$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba33d80d-0da9-4a51-94ce-b8f1a181e413.roa File: ba33d80d-0da9-4a51-94ce-b8f1a181e413.roa (raw, json) Hash identifier: kSoVkkt5LToY3Vddb0qycIQpM1QKoWh98Mgw7SZ653E= Subject key identifier: 55:DF:47:5F:BE:C7:0F:40:FE:4B:4F:25:76:D3:2D:13:5F:E0:1B:ED Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 46CC540045BB559B6E2EBACECDCE48DB313BD087 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba33d80d-0da9-4a51-94ce-b8f1a181e413.roa Signing time: Sat 21 Feb 2026 01:00:03 +0000 ROA not before: Sat 21 Feb 2026 01:00:03 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.171.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 46:cc:54:00:45:bb:55:9b:6e:2e:ba:ce:cd:ce:48:db:31:3b:d0:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:00:03 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=041fe1c098d8d2b445cb174a447664a6537ba94020f91d6fa00f3a7f620ceb2a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:b9:31:11:02:61:10:af:29:a0:ef:ee:80:79: 09:b4:c9:72:38:31:ff:d3:b0:4a:12:9d:d5:32:3a: eb:19:24:ed:1c:31:85:49:2f:ec:10:fb:9c:48:37: 02:30:f4:af:81:a5:a4:ec:42:ff:47:b5:a6:e5:bf: 7d:cf:0e:80:e0:9c:16:61:a7:03:4d:dd:88:e4:58: 9f:f6:5b:30:df:7a:f1:d2:98:c8:72:69:b3:9b:f1: 3f:7f:9e:83:79:ad:35:2b:de:1e:ab:03:e6:e3:11: 09:32:91:73:a2:74:2f:f0:ae:2e:49:1f:bf:11:fb: ce:a2:21:ce:39:2e:09:4c:e0:2d:c6:27:c5:3d:e8: 4d:3c:01:17:57:7a:bd:be:64:76:ec:b7:c4:03:5a: c3:26:f8:e1:48:cf:75:f4:ca:27:52:bc:91:08:33: 4f:60:b4:a6:94:63:2c:f2:7e:77:20:a9:64:d4:a2: 86:5e:5a:99:b6:32:6d:c9:a7:32:26:c9:0a:a8:1b: ea:9a:11:81:e1:aa:43:a6:4c:8d:31:07:e9:0f:c0: 22:3f:61:11:1b:33:a8:67:83:8d:fc:5c:8e:1f:3d: a0:a9:ac:37:40:83:43:70:d6:85:f8:c3:0c:b4:66: 0a:9c:f5:4d:6a:db:c4:ba:c5:17:02:37:ef:fa:b9: 37:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:DF:47:5F:BE:C7:0F:40:FE:4B:4F:25:76:D3:2D:13:5F:E0:1B:ED X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba33d80d-0da9-4a51-94ce-b8f1a181e413.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.171.0/24 Signature Algorithm: sha256WithRSAEncryption 75:ba:e4:a9:81:7b:d0:11:a0:5c:56:13:d6:dc:18:32:ac:79: bc:d1:33:ed:c0:51:6f:3d:d8:03:a8:5f:90:a1:fa:6f:12:fe: 14:1d:29:ae:d4:e6:0c:75:73:6f:7c:af:e3:e5:d6:7c:73:32: 7a:84:fc:c1:8f:88:8d:51:c8:4f:46:66:35:b2:95:1d:d4:e5: f8:26:18:b3:ae:1a:c0:0c:88:b4:c3:43:97:fb:52:92:0c:e5: a7:2c:fb:42:a1:35:a3:75:ce:42:45:da:db:01:41:75:47:6d: 5b:0c:9f:e4:0a:df:95:2e:6a:25:45:a4:53:76:81:fa:91:27: 3a:ab:c9:54:0e:a5:25:80:42:ed:cd:ef:d2:c6:97:9f:b8:df: 1f:d8:c9:5e:0e:7d:e5:83:75:d5:49:75:fc:7f:a4:3f:b1:8c: 9b:00:ba:72:e3:80:fc:f2:55:b1:fc:2d:46:25:3d:49:35:f2: 19:a6:80:2c:a5:1e:75:1a:98:51:3b:58:c8:84:75:dd:52:d3: 52:3d:34:23:b4:3d:66:e2:91:43:0d:98:c2:a6:a3:2a:3f:77: 84:d3:00:f4:73:44:e5:c2:d7:44:62:1d:df:42:70:e8:4a:28: 77:85:9e:2d:84:94:24:76:ff:1b:a8:23:40:99:a8:22:50:eb: 2a:a8:e0:a7 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURsxUAEW7VZtuLrrOzc5I2zE70IcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEwMDAzWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwNDFmZTFjMDk4ZDhkMmI0NDVjYjE3NGE0NDc2NjRhNjUz N2JhOTQwMjBmOTFkNmZhMDBmM2E3ZjYyMGNlYjJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpuTERAmEQrymg7+6AeQm0yXI4Mf/TsEoSndUyOusZJO0c MYVJL+wQ+5xINwIw9K+BpaTsQv9Htablv33PDoDgnBZhpwNN3YjkWJ/2WzDfevHS mMhyabOb8T9/noN5rTUr3h6rA+bjEQkykXOidC/wri5JH78R+86iIc45LglM4C3G J8U96E08ARdXer2+ZHbst8QDWsMm+OFIz3X0yidSvJEIM09gtKaUYyzyfncgqWTU ooZeWpm2Mm3JpzImyQqoG+qaEYHhqkOmTI0xB+kPwCI/YREbM6hng438XI4fPaCp rDdAg0Nw1oX4wwy0Zgqc9U1q28S6xRcCN+/6uTfhAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUVd9HX77HD0D+S08ldtMtE1/gG+0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhMzNkODBkLTBkYTktNGE1MS05NGNlLWI4ZjFhMTgxZTQxMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsKswDQYJKoZIhvcNAQELBQADggEBAHW65KmBe9ARoFxWE9bcGDKsebzR M+3AUW892AOoX5Ch+m8S/hQdKa7U5gx1c298r+Pl1nxzMnqE/MGPiI1RyE9GZjWy lR3U5fgmGLOuGsAMiLTDQ5f7UpIM5acs+0KhNaN1zkJF2tsBQXVHbVsMn+QK35Uu aiVFpFN2gfqRJzqryVQOpSWAQu3N79LGl5+43x/YyV4OfeWDddVJdfx/pD+xjJsA unLjgPzyVbH8LUYlPUk18hmmgCylHnUamFE7WMiEdd1S01I9NCO0PWbikUMNmMKm oyo/d4TTAPRzROXC10RiHd9CcOhKKHeFni2ElCR2/xuoI0CZqCJQ6yqo4Kc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:24 2026 by rpki-client