$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa File: ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa (raw, json) Hash identifier: kCGeqQvdYRT5CZFP1Xh9EtsjyFLCJPCRh5+yefyJcs4= Subject key identifier: 47:39:0A:B5:5B:FD:37:84:5E:A2:C5:8A:C1:D5:B4:1C:26:DD:5C:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4470621DEDE9EBCD6DCD3FB9DB06658E7044A15C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa Signing time: Wed 25 Feb 2026 01:30:17 +0000 ROA not before: Wed 25 Feb 2026 01:30:17 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.176.82.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:70:62:1d:ed:e9:eb:cd:6d:cd:3f:b9:db:06:65:8e:70:44:a1:5c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:30:17 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=545a115e89e5aa7e022070a301954234f4a08919b0329a505fca09a41c4fded2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:bc:86:90:e6:7e:3a:52:03:f3:5b:ba:4e:cb: 07:2c:47:76:3d:92:e9:27:18:65:b1:da:db:15:96: 23:38:80:2b:71:5e:51:18:e8:ab:07:ca:cf:53:8b: 5c:7a:61:9f:64:a7:7a:9b:fd:70:c4:7f:e8:57:de: ae:b1:32:63:38:ce:c3:3a:35:5f:e1:fd:00:43:b1: e7:79:a3:ad:51:e7:ad:ce:b0:2a:d8:f5:dd:4b:f0: ff:c4:8f:c5:06:90:e9:cb:4b:b1:3e:1b:c0:fd:6c: f7:cc:3a:1c:e5:62:a2:75:a2:bd:fa:11:c6:e8:a7: 64:57:e1:b0:ae:02:fb:0d:8c:7a:76:95:58:6d:de: 07:9c:72:32:c1:97:89:a1:bf:40:c6:64:11:b4:c0: ec:47:ef:14:af:95:ad:fe:ae:c2:13:3e:b0:2d:e5: b0:26:c7:cb:97:83:34:ba:5f:82:75:ce:6a:5f:f4: ff:ae:18:69:7f:fd:9e:03:36:5d:a3:19:e0:95:2e: 66:8d:ab:f2:6f:40:14:dd:c1:29:29:fb:14:a3:76: ac:1f:76:8b:93:f8:80:27:71:cb:1c:3b:0e:73:23: 85:fc:23:44:1b:6c:29:08:7b:99:b7:14:32:f0:8d: ec:ac:88:74:86:64:c4:b9:cb:26:e6:fa:b9:97:0f: 7d:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:39:0A:B5:5B:FD:37:84:5E:A2:C5:8A:C1:D5:B4:1C:26:DD:5C:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ccf275ae-7935-4f0a-b4e1-9b0bd0532ac8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.176.82.0/24 Signature Algorithm: sha256WithRSAEncryption 46:46:b2:9d:eb:69:b3:77:57:1b:55:b1:bf:bf:33:59:b4:e4: 09:6b:44:6f:e1:05:5a:52:65:cf:05:91:71:cf:75:b7:de:f0: 7c:d8:34:6a:52:75:85:99:43:7f:66:d8:0d:91:c1:04:59:71: 23:45:e5:b5:30:b9:6c:41:ca:2d:a2:c4:6e:59:22:6c:75:6c: c7:4d:75:69:fe:4b:fc:6a:84:f5:6e:b2:c2:6a:53:f2:8c:db: 3c:7e:87:4d:a5:ff:53:36:f2:16:7b:1e:ed:0a:c0:86:a2:13: e0:43:8d:f9:03:af:2b:ba:96:07:b1:95:ef:f9:35:71:17:d8: d3:a4:d3:c4:53:c0:f4:38:65:96:ba:22:4f:f2:76:e2:d7:6a: 82:34:89:42:c9:aa:ff:4b:92:19:96:a2:4c:5e:92:0d:01:76: 77:b4:fd:dd:8e:df:05:50:36:b1:21:8a:72:1a:02:53:c6:8c: 23:9d:20:c3:89:5e:c3:c3:b0:c2:fd:96:1d:6e:ee:c7:7e:77: c2:ee:d9:cc:d4:d8:27:a5:37:77:a7:00:70:5f:b6:ae:c4:61: 44:8d:cb:81:99:cf:a4:cb:f7:1b:29:d8:72:06:f8:1f:95:de: 7a:d1:50:53:89:bf:ea:5c:0f:fb:57:b6:69:31:4e:2d:83:d8: e0:b9:1a:b8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIURHBiHe3p681tzT+52wZljnBEoVwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEzMDE3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NDVhMTE1ZTg5ZTVhYTdlMDIyMDcwYTMwMTk1NDIzNGY0 YTA4OTE5YjAzMjlhNTA1ZmNhMDlhNDFjNGZkZWQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKvIaQ5n46UgPzW7pOywcsR3Y9kuknGGWx2tsVliM4gCtx XlEY6KsHys9Ti1x6YZ9kp3qb/XDEf+hX3q6xMmM4zsM6NV/h/QBDsed5o61R563O sCrY9d1L8P/Ej8UGkOnLS7E+G8D9bPfMOhzlYqJ1or36Ecbop2RX4bCuAvsNjHp2 lVht3geccjLBl4mhv0DGZBG0wOxH7xSvla3+rsITPrAt5bAmx8uXgzS6X4J1zmpf 9P+uGGl//Z4DNl2jGeCVLmaNq/JvQBTdwSkp+xSjdqwfdouT+IAnccscOw5zI4X8 I0QbbCkIe5m3FDLwjeysiHSGZMS5yybm+rmXD31XAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQURzkKtVv9N4ReosWKwdW0HCbdXPwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NjZjI3NWFlLTc5MzUtNGYwYS1iNGUxLTliMGJkMDUzMmFjOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAosFIwDQYJKoZIhvcNAQELBQADggEBAEZGsp3rabN3VxtVsb+/M1m05Alr RG/hBVpSZc8FkXHPdbfe8HzYNGpSdYWZQ39m2A2RwQRZcSNF5bUwuWxByi2ixG5Z Imx1bMdNdWn+S/xqhPVussJqU/KM2zx+h02l/1M28hZ7Hu0KwIaiE+BDjfkDryu6 lgexle/5NXEX2NOk08RTwPQ4ZZa6Ik/yduLXaoI0iULJqv9LkhmWokxekg0Bdne0 /d2O3wVQNrEhinIaAlPGjCOdIMOJXsPDsML9lh1u7sd+d8Lu2czU2CelN3enAHBf tq7EYUSNy4GZz6TL9xsp2HIG+B+V3nrRUFOJv+pcD/tXtmkxTi2D2OC5Grg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:14:38 2026 by rpki-client