$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba694444-566a-4643-ab64-491712a1b999.roa File: ba694444-566a-4643-ab64-491712a1b999.roa (raw, json) Hash identifier: jVEoCcupx0g09vLApL6n02qxwECCROGIkJrY7QHLc3k= Subject key identifier: 5D:DD:93:75:39:EC:CA:D6:55:97:C3:1A:1C:0F:B4:EC:93:D6:C4:7F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 281DD9A056CB7A12D4384A4C092EC3578E24AB80 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba694444-566a-4643-ab64-491712a1b999.roa Signing time: Wed 25 Feb 2026 00:40:33 +0000 ROA not before: Wed 25 Feb 2026 00:40:33 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.39.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:1d:d9:a0:56:cb:7a:12:d4:38:4a:4c:09:2e:c3:57:8e:24:ab:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:40:33 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=d001f942d9136a12ff66eda55dd09072c8cb8df74024c39ef15af93df3fda362, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:10:2f:57:4f:f4:c8:8e:c4:c9:9d:78:98:93: a8:c4:64:07:8d:a9:9c:98:76:b1:72:b5:7d:95:0a: 89:25:9b:16:9e:e8:ca:84:86:2d:e5:ac:6c:4b:4c: f7:be:07:2e:26:6a:b4:b8:96:c8:2c:ae:7e:c8:31: 82:b1:67:32:3e:92:21:67:88:37:74:60:5e:12:04: 5a:d2:7a:48:90:99:d9:b0:4b:95:8c:39:48:e6:79: 1d:98:1e:52:52:c3:28:80:2f:88:09:42:c1:30:3e: e5:22:9a:1c:ea:84:31:ca:ee:27:54:09:21:c9:98: 2d:61:92:48:8a:c0:4a:db:6e:d4:48:7e:df:4f:41: c3:06:d2:b4:a5:8b:bd:19:b9:ea:3d:d7:11:a4:f8: af:8d:02:36:92:42:09:96:e0:44:0d:51:1f:1d:b8: bc:7f:75:05:ce:e4:1c:e4:90:0b:6e:e5:25:0a:31: 8d:22:e9:b0:64:76:83:35:b0:8a:cb:65:12:83:a7: 61:d5:c7:39:3f:5b:03:0d:b9:98:37:0f:8b:0d:8d: eb:01:d6:8a:4d:38:64:b9:cf:ca:d1:4a:9a:5d:29: 35:5a:f1:5c:eb:13:10:12:0e:e3:57:08:37:55:21: 43:ea:af:7c:98:34:6a:8e:99:48:6c:a1:9c:28:23: 5f:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:DD:93:75:39:EC:CA:D6:55:97:C3:1A:1C:0F:B4:EC:93:D6:C4:7F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba694444-566a-4643-ab64-491712a1b999.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.39.0.0/16 Signature Algorithm: sha256WithRSAEncryption 79:4b:c4:36:f5:b6:d1:74:43:da:a9:4d:75:d3:a2:d1:4c:e6: b2:1a:25:e7:9d:08:76:67:3f:74:5e:9b:19:69:75:95:70:e0: cd:1f:35:8c:e9:ea:7b:7d:a4:c2:ff:8f:0d:89:56:62:5a:12: 59:26:1b:75:96:58:1e:d3:9c:99:33:4e:14:a4:87:a2:be:79: 88:26:63:bb:c6:a0:53:2a:52:6c:a9:ac:e3:df:72:c6:42:19: be:0a:af:19:de:21:e3:c0:49:b9:d5:55:33:0a:ba:f3:97:0a: 48:35:a5:f2:15:dd:a5:25:69:a3:fd:1a:91:e5:6a:f9:7e:90: 35:ef:15:17:fa:63:57:15:b9:14:61:1d:f7:3d:8b:35:eb:b5: 0f:7a:0b:f0:68:a9:b8:4a:eb:0e:34:35:52:a7:3b:e1:fc:7d: 8b:c1:bf:24:e8:e4:dd:c9:94:e8:53:a5:93:e4:6a:1d:37:24: ff:4b:6c:5d:38:a2:c7:ae:0c:6e:5c:b0:16:10:31:5e:1e:52: 2f:b2:5b:9e:f6:a4:bb:f1:be:e6:f1:2c:d7:c8:50:03:09:6f: 58:79:9a:6f:0c:5b:13:61:67:ea:06:b1:c9:44:fa:c1:0a:a8: bc:96:1a:7b:ec:62:37:bf:3b:23:86:27:37:5b:b5:2a:22:e3: f5:6e:11:76 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKB3ZoFbLehLUOEpMCS7DV44kq4AwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDA0MDMzWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMDAxZjk0MmQ5MTM2YTEyZmY2NmVkYTU1ZGQwOTA3MmM4 Y2I4ZGY3NDAyNGMzOWVmMTVhZjkzZGYzZmRhMzYyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9EC9XT/TIjsTJnXiYk6jEZAeNqZyYdrFytX2VCoklmxae 6MqEhi3lrGxLTPe+By4marS4lsgsrn7IMYKxZzI+kiFniDd0YF4SBFrSekiQmdmw S5WMOUjmeR2YHlJSwyiAL4gJQsEwPuUimhzqhDHK7idUCSHJmC1hkkiKwErbbtRI ft9PQcMG0rSli70Zueo91xGk+K+NAjaSQgmW4EQNUR8duLx/dQXO5BzkkAtu5SUK MY0i6bBkdoM1sIrLZRKDp2HVxzk/WwMNuZg3D4sNjesB1opNOGS5z8rRSppdKTVa 8VzrExASDuNXCDdVIUPqr3yYNGqOmUhsoZwoI19TAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXd2TdTnsytZVl8MaHA+07JPWxH8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhNjk0NDQ0LTU2NmEtNDY0My1hYjY0LTQ5MTcxMmExYjk5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoJzANBgkqhkiG9w0BAQsFAAOCAQEAeUvENvW20XRD2qlNddOi0Uzmshol 550Idmc/dF6bGWl1lXDgzR81jOnqe32kwv+PDYlWYloSWSYbdZZYHtOcmTNOFKSH or55iCZju8agUypSbKms499yxkIZvgqvGd4h48BJudVVMwq685cKSDWl8hXdpSVp o/0akeVq+X6QNe8VF/pjVxW5FGEd9z2LNeu1D3oL8GipuErrDjQ1Uqc74fx9i8G/ JOjk3cmU6FOlk+RqHTck/0tsXTiix64MblywFhAxXh5SL7Jbnvaku/G+5vEs18hQ AwlvWHmabwxbE2Fn6gaxyUT6wQqovJYae+xiN787I4YnN1u1KiLj9W4Rdg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:44:06 2026 by rpki-client