$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b68d99-38f8-4e40-b69d-a58254fd3e25.roa File: c4b68d99-38f8-4e40-b69d-a58254fd3e25.roa (raw, json) Hash identifier: C9+LzpOBVvJFuSQDu166SkMsmLh6pZ8pL7m8qE38GIA= Subject key identifier: 0B:68:97:6A:0B:80:BF:1C:0A:4D:DC:59:43:C8:3C:59:63:B9:8E:7D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 28FC5ECD49EE346C6F87DDDD69E5785F3C83E40A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b68d99-38f8-4e40-b69d-a58254fd3e25.roa Signing time: Wed 18 Feb 2026 00:31:24 +0000 ROA not before: Wed 18 Feb 2026 00:31:24 +0000 ROA not after: Tue 19 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 64.190.145.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:fc:5e:cd:49:ee:34:6c:6f:87:dd:dd:69:e5:78:5f:3c:83:e4:0a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 18 00:31:24 2026 GMT Not After : May 19 23:59:59 2026 GMT Subject: serialNumber=fc92f64e97e5f2410374b08d52592827ca60aa6ee100a5662dd531e1b5d7aecb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:1b:2b:f8:fa:28:e7:7c:54:af:74:34:6e:2b: e0:95:14:c4:e5:43:99:51:86:3d:1c:19:cd:bb:0b: 28:73:c6:99:78:aa:90:bc:e1:75:bb:9a:d7:45:1e: b0:93:41:16:4f:c0:68:5a:10:16:43:5d:f7:b6:ba: a6:fe:8f:09:8d:ec:3c:1b:12:00:72:c8:13:09:6b: f4:f2:e8:9c:e2:67:41:32:d1:dc:a8:ea:b6:48:df: 1a:dc:1d:85:cc:07:0b:fe:ce:95:01:d3:8d:85:4c: a7:5a:6d:cd:2f:89:c6:87:98:cf:ed:dd:c2:ec:0f: 68:fd:73:17:cd:00:3c:01:af:a5:d7:3a:7b:2e:64: d8:a7:db:01:4d:6a:31:12:8f:db:3b:cc:23:f3:a7: 5b:f3:00:c7:fe:ac:0b:a8:d5:66:cd:23:7e:8c:61: f5:9d:4c:10:c0:76:8a:0b:c4:db:55:36:b7:c8:58: 06:53:83:6f:33:92:fc:07:44:e2:50:3c:18:29:0a: b8:b7:77:91:bb:bc:52:23:eb:af:f3:19:c9:4f:dd: dc:df:28:58:fa:1e:da:79:eb:a1:29:54:04:8b:0f: 8f:b2:d2:37:91:8a:f2:fd:ea:d5:27:4a:72:81:d1: f0:2f:bd:7e:a1:bb:98:69:61:ed:af:b0:0a:92:16: 5f:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0B:68:97:6A:0B:80:BF:1C:0A:4D:DC:59:43:C8:3C:59:63:B9:8E:7D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c4b68d99-38f8-4e40-b69d-a58254fd3e25.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 64.190.145.0/24 Signature Algorithm: sha256WithRSAEncryption cb:25:6c:b2:23:37:b6:f0:23:25:81:a4:ff:13:ac:b7:c5:00: 00:1c:f3:1c:c9:84:89:f6:6b:e3:0b:78:00:72:61:05:7b:cd: ca:9d:0c:78:da:53:97:df:b6:2c:ec:55:71:fc:26:46:1f:37: 08:4d:40:71:0c:4a:6b:c9:4d:54:48:90:45:1f:84:16:3c:2b: 0d:92:38:c8:74:aa:ca:ec:e3:c8:1d:a6:12:f9:9e:fd:1e:4b: 6e:bc:6c:f9:33:58:5c:bc:e8:10:24:cd:dc:34:d7:04:7e:a4: e7:30:93:1a:8c:3a:c6:f0:ec:5f:33:96:c9:60:26:4f:16:69: fd:58:5d:9d:49:46:b2:fd:7a:09:51:97:7d:47:fd:a0:0d:6e: 00:2c:d4:10:a1:28:ff:aa:31:1b:e0:9e:1f:44:b2:48:e3:22: ab:a7:7f:b8:54:37:a9:28:24:ce:bf:ce:24:9c:3e:48:a9:77: 13:5a:34:87:cb:59:6d:2e:9d:01:a5:1f:ff:2d:26:73:b3:21: 7d:c3:db:5e:f1:90:30:ac:7a:51:f8:22:c6:80:c8:08:24:86: 74:39:0e:4f:a0:77:c6:57:b6:90:47:25:c4:ce:02:a3:df:77: 73:f1:bd:36:75:41:25:12:ca:ae:f9:03:60:bc:68:99:48:3c: 46:fc:2a:b9 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUKPxezUnuNGxvh93daeV4XzyD5AowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE4MDAzMTI0WhcNMjYwNTE5MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzkyZjY0ZTk3ZTVmMjQxMDM3NGIwOGQ1MjU5MjgyN2Nh NjBhYTZlZTEwMGE1NjYyZGQ1MzFlMWI1ZDdhZWNiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJGyv4+ijnfFSvdDRuK+CVFMTlQ5lRhj0cGc27Cyhzxpl4 qpC84XW7mtdFHrCTQRZPwGhaEBZDXfe2uqb+jwmN7DwbEgByyBMJa/Ty6JziZ0Ey 0dyo6rZI3xrcHYXMBwv+zpUB042FTKdabc0vicaHmM/t3cLsD2j9cxfNADwBr6XX OnsuZNin2wFNajESj9s7zCPzp1vzAMf+rAuo1WbNI36MYfWdTBDAdooLxNtVNrfI WAZTg28zkvwHROJQPBgpCri3d5G7vFIj66/zGclP3dzfKFj6Htp566EpVASLD4+y 0jeRivL96tUnSnKB0fAvvX6hu5hpYe2vsAqSFl9pAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUC2iXaguAvxwKTdxZQ8g8WWO5jn0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M0YjY4ZDk5LTM4ZjgtNGU0MC1iNjlkLWE1ODI1NGZkM2UyNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABAvpEwDQYJKoZIhvcNAQELBQADggEBAMslbLIjN7bwIyWBpP8TrLfFAAAc 8xzJhIn2a+MLeAByYQV7zcqdDHjaU5fftizsVXH8JkYfNwhNQHEMSmvJTVRIkEUf hBY8Kw2SOMh0qsrs48gdphL5nv0eS268bPkzWFy86BAkzdw01wR+pOcwkxqMOsbw 7F8zlslgJk8Waf1YXZ1JRrL9eglRl31H/aANbgAs1BChKP+qMRvgnh9EskjjIqun f7hUN6koJM6/ziScPkipdxNaNIfLWW0unQGlH/8tJnOzIX3D217xkDCselH4IsaA yAgkhnQ5Dk+gd8ZXtpBHJcTOAqPfd3PxvTZ1QSUSyq75A2C8aJlIPEb8Krk= -----END CERTIFICATE-----Generated at Sun Mar 1 23:54:16 2026 by rpki-client