$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cafba1e8-cd39-40c6-9b3a-6e52504dfabd.roa File: cafba1e8-cd39-40c6-9b3a-6e52504dfabd.roa (raw, json) Hash identifier: tjSJzXfvPX6nofH15I5fXZUFa1T1X2Xjjo+flRwUhH0= Subject key identifier: A3:9F:F9:34:55:25:90:DC:02:1E:29:E8:24:D3:59:11:56:86:4C:90 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7FDBCD45CF459A67D13186EF14FDF431EB42A0E1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cafba1e8-cd39-40c6-9b3a-6e52504dfabd.roa Signing time: Tue 10 Feb 2026 00:21:23 +0000 ROA not before: Tue 10 Feb 2026 00:21:23 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.87.0.0/17 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:db:cd:45:cf:45:9a:67:d1:31:86:ef:14:fd:f4:31:eb:42:a0:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:21:23 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=97df654e5603b63c3434cc4e54b2a79ac3389514507fbb65cab9006b502ef99c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:29:1b:55:f0:3a:07:f6:46:fa:9d:d2:f0:04: 6d:a2:31:a9:81:b5:6b:64:c2:91:95:c3:3e:37:63: ea:03:73:a6:1c:0d:27:41:6a:d2:f2:26:b1:b0:17: 17:ef:d6:ca:a1:02:e6:ae:9a:e1:83:62:0e:8d:b2: af:72:b2:a1:e5:8a:2f:70:30:7e:e8:ce:e3:c7:72: 25:b4:60:d2:54:d3:b0:75:34:aa:fa:a5:43:58:97: 2c:4b:f8:d7:a2:b5:7e:1a:e8:c8:5c:a9:41:39:9e: 5e:6e:69:d7:4b:04:34:79:26:d8:21:0c:4d:e5:31: 28:97:b3:cf:39:73:3e:a1:5c:95:7e:ad:d9:b1:16: 86:e5:15:1f:2d:8a:25:c8:2e:91:0f:10:f7:95:b9: cf:51:bd:95:ed:be:21:4d:5d:7f:4c:15:41:6c:bf: 79:eb:86:03:c8:b8:9c:ba:18:af:44:26:bb:6b:ab: 6f:5a:f2:c3:e8:ec:65:9d:81:87:29:20:77:be:b6: c1:bc:d9:8a:70:1f:31:06:e8:aa:e3:51:78:9f:e6: 0a:d6:cc:3c:1a:ac:66:e5:f9:35:3b:10:69:96:65: bf:f6:cc:94:1e:9e:26:68:73:79:07:d0:b4:7a:06: d5:7a:6f:8f:b8:95:eb:a7:1d:37:9e:a0:42:f8:a3: 84:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:9F:F9:34:55:25:90:DC:02:1E:29:E8:24:D3:59:11:56:86:4C:90 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cafba1e8-cd39-40c6-9b3a-6e52504dfabd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.87.0.0/17 Signature Algorithm: sha256WithRSAEncryption b0:ad:a7:5b:ec:c2:cc:75:45:aa:91:40:92:82:85:b1:0e:63: b5:c4:34:38:d0:33:28:0e:77:1e:a5:64:e7:a9:92:e4:67:68: 76:c6:b5:57:fb:2b:65:94:ef:45:9f:1d:38:dd:3a:12:f6:f0: 6c:73:18:a7:6a:cf:f5:9a:93:4a:46:ea:2d:98:99:7e:87:e3: c2:10:df:9a:a8:55:ec:68:ea:2d:9b:7a:e9:39:9a:0e:59:0d: cc:4c:d3:26:07:0f:cf:ae:90:b6:82:72:84:00:7b:2b:cc:bb: d4:ff:70:ef:dd:3a:79:e7:d9:ba:92:6d:7d:ab:c1:87:8e:84: 04:cf:68:ee:0d:6a:bd:a8:e8:e3:93:39:08:a9:8f:ae:b6:b2: ad:50:b6:c7:87:11:0c:29:5d:b1:8b:e0:02:aa:d6:c3:a4:49: b8:c2:79:8f:22:41:aa:20:4d:f3:bd:5c:3a:a2:bb:82:fa:d7: 24:69:d9:2c:75:d9:c4:2d:2d:cf:cc:2e:a8:b4:d9:05:a2:6f: a6:38:c7:60:5b:34:ee:28:2a:fe:69:64:93:64:e6:85:cc:d5: fa:07:93:14:5d:6d:6f:dd:44:d8:83:23:02:d2:b9:ba:cd:d3: 17:0f:69:af:08:68:1f:e2:2d:cf:d6:4a:ef:90:b1:95:2a:6b: db:5c:dd:39 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf9vNRc9FmmfRMYbvFP30MetCoOEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAyMTIzWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A5N2RmNjU0ZTU2MDNiNjNjMzQzNGNjNGU1NGIyYTc5YWMz Mzg5NTE0NTA3ZmJiNjVjYWI5MDA2YjUwMmVmOTljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7KRtV8DoH9kb6ndLwBG2iMamBtWtkwpGVwz43Y+oDc6Yc DSdBatLyJrGwFxfv1sqhAuaumuGDYg6Nsq9ysqHlii9wMH7ozuPHciW0YNJU07B1 NKr6pUNYlyxL+NeitX4a6MhcqUE5nl5uaddLBDR5JtghDE3lMSiXs885cz6hXJV+ rdmxFoblFR8tiiXILpEPEPeVuc9RvZXtviFNXX9MFUFsv3nrhgPIuJy6GK9EJrtr q29a8sPo7GWdgYcpIHe+tsG82YpwHzEG6KrjUXif5grWzDwarGbl+TU7EGmWZb/2 zJQeniZoc3kH0LR6BtV6b4+4leunHTeeoEL4o4SJAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUo5/5NFUlkNwCHinoJNNZEVaGTJAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NhZmJhMWU4LWNkMzktNDBjNi05YjNhLTZlNTI1MDRkZmFiZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAdjVwAwDQYJKoZIhvcNAQELBQADggEBALCtp1vswsx1RaqRQJKChbEOY7XE NDjQMygOdx6lZOepkuRnaHbGtVf7K2WU70WfHTjdOhL28GxzGKdqz/Wak0pG6i2Y mX6H48IQ35qoVexo6i2beuk5mg5ZDcxM0yYHD8+ukLaCcoQAeyvMu9T/cO/dOnnn 2bqSbX2rwYeOhATPaO4Nar2o6OOTOQipj662sq1QtseHEQwpXbGL4AKq1sOkSbjC eY8iQaogTfO9XDqiu4L61yRp2Sx12cQtLc/MLqi02QWib6Y4x2BbNO4oKv5pZJNk 5oXM1foHkxRdbW/dRNiDIwLSubrN0xcPaa8IaB/iLc/WSu+QsZUqa9tc3Tk= -----END CERTIFICATE-----Generated at Mon Mar 2 05:35:37 2026 by rpki-client