72:ec:fb: 7f:e7:c4:eb:73:2b:26:1c:cc:44:77:18:97:0e:7e:a4:53:a9: 5a:21:8a:b7:fc:1b:ea:5a:eb:80:4d:25:b6:8c:35:d2:33:06: ba:40:7b:5a:7b:4a:3f:fe:15:dc:5d:01:14:86:da:6a:a3:fe: 30:e7:25:2b:2f:04:82:59:0f:ae:4e:61:3c:92:81:59:5f:b0: 54:fb:ab:f3:31:20:96:e7:0c:e8:84:91:43:95:74:60:45:68: 32:8e:82:e5:f9:91:14:63:b8:31:76:35:ac:0e:ac:05:5e:b5: 3c:1e:bf:ca:03:1a:f1:68:42:44:b9:94:ae:ff:82:32:ab:4a: fa:b1:b3:27:d9:4b:49:d9:61:2f:f4:85:dd:79:52:86:8b:e1: 54:13:4e:2d:fe:d1:9b:20:70:4d:3e:28:3d:93:63:79:23:74: 30:71:5f:ca -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFa2QmmnYRlNE6fVoaPYnbFZIf7kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAzMTM4WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MjdjODk3ODNhMTllMTg1OWZjMjg4ZmZkNWEzMWZhYjk1 ZjIzZjkxYzM1NGI0Yzc4ZjUzY2E3NTJjN2Y1NDMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgOEevqJb0Qtr7pRE//3ewNKnWV2ephY6njxELZTn37a/i 61K/kw04hjmX/LPM4fHkU+YfHZmosz/WGrsYL1huTzqKhGSFqsctwJvagJarBpoP 6TDMVUzZgm1C2H7cmEes8XiJWYqVW29YrRGJZbtt5mRFEqgwVlVUKgVKoCL7ue2G pQEkJ9Jcr1/P5oZ3t/k68IBBCVm++rRBJr+gxJ+9e8F8T88hhdgPh0aqgFOO22gR P0Id4n4NL0U0Ut9Emt72DokcrH/KuLTIlP5gFnhqmHhRNnegKulSCdhXwY39avQo NlXRD1QGMrURF9GUiSN5CeAVL7TKV6k6vo76fKyHAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUw9gTp73UzN21KwdCu+BGrbAnmXAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2IzYzk3Y2JhLTcwODMtNDhmMy04MjgwLWFkOTBiYzNiZWU1OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwDACjANBgkqhkiG9w0BAQsFAAOCAQEAVBotoAJVxfzctTGuUt2nTEIp/QkM jh+b5JM1+iglPKUNjeNrvKJ2Bc9nDU8IDlZt2OjKqN7fAlTXK0kcpB0PVSSvjdff YkqGmjwCgkt2R/4tZVu5R/fRcuz7f+fE63MrJhzMRHcYlw5+pFOpWiGKt/wb6lrr gE0ltow10jMGukB7WntKP/4V3F0BFIbaaqP+MOclKy8EglkPrk5hPJKBWV+wVPur 8zEglucM6ISRQ5V0YEVoMo6C5fmRFGO4MXY1rA6sBV61PB6/ygMa8WhCRLmUrv+C MqtK+rGzJ9lLSdlhL/SF3XlShovhVBNOLf7RmyBwTT4oPZNjeSN0MHFfyg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:33 2026 by rpki-client