$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb0a8049-0a34-4c4c-ab21-eeac84165f7e.roa File: bb0a8049-0a34-4c4c-ab21-eeac84165f7e.roa (raw, json) Hash identifier: xCQWegPNrPWQuyOuwjHzsf2k5kMYRjCcFSlbsoRD2E0= Subject key identifier: 09:31:43:46:7C:CC:3C:45:2C:24:E3:E3:1E:57:E1:3C:96:80:2D:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3EE5FEEEADF23FBEEAC835A41D3740626FFE44F0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb0a8049-0a34-4c4c-ab21-eeac84165f7e.roa Signing time: Sat 21 Feb 2026 00:31:21 +0000 ROA not before: Sat 21 Feb 2026 00:31:21 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.118.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:e5:fe:ee:ad:f2:3f:be:ea:c8:35:a4:1d:37:40:62:6f:fe:44:f0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 00:31:21 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=8b5b6e866adf5e04797ab83112d66c876e32d2523ab2b358d9046fdf7ec2810b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:2b:77:5b:c2:ae:6c:41:12:f8:41:7f:8e:93: 84:5b:c6:9d:9d:00:3d:17:42:c7:30:98:94:94:4e: 39:76:58:1e:88:2a:a5:af:54:cd:5a:c8:98:06:ba: 3b:b5:63:21:ee:68:85:87:08:da:92:5f:25:75:e1: 3e:4b:7a:fa:f9:9d:55:06:a6:d7:3d:d7:ff:87:ee: 15:b5:62:3a:38:4e:59:af:57:87:ef:61:83:f3:8c: a5:74:f3:9c:76:2e:8b:2f:46:d7:9d:28:b1:61:24: 96:b2:5f:0a:41:d3:58:a3:1d:d2:32:8c:de:f6:01: 2f:72:a3:f1:cb:e5:da:2d:8d:2b:26:22:0b:e7:75: 6e:20:24:a8:f6:79:1a:87:01:c4:72:8f:8c:69:34: c5:84:2f:d1:e8:10:9b:dd:31:c9:1b:07:e5:e3:8a: dd:19:29:25:9f:c8:86:89:f1:a7:fc:95:8d:99:92: d8:3c:0b:26:16:ed:b2:e5:b3:84:b9:7e:ae:d2:42: ed:59:4f:2a:d8:12:13:52:94:e3:11:0f:28:c4:c1: ca:ca:0e:0b:ad:2e:49:d0:05:4f:52:35:6f:5d:b2: f5:7f:2a:fa:83:22:e9:c5:d1:55:4f:ce:d6:69:88: de:c7:73:59:a8:01:e9:98:fc:9e:db:1c:eb:be:af: 05:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:31:43:46:7C:CC:3C:45:2C:24:E3:E3:1E:57:E1:3C:96:80:2D:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bb0a8049-0a34-4c4c-ab21-eeac84165f7e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.118.0/24 Signature Algorithm: sha256WithRSAEncryption 80:f0:d0:44:d7:1d:f4:6a:67:61:28:c8:d1:56:f3:d5:cc:94: 59:82:2f:5a:37:31:a1:29:85:86:e5:39:ea:f4:b2:a0:a8:75: 37:4f:3a:27:bb:f3:8d:27:77:ed:ec:a4:7c:f9:a5:80:ed:3d: d3:67:3d:7d:9b:3b:85:55:db:53:31:ca:12:2e:e1:be:ac:c4: 08:e6:09:7a:06:03:71:d4:6f:b6:a2:f9:6d:d3:9a:51:bb:c6: 67:8e:7a:e3:87:93:c9:e1:f5:e4:56:1e:1c:36:ac:2d:bc:d4: 40:b2:07:75:b2:ab:8e:99:da:a5:74:46:1a:8e:78:61:b9:a2: e7:6c:74:49:45:4a:af:7e:c2:86:0c:d0:54:56:0c:ed:5a:10: 62:dd:6f:15:50:e8:45:89:7e:55:5f:c5:58:21:aa:2e:44:00: 5d:8a:68:b5:e0:a9:02:63:18:13:82:05:a0:65:3e:5c:9a:25: 74:c2:31:c9:18:b1:53:31:28:b9:a5:a4:b6:47:99:66:54:dd: 25:72:73:5a:c5:13:80:c8:98:3d:26:c8:9a:70:47:5a:47:12: 4f:70:55:00:28:a4:d7:c0:3f:8f:4b:4f:49:5d:3d:49:1b:22: 18:20:43:ed:9e:bd:22:fe:21:fe:1d:bc:f3:df:2f:87:08:b5: 98:88:0c:62 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUPuX+7q3yP77qyDWkHTdAYm/+RPAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDAzMTIxWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4YjViNmU4NjZhZGY1ZTA0Nzk3YWI4MzExMmQ2NmM4NzZl MzJkMjUyM2FiMmIzNThkOTA0NmZkZjdlYzI4MTBiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCUK3dbwq5sQRL4QX+Ok4Rbxp2dAD0XQscwmJSUTjl2WB6I KqWvVM1ayJgGuju1YyHuaIWHCNqSXyV14T5Levr5nVUGptc91/+H7hW1Yjo4Tlmv V4fvYYPzjKV085x2LosvRtedKLFhJJayXwpB01ijHdIyjN72AS9yo/HL5dotjSsm IgvndW4gJKj2eRqHAcRyj4xpNMWEL9HoEJvdMckbB+Xjit0ZKSWfyIaJ8af8lY2Z ktg8CyYW7bLls4S5fq7SQu1ZTyrYEhNSlOMRDyjEwcrKDgutLknQBU9SNW9dsvV/ KvqDIunF0VVPztZpiN7Hc1moAemY/J7bHOu+rwVVAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUCTFDRnzMPEUsJOPjHlfhPJaALVgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiMGE4MDQ5LTBhMzQtNGM0Yy1hYjIxLWVlYWM4NDE2NWY3ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsHYwDQYJKoZIhvcNAQELBQADggEBAIDw0ETXHfRqZ2EoyNFW89XMlFmC L1o3MaEphYblOer0sqCodTdPOie7840nd+3spHz5pYDtPdNnPX2bO4VV21MxyhIu 4b6sxAjmCXoGA3HUb7ai+W3TmlG7xmeOeuOHk8nh9eRWHhw2rC281ECyB3Wyq46Z 2qV0RhqOeGG5oudsdElFSq9+woYM0FRWDO1aEGLdbxVQ6EWJflVfxVghqi5EAF2K aLXgqQJjGBOCBaBlPlyaJXTCMckYsVMxKLmlpLZHmWZU3SVyc1rFE4DImD0myJpw R1pHEk9wVQAopNfAP49LT0ldPUkbIhggQ+2evSL+If4dvPPfL4cItZiIDGI= -----END CERTIFICATE-----Generated at Mon Mar 2 00:06:43 2026 by rpki-client