$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8a5c33c-4221-4d45-9196-c1249651c336.roa File: b8a5c33c-4221-4d45-9196-c1249651c336.roa (raw, json) Hash identifier: hYeZ/QWkNLkJ8plHVtpGyTAL/FyWN2OJGqKwcJHmtGc= Subject key identifier: 57:4D:05:B7:F8:C3:04:6E:EC:57:01:AC:30:AB:FE:5B:1F:58:78:55 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 25523D6431FDBA820A36D215B197BC72BBE79527 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8a5c33c-4221-4d45-9196-c1249651c336.roa Signing time: Fri 06 Feb 2026 00:20:23 +0000 ROA not before: Fri 06 Feb 2026 00:20:23 +0000 ROA not after: Thu 07 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.8.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:52:3d:64:31:fd:ba:82:0a:36:d2:15:b1:97:bc:72:bb:e7:95:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 6 00:20:23 2026 GMT Not After : May 7 23:59:59 2026 GMT Subject: serialNumber=e3a5ced16c686bfca06df88ad9059adda284669b2af5028ff550d88074e08b53, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:2d:3f:e8:50:91:6b:27:84:5a:98:e4:83:0f: ec:91:bf:8a:49:24:85:a7:8e:c0:7d:fb:54:39:c0: 23:f7:f4:ff:d7:73:ff:fc:32:cc:8d:54:a8:64:ae: 95:38:56:f1:96:8b:b4:72:10:58:04:c4:94:55:22: 14:bb:e8:e2:99:74:32:52:27:e7:62:3a:39:ec:92: 1c:6f:b3:45:de:e6:a4:09:05:0a:3a:95:27:b4:43: d5:df:ca:c0:93:9b:b9:1b:9a:25:2d:f7:6d:f5:7d: 47:a1:62:4f:1a:97:19:6e:1e:e0:2b:62:07:1c:a9: 41:92:e7:17:95:85:87:29:a3:63:de:4b:ee:b4:0d: d4:bc:c0:49:61:63:f6:09:6a:88:13:94:ff:8b:91: 61:21:b5:b3:8f:ff:18:35:a8:1b:33:35:7e:b9:6f: ee:68:41:43:74:82:72:68:a3:eb:6e:e9:53:98:e1: 11:0d:af:1d:62:a5:f5:13:6d:fc:1b:b6:0e:9a:58: 05:87:91:02:ee:36:b4:55:93:b6:c1:8a:f2:6a:48: b9:f8:d9:6b:c0:9f:6c:16:5a:35:10:a5:a2:d5:d6: 9f:da:e9:d6:f1:dc:d3:51:56:4b:79:aa:c1:0f:af: d7:ac:f6:69:5a:13:2e:88:03:e4:63:73:35:65:51: 1d:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4D:05:B7:F8:C3:04:6E:EC:57:01:AC:30:AB:FE:5B:1F:58:78:55 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b8a5c33c-4221-4d45-9196-c1249651c336.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.8.0.0/16 Signature Algorithm: sha256WithRSAEncryption d0:80:f6:92:60:de:5e:d1:75:9d:a2:fa:7b:6b:8a:42:8c:3b: d3:d0:9a:a6:c1:67:11:50:cb:56:9a:dc:de:28:90:f8:5c:d2: 4c:21:58:1e:42:a8:58:4c:fe:f3:c4:81:56:66:eb:80:62:62: e4:b9:df:db:5f:9c:cf:06:3a:01:54:e8:52:45:42:59:44:ce: 97:29:97:fc:42:a2:ef:bd:ee:62:35:a9:2a:f3:ba:2d:3b:66: b9:5c:3d:22:dc:08:b7:b2:21:e1:b0:9f:7a:11:05:93:2c:46: e6:0a:64:84:ce:98:b7:90:6b:26:5e:7c:9c:3d:20:5a:29:1b: c6:1c:bd:0f:90:3f:43:94:63:41:b1:d9:b0:0a:47:b9:d2:36: 33:4c:ce:6b:12:d9:66:bd:b6:5e:33:17:c3:13:84:28:f5:32: d0:70:a1:b5:a1:5f:88:a5:d3:49:b8:83:8b:dd:d9:4f:2d:79: c8:67:87:56:4f:0d:db:40:2b:b3:e5:4c:22:43:f3:2d:34:d0: 62:a1:d2:04:57:b7:7b:2b:56:fa:d7:dc:da:09:82:1e:0e:0e: c4:a3:9e:55:92:b9:c2:2e:aa:83:fc:7f:76:be:04:9e:3e:49: b6:1f:5c:2a:ac:d9:f8:f8:a4:31:e1:3d:21:22:d5:6b:59:f1: 6d:aa:52:e1 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJVI9ZDH9uoIKNtIVsZe8crvnlScwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA2MDAyMDIzWhcNMjYwNTA3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlM2E1Y2VkMTZjNjg2YmZjYTA2ZGY4OGFkOTA1OWFkZGEy ODQ2NjliMmFmNTAyOGZmNTUwZDg4MDc0ZTA4YjUzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+LT/oUJFrJ4RamOSDD+yRv4pJJIWnjsB9+1Q5wCP39P/X c//8MsyNVKhkrpU4VvGWi7RyEFgExJRVIhS76OKZdDJSJ+diOjnskhxvs0Xe5qQJ BQo6lSe0Q9XfysCTm7kbmiUt9231fUehYk8alxluHuArYgccqUGS5xeVhYcpo2Pe S+60DdS8wElhY/YJaogTlP+LkWEhtbOP/xg1qBszNX65b+5oQUN0gnJoo+tu6VOY 4RENrx1ipfUTbfwbtg6aWAWHkQLuNrRVk7bBivJqSLn42WvAn2wWWjUQpaLV1p/a 6dbx3NNRVkt5qsEPr9es9mlaEy6IA+RjczVlUR3vAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUV00Ft/jDBG7sVwGsMKv+Wx9YeFUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I4YTVjMzNjLTQyMjEtNGQ0NS05MTk2LWMxMjQ5NjUxYzMzNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwBBCDANBgkqhkiG9w0BAQsFAAOCAQEA0ID2kmDeXtF1naL6e2uKQow709Ca psFnEVDLVprc3iiQ+FzSTCFYHkKoWEz+88SBVmbrgGJi5Lnf21+czwY6AVToUkVC WUTOlymX/EKi773uYjWpKvO6LTtmuVw9ItwIt7Ih4bCfehEFkyxG5gpkhM6Yt5Br Jl58nD0gWikbxhy9D5A/Q5RjQbHZsApHudI2M0zOaxLZZr22XjMXwxOEKPUy0HCh taFfiKXTSbiDi93ZTy15yGeHVk8N20Ars+VMIkPzLTTQYqHSBFe3eytW+tfc2gmC Hg4OxKOeVZK5wi6qg/x/dr4Enj5Jth9cKqzZ+PikMeE9ISLVa1nxbapS4Q== -----END CERTIFICATE-----Generated at Mon Mar 2 00:17:39 2026 by rpki-client