$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa File: b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa (raw, json) Hash identifier: 2BAQQ0hKR1NNOGjGues/z6ZW2hSsQ1Um72oA4GXh23s= Subject key identifier: 4A:33:77:23:54:A4:AD:6E:E6:5D:E7:C9:51:7D:87:3B:49:05:4F:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1343829872BBE483C230D387CDD31BAFA54DC903 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa Signing time: Thu 26 Feb 2026 00:00:45 +0000 ROA not before: Thu 26 Feb 2026 00:00:45 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 75.2.128.0/19 maxlen: 19 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:43:82:98:72:bb:e4:83:c2:30:d3:87:cd:d3:1b:af:a5:4d:c9:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:00:45 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=940eb7372580cc80e1c0f9ca896d2dbb9139adba2856ef317b802ae39dcefcf0, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:5e:56:a9:40:a6:d5:f4:9f:bf:03:46:e8:73: a9:ab:3d:4a:9e:c3:7e:4e:92:b1:ea:bf:ca:90:ca: 6b:bc:56:2e:7c:61:d4:74:c1:eb:b5:84:d2:fa:7b: 86:a8:2f:96:83:11:06:35:61:a3:9c:f6:e3:f4:b0: ee:26:01:e2:6c:6c:46:15:35:cc:b8:8a:c4:6f:0f: c8:20:26:86:6b:b4:8e:a2:ec:ce:06:5d:65:7c:9c: 14:e6:18:31:b0:fd:ce:82:93:63:7f:5a:61:1d:26: bf:a3:40:8d:bb:1d:0e:57:61:ae:1c:dc:02:6f:16: 91:95:c8:60:a4:85:73:f3:1b:d5:de:4f:85:29:e1: 94:d5:6d:68:92:11:31:68:64:b5:1e:01:a3:1e:23: 8c:4f:77:98:fb:1d:90:7f:6e:0f:b9:62:bf:e6:0c: e2:ce:87:8c:6a:68:bd:c6:7e:7a:11:d4:86:ad:17: 76:fb:9a:63:f5:9d:9b:ea:df:81:00:25:4e:74:31: 93:11:de:1b:dd:d2:62:39:e6:f9:8a:5f:be:61:f2: 6f:7b:be:fe:42:65:b5:06:50:e1:87:93:46:12:3f: 2d:00:68:c1:20:26:d2:5b:6c:73:63:b1:f1:42:00: 19:78:02:1e:b4:94:03:3f:63:a7:9a:5b:e2:f4:b5: 4c:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:33:77:23:54:A4:AD:6E:E6:5D:E7:C9:51:7D:87:3B:49:05:4F:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/b9da330c-0bd7-48d2-a30f-06354eeb87e5.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 75.2.128.0/19 Signature Algorithm: sha256WithRSAEncryption c1:1f:aa:7e:91:fa:28:b9:b7:1f:f5:c9:1e:07:34:30:a5:eb: e2:e1:98:ad:c6:a0:3a:bb:12:84:2a:a7:7f:4f:f8:82:9e:9f: a7:e5:29:59:b0:15:b6:92:33:13:9a:2c:34:5d:0a:81:23:d0: f5:e2:9e:52:20:d8:05:b5:fe:0c:74:fd:03:5a:2a:96:72:ad: f1:a4:9a:cb:3e:25:e8:7a:7f:c9:ef:d6:bd:0d:66:ed:5d:65: 60:04:b7:8e:91:20:20:e5:57:a0:c6:93:2a:e5:a5:43:1c:0e: 5d:bf:6f:c6:36:a9:78:10:e8:3f:b7:7e:98:91:cd:74:b3:25: a1:cb:8f:8c:5d:df:20:20:a7:e7:e2:00:be:0e:24:f3:4d:93: 90:d9:99:bd:23:4a:48:84:e5:39:6f:f8:ce:68:ab:de:71:9c: 83:8d:1b:a9:dc:33:6a:8d:a7:f5:80:40:66:53:0f:f9:51:ad: 71:a1:04:b0:b8:6d:f0:5c:be:4a:a9:ff:97:ec:27:55:05:b0: 09:c7:43:62:93:11:49:ad:20:cc:87:68:fc:76:fe:ca:5d:14: 09:a4:14:f6:29:d9:85:49:e6:5a:08:de:56:96:39:6b:66:41: cc:a1:c4:37:73:d3:9a:ee:fe:f1:7f:65:76:a5:2e:25:e2:b4: 0b:cc:e1:49 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUE0OCmHK75IPCMNOHzdMbr6VNyQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAwMDQ1WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDBlYjczNzI1ODBjYzgwZTFjMGY5Y2E4OTZkMmRiYjkx MzlhZGJhMjg1NmVmMzE3YjgwMmFlMzlkY2VmY2YwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDWXlapQKbV9J+/A0boc6mrPUqew35OkrHqv8qQymu8Vi58 YdR0weu1hNL6e4aoL5aDEQY1YaOc9uP0sO4mAeJsbEYVNcy4isRvD8ggJoZrtI6i 7M4GXWV8nBTmGDGw/c6Ck2N/WmEdJr+jQI27HQ5XYa4c3AJvFpGVyGCkhXPzG9Xe T4Up4ZTVbWiSETFoZLUeAaMeI4xPd5j7HZB/bg+5Yr/mDOLOh4xqaL3GfnoR1Iat F3b7mmP1nZvq34EAJU50MZMR3hvd0mI55vmKX75h8m97vv5CZbUGUOGHk0YSPy0A aMEgJtJbbHNjsfFCABl4Ah60lAM/Y6eaW+L0tUx1AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUSjN3I1SkrW7mXefJUX2HO0kFT6UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2I5ZGEzMzBjLTBiZDctNDhkMi1hMzBmLTA2MzU0ZWViODdlNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAVLAoAwDQYJKoZIhvcNAQELBQADggEBAMEfqn6R+ii5tx/1yR4HNDCl6+Lh mK3GoDq7EoQqp39P+IKen6flKVmwFbaSMxOaLDRdCoEj0PXinlIg2AW1/gx0/QNa KpZyrfGkmss+Jeh6f8nv1r0NZu1dZWAEt46RICDlV6DGkyrlpUMcDl2/b8Y2qXgQ 6D+3fpiRzXSzJaHLj4xd3yAgp+fiAL4OJPNNk5DZmb0jSkiE5Tlv+M5oq95xnION G6ncM2qNp/WAQGZTD/lRrXGhBLC4bfBcvkqp/5fsJ1UFsAnHQ2KTEUmtIMyHaPx2 /spdFAmkFPYp2YVJ5loI3laWOWtmQcyhxDdz05ru/vF/ZXalLiXitAvM4Uk= -----END CERTIFICATE-----Generated at Sun Mar 1 23:48:31 2026 by rpki-client