$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba92cb6e-5781-42c7-a19e-845733c47085.roa File: ba92cb6e-5781-42c7-a19e-845733c47085.roa (raw, json) Hash identifier: hsBsbLHHOEoFbYRGhYDsTOswYfDl3w2+9pG9XAbI+Sc= Subject key identifier: 9C:CE:F8:AC:6D:67:80:4E:7F:B1:ED:2F:AA:22:D4:17:94:D1:C0:5C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EB03FAB0C83398A277159AB37860DDFB20BB63E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba92cb6e-5781-42c7-a19e-845733c47085.roa Signing time: Thu 26 Feb 2026 00:21:14 +0000 ROA not before: Thu 26 Feb 2026 00:21:14 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.152.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:b0:3f:ab:0c:83:39:8a:27:71:59:ab:37:86:0d:df:b2:0b:b6:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:21:14 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=c3ba856dd5d8fe615972d565eb44068ff59204ebb98b7fa5663e2f909df90dae, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:07:5b:e4:0b:2a:83:b2:b9:b9:3b:b7:df:f8: c0:c2:15:df:d7:d5:e9:b1:c5:2b:44:15:6b:23:6e: 19:a1:ab:75:63:1a:f6:1d:4b:4e:d4:39:fa:82:e0: 29:6e:92:2b:a9:88:1f:66:eb:14:9c:26:76:d1:46: f2:24:f2:dd:a4:56:eb:c4:cb:aa:50:92:45:94:42: ed:22:c3:a8:22:fc:fe:2a:16:50:9a:4f:e0:30:4c: 7b:9c:41:9a:93:00:7f:15:37:3e:87:73:b1:1a:5c: d4:9f:27:fe:d8:89:0b:f7:44:ec:2c:f9:7a:ef:dd: 64:27:7f:65:eb:ba:0b:9d:10:0a:21:87:b2:18:05: ab:7d:bc:6e:62:36:cf:cb:5d:b8:73:54:b1:b4:77: e8:1c:64:cb:11:f7:a0:c0:45:44:e9:87:65:6e:58: 3e:36:04:a8:cc:d6:76:44:e1:3f:57:12:0c:45:8b: 03:ab:05:71:b0:13:cc:05:cf:56:ca:66:14:7d:03: 4d:a1:ad:dc:ab:51:db:f4:8e:e5:51:34:fb:7c:f7: d0:1c:4d:f9:44:54:6a:9f:49:82:42:61:ff:d3:f7: a2:0d:1c:5e:d0:09:13:d1:d9:48:39:24:33:df:91: 86:77:42:74:d9:66:1c:61:cd:6e:6f:ff:84:0f:e1: d8:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:CE:F8:AC:6D:67:80:4E:7F:B1:ED:2F:AA:22:D4:17:94:D1:C0:5C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ba92cb6e-5781-42c7-a19e-845733c47085.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.152.0.0/16 Signature Algorithm: sha256WithRSAEncryption 8b:12:98:a6:60:0d:70:67:22:55:b1:54:19:01:a2:c7:ef:66: b5:76:f5:f3:b8:6a:0f:db:fb:0d:aa:ad:89:9c:ab:80:b8:31: 88:be:63:06:91:1d:5c:bf:0a:4e:38:b7:71:47:1a:99:bc:88: 0a:07:21:ad:27:cc:2e:ba:c6:27:f7:9e:3f:39:09:00:35:3e: 3c:56:3a:4f:72:53:8c:14:be:d9:ad:e1:8b:e6:6e:cd:b9:2d: 60:b1:9d:08:cb:b2:0e:91:95:87:e8:fc:6c:35:e9:33:ec:0e: 58:8a:8a:5e:9f:7e:f1:06:b4:5a:ed:fb:4c:e6:f8:b5:31:16: e2:b6:0b:8d:dd:31:16:4f:4f:d2:18:73:61:4e:e6:bd:fa:ab: a8:9f:9b:04:15:38:86:f9:e6:28:7b:76:78:0a:61:30:71:d8: dd:98:b4:e5:ed:80:2a:d0:6b:69:55:c7:20:85:f7:fe:ab:1d: 20:e8:52:70:0b:c9:75:10:1a:a3:1e:26:c0:f9:98:d8:2c:a4: fc:42:bf:fc:94:c2:78:9b:9d:a8:0d:45:69:3a:01:6b:96:9d: e1:55:87:46:da:ac:f4:90:4a:3a:a6:22:39:77:23:d9:82:83: 70:9e:90:54:e6:a2:4e:54:f7:f7:ef:45:43:63:c7:ed:64:e9: 05:f3:96:cf -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUPrA/qwyDOYoncVmrN4YN37ILtj4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAyMTE0WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BjM2JhODU2ZGQ1ZDhmZTYxNTk3MmQ1NjVlYjQ0MDY4ZmY1 OTIwNGViYjk4YjdmYTU2NjNlMmY5MDlkZjkwZGFlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCaB1vkCyqDsrm5O7ff+MDCFd/X1emxxStEFWsjbhmhq3Vj GvYdS07UOfqC4ClukiupiB9m6xScJnbRRvIk8t2kVuvEy6pQkkWUQu0iw6gi/P4q FlCaT+AwTHucQZqTAH8VNz6Hc7EaXNSfJ/7YiQv3ROws+Xrv3WQnf2XrugudEAoh h7IYBat9vG5iNs/LXbhzVLG0d+gcZMsR96DARUTph2VuWD42BKjM1nZE4T9XEgxF iwOrBXGwE8wFz1bKZhR9A02hrdyrUdv0juVRNPt899AcTflEVGqfSYJCYf/T96IN HF7QCRPR2Ug5JDPfkYZ3QnTZZhxhzW5v/4QP4dgLAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUnM74rG1ngE5/se0vqiLUF5TRwFwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JhOTJjYjZlLTU3ODEtNDJjNy1hMTllLTg0NTczM2M0NzA4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4mDANBgkqhkiG9w0BAQsFAAOCAQEAixKYpmANcGciVbFUGQGix+9mtXb1 87hqD9v7DaqtiZyrgLgxiL5jBpEdXL8KTji3cUcambyICgchrSfMLrrGJ/eePzkJ ADU+PFY6T3JTjBS+2a3hi+ZuzbktYLGdCMuyDpGVh+j8bDXpM+wOWIqKXp9+8Qa0 Wu37TOb4tTEW4rYLjd0xFk9P0hhzYU7mvfqrqJ+bBBU4hvnmKHt2eAphMHHY3Zi0 5e2AKtBraVXHIIX3/qsdIOhScAvJdRAaox4mwPmY2Cyk/EK//JTCeJudqA1FaToB a5ad4VWHRtqs9JBKOqYiOXcj2YKDcJ6QVOaiTlT39+9FQ2PH7WTpBfOWzw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:15:31 2026 by rpki-client