$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b47cdbbc-0606-4824-b468-103bd1f5711b.roa File: b47cdbbc-0606-4824-b468-103bd1f5711b.roa (raw, json) Hash identifier: OHWcFsxikl97I989iPsVGDsspj0j/K3oB6YJsruaODU= Subject key identifier: 3F:DF:A6:85:9E:67:9E:D2:41:AD:0A:DB:FA:FF:9E:DD:61:63:43:6D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C50B2732E21C7EA5282869359719815BCC97D73 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b47cdbbc-0606-4824-b468-103bd1f5711b.roa Signing time: Thu 26 Feb 2026 01:00:57 +0000 ROA not before: Thu 26 Feb 2026 01:00:57 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 69.0.199.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:50:b2:73:2e:21:c7:ea:52:82:86:93:59:71:98:15:bc:c9:7d:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:00:57 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=7b184ac0d876b371c6ec0c22ebc51c648343a79cde3859caa627369a195fe118, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f3:f8:26:bd:97:a0:99:ed:aa:94:2e:56:b9: da:14:43:54:21:ae:4a:c6:ae:f9:16:30:9e:66:86: 79:3c:33:01:02:ba:0b:58:e5:eb:85:bf:b4:f7:cc: 17:a4:74:ec:75:92:24:78:48:52:b1:21:d4:46:a1: ef:3b:64:85:46:ad:f3:b8:24:6d:cd:91:e3:13:4f: fa:70:f8:42:dc:f8:46:3e:0c:e1:f6:b1:24:83:96: 32:c6:6f:e8:64:f0:15:1a:5f:34:fc:9b:e2:95:51: dd:d7:77:52:0e:c1:a5:92:a1:f0:da:07:b5:7b:cb: aa:db:0f:15:cc:bb:ca:38:63:96:1a:b4:be:78:b7: 6b:75:de:2e:39:c5:14:10:d9:e7:6f:d8:c4:3c:bd: 86:20:a0:55:98:98:71:40:6a:2a:93:d5:d8:be:d0: 08:b4:49:be:50:bd:71:f4:c5:09:ce:54:29:8c:b2: c3:8c:df:e3:1f:fb:0c:e9:09:27:57:5e:7b:4f:24: 6b:a8:ab:1f:39:6f:aa:ec:04:84:f3:ab:17:7f:1a: a3:ab:e1:ae:4d:08:31:73:9e:3f:2d:3d:79:58:e1: 8f:d3:da:8c:c3:85:90:fb:70:f5:47:a9:68:10:5d: 74:68:e7:4f:6b:49:10:23:a9:57:1e:92:5a:05:4d: 36:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3F:DF:A6:85:9E:67:9E:D2:41:AD:0A:DB:FA:FF:9E:DD:61:63:43:6D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b47cdbbc-0606-4824-b468-103bd1f5711b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 69.0.199.0/24 Signature Algorithm: sha256WithRSAEncryption 8c:df:21:3d:7f:e0:29:30:c2:8f:88:ee:90:40:bb:f0:61:36: a2:40:76:70:4c:99:62:bc:dd:32:0f:b9:f3:cb:94:be:d4:7b: 88:cb:de:f7:f6:03:95:40:e0:bf:e3:8f:a9:ea:a6:62:c7:90: a1:9b:fc:b1:fc:77:a7:f6:1f:f7:0b:0e:4b:34:98:06:a5:b0: 5d:1c:e2:da:66:1d:c9:15:66:0d:65:45:f6:64:3e:36:8f:bc: ae:f3:08:2b:af:6f:e9:45:be:b9:7a:f2:95:e1:27:47:ba:3c: 37:1f:4e:5c:87:4c:17:a8:ce:45:17:39:45:68:2c:3f:c2:12: 03:9a:9a:b3:23:8f:d8:08:73:1e:60:9c:0a:01:cd:fa:62:69: d4:3e:3b:e7:3a:56:4a:2a:c4:4b:49:12:8e:48:32:67:b7:bc: 70:b9:73:a8:9e:95:68:4f:5f:85:b2:ff:f0:a1:3b:f0:61:7f: e7:a2:ba:d8:41:cf:5d:a7:92:b3:e5:ef:c9:dc:a5:be:6c:51: 02:fd:38:5a:26:35:bb:d5:64:8c:ea:b4:c6:d9:ee:3a:d4:11: c8:4c:43:bf:ab:d9:c1:ad:6d:f0:ec:e9:32:3b:59:f0:a0:bb: 4f:a6:6b:55:87:03:83:02:c6:65:9a:a8:7d:5f:1b:2e:b1:32: 27:d0:1b:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDFCycy4hx+pSgoaTWXGYFbzJfXMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMDU3WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YjE4NGFjMGQ4NzZiMzcxYzZlYzBjMjJlYmM1MWM2NDgz NDNhNzljZGUzODU5Y2FhNjI3MzY5YTE5NWZlMTE4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/8/gmvZegme2qlC5WudoUQ1QhrkrGrvkWMJ5mhnk8MwEC ugtY5euFv7T3zBekdOx1kiR4SFKxIdRGoe87ZIVGrfO4JG3NkeMTT/pw+ELc+EY+ DOH2sSSDljLGb+hk8BUaXzT8m+KVUd3Xd1IOwaWSofDaB7V7y6rbDxXMu8o4Y5Ya tL54t2t13i45xRQQ2edv2MQ8vYYgoFWYmHFAaiqT1di+0Ai0Sb5QvXH0xQnOVCmM ssOM3+Mf+wzpCSdXXntPJGuoqx85b6rsBITzqxd/GqOr4a5NCDFznj8tPXlY4Y/T 2ozDhZD7cPVHqWgQXXRo509rSRAjqVcekloFTTZXAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUP9+mhZ5nntJBrQrb+v+e3WFjQ20wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I0N2NkYmJjLTA2MDYtNDgyNC1iNDY4LTEwM2JkMWY1NzExYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABFAMcwDQYJKoZIhvcNAQELBQADggEBAIzfIT1/4Ckwwo+I7pBAu/BhNqJA dnBMmWK83TIPufPLlL7Ue4jL3vf2A5VA4L/jj6nqpmLHkKGb/LH8d6f2H/cLDks0 mAalsF0c4tpmHckVZg1lRfZkPjaPvK7zCCuvb+lFvrl68pXhJ0e6PDcfTlyHTBeo zkUXOUVoLD/CEgOamrMjj9gIcx5gnAoBzfpiadQ+O+c6VkoqxEtJEo5IMme3vHC5 c6ielWhPX4Wy//ChO/Bhf+eiuthBz12nkrPl78ncpb5sUQL9OFomNbvVZIzqtMbZ 7jrUEchMQ7+r2cGtbfDs6TI7WfCgu0+ma1WHA4MCxmWaqH1fGy6xMifQG7A= -----END CERTIFICATE-----Generated at Mon Mar 2 05:42:12 2026 by rpki-client