$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b971328c-a37b-45b1-9c93-c0934a356378.roa File: b971328c-a37b-45b1-9c93-c0934a356378.roa (raw, json) Hash identifier: mL1tf6E8mSpojA6LqN5wy0aeeU/NIBcey8o61aoYDg8= Subject key identifier: 2B:4A:BA:37:53:E1:67:D9:DD:B6:92:0A:5B:65:26:B9:0D:48:59:C0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7A1EF11596BAD762165D23DBCE68C3D1161DE8A3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b971328c-a37b-45b1-9c93-c0934a356378.roa Signing time: Sun 01 Mar 2026 00:20:41 +0000 ROA not before: Sun 01 Mar 2026 00:20:41 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 57.84.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:1e:f1:15:96:ba:d7:62:16:5d:23:db:ce:68:c3:d1:16:1d:e8:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:20:41 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=8c247ad083d62f16d507b97f0ef64019dd34ec3ee9a20238dbb6063367f50e37, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:35:1d:4e:c0:b5:a4:1d:94:10:fc:a3:80:0f: f2:01:fc:ad:56:cc:84:9b:c3:04:66:e8:f0:8d:83: f9:ed:3f:bf:d9:17:21:c7:7e:5c:06:6f:c9:f7:34: b2:32:ae:b3:27:27:ab:a2:35:a9:23:cb:17:3c:c7: 32:33:a4:96:2d:c5:de:e7:15:55:08:a3:b8:88:c8: 96:23:bd:79:ae:1b:75:9b:45:7d:a8:50:86:e7:f5: bb:95:4f:02:97:5f:26:ca:bb:50:af:71:2f:c3:bc: 20:3b:79:bc:2e:52:73:81:26:7c:66:bb:a2:0a:50: 23:3d:1a:8c:2a:e4:2c:09:db:8e:a3:e8:bd:fd:8d: 6c:09:4e:aa:5c:af:f4:03:8c:0a:0c:91:95:2f:bc: 11:49:b6:4d:01:6e:4c:7f:d5:53:5f:cd:34:fe:49: dd:27:b1:68:26:12:a0:bc:d9:e0:49:fd:1c:9a:4d: b3:45:67:7c:20:34:e0:c8:7e:0c:1f:3b:79:84:56: 95:8d:66:aa:38:35:3c:10:3a:54:09:6b:6a:8c:62: 90:b9:ef:90:1c:49:6a:2c:a6:ef:92:d6:c2:b8:ac: 64:d8:c2:ac:a4:85:8b:6f:ae:fe:f2:e7:55:9c:b5: de:ae:ae:5e:96:0c:17:18:1a:3f:92:f4:1d:aa:62: 3e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:4A:BA:37:53:E1:67:D9:DD:B6:92:0A:5B:65:26:B9:0D:48:59:C0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b971328c-a37b-45b1-9c93-c0934a356378.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 57.84.0.0/16 Signature Algorithm: sha256WithRSAEncryption b7:7f:0f:4a:ef:7b:82:e9:3a:a3:cb:1b:43:20:01:ab:4c:ba: 03:03:8b:12:26:cb:c7:01:ce:cb:6b:74:1e:e7:5b:91:34:dc: c5:9b:7b:2a:a6:01:36:45:52:62:6f:05:04:f1:d9:45:e7:1d: 12:f3:13:2c:32:7e:1a:14:75:d0:01:55:5a:c3:7f:8f:39:ac: 02:d8:f6:6f:af:10:66:94:9d:ae:c4:2e:ee:48:be:7e:2e:b1: c6:13:53:b1:91:21:6d:18:de:fd:f4:7a:c7:48:fd:ce:6c:b7: 67:3b:fe:65:ec:8d:7d:0c:76:51:4f:85:8a:cd:e3:2d:af:3d: 09:a9:66:d1:e9:e5:dc:bb:60:87:b5:9b:cc:b2:87:f4:d1:40: 8d:ce:94:56:44:a6:96:49:87:e2:94:c2:95:2e:d3:ed:7d:ff: d3:1e:80:0f:0d:e1:c3:6d:98:2f:59:ce:57:d6:61:70:e3:70: c8:33:e8:7f:44:c6:cf:d9:9f:a6:59:11:d1:3a:66:91:90:f6: 7c:87:fe:08:50:45:f3:48:c7:e1:c0:6d:5c:91:93:ba:8e:d7: cf:77:3a:6e:a4:d3:f6:0d:e3:86:85:39:91:5b:7d:49:89:3f: 52:5f:db:ed:f6:b6:70:4b:bb:f1:39:13:74:80:f2:f4:c8:5b: e2:1e:5c:2f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUeh7xFZa612IWXSPbzmjD0RYd6KMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMDQxWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YzI0N2FkMDgzZDYyZjE2ZDUwN2I5N2YwZWY2NDAxOWRk MzRlYzNlZTlhMjAyMzhkYmI2MDYzMzY3ZjUwZTM3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzNR1OwLWkHZQQ/KOAD/IB/K1WzISbwwRm6PCNg/ntP7/Z FyHHflwGb8n3NLIyrrMnJ6uiNakjyxc8xzIzpJYtxd7nFVUIo7iIyJYjvXmuG3Wb RX2oUIbn9buVTwKXXybKu1CvcS/DvCA7ebwuUnOBJnxmu6IKUCM9Gowq5CwJ246j 6L39jWwJTqpcr/QDjAoMkZUvvBFJtk0Bbkx/1VNfzTT+Sd0nsWgmEqC82eBJ/Rya TbNFZ3wgNODIfgwfO3mEVpWNZqo4NTwQOlQJa2qMYpC575AcSWospu+S1sK4rGTY wqykhYtvrv7y51Wctd6url6WDBcYGj+S9B2qYj5nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUK0q6N1PhZ9ndtpIKW2UmuQ1IWcAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5NzEzMjhjLWEzN2ItNDViMS05YzkzLWMwOTM0YTM1NjM3OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA5VDANBgkqhkiG9w0BAQsFAAOCAQEAt38PSu97guk6o8sbQyABq0y6AwOL EibLxwHOy2t0HudbkTTcxZt7KqYBNkVSYm8FBPHZRecdEvMTLDJ+GhR10AFVWsN/ jzmsAtj2b68QZpSdrsQu7ki+fi6xxhNTsZEhbRje/fR6x0j9zmy3Zzv+ZeyNfQx2 UU+Fis3jLa89Calm0enl3Ltgh7WbzLKH9NFAjc6UVkSmlkmH4pTClS7T7X3/0x6A Dw3hw22YL1nOV9ZhcONwyDPof0TGz9mfplkR0TpmkZD2fIf+CFBF80jH4cBtXJGT uo7Xz3c6bqTT9g3jhoU5kVt9SYk/Ul/b7fa2cEu78TkTdIDy9Mhb4h5cLw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:33:49 2026 by rpki-client