$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa File: b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa (raw, json) Hash identifier: 1tlB5yuxtgW0KtQuBU1plIS6pFZmkk7FOz3KwffKLdA= Subject key identifier: 12:40:8A:40:2A:F8:8E:4C:8F:E4:6C:E2:2F:20:79:E9:20:3B:5C:98 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 067F27F174AAFD621FBD0EACE762BCEC2959E13A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa Signing time: Sun 01 Mar 2026 00:01:16 +0000 ROA not before: Sun 01 Mar 2026 00:01:16 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.70.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 06:7f:27:f1:74:aa:fd:62:1f:bd:0e:ac:e7:62:bc:ec:29:59:e1:3a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:01:16 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=bbdfe11a3a1cdcf9c46e759e6b5f738fcab1e480821288bbbf916f1c2f314e3e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:a4:0d:87:c9:98:b1:66:43:7a:be:3b:51:2d: 21:b5:2f:19:3c:61:2e:cf:c8:db:f0:40:96:d1:53: 8d:0a:b3:a3:b4:98:d1:36:d8:60:ad:33:7c:bb:99: 23:bc:4b:77:bb:f9:69:af:50:11:9f:1f:e6:42:70: c5:ac:d8:9c:74:8d:2f:9b:70:22:e5:29:76:56:26: c6:84:17:67:55:40:2e:61:ae:ba:81:af:57:ae:21: 63:d0:0c:3b:e0:df:bc:a6:1f:d2:5c:f9:33:9a:46: 39:d4:96:d4:6e:c0:0e:af:8a:59:3d:ae:44:69:d4: 20:08:81:83:49:9d:55:67:30:7a:13:80:13:9d:09: ff:72:07:17:3b:d6:16:7e:3d:0a:44:82:83:1b:33: 12:89:ed:c3:ea:62:23:b7:62:b4:22:83:fa:f0:a3: d0:7f:1a:06:18:cc:6a:09:53:22:68:36:4a:24:7a: 51:9d:1d:f9:b0:28:80:4e:c9:97:3d:b0:31:5d:0a: 35:e4:5f:6b:4e:b3:7c:44:2d:51:d0:bf:0f:8f:07: 47:fb:0d:3a:22:6a:46:9f:ad:79:2b:62:84:06:c4: d5:cb:a6:2d:8e:7d:a4:52:a9:af:11:20:d9:4d:aa: 65:59:0d:fe:3a:9b:ce:ac:a9:cf:e0:f9:7a:91:b1: 9e:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 12:40:8A:40:2A:F8:8E:4C:8F:E4:6C:E2:2F:20:79:E9:20:3B:5C:98 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b7dfc4e3-7bd2-4b1d-b6a9-afbe5b948e17.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.70.0.0/16 Signature Algorithm: sha256WithRSAEncryption 9f:4b:ba:15:14:de:c1:57:ac:73:81:88:61:42:ac:d4:98:af: 74:75:f0:45:5c:1f:f4:b0:7e:9e:ed:66:88:70:d5:01:57:c0: 8b:79:f2:ee:02:04:b9:99:61:09:3e:6e:76:06:87:d7:0e:a8: 08:71:bf:79:14:a0:e1:c0:54:28:63:82:82:c5:2f:70:9a:0c: a9:7b:a6:a3:67:05:0f:41:51:b5:3e:2b:7a:86:a7:e1:03:08: 5a:4a:95:4a:da:33:c2:30:f6:fb:b9:ab:ed:07:ee:6e:62:a5: a7:f5:b6:87:2c:3e:98:9a:71:b8:27:f7:db:4a:0f:01:de:81: 2f:84:ae:ac:2b:f2:7a:7b:fe:93:0b:b0:99:a5:8a:09:6b:d1: b0:fd:aa:8b:37:78:dd:61:73:ec:1b:a0:b1:bf:a0:10:4b:3a: 23:66:62:54:81:c1:ed:84:70:99:96:19:07:7f:31:9a:58:29: 7a:8f:af:a1:a0:c7:6a:e4:92:d3:f8:c8:05:2d:b0:b0:0a:7a: 5d:07:e2:4f:e3:38:46:31:cb:61:b1:5a:ce:2e:59:7e:8c:88: 20:32:64:0d:1d:c2:d6:11:8f:32:da:5f:d2:57:71:c1:01:45: f8:a8:52:19:6f:49:ab:60:ff:5c:3f:82:87:c9:63:6e:5a:f2: fa:ef:70:61 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUBn8n8XSq/WIfvQ6s52K87ClZ4TowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAwMTE2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmRmZTExYTNhMWNkY2Y5YzQ2ZTc1OWU2YjVmNzM4ZmNh YjFlNDgwODIxMjg4YmJiZjkxNmYxYzJmMzE0ZTNlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC8pA2HyZixZkN6vjtRLSG1Lxk8YS7PyNvwQJbRU40Ks6O0 mNE22GCtM3y7mSO8S3e7+WmvUBGfH+ZCcMWs2Jx0jS+bcCLlKXZWJsaEF2dVQC5h rrqBr1euIWPQDDvg37ymH9Jc+TOaRjnUltRuwA6vilk9rkRp1CAIgYNJnVVnMHoT gBOdCf9yBxc71hZ+PQpEgoMbMxKJ7cPqYiO3YrQig/rwo9B/GgYYzGoJUyJoNkok elGdHfmwKIBOyZc9sDFdCjXkX2tOs3xELVHQvw+PB0f7DToiakafrXkrYoQGxNXL pi2OfaRSqa8RINlNqmVZDf46m86sqc/g+XqRsZ7LAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUEkCKQCr4jkyP5GziLyB56SA7XJgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I3ZGZjNGUzLTdiZDItNGIxZC1iNmE5LWFmYmU1Yjk0OGUxNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4RjANBgkqhkiG9w0BAQsFAAOCAQEAn0u6FRTewVesc4GIYUKs1JivdHXw RVwf9LB+nu1miHDVAVfAi3ny7gIEuZlhCT5udgaH1w6oCHG/eRSg4cBUKGOCgsUv cJoMqXumo2cFD0FRtT4reoan4QMIWkqVStozwjD2+7mr7QfubmKlp/W2hyw+mJpx uCf320oPAd6BL4SurCvyenv+kwuwmaWKCWvRsP2qizd43WFz7Bugsb+gEEs6I2Zi VIHB7YRwmZYZB38xmlgpeo+voaDHauSS0/jIBS2wsAp6XQfiT+M4RjHLYbFazi5Z foyIIDJkDR3C1hGPMtpf0ldxwQFF+KhSGW9Jq2D/XD+Ch8ljblry+u9wYQ== -----END CERTIFICATE-----Generated at Mon Mar 2 07:07:25 2026 by rpki-client