$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba899484-5882-499b-8b7f-4bcbdb569b44.roa File: ba899484-5882-499b-8b7f-4bcbdb569b44.roa (raw, json) Hash identifier: m/cHIlRP+JABRKsx+oUWyIJc42IV/vW4dki8hCYQ0hY= Subject key identifier: F2:75:04:8D:03:C6:74:7B:5C:CA:D4:C8:79:8A:06:DA:EF:1A:B8:3A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2B1A96EE66713A2D68E846BDE7F4EEA941A9B5A6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba899484-5882-499b-8b7f-4bcbdb569b44.roa Signing time: Sat 28 Feb 2026 00:20:08 +0000 ROA not before: Sat 28 Feb 2026 00:20:08 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 45.57.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:1a:96:ee:66:71:3a:2d:68:e8:46:bd:e7:f4:ee:a9:41:a9:b5:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:20:08 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=3342041d0e2017e571df53a27bf0638c4a0fc950e9ff9c7015d04bdcead7b979, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:76:f4:e4:89:15:19:a3:ad:d2:40:5e:55:dd: 1f:ec:64:56:6a:4f:7b:35:be:04:35:98:9b:67:3d: 9a:86:fb:45:26:12:0e:04:a2:55:5e:73:9a:f5:28: c3:8b:8a:3b:e3:50:9e:fa:a6:02:04:f5:fe:4d:5d: bd:4c:0d:12:55:d5:5a:01:a4:72:c1:9c:0f:db:0f: f6:6b:49:1b:29:00:03:c8:4a:60:03:6d:2d:dd:18: 5b:43:83:98:31:26:b6:b9:09:77:c5:1c:e4:67:9b: 5d:31:11:c9:15:b6:30:c3:a3:df:cf:40:ee:e5:df: f9:d3:e8:0d:36:cc:4a:96:c4:38:eb:02:06:55:54: e0:76:93:99:92:70:01:7b:66:38:ce:52:31:bd:9d: 9a:e1:81:fe:db:69:39:d1:2b:fc:1e:5f:70:17:b4: d0:b3:b3:7b:28:cf:63:69:26:dc:8b:59:be:50:ca: 5b:0b:65:59:63:1d:3e:d2:b3:be:18:67:b2:b8:d1: 5b:24:39:0c:54:95:06:d0:a1:5c:8f:35:6e:01:cb: a3:86:a2:9e:68:88:fb:89:c1:fc:c1:a0:e3:13:fb: 9c:cd:75:c6:0f:9f:45:59:ed:66:97:8e:10:52:ac: 44:94:de:ac:00:6a:75:f2:fa:29:ed:c8:bb:b0:21: 52:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:75:04:8D:03:C6:74:7B:5C:CA:D4:C8:79:8A:06:DA:EF:1A:B8:3A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba899484-5882-499b-8b7f-4bcbdb569b44.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.57.128.0/17 Signature Algorithm: sha256WithRSAEncryption 84:13:e8:24:d3:9c:4e:dd:21:7f:25:fe:ec:ca:1d:fb:e8:8b: ab:0c:ca:cc:aa:76:11:4e:b9:dd:35:a3:20:8e:8a:47:fb:2b: 89:ab:cd:41:84:aa:83:d2:79:ea:e2:0d:f3:a8:a4:ff:c1:e2: de:52:3a:f2:22:09:cb:23:d7:89:67:81:96:3b:b6:0a:d6:66: 18:b0:8d:97:b2:f9:e2:44:88:78:ae:c8:06:ad:c3:ea:e8:95: 32:b6:3a:e3:f6:e4:cc:43:e5:77:46:33:9d:0f:20:7d:2e:c8: 9a:65:2a:34:f9:c7:d0:55:98:d2:a1:a4:d8:8a:b5:b3:5c:d0: fa:b8:dd:53:bf:47:d4:b4:53:7a:44:96:b0:46:9a:42:5b:09: 82:22:8d:03:b4:b5:f4:35:7e:71:24:f3:73:85:7c:d9:99:ec: 9d:12:39:bd:9a:00:07:25:c8:be:f3:4f:7c:40:d5:7a:43:87: 64:bd:e0:2c:89:ba:33:ca:9f:3c:54:2d:96:8d:5e:1e:53:a7: ec:ae:0c:e0:ad:1b:87:e3:52:85:dd:a8:02:bf:12:42:a3:e6: 6b:ad:b9:62:40:34:66:78:01:a8:26:1d:b4:d1:79:4e:6c:0e: ca:14:5b:f6:b9:44:3a:ff:dd:75:05:41:61:fd:2f:79:0d:dd: 35:b1:a1:99 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKxqW7mZxOi1o6Ea95/TuqUGptaYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAyMDA4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMzQyMDQxZDBlMjAxN2U1NzFkZjUzYTI3YmYwNjM4YzRh MGZjOTUwZTlmZjljNzAxNWQwNGJkY2VhZDdiOTc5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDpdvTkiRUZo63SQF5V3R/sZFZqT3s1vgQ1mJtnPZqG+0Um Eg4EolVec5r1KMOLijvjUJ76pgIE9f5NXb1MDRJV1VoBpHLBnA/bD/ZrSRspAAPI SmADbS3dGFtDg5gxJra5CXfFHORnm10xEckVtjDDo9/PQO7l3/nT6A02zEqWxDjr AgZVVOB2k5mScAF7ZjjOUjG9nZrhgf7baTnRK/weX3AXtNCzs3soz2NpJtyLWb5Q ylsLZVljHT7Ss74YZ7K40VskOQxUlQbQoVyPNW4By6OGop5oiPuJwfzBoOMT+5zN dcYPn0VZ7WaXjhBSrESU3qwAanXy+intyLuwIVKTAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU8nUEjQPGdHtcytTIeYoG2u8auDowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhODk5NDg0LTU4ODItNDk5Yi04YjdmLTRiY2JkYjU2OWI0NC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBActOYAwDQYJKoZIhvcNAQELBQADggEBAIQT6CTTnE7dIX8l/uzKHfvoi6sM ysyqdhFOud01oyCOikf7K4mrzUGEqoPSeeriDfOopP/B4t5SOvIiCcsj14lngZY7 tgrWZhiwjZey+eJEiHiuyAatw+rolTK2OuP25MxD5XdGM50PIH0uyJplKjT5x9BV mNKhpNiKtbNc0Pq43VO/R9S0U3pElrBGmkJbCYIijQO0tfQ1fnEk83OFfNmZ7J0S Ob2aAAclyL7zT3xA1XpDh2S94CyJujPKnzxULZaNXh5Tp+yuDOCtG4fjUoXdqAK/ EkKj5mutuWJANGZ4AagmHbTReU5sDsoUW/a5RDr/3XUFQWH9L3kN3TWxoZk= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:55 2026 by rpki-client