$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9aa3453-9174-4296-bb91-a7a12b37376d.roa File: b9aa3453-9174-4296-bb91-a7a12b37376d.roa (raw, json) Hash identifier: Vu6f3uZaUYRNV/EWcXawGFksLkEt/59CB8k978aHo7c= Subject key identifier: 37:6E:E8:E5:EB:1E:79:5F:25:B3:0B:A8:7E:7D:B1:28:C8:97:73:E3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0AB59C2290489297EEE84985C41CB6E6BE53367F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9aa3453-9174-4296-bb91-a7a12b37376d.roa Signing time: Wed 18 Feb 2026 00:30:53 +0000 ROA not before: Wed 18 Feb 2026 00:30:53 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 216.87.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:b5:9c:22:90:48:92:97:ee:e8:49:85:c4:1c:b6:e6:be:53:36:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 00:30:53 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=91a92e738c928b4a2a6f58b67834ce583885035406975d50c294e0f7a01d89fe, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:aa:b4:74:d0:40:ff:20:e4:90:08:bd:19:00: c2:98:18:f6:24:4f:10:77:84:7b:d7:3f:a2:16:b8: b0:47:58:84:74:07:db:64:03:41:3e:26:20:99:cb: 66:c7:2a:bc:2d:e0:1a:15:7f:1d:f4:54:44:49:a0: 85:71:a2:c6:d2:4b:45:45:39:8b:49:f0:32:69:f9: f1:a8:ac:e2:46:ce:db:75:a3:c8:ff:5a:2e:2c:79: c7:4d:5c:9b:fd:60:0b:27:34:c9:9d:13:a0:ad:66: fd:07:c9:78:19:8f:5c:bb:2b:c4:32:b2:38:e9:99: 79:7f:a0:97:b5:aa:fc:92:93:96:09:f5:47:c3:06: a9:7b:49:c0:45:87:7a:49:ee:6f:b2:24:31:2f:dd: b0:b6:bd:c7:3b:e9:52:03:33:09:c7:ce:48:9a:d8: 14:b5:05:cc:a1:f5:5b:ae:45:ab:8d:8e:f1:ae:92: e3:b2:ab:e3:d1:a6:61:a5:61:ab:1b:c4:b6:7a:55: 16:2e:34:d8:47:d5:47:9a:dc:3d:91:aa:d8:bd:4f: 40:0e:10:0c:83:14:43:76:d9:5f:ec:c6:c0:74:31: 70:71:53:26:cc:f2:39:11:af:c9:5f:50:c6:f9:24: 88:79:f8:36:59:94:5d:c2:01:0d:41:47:e1:75:75: 28:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:6E:E8:E5:EB:1E:79:5F:25:B3:0B:A8:7E:7D:B1:28:C8:97:73:E3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9aa3453-9174-4296-bb91-a7a12b37376d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.87.4.0/22 Signature Algorithm: sha256WithRSAEncryption ab:c5:b6:00:92:40:69:6b:f5:12:72:13:1e:c6:03:6d:2a:25: f3:1f:84:16:57:32:77:03:0f:f1:ea:40:c4:00:da:fa:87:00: b5:51:02:1e:f5:c1:28:ab:c5:49:fc:3b:bd:95:a6:67:70:e3: 22:b8:18:01:51:b1:ec:c8:81:31:d5:05:09:92:32:da:c4:47: 01:18:cd:93:77:60:7e:a2:dc:ce:86:2b:87:ae:6c:98:ef:a0: 38:80:75:2a:a7:87:8b:55:66:e9:ef:e3:9b:0b:a8:91:f4:6d: fc:f5:15:67:90:45:66:e4:ad:ac:83:dd:e8:41:fa:87:a3:5f: 3e:11:3f:bd:92:6e:5c:66:bf:9a:2e:5b:49:85:1d:06:9c:be: bf:12:9d:7e:b2:57:b4:8b:7b:3d:f3:5b:7f:cc:45:37:af:e0: 5f:b7:f2:2d:ed:1b:a3:2c:8e:0a:7a:8b:b8:49:ca:7c:8b:49: 01:d0:05:c7:b1:ff:6c:67:9d:2e:8a:48:cc:c9:6d:a1:4f:5a: c4:4c:e8:cc:81:dc:c7:57:64:c0:aa:93:d4:c5:67:4a:a1:30: 84:45:46:dd:d0:a1:31:34:e2:a9:bf:d1:b5:6e:29:1f:9a:b9: 6f:d2:bb:e6:ad:4b:cf:3d:37:0c:9c:42:f3:4c:06:f0:a7:15: ea:cb:b0:7c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUCrWcIpBIkpfu6EmFxBy25r5TNn8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE4MDAzMDUzWhcNMjYwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MWE5MmU3MzhjOTI4YjRhMmE2ZjU4YjY3ODM0Y2U1ODM4 ODUwMzU0MDY5NzVkNTBjMjk0ZTBmN2EwMWQ4OWZlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2qrR00ED/IOSQCL0ZAMKYGPYkTxB3hHvXP6IWuLBHWIR0 B9tkA0E+JiCZy2bHKrwt4BoVfx30VERJoIVxosbSS0VFOYtJ8DJp+fGorOJGztt1 o8j/Wi4secdNXJv9YAsnNMmdE6CtZv0HyXgZj1y7K8QysjjpmXl/oJe1qvySk5YJ 9UfDBql7ScBFh3pJ7m+yJDEv3bC2vcc76VIDMwnHzkia2BS1Bcyh9VuuRauNjvGu kuOyq+PRpmGlYasbxLZ6VRYuNNhH1Uea3D2Rqti9T0AOEAyDFEN22V/sxsB0MXBx UybM8jkRr8lfUMb5JIh5+DZZlF3CAQ1BR+F1dShvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUN27o5eseeV8lswuofn2xKMiXc+MwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5YWEzNDUzLTkxNzQtNDI5Ni1iYjkxLWE3YTEyYjM3Mzc2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBALYVwQwDQYJKoZIhvcNAQELBQADggEBAKvFtgCSQGlr9RJyEx7GA20qJfMf hBZXMncDD/HqQMQA2vqHALVRAh71wSirxUn8O72Vpmdw4yK4GAFRsezIgTHVBQmS MtrERwEYzZN3YH6i3M6GK4eubJjvoDiAdSqnh4tVZunv45sLqJH0bfz1FWeQRWbk rayD3ehB+oejXz4RP72Sblxmv5ouW0mFHQacvr8SnX6yV7SLez3zW3/MRTev4F+3 8i3tG6Msjgp6i7hJynyLSQHQBcex/2xnnS6KSMzJbaFPWsRM6MyB3MdXZMCqk9TF Z0qhMIRFRt3QoTE04qm/0bVuKR+auW/Su+atS889NwycQvNMBvCnFerLsHw= -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:46 2026 by rpki-client