$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1635219-0478-4d11-8584-daad290ee200.roa File: c1635219-0478-4d11-8584-daad290ee200.roa (raw, json) Hash identifier: ZZgQxBod1l6btL2tG+xZ1upGuJETqElzi3PDz3aJFW8= Subject key identifier: 32:D2:43:33:9F:63:E2:97:D4:09:A6:4F:66:26:9A:1C:CE:B3:85:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2304B764E145F5987FA8945901E86ECFC6075114 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1635219-0478-4d11-8584-daad290ee200.roa Signing time: Sat 21 Feb 2026 01:22:01 +0000 ROA not before: Sat 21 Feb 2026 01:22:01 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.41.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:04:b7:64:e1:45:f5:98:7f:a8:94:59:01:e8:6e:cf:c6:07:51:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:22:01 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=49cb5ba7bb5813c468b4a465bb7f97bae7e5508d12cbb31be8c282f08a9cac24, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:80:a6:54:b9:a2:56:38:df:c0:77:ee:83:eb: ce:ba:4f:b3:30:35:ba:ec:60:52:5e:7d:e2:54:6c: 9b:4e:54:75:6a:33:9b:f3:91:f4:ae:1d:44:2a:04: f6:36:b9:ac:c6:d0:f2:fe:34:fc:ca:30:2b:cf:31: 9c:ce:f0:48:d0:6a:91:25:26:76:b2:e0:aa:3a:37: c7:9b:58:47:e3:e2:24:c5:0f:91:6a:3b:25:45:39: 92:5b:af:99:4f:63:be:79:24:29:97:c2:ab:64:b3: 82:23:89:90:41:87:41:63:b0:ed:bc:65:86:a5:0a: f2:a7:8b:26:2c:8f:cd:2a:81:6c:73:11:46:a2:d8: d1:68:b2:1d:71:91:43:82:c9:5e:66:11:de:10:c7: b0:d1:7d:30:23:65:e4:ac:e6:6c:12:00:81:d7:b3: fa:61:18:74:f8:bb:3b:ad:af:2e:cc:c1:17:a8:6e: 44:f2:10:aa:32:da:4c:ce:19:20:db:7d:ed:8e:64: 95:80:4d:7c:76:47:23:3a:1b:42:64:03:77:46:2c: a9:77:66:0f:0f:1b:00:a0:0e:85:b2:48:c5:4a:60: a9:51:a5:f0:74:18:c7:6e:bb:a1:1f:3f:d0:2d:3e: 76:88:9d:e5:3b:63:37:93:29:41:f9:6d:2c:58:a4: 19:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:D2:43:33:9F:63:E2:97:D4:09:A6:4F:66:26:9A:1C:CE:B3:85:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c1635219-0478-4d11-8584-daad290ee200.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.41.0/24 Signature Algorithm: sha256WithRSAEncryption 54:64:0d:88:a3:61:bf:af:9f:aa:a9:75:c8:2f:1a:d0:3b:7f: a0:a2:23:38:fe:49:ab:48:01:1c:01:fc:72:69:e7:5d:cc:7c: 81:8d:0e:cd:61:6b:2a:87:fe:25:49:bb:47:b5:9f:40:e6:7a: ec:c2:6a:44:23:08:ab:0e:0a:74:5c:31:3e:be:85:a1:6a:3b: cf:4c:bb:bc:b7:2d:ae:83:39:e0:af:99:7a:27:13:1d:f1:1c: f8:99:d8:c1:67:73:58:28:7c:09:3b:fe:b1:fc:85:62:a3:65: fc:43:86:b7:ce:4e:ab:c4:27:2c:b9:99:da:07:cd:c9:4a:7d: 7f:56:e1:b1:cd:cf:a7:57:25:8c:67:7b:cb:8d:8e:11:04:ce: c8:dd:ce:70:8c:55:8e:94:d7:b4:b4:3e:83:49:a7:30:a4:d5: 92:6c:de:3b:ec:9c:85:2d:25:89:12:9c:14:f4:a9:09:cd:d6: bc:f0:80:4f:20:6f:d1:3d:68:8f:d2:88:24:fb:95:e5:0d:5d: 4e:dc:4c:52:b4:a3:f7:21:2d:b7:53:82:4a:77:ac:28:3c:3b: f4:e7:26:89:1f:41:23:7a:63:db:90:bc:89:57:2b:a4:b5:47: 68:69:8d:96:5c:22:45:1c:07:aa:d9:b4:8b:83:ab:06:6a:ba: ca:ab:0f:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIwS3ZOFF9Zh/qJRZAehuz8YHURQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEyMjAxWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A0OWNiNWJhN2JiNTgxM2M0NjhiNGE0NjViYjdmOTdiYWU3 ZTU1MDhkMTJjYmIzMWJlOGMyODJmMDhhOWNhYzI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDQgKZUuaJWON/Ad+6D6866T7MwNbrsYFJefeJUbJtOVHVq M5vzkfSuHUQqBPY2uazG0PL+NPzKMCvPMZzO8EjQapElJnay4Ko6N8ebWEfj4iTF D5FqOyVFOZJbr5lPY755JCmXwqtks4IjiZBBh0FjsO28ZYalCvKniyYsj80qgWxz EUai2NFosh1xkUOCyV5mEd4Qx7DRfTAjZeSs5mwSAIHXs/phGHT4uzutry7MwReo bkTyEKoy2kzOGSDbfe2OZJWATXx2RyM6G0JkA3dGLKl3Zg8PGwCgDoWySMVKYKlR pfB0GMduu6EfP9AtPnaIneU7YzeTKUH5bSxYpBk3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMtJDM59j4pfUCaZPZiaaHM6zhVgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MxNjM1MjE5LTA0NzgtNGQxMS04NTg0LWRhYWQyOTBlZTIwMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmCkwDQYJKoZIhvcNAQELBQADggEBAFRkDYijYb+vn6qpdcgvGtA7f6Ci Izj+SatIARwB/HJp513MfIGNDs1hayqH/iVJu0e1n0DmeuzCakQjCKsOCnRcMT6+ haFqO89Mu7y3La6DOeCvmXonEx3xHPiZ2MFnc1gofAk7/rH8hWKjZfxDhrfOTqvE Jyy5mdoHzclKfX9W4bHNz6dXJYxne8uNjhEEzsjdznCMVY6U17S0PoNJpzCk1ZJs 3jvsnIUtJYkSnBT0qQnN1rzwgE8gb9E9aI/SiCT7leUNXU7cTFK0o/chLbdTgkp3 rCg8O/TnJokfQSN6Y9uQvIlXK6S1R2hpjZZcIkUcB6rZtIuDqwZqusqrDyg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:33:39 2026 by rpki-client