$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be820f17-7291-4a84-85df-748d513a2c5d.roa File: be820f17-7291-4a84-85df-748d513a2c5d.roa (raw, json) Hash identifier: Um5qQy2o4Afv/QbfeHPVU/97m7v/o16zu5lgpSTDC1Y= Subject key identifier: B7:53:A4:F4:B9:91:A1:C4:A5:11:FF:A4:12:40:71:84:62:6A:B8:25 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F51FBF0D5166BFF2980ECB4C078248260AD3237 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be820f17-7291-4a84-85df-748d513a2c5d.roa Signing time: Sat 21 Feb 2026 01:00:04 +0000 ROA not before: Sat 21 Feb 2026 01:00:04 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 130.176.148.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:51:fb:f0:d5:16:6b:ff:29:80:ec:b4:c0:78:24:82:60:ad:32:37 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:00:04 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=a9ebfd2818d3578ac910ce321067857924c5ec7a3bbdf3c16e6c7ce3c271c409, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:93:ae:b7:c0:d4:8b:45:a9:11:c1:33:4b:e7: 51:58:e2:7c:93:32:f0:2a:ec:ae:8a:a0:d3:15:08: da:10:fa:6c:47:e4:5b:19:fa:8d:ba:89:a9:b5:0e: 79:6f:a6:09:2e:b8:b1:84:af:71:20:c5:9c:cb:4a: 35:1c:cf:0c:e9:18:af:e1:9e:84:62:38:ce:0b:ce: c9:ff:be:cc:2f:a1:e3:34:89:ac:68:50:2a:4c:72: 0e:1c:fb:63:4d:f1:b5:02:e2:98:06:13:f8:ef:eb: a6:f0:70:78:c0:24:d1:e6:e7:e7:1d:12:dd:f3:8e: 98:22:71:6f:d2:5b:e4:7c:de:6e:c6:30:39:e3:ff: c1:d3:f1:44:8c:22:0b:99:ca:7c:9b:ea:f7:c5:c6: 02:67:79:81:76:e2:e6:8f:97:36:90:d6:64:ca:34: 69:e5:e0:24:7e:ea:93:12:52:97:2c:30:67:53:23: 34:9b:7d:c7:ba:e7:db:fc:1b:02:7b:3b:54:e9:2f: 20:7e:3e:fa:45:c3:99:ea:35:6b:46:af:c7:c9:b4: b0:8e:4d:ea:5e:6a:3f:27:60:5f:a5:a9:4e:6b:8d: e7:c8:93:2d:e8:be:c4:b7:60:0a:e5:3c:1b:08:d4: 70:2b:8b:38:e3:c7:4e:f8:67:85:b8:e9:00:8b:4b: fe:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:53:A4:F4:B9:91:A1:C4:A5:11:FF:A4:12:40:71:84:62:6A:B8:25 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/be820f17-7291-4a84-85df-748d513a2c5d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 130.176.148.0/24 Signature Algorithm: sha256WithRSAEncryption 58:96:3f:db:30:7e:3b:0d:9f:aa:b8:2e:94:54:2c:38:49:2e: ed:3d:3e:e0:16:95:30:63:2c:45:2d:95:2d:a0:2d:9f:4a:44: 04:3f:71:38:3c:6f:e3:27:8f:40:5b:a9:33:55:88:7b:48:3d: 8e:09:b9:04:c5:ac:d3:c4:b7:73:86:c6:a6:8d:7b:7f:0b:1b: f1:b6:23:72:82:ac:aa:e6:d6:25:e8:a1:e2:da:cd:02:58:ee: 57:29:72:1d:7a:b7:47:43:fd:b2:f2:36:d9:88:85:46:ff:a3: 48:c6:05:42:6e:78:eb:bb:a5:cd:c1:07:0f:c5:2e:dd:e1:b2: 13:e1:ca:ad:52:23:bd:9f:60:db:c3:9f:49:83:d1:e5:34:06: e7:14:de:77:56:ca:7a:54:47:da:18:b1:79:5d:eb:c4:d5:c7: e1:de:c7:9c:fb:d8:9b:41:d5:a1:41:95:d6:91:0d:6f:0a:0a: 0d:19:cc:10:79:d9:17:75:da:a8:58:01:90:c1:4e:c9:2d:7f: 05:1d:d1:62:28:ec:da:36:6f:ef:33:8f:b5:2a:61:c6:fc:1a: f9:c6:a0:2b:88:dd:ce:29:a0:fe:d7:72:bf:9f:a8:7e:26:fd: 83:f8:e6:ca:b4:26:a1:8f:dc:6f:da:6a:f0:bd:cc:99:63:d9: 9b:3d:35:86 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUT1H78NUWa/8pgOy0wHgkgmCtMjcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEwMDA0WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0BhOWViZmQyODE4ZDM1NzhhYzkxMGNlMzIxMDY3ODU3OTI0 YzVlYzdhM2JiZGYzYzE2ZTZjN2NlM2MyNzFjNDA5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfk663wNSLRakRwTNL51FY4nyTMvAq7K6KoNMVCNoQ+mxH 5FsZ+o26iam1DnlvpgkuuLGEr3EgxZzLSjUczwzpGK/hnoRiOM4Lzsn/vswvoeM0 iaxoUCpMcg4c+2NN8bUC4pgGE/jv66bwcHjAJNHm5+cdEt3zjpgicW/SW+R83m7G MDnj/8HT8USMIguZynyb6vfFxgJneYF24uaPlzaQ1mTKNGnl4CR+6pMSUpcsMGdT IzSbfce659v8GwJ7O1TpLyB+PvpFw5nqNWtGr8fJtLCOTepeaj8nYF+lqU5rjefI ky3ovsS3YArlPBsI1HArizjjx074Z4W46QCLS/73AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUt1Ok9LmRocSlEf+kEkBxhGJquCUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2JlODIwZjE3LTcyOTEtNGE4NC04NWRmLTc0OGQ1MTNhMmM1ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACCsJQwDQYJKoZIhvcNAQELBQADggEBAFiWP9swfjsNn6q4LpRULDhJLu09 PuAWlTBjLEUtlS2gLZ9KRAQ/cTg8b+Mnj0BbqTNViHtIPY4JuQTFrNPEt3OGxqaN e38LG/G2I3KCrKrm1iXooeLazQJY7lcpch16t0dD/bLyNtmIhUb/o0jGBUJueOu7 pc3BBw/FLt3hshPhyq1SI72fYNvDn0mD0eU0BucU3ndWynpUR9oYsXld68TVx+He x5z72JtB1aFBldaRDW8KCg0ZzBB52Rd12qhYAZDBTsktfwUd0WIo7No2b+8zj7Uq Ycb8GvnGoCuI3c4poP7Xcr+fqH4m/YP45sq0JqGP3G/aavC9zJlj2Zs9NYY= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:09 2026 by rpki-client