$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa File: c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa (raw, json) Hash identifier: ed/qDmN5mZfiAbft9KE9bGMpiRWjee6SyIAA+tlM5/Y= Subject key identifier: 68:E8:54:0C:C5:30:5B:BB:24:36:D3:71:18:24:BD:40:DE:21:DF:18 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1D27F5A65FD71D1A1A1028960FD5C50354AF3504 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa Signing time: Sat 14 Feb 2026 00:31:23 +0000 ROA not before: Sat 14 Feb 2026 00:31:23 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.89.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1d:27:f5:a6:5f:d7:1d:1a:1a:10:28:96:0f:d5:c5:03:54:af:35:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 14 00:31:23 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=55ff4af9eccd7687bcf51f5b90ef481e6610437da587eaa7eadd4e74ad2d841f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:f7:11:00:31:9d:e2:1e:dd:92:c9:8e:d9:e2: 65:1b:ec:71:74:7c:f9:8d:05:4f:15:2b:c0:4a:64: f5:24:7c:90:2e:3f:d9:70:78:75:48:0b:f5:f5:fd: df:f8:90:b4:dd:36:da:32:25:22:51:5b:8b:04:cd: a1:a1:51:39:84:37:e6:b5:8d:d2:92:65:27:f6:23: 7c:ab:97:b1:c2:5c:83:6c:88:d0:17:b1:e2:cd:e2: f4:a2:c0:8f:9b:44:cf:2a:fb:fe:ef:f8:e9:00:94: c4:90:fb:96:ed:ee:da:9e:15:82:b6:79:b4:09:4e: 3d:46:cf:1c:28:8f:0b:f7:3a:bb:5f:c0:77:ca:4f: b6:dd:16:90:c3:07:1b:11:48:2c:14:92:80:d0:57: fa:e2:00:4d:66:17:17:91:bc:cc:4a:5f:4b:bc:61: bd:53:50:0b:db:81:53:28:1a:9d:b0:5f:9b:79:77: 4c:b1:3e:86:8c:20:9a:a3:5a:20:5f:3d:e7:97:26: c4:2f:07:e3:b6:88:0b:51:00:5e:24:cd:91:10:be: b3:58:e3:d3:75:35:c1:7c:2c:79:62:96:3f:36:98: 6a:54:f9:f3:61:98:09:36:01:6e:7b:0b:98:cb:f0: 5f:9c:9f:32:fc:87:ce:00:ae:94:a2:59:13:00:49: 9a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:E8:54:0C:C5:30:5B:BB:24:36:D3:71:18:24:BD:40:DE:21:DF:18 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c0f72a14-71a9-47a1-ad9c-1f9129079bfb.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.89.0.0/16 Signature Algorithm: sha256WithRSAEncryption 62:51:a7:d2:e6:53:80:a7:62:14:5c:f4:f2:d9:d7:dc:04:d3: eb:0c:68:79:f6:d0:38:98:07:7d:a3:c6:8c:97:0f:fe:bc:a8: d0:2d:fd:9e:47:6f:ad:7e:1d:54:ce:3c:ed:ec:36:75:2e:dd: a0:6e:36:88:c6:f1:46:ff:47:1a:08:70:c9:51:8b:9d:d8:7f: 81:59:19:6b:ff:f2:4d:cc:db:b9:df:b5:12:ba:b2:1f:9b:af: b0:63:fc:88:a6:06:58:f2:fd:f7:b3:13:bf:ca:d7:14:2d:3f: 6d:99:76:2b:37:67:d8:ca:b9:a2:64:4b:e9:c6:8b:6c:cb:5e: d5:bb:23:13:87:5a:1e:99:5e:bf:c0:56:bb:8a:f6:0c:51:cd: 29:4f:59:0d:16:7a:be:85:e9:5d:57:98:ec:1e:a0:4c:5f:6f: 63:fb:3a:4d:4a:f1:94:19:26:98:19:7d:6f:45:7b:5e:8c:f5: 6e:eb:3a:13:49:ea:c1:b8:9f:d1:53:a5:bb:9c:11:f4:cc:ed: a3:66:3e:3b:9f:5b:a3:b0:43:50:9f:5b:21:ef:6d:7f:ed:47: 8d:45:83:94:90:7a:eb:d0:32:ca:c1:23:51:bc:43:53:d7:e1: b3:88:ba:c0:b1:a9:b9:50:8c:f4:27:58:9a:4d:a5:3e:3b:42: c1:63:e2:7b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHSf1pl/XHRoaECiWD9XFA1SvNQQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE0MDAzMTIzWhcNMjYwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWZmNGFmOWVjY2Q3Njg3YmNmNTFmNWI5MGVmNDgxZTY2 MTA0MzdkYTU4N2VhYTdlYWRkNGU3NGFkMmQ4NDFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDP9xEAMZ3iHt2SyY7Z4mUb7HF0fPmNBU8VK8BKZPUkfJAu P9lweHVIC/X1/d/4kLTdNtoyJSJRW4sEzaGhUTmEN+a1jdKSZSf2I3yrl7HCXINs iNAXseLN4vSiwI+bRM8q+/7v+OkAlMSQ+5bt7tqeFYK2ebQJTj1Gzxwojwv3Ortf wHfKT7bdFpDDBxsRSCwUkoDQV/riAE1mFxeRvMxKX0u8Yb1TUAvbgVMoGp2wX5t5 d0yxPoaMIJqjWiBfPeeXJsQvB+O2iAtRAF4kzZEQvrNY49N1NcF8LHlilj82mGpU +fNhmAk2AW57C5jL8F+cnzL8h84ArpSiWRMASZrJAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUaOhUDMUwW7skNtNxGCS9QN4h3xgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MwZjcyYTE0LTcxYTktNDdhMS1hZDljLTFmOTEyOTA3OWJmYi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4WTANBgkqhkiG9w0BAQsFAAOCAQEAYlGn0uZTgKdiFFz08tnX3ATT6wxo efbQOJgHfaPGjJcP/ryo0C39nkdvrX4dVM487ew2dS7doG42iMbxRv9HGghwyVGL ndh/gVkZa//yTczbud+1ErqyH5uvsGP8iKYGWPL997MTv8rXFC0/bZl2Kzdn2Mq5 omRL6caLbMte1bsjE4daHplev8BWu4r2DFHNKU9ZDRZ6voXpXVeY7B6gTF9vY/s6 TUrxlBkmmBl9b0V7Xoz1bus6E0nqwbif0VOlu5wR9Mzto2Y+O59bo7BDUJ9bIe9t f+1HjUWDlJB669AyysEjUbxDU9fhs4i6wLGpuVCM9CdYmk2lPjtCwWPiew== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:44 2026 by rpki-client