$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc607eda-1d8d-4479-b98f-bf82f4cda692.roa File: bc607eda-1d8d-4479-b98f-bf82f4cda692.roa (raw, json) Hash identifier: c1CGuFU18cdvHGtTiCX8/+yf7TcxRZP7ZCjPnbJ9KQk= Subject key identifier: 0C:76:A9:1E:BD:01:AB:5F:3A:77:51:9F:04:A1:8D:D8:DD:A2:3B:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7629D4A0798B5CFF01B242D6C4ACECEC0766DC95 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc607eda-1d8d-4479-b98f-bf82f4cda692.roa Signing time: Tue 24 Feb 2026 02:31:35 +0000 ROA not before: Tue 24 Feb 2026 02:31:35 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 156.15.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76:29:d4:a0:79:8b:5c:ff:01:b2:42:d6:c4:ac:ec:ec:07:66:dc:95 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:31:35 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=3a101679586fb2f496a6c3e0878adfee50fa599745fd8f11f38aaded31f6f643, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:0a:82:2e:cf:18:de:c4:7b:98:e2:3d:c2:00: 7b:a1:6a:f3:17:46:74:5a:76:2c:0a:87:fe:24:d8: b6:3e:65:4b:f0:79:32:de:d5:32:37:98:8d:89:a1: d1:71:4a:92:ad:5f:20:22:3f:d5:80:78:04:b1:74: 44:21:bf:e5:8b:f2:fb:37:2e:49:53:bb:cc:35:0e: 13:3d:ad:81:7c:74:c4:41:71:cc:61:9c:9b:0f:8e: 83:b3:84:f3:a0:5c:5a:44:8d:1d:db:b9:05:f4:34: 25:d6:69:87:4e:42:01:40:40:d5:a4:23:ac:b6:a0: ed:a6:7f:96:f4:59:a9:47:ca:ba:f7:89:5e:9a:18: ef:74:81:16:df:5e:61:e0:4a:38:91:f1:72:b6:01: 1f:12:24:72:a7:7e:e7:4e:c3:98:70:05:87:73:7c: dc:5d:86:09:c3:40:29:30:aa:73:ba:06:09:13:0a: ef:f4:48:59:87:b5:ef:ab:1e:6f:f1:b1:f0:57:c2: e6:c8:c4:4e:33:a9:dc:62:9a:04:12:a6:b6:46:ad: 90:07:dd:34:90:8f:a0:9e:3d:e0:53:28:4d:ba:ef: 94:29:73:66:c1:8f:1d:58:d6:38:47:e3:f9:f0:1e: ea:77:47:9d:93:92:78:f6:83:f8:4c:66:ab:a7:6c: f7:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:76:A9:1E:BD:01:AB:5F:3A:77:51:9F:04:A1:8D:D8:DD:A2:3B:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/bc607eda-1d8d-4479-b98f-bf82f4cda692.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.15.0.0/16 Signature Algorithm: sha256WithRSAEncryption 85:4d:2d:bc:ba:0b:db:b6:65:94:51:7c:50:91:23:29:17:c8: 67:35:e4:0f:66:e7:5c:82:04:07:31:b2:af:14:48:08:26:bc: b4:ce:ce:f9:34:ff:d9:07:c5:76:3d:9e:32:f2:b4:10:5a:30: 50:e1:92:43:82:ae:f0:78:c6:38:53:c2:29:bc:4a:4e:f5:21: 35:72:17:47:2f:57:83:c3:ca:8f:14:02:80:26:f7:23:dd:db: 96:43:f9:f5:3f:c4:eb:04:e6:86:8c:da:cd:ad:ed:c5:ab:e7: b7:08:95:14:d2:1b:5f:e6:15:da:fb:5e:cf:ac:5c:e3:bc:6e: 39:d9:2c:e0:83:87:09:2c:2e:77:91:12:63:4a:65:75:70:d6: aa:76:de:f1:c0:4d:ea:90:c1:b5:2a:46:01:2e:a4:87:eb:2a: 3e:14:b4:77:77:8b:d2:79:a6:83:83:98:bb:4a:21:50:d6:9f: 14:3e:a1:c8:91:52:38:cb:b4:7b:15:44:2e:ef:9a:49:c8:c5: 34:fa:ed:1f:d2:d6:df:42:fa:ff:ee:5d:f2:23:ba:34:0a:33: 75:6e:20:a7:fe:2d:09:e8:a1:7d:cc:6f:f9:97:fc:1e:bb:97: 51:16:c5:7f:81:ae:03:87:85:ec:d9:29:e8:a0:60:93:2a:45: af:7e:58:76 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUdinUoHmLXP8BskLWxKzs7Adm3JUwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIzMTM1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTEwMTY3OTU4NmZiMmY0OTZhNmMzZTA4NzhhZGZlZTUw ZmE1OTk3NDVmZDhmMTFmMzhhYWRlZDMxZjZmNjQzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC6CoIuzxjexHuY4j3CAHuhavMXRnRadiwKh/4k2LY+ZUvw eTLe1TI3mI2JodFxSpKtXyAiP9WAeASxdEQhv+WL8vs3LklTu8w1DhM9rYF8dMRB ccxhnJsPjoOzhPOgXFpEjR3buQX0NCXWaYdOQgFAQNWkI6y2oO2mf5b0WalHyrr3 iV6aGO90gRbfXmHgSjiR8XK2AR8SJHKnfudOw5hwBYdzfNxdhgnDQCkwqnO6BgkT Cu/0SFmHte+rHm/xsfBXwubIxE4zqdximgQSprZGrZAH3TSQj6CePeBTKE2675Qp c2bBjx1Y1jhH4/nwHup3R52Tknj2g/hMZqunbPe/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUDHapHr0Bq186d1GfBKGN2N2iO9QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JjNjA3ZWRhLTFkOGQtNDQ3OS1iOThmLWJmODJmNGNkYTY5Mi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCcDzANBgkqhkiG9w0BAQsFAAOCAQEAhU0tvLoL27ZllFF8UJEjKRfIZzXk D2bnXIIEBzGyrxRICCa8tM7O+TT/2QfFdj2eMvK0EFowUOGSQ4Ku8HjGOFPCKbxK TvUhNXIXRy9Xg8PKjxQCgCb3I93blkP59T/E6wTmhozaza3txavntwiVFNIbX+YV 2vtez6xc47xuOdks4IOHCSwud5ESY0pldXDWqnbe8cBN6pDBtSpGAS6kh+sqPhS0 d3eL0nmmg4OYu0ohUNafFD6hyJFSOMu0exVELu+aScjFNPrtH9LW30L6/+5d8iO6 NAozdW4gp/4tCeihfcxv+Zf8HruXURbFf4GuA4eF7Nkp6KBgkypFr35Ydg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:15:05 2026 by rpki-client