$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbb9a3b0-5515-498a-a8b7-18d25fe04f6d.roa File: bbb9a3b0-5515-498a-a8b7-18d25fe04f6d.roa (raw, json) Hash identifier: LF5Cx0eOv+OkPUnMVNicsKB7Z6SPoeWWnQ7DPQp7Y5E= Subject key identifier: 05:F3:6F:0F:4E:61:B4:E9:A8:AA:BC:4F:DE:E1:13:1E:0C:42:CE:92 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5D85CF60D54F0CD8FA9457D441C4711DE0A03EE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbb9a3b0-5515-498a-a8b7-18d25fe04f6d.roa Signing time: Sat 21 Feb 2026 01:10:11 +0000 ROA not before: Sat 21 Feb 2026 01:10:11 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.128.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:85:cf:60:d5:4f:0c:d8:fa:94:57:d4:41:c4:71:1d:e0:a0:3e:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:10:11 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=d8374c93dc3c11b5097c4e207ace086b7178c149fc3c77df093cc3db7301060c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d9:e1:f4:58:7e:b8:20:f3:9d:72:72:60:6b: 1f:91:98:02:86:cc:e5:03:a8:99:fa:d6:3b:fd:bf: 29:93:69:a5:07:fa:20:49:94:6a:0e:ae:a1:81:7b: 3d:27:59:a1:3c:a9:f4:4c:54:24:0b:a1:a8:9b:3e: 87:2e:0d:38:bf:2d:70:8b:b0:dc:bc:42:4e:b5:75: f8:9f:4f:af:ab:56:89:87:d4:7b:26:53:01:7d:8a: aa:f7:ee:6f:48:c5:67:63:5d:97:fc:bf:73:af:c0: c9:d8:84:07:cc:a7:59:1f:54:ba:7c:ae:da:74:a0: 21:0b:7d:d6:fb:6c:a9:dd:fb:d3:62:87:a8:ac:9a: fe:7d:7f:13:6a:7f:7a:53:99:82:4a:43:f8:c7:88: 52:b0:c5:50:59:de:94:9b:20:22:76:82:f8:68:4c: 70:60:3e:00:20:6f:c6:ca:d8:56:43:26:b0:0b:84: f3:d4:e0:ed:88:08:e3:46:3c:15:d8:f6:19:1b:61: 0d:16:19:5d:63:03:a0:7d:93:a8:87:25:3c:c1:1c: 73:90:22:1d:71:c1:ca:fc:80:1a:8e:d4:57:8d:48: ee:14:84:07:40:05:db:d5:d9:24:4d:64:c6:f8:6a: ba:9a:73:82:f7:e6:7c:7f:1d:3b:7b:3a:dd:0c:b5: f0:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:F3:6F:0F:4E:61:B4:E9:A8:AA:BC:4F:DE:E1:13:1E:0C:42:CE:92 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bbb9a3b0-5515-498a-a8b7-18d25fe04f6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.128.0/24 Signature Algorithm: sha256WithRSAEncryption c7:03:6b:88:66:6a:6b:04:8c:6f:9f:79:99:d2:5d:90:82:b9: 2e:d1:c4:80:31:2a:fa:71:4e:51:3c:6a:61:f1:f2:8c:43:3a: 8d:42:42:c4:a1:1d:95:34:c0:c0:cd:2a:fb:21:6c:0f:af:5f: 9f:55:3c:16:bd:a0:96:20:6d:59:a2:78:09:84:82:ff:bf:0d: ec:2a:68:b5:f7:6b:02:93:75:29:e4:68:1a:82:5b:58:f6:e0: d9:93:92:f5:48:95:82:c1:5f:3d:77:a8:dc:b6:11:d0:fa:d9: 33:98:91:fc:f0:69:3a:b4:5f:67:8d:d4:1d:ce:3c:59:6d:68: 79:a1:f1:cc:eb:96:4e:25:34:ae:6d:60:4d:e3:ec:26:36:74: e3:9b:ac:e5:74:3b:d7:84:07:dd:fa:a0:1a:4e:f9:3b:df:e5: 0b:79:e5:15:5f:f8:6e:27:35:5d:ee:4f:fb:6c:cc:7b:e6:a6: e3:2a:54:ac:1e:ab:6d:e4:ee:33:de:72:50:6b:35:c2:2b:97: dc:31:1f:81:e6:68:94:25:54:70:a8:76:71:b3:9e:e9:26:51: 0c:cb:9a:43:10:84:ca:ba:56:1b:e2:3e:0a:ab:2e:38:4e:3f: e8:a8:05:5a:46:e4:30:37:2d:12:b1:68:71:40:6e:c2:bc:1e: a4:44:6c:33 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUXYXPYNVPDNj6lFfUQcRxHeCgPugwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDExMDExWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BkODM3NGM5M2RjM2MxMWI1MDk3YzRlMjA3YWNlMDg2Yjcx NzhjMTQ5ZmMzYzc3ZGYwOTNjYzNkYjczMDEwNjBjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDA2eH0WH64IPOdcnJgax+RmAKGzOUDqJn61jv9vymTaaUH +iBJlGoOrqGBez0nWaE8qfRMVCQLoaibPocuDTi/LXCLsNy8Qk61dfifT6+rVomH 1HsmUwF9iqr37m9IxWdjXZf8v3OvwMnYhAfMp1kfVLp8rtp0oCELfdb7bKnd+9Ni h6ismv59fxNqf3pTmYJKQ/jHiFKwxVBZ3pSbICJ2gvhoTHBgPgAgb8bK2FZDJrAL hPPU4O2ICONGPBXY9hkbYQ0WGV1jA6B9k6iHJTzBHHOQIh1xwcr8gBqO1FeNSO4U hAdABdvV2SRNZMb4arqac4L35nx/HTt7Ot0MtfApAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUBfNvD05htOmoqrxP3uETHgxCzpIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JiYjlhM2IwLTU1MTUtNDk4YS1hOGI3LTE4ZDI1ZmUwNGY2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsIAwDQYJKoZIhvcNAQELBQADggEBAMcDa4hmamsEjG+feZnSXZCCuS7R xIAxKvpxTlE8amHx8oxDOo1CQsShHZU0wMDNKvshbA+vX59VPBa9oJYgbVmieAmE gv+/DewqaLX3awKTdSnkaBqCW1j24NmTkvVIlYLBXz13qNy2EdD62TOYkfzwaTq0 X2eN1B3OPFltaHmh8czrlk4lNK5tYE3j7CY2dOObrOV0O9eEB936oBpO+Tvf5Qt5 5RVf+G4nNV3uT/tszHvmpuMqVKweq23k7jPeclBrNcIrl9wxH4HmaJQlVHCodnGz nukmUQzLmkMQhMq6VhviPgqrLjhOP+ioBVpG5DA3LRKxaHFAbsK8HqREbDM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:34 2026 by rpki-client