$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7176065-06ff-4cc3-8f45-037bf533d7c4.roa File: c7176065-06ff-4cc3-8f45-037bf533d7c4.roa (raw, json) Hash identifier: xQxrNCBn/+gnsbh6aSiEGQWlhA/s3RuUk6f65CPAtTQ= Subject key identifier: 8D:D1:D6:83:B9:3D:EF:39:2B:D3:FD:91:8F:C7:BC:CD:5C:89:6C:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 02035BE7295C1F22CA7B87E3861954E24200F004 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7176065-06ff-4cc3-8f45-037bf533d7c4.roa Signing time: Wed 25 Feb 2026 00:20:50 +0000 ROA not before: Wed 25 Feb 2026 00:20:50 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.56.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:03:5b:e7:29:5c:1f:22:ca:7b:87:e3:86:19:54:e2:42:00:f0:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:20:50 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=2486830bb7d3c05a0f81c085ff9abc265ca00616723ccffc9e9be10ab9799b14, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f9:3b:a5:7e:4b:d0:e5:cb:41:03:92:6a:9c: fb:06:0e:57:a4:69:83:09:7b:bc:83:8a:b0:73:60: 89:30:94:dc:77:5c:f5:c1:ad:8c:c4:5c:68:3b:33: c7:80:f6:ec:e9:f3:39:e9:c0:15:65:6a:3e:49:9b: 95:23:bc:b4:29:03:25:f1:10:52:c9:03:10:10:aa: 1f:d9:5e:69:b6:d6:d1:d8:09:ef:19:0a:8f:12:6d: ed:e3:e4:fe:2c:20:dd:80:b0:c2:50:b0:89:ea:0c: 3b:43:ce:f2:82:59:66:4d:86:86:93:ea:8f:1a:d2: 61:fb:43:f4:da:8b:7a:f0:18:1c:1e:36:9b:65:9a: d6:64:30:13:7a:aa:ac:b8:f8:48:4d:a9:0f:d0:bc: 3f:0f:04:fd:f2:64:cf:4c:13:0a:91:56:40:db:2c: 97:eb:76:7f:7c:c4:34:f1:12:3e:81:7d:0e:ab:2f: cf:f0:7e:ca:bf:bd:75:01:0c:6b:07:d6:12:ef:f9: 00:c4:d4:df:ce:39:da:8c:58:94:94:c6:8e:1e:85: 33:86:9a:e4:74:4f:1d:ab:cc:80:25:3b:fa:4c:51: 74:22:ca:56:5d:30:31:3f:34:66:0c:0e:20:71:cc: fb:36:9d:c5:0b:f3:41:a2:ee:4a:5b:ce:af:fb:4f: 47:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D1:D6:83:B9:3D:EF:39:2B:D3:FD:91:8F:C7:BC:CD:5C:89:6C:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/c7176065-06ff-4cc3-8f45-037bf533d7c4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.56.0.0/15 Signature Algorithm: sha256WithRSAEncryption be:ff:a6:75:41:95:21:e6:d1:7b:c9:a4:8a:ea:11:48:82:70: 51:77:86:a1:20:ae:2a:50:a9:6c:29:dd:f2:2a:8c:8b:fe:8b: ec:06:b0:6e:a1:d9:c5:13:47:5c:7c:61:06:9b:9f:85:e7:70: 8d:65:2d:54:69:66:71:21:41:76:00:b0:ea:27:bd:6a:19:cb: 86:00:9a:30:7b:82:2b:1c:34:d4:1c:11:f4:0f:15:25:34:3d: 17:6f:28:8c:0b:05:62:b5:b8:37:cd:fc:a3:55:ea:ea:56:ad: 65:ef:d2:52:f5:3a:47:7d:48:f8:85:1c:3b:6f:af:37:4f:18: 09:89:30:7b:aa:c7:54:b4:8d:5c:68:82:b4:89:65:41:35:d2: 30:ca:81:b2:b6:69:01:12:89:02:ec:bb:04:c1:cb:20:62:5f: 9b:07:1d:13:0f:87:ae:96:6b:af:24:11:3f:c7:ba:dd:04:a8: b3:e3:7a:86:58:3e:f1:f5:10:b3:81:24:ce:56:0f:b2:67:68: a5:53:43:20:cf:b1:d1:5a:da:f6:d3:93:e6:fd:7a:f1:24:ba: fb:b2:1e:87:28:ae:16:a2:c7:99:55:31:41:9a:3c:36:38:84: 1b:fe:d2:28:b7:1e:cb:9d:b7:d5:89:19:51:fd:a9:e6:45:7d: 0b:9c:fe:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUAgNb5ylcHyLKe4fjhhlU4kIA8AQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAyMDUwWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AyNDg2ODMwYmI3ZDNjMDVhMGY4MWMwODVmZjlhYmMyNjVj YTAwNjE2NzIzY2NmZmM5ZTliZTEwYWI5Nzk5YjE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCy+TulfkvQ5ctBA5JqnPsGDlekaYMJe7yDirBzYIkwlNx3 XPXBrYzEXGg7M8eA9uzp8znpwBVlaj5Jm5UjvLQpAyXxEFLJAxAQqh/ZXmm21tHY Ce8ZCo8Sbe3j5P4sIN2AsMJQsInqDDtDzvKCWWZNhoaT6o8a0mH7Q/Tai3rwGBwe NptlmtZkMBN6qqy4+EhNqQ/QvD8PBP3yZM9MEwqRVkDbLJfrdn98xDTxEj6BfQ6r L8/wfsq/vXUBDGsH1hLv+QDE1N/OOdqMWJSUxo4ehTOGmuR0Tx2rzIAlO/pMUXQi ylZdMDE/NGYMDiBxzPs2ncUL80Gi7kpbzq/7T0cBAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUjdHWg7k97zkr0/2Rj8e8zVyJbEIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2M3MTc2MDY1LTA2ZmYtNGNjMy04ZjQ1LTAzN2JmNTMzZDdjNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjODANBgkqhkiG9w0BAQsFAAOCAQEAvv+mdUGVIebRe8mkiuoRSIJwUXeG oSCuKlCpbCnd8iqMi/6L7AawbqHZxRNHXHxhBpufhedwjWUtVGlmcSFBdgCw6ie9 ahnLhgCaMHuCKxw01BwR9A8VJTQ9F28ojAsFYrW4N838o1Xq6latZe/SUvU6R31I +IUcO2+vN08YCYkwe6rHVLSNXGiCtIllQTXSMMqBsrZpARKJAuy7BMHLIGJfmwcd Ew+HrpZrryQRP8e63QSos+N6hlg+8fUQs4EkzlYPsmdopVNDIM+x0Vra9tOT5v16 8SS6+7IehyiuFqLHmVUxQZo8NjiEG/7SKLcey5231YkZUf2p5kV9C5z+TA== -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:06 2026 by rpki-client