$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa File: cddc38a9-b919-4a54-aad6-1107e47d5499.roa (raw, json) Hash identifier: UEilT5RNqlPdUSGfs+SD0s9y3CJEGuDRIEnphDDnxWY= Subject key identifier: 28:0D:0D:E0:9B:8D:DE:C1:AE:11:8B:07:40:5B:77:34:95:DE:9A:9A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58E1B9695F1D1AD933DDA5BE45B21CF5F278593E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa Signing time: Thu 26 Feb 2026 01:00:55 +0000 ROA not before: Thu 26 Feb 2026 01:00:55 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.22.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:e1:b9:69:5f:1d:1a:d9:33:dd:a5:be:45:b2:1c:f5:f2:78:59:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:00:55 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=8d6b5528b7ce8efe99be5c1d497ecd447b30037033a3b817e478a04c3595600a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:0c:59:3b:9f:ca:54:95:e9:0a:c8:ef:5e:af: 58:70:98:f1:6a:53:54:2e:78:bb:6b:60:1a:8e:7a: 0f:e3:df:82:8b:73:4c:49:19:fc:91:48:a4:3b:2a: f0:f1:03:84:db:c8:01:f5:41:74:f6:28:41:7e:6f: 3f:be:d1:c3:05:18:37:84:f3:c9:20:70:8b:e2:22: 34:5d:aa:3b:e8:9e:26:f7:6b:dc:1d:90:b2:ae:0d: 88:1f:8d:4a:ee:4c:15:0d:2d:ee:b5:59:6d:f4:e1: 3d:49:e3:de:e6:26:d9:79:1c:71:35:c0:78:42:5a: 9e:19:98:e1:8e:1e:a4:d7:d1:ab:06:65:6f:bf:2d: d1:5f:7c:25:ef:19:83:10:c2:d2:05:ca:64:be:9f: 83:c4:f8:23:00:80:c6:c7:48:22:ba:8d:3d:72:5e: 91:94:84:ad:37:b1:fb:da:f8:25:61:49:1f:14:99: 52:b2:79:1d:5c:60:26:f3:fc:70:a2:f2:bb:61:2d: 50:10:02:03:21:57:85:79:33:b0:13:80:a7:4f:7b: 80:5a:56:6a:b5:90:64:1e:8a:4d:90:99:be:81:9a: 90:7e:30:8c:c1:82:18:3e:36:d0:1b:ab:55:b0:84: 7b:97:ae:30:32:63:72:47:0b:a9:3a:06:01:e5:30: 12:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 28:0D:0D:E0:9B:8D:DE:C1:AE:11:8B:07:40:5B:77:34:95:DE:9A:9A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cddc38a9-b919-4a54-aad6-1107e47d5499.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.22.0.0/16 Signature Algorithm: sha256WithRSAEncryption 66:c3:78:29:d6:bc:3d:0c:95:6e:91:b0:3b:04:b1:46:31:f6: b3:2f:ce:9c:8f:2c:ee:ce:39:0d:80:30:1f:41:25:90:8c:ce: ee:89:c7:81:58:5a:aa:dc:16:f7:ad:7f:48:1f:de:d0:f1:0a: 33:a1:cd:30:be:58:93:15:68:92:4a:a0:6e:04:ae:34:a1:f4: e8:aa:96:37:f3:78:a4:68:ae:6b:3b:28:f1:84:fd:77:69:f6: cf:35:8a:6e:1b:87:44:77:2f:ee:f3:b0:7d:49:32:fe:d7:70: 17:c1:64:f4:48:5b:12:cf:fc:fa:e2:07:fe:3b:f0:28:82:07: a3:30:d8:c2:ec:e0:66:60:e8:97:31:35:c5:e2:cc:06:97:7c: 9c:49:2d:a7:cf:68:d1:29:ff:4c:81:65:aa:7a:4f:3a:23:10: c6:fd:63:08:96:be:67:06:17:52:d6:82:fd:6e:1c:15:dc:3f: 6e:d1:fb:9f:b0:de:a1:11:c2:32:c2:40:54:6b:c1:49:f7:ac: 45:32:d2:70:c8:d6:ca:37:37:07:95:d9:03:e4:a0:d7:9c:5f: 30:44:5d:18:f1:60:e8:8c:cb:e1:af:8a:e2:9c:9f:4e:8f:19: 5d:72:43:25:24:68:7c:11:6c:9d:f1:b1:11:ba:90:58:27:01: 4a:06:29:59 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWOG5aV8dGtkz3aW+RbIc9fJ4WT4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMDU1WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A4ZDZiNTUyOGI3Y2U4ZWZlOTliZTVjMWQ0OTdlY2Q0NDdi MzAwMzcwMzNhM2I4MTdlNDc4YTA0YzM1OTU2MDBhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSDFk7n8pUlekKyO9er1hwmPFqU1QueLtrYBqOeg/j34KL c0xJGfyRSKQ7KvDxA4TbyAH1QXT2KEF+bz++0cMFGDeE88kgcIviIjRdqjvonib3 a9wdkLKuDYgfjUruTBUNLe61WW304T1J497mJtl5HHE1wHhCWp4ZmOGOHqTX0asG ZW+/LdFffCXvGYMQwtIFymS+n4PE+CMAgMbHSCK6jT1yXpGUhK03sfva+CVhSR8U mVKyeR1cYCbz/HCi8rthLVAQAgMhV4V5M7ATgKdPe4BaVmq1kGQeik2Qmb6BmpB+ MIzBghg+NtAbq1WwhHuXrjAyY3JHC6k6BgHlMBIfAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUKA0N4JuN3sGuEYsHQFt3NJXempowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NkZGMzOGE5LWI5MTktNGE1NC1hYWQ2LTExMDdlNDdkNTQ5OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4FjANBgkqhkiG9w0BAQsFAAOCAQEAZsN4Kda8PQyVbpGwOwSxRjH2sy/O nI8s7s45DYAwH0ElkIzO7onHgVhaqtwW961/SB/e0PEKM6HNML5YkxVokkqgbgSu NKH06KqWN/N4pGiuazso8YT9d2n2zzWKbhuHRHcv7vOwfUky/tdwF8Fk9EhbEs/8 +uIH/jvwKIIHozDYwuzgZmDolzE1xeLMBpd8nEktp89o0Sn/TIFlqnpPOiMQxv1j CJa+ZwYXUtaC/W4cFdw/btH7n7DeoRHCMsJAVGvBSfesRTLScMjWyjc3B5XZA+Sg 15xfMERdGPFg6IzL4a+K4pyfTo8ZXXJDJSRofBFsnfGxEbqQWCcBSgYpWQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:07 2026 by rpki-client