$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa File: c23a83e6-32c4-43b4-9986-8f3da063223c.roa (raw, json) Hash identifier: c9IXs9t1C0k1mfqElJWhcjWtdpIoXKM5V1LdvQNaGtc= Subject key identifier: 44:30:68:91:B1:53:32:F6:FE:7F:98:C6:B2:42:DF:7A:9C:AB:62:13 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 54B6D2A5F3EF9BB5563239125D2A73DA343539F3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa Signing time: Wed 25 Feb 2026 01:10:54 +0000 ROA not before: Wed 25 Feb 2026 01:10:54 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 204.236.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:b6:d2:a5:f3:ef:9b:b5:56:32:39:12:5d:2a:73:da:34:35:39:f3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:10:54 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=db187bfba27c32a3226992aa91077c81e16f9cf2f887423b98763277b8e56a5e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:24:da:12:4e:d8:1b:e5:03:f6:c9:c5:1f:b4: 75:f6:68:11:21:73:08:a8:45:4f:e7:6c:05:95:7b: d2:c7:cc:53:1e:c4:13:3f:d2:39:c8:f9:2a:06:c1: 8e:48:d2:1e:19:98:f0:19:75:aa:3d:28:0d:bd:ce: a3:45:89:f4:e8:dc:a3:57:73:eb:61:3e:80:8b:2f: 29:94:63:4f:44:76:45:af:55:c0:55:48:73:65:d4: f2:e5:2f:29:40:1b:67:14:77:33:24:a5:66:8c:c3: d7:fa:c4:a4:7e:82:b3:5b:ba:76:4b:73:45:ac:8b: 24:7f:ca:e9:0f:9f:1a:35:97:05:4c:cd:4f:b0:b7: 43:ce:0d:70:9a:ec:71:b7:a6:86:b7:63:96:bc:12: 53:73:63:4e:8e:74:7e:8c:22:ec:de:aa:46:8c:2c: 7e:b5:93:d5:5f:35:76:83:41:32:37:48:2f:d3:4d: 5a:7f:ec:89:ee:c0:86:fc:11:75:d7:55:42:0d:b8: be:b9:96:ef:73:49:fa:35:e9:76:e8:19:8e:79:c6: 49:94:22:9b:f8:49:40:d8:32:86:b7:e8:1e:1f:8a: 64:a6:8a:76:84:9c:64:8a:44:20:60:17:e3:d3:64: fa:12:ac:5f:c5:0a:f8:26:27:6c:49:b7:fd:71:97: 8f:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:30:68:91:B1:53:32:F6:FE:7F:98:C6:B2:42:DF:7A:9C:AB:62:13 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c23a83e6-32c4-43b4-9986-8f3da063223c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.192.0/20 Signature Algorithm: sha256WithRSAEncryption 5e:ff:e1:a4:70:7c:41:f8:a4:76:df:1b:25:a0:29:cc:44:a6: c5:e5:1c:96:23:e4:81:ce:22:09:33:5e:fc:90:43:b7:b6:5d: 9c:ac:f2:9e:6e:2e:28:d0:0a:4e:fc:33:dd:e9:96:da:0d:c2: 6c:cb:fd:2f:2c:91:b2:2d:e8:d0:d1:27:ca:ec:4f:81:ed:ac: 22:a0:e4:4d:39:4b:85:cb:f7:f9:9b:d6:ff:12:db:68:13:54: 83:4b:6f:79:fb:70:c0:cb:71:ef:6d:58:c0:6d:3a:8a:80:61: 38:91:8a:d3:3a:25:65:d1:65:72:9d:61:ce:61:93:a3:67:fd: 6b:8c:db:6c:51:9a:c7:b9:d6:5b:2d:7e:a9:a3:70:47:85:ae: 24:05:3e:33:fe:f6:d2:84:7e:73:16:45:8a:11:cc:bb:be:8c: 3b:bf:cf:86:0b:93:cc:8e:96:e2:77:76:98:34:cb:cd:34:06: dd:2d:45:ce:d4:13:b9:63:56:7b:dc:33:90:7f:b3:fd:be:fa: fa:58:6b:c3:ea:9d:ba:b5:40:39:03:42:61:be:ef:aa:4c:e5: 73:a7:87:19:9b:d7:6d:ea:5a:3f:13:fa:94:88:6b:62:ec:81: 43:d3:9c:64:e3:1b:25:7d:56:3a:9f:d9:5a:94:0b:fe:2d:df: 94:61:a3:bf -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUVLbSpfPvm7VWMjkSXSpz2jQ1OfMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDExMDU0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkYjE4N2JmYmEyN2MzMmEzMjI2OTkyYWE5MTA3N2M4MWUx NmY5Y2YyZjg4NzQyM2I5ODc2MzI3N2I4ZTU2YTVlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDLJNoSTtgb5QP2ycUftHX2aBEhcwioRU/nbAWVe9LHzFMe xBM/0jnI+SoGwY5I0h4ZmPAZdao9KA29zqNFifTo3KNXc+thPoCLLymUY09EdkWv VcBVSHNl1PLlLylAG2cUdzMkpWaMw9f6xKR+grNbunZLc0WsiyR/yukPnxo1lwVM zU+wt0PODXCa7HG3poa3Y5a8ElNzY06OdH6MIuzeqkaMLH61k9VfNXaDQTI3SC/T TVp/7InuwIb8EXXXVUINuL65lu9zSfo16XboGY55xkmUIpv4SUDYMoa36B4fimSm inaEnGSKRCBgF+PTZPoSrF/FCvgmJ2xJt/1xl4+TAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURDBokbFTMvb+f5jGskLfepyrYhMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2MyM2E4M2U2LTMyYzQtNDNiNC05OTg2LThmM2RhMDYzMjIzYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7MAwDQYJKoZIhvcNAQELBQADggEBAF7/4aRwfEH4pHbfGyWgKcxEpsXl HJYj5IHOIgkzXvyQQ7e2XZys8p5uLijQCk78M93pltoNwmzL/S8skbIt6NDRJ8rs T4HtrCKg5E05S4XL9/mb1v8S22gTVINLb3n7cMDLce9tWMBtOoqAYTiRitM6JWXR ZXKdYc5hk6Nn/WuM22xRmse51lstfqmjcEeFriQFPjP+9tKEfnMWRYoRzLu+jDu/ z4YLk8yOluJ3dpg0y800Bt0tRc7UE7ljVnvcM5B/s/2++vpYa8Pqnbq1QDkDQmG+ 76pM5XOnhxmb123qWj8T+pSIa2LsgUPTnGTjGyV9Vjqf2VqUC/4t35Rho78= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:14 2026 by rpki-client