$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa File: c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa (raw, json) Hash identifier: VAdbPFCJPSYur0U/dVztm+MwAbfbF+OpvUp8/B3eElM= Subject key identifier: B5:5B:E4:E8:CC:D6:29:FF:DA:30:2A:7B:EE:CB:B7:F8:61:62:D5:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F5ED87457A7E3C0C3C093EEA6F128C26BB09847 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa Signing time: Sun 08 Feb 2026 00:50:39 +0000 ROA not before: Sun 08 Feb 2026 00:50:39 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 162.213.233.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:5e:d8:74:57:a7:e3:c0:c3:c0:93:ee:a6:f1:28:c2:6b:b0:98:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:50:39 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=27daa035c085a63ac4f54bfaed22de89b6117c495f9aae3c1e205b8de620b16c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7f:75:b5:be:2f:0f:e2:dd:17:50:ea:80:fb: 92:4f:d0:14:f5:91:7e:fd:c1:e3:7e:23:ef:06:19: ff:52:d2:d8:59:5a:9e:5e:ec:19:e1:de:6b:f8:36: e1:1e:93:f1:b0:86:ff:2a:ae:c6:a7:87:bb:0c:b7: 69:9b:8b:43:6f:52:c1:79:1f:57:cf:46:82:a1:7d: ca:6b:c0:98:c7:ad:44:cf:2b:73:d8:c6:5c:a4:9b: f2:82:20:bc:f4:31:ab:61:2f:c1:1d:be:1f:85:bb: 02:6a:97:b4:d8:0c:e4:bb:44:a2:27:1a:35:75:7c: 77:28:a8:a5:e2:a0:f3:18:c2:8c:63:9d:d4:55:61: 2a:e1:4d:ca:ec:6c:1e:bc:27:91:27:82:b0:59:df: d7:29:2d:ad:b2:fa:be:f7:fb:11:df:96:32:45:2c: c7:ba:88:02:ea:7b:eb:eb:b0:ac:87:59:aa:73:e7: e8:3d:e6:b0:00:d9:e2:f3:e5:05:36:3d:0d:6f:b7: 68:9b:0d:7a:66:74:8a:e4:e9:78:6b:43:19:14:47: 1c:42:24:10:a4:c3:bf:de:39:dd:c9:3e:b9:7a:37: e5:a0:e9:eb:c5:2b:d4:21:28:be:bb:e9:bc:e9:4b: c5:30:e4:c6:8d:7d:4a:10:56:62:35:1c:24:38:96: 8f:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5B:E4:E8:CC:D6:29:FF:DA:30:2A:7B:EE:CB:B7:F8:61:62:D5:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c5989b5a-6ca7-4f3b-94d1-8295ab72632c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 162.213.233.0/24 Signature Algorithm: sha256WithRSAEncryption 7a:58:ab:0e:28:a9:b6:ce:f0:8c:0f:e8:6b:f4:eb:6b:71:e0: 0e:65:ce:2b:71:70:d8:a4:ed:17:fb:30:7c:69:65:5d:98:f3: af:8f:ee:f4:db:0c:21:55:2f:cc:d9:c8:ae:6b:c0:f8:95:82: ef:06:60:04:c7:8f:2b:26:92:2f:61:5d:d0:5f:4b:86:3d:4d: 4b:f3:40:61:bf:28:71:0c:10:6a:ab:db:38:0b:8b:87:3e:1d: 00:dc:5d:ac:e2:6c:9d:64:35:64:3d:cd:ec:d8:31:44:ec:94: 00:fb:3c:73:d9:33:66:25:e4:66:31:55:4e:33:35:d2:d5:ec: 4f:0a:e5:1b:42:e1:a8:b3:f2:fc:c4:15:2e:cc:e9:29:c7:0e: 49:0c:33:91:d8:a8:b3:ea:63:0b:e3:c3:58:20:e0:25:e9:b6: 8b:1e:f4:a0:7e:ca:b9:0c:15:3d:c2:69:db:84:02:7e:43:a4: 3c:8d:4c:bd:21:5d:b8:97:23:47:68:52:0b:65:6e:41:48:77: 23:cf:bd:10:4e:fe:df:56:d8:75:c1:2d:e2:bd:f5:f2:52:2d: cd:ec:15:fb:b9:12:b4:35:c0:90:50:80:d8:0f:9f:21:5d:24: 32:43:14:79:e7:e7:c1:70:a1:ba:48:3f:c0:16:b5:6f:4a:80: a9:c1:de:dd -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf17YdFen48DDwJPupvEowmuwmEcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDA1MDM5WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0AyN2RhYTAzNWMwODVhNjNhYzRmNTRiZmFlZDIyZGU4OWI2 MTE3YzQ5NWY5YWFlM2MxZTIwNWI4ZGU2MjBiMTZjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCmf3W1vi8P4t0XUOqA+5JP0BT1kX79weN+I+8GGf9S0thZ Wp5e7Bnh3mv4NuEek/Gwhv8qrsanh7sMt2mbi0NvUsF5H1fPRoKhfcprwJjHrUTP K3PYxlykm/KCILz0MathL8Edvh+FuwJql7TYDOS7RKInGjV1fHcoqKXioPMYwoxj ndRVYSrhTcrsbB68J5EngrBZ39cpLa2y+r73+xHfljJFLMe6iALqe+vrsKyHWapz 5+g95rAA2eLz5QU2PQ1vt2ibDXpmdIrk6XhrQxkURxxCJBCkw7/eOd3JPrl6N+Wg 6evFK9QhKL676bzpS8Uw5MaNfUoQVmI1HCQ4lo9rAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUtVvk6MzWKf/aMCp77su3+GFi1bUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M1OTg5YjVhLTZjYTctNGYzYi05NGQxLTgyOTVhYjcyNjMyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBACi1ekwDQYJKoZIhvcNAQELBQADggEBAHpYqw4oqbbO8IwP6Gv062tx4A5l zitxcNik7Rf7MHxpZV2Y86+P7vTbDCFVL8zZyK5rwPiVgu8GYATHjysmki9hXdBf S4Y9TUvzQGG/KHEMEGqr2zgLi4c+HQDcXazibJ1kNWQ9zezYMUTslAD7PHPZM2Yl 5GYxVU4zNdLV7E8K5RtC4aiz8vzEFS7M6SnHDkkMM5HYqLPqYwvjw1gg4CXptose 9KB+yrkMFT3CaduEAn5DpDyNTL0hXbiXI0doUgtlbkFIdyPPvRBO/t9W2HXBLeK9 9fJSLc3sFfu5ErQ1wJBQgNgPnyFdJDJDFHnn58FwobpIP8AWtW9KgKnB3t0= -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:29 2026 by rpki-client