$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa File: cf0c1deb-beae-436c-b486-1229da733efa.roa (raw, json) Hash identifier: Ry+ul9d2U3Ni62X9ArnKPAWL/RsIawT5ee1DOLtkIMM= Subject key identifier: 1A:3A:21:E1:90:D7:FD:A2:43:C1:A3:89:27:2F:64:CD:71:75:ED:E7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2F4D5512E7137386E14B72252B53FB151D20D778 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa Signing time: Wed 25 Feb 2026 01:21:18 +0000 ROA not before: Wed 25 Feb 2026 01:21:18 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.22.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2f:4d:55:12:e7:13:73:86:e1:4b:72:25:2b:53:fb:15:1d:20:d7:78 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:21:18 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=51edeac43922d908b5aeaf4f7334870f99aab73706a00f76102831e613a82a33, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2f:52:4a:30:91:c7:07:d8:66:69:51:4b:53: 02:2e:df:86:f7:66:5f:fc:0c:ef:4d:04:4a:2e:39: f2:a5:a6:0c:4b:79:72:9d:e8:bb:1e:3d:ad:b7:04: 9e:54:59:57:b0:8a:29:56:be:06:03:7d:5c:08:dd: ee:97:1e:b2:51:77:3d:34:e8:9e:dc:4f:05:52:79: 0a:c1:6a:e5:df:b1:74:af:6a:2f:19:1f:48:42:f6: 0e:b5:14:d1:9e:e0:e8:4d:91:d0:39:f2:33:cc:24: 1e:6e:d5:41:21:04:4b:88:b2:30:72:89:50:08:08: db:c2:df:01:2d:ba:e0:81:04:ff:b6:8d:98:30:0a: f2:ba:e3:b6:4e:3c:19:92:da:39:c7:b3:da:dc:29: 7e:f2:e8:88:25:f9:34:73:fe:7f:07:11:78:70:2c: 08:d0:09:e9:a2:ec:0c:80:17:1e:44:ce:e8:f4:c1: 75:b5:72:ce:38:8f:67:e2:ae:a2:cd:00:f4:ae:35: b9:c0:89:70:4d:3a:71:de:c3:ae:c0:0d:e0:62:09: 16:99:5a:ab:58:1c:e4:fc:1f:57:09:1b:de:3a:c6: 88:7b:1a:b5:1d:4c:c6:4b:2b:9e:ea:03:49:56:a5: bc:af:29:d3:17:c0:19:83:12:95:48:f6:b6:81:26: 00:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:3A:21:E1:90:D7:FD:A2:43:C1:A3:89:27:2F:64:CD:71:75:ED:E7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/cf0c1deb-beae-436c-b486-1229da733efa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.22.128.0/17 Signature Algorithm: sha256WithRSAEncryption b7:e6:03:29:b4:76:a1:91:8c:5f:20:31:d5:4a:88:f4:0e:42: 3e:df:e2:a4:68:50:e7:33:a5:11:9e:44:e5:21:82:53:2a:0d: 1c:3c:f3:7c:2a:fa:f9:36:77:74:0c:ce:b6:88:7c:7e:b8:8b: 26:f0:90:73:00:c9:39:f5:38:3e:1c:74:54:6c:a1:13:a6:ae: 62:7f:e8:62:ba:de:e4:08:e6:e0:01:d4:2e:0e:2f:83:ea:60: 81:8f:c6:6d:09:b0:34:5e:1d:33:c2:51:f2:db:9a:0f:12:5e: ab:39:38:d2:d2:36:89:c2:fa:57:08:1f:a4:e9:07:58:54:ca: 3c:6b:9a:85:9b:0a:04:79:e7:54:f5:33:88:f0:23:ee:9c:5d: 5f:85:4b:f8:b6:fe:fe:10:e6:48:e3:9e:6d:87:52:a3:76:e2: 92:f4:80:82:ee:07:d3:20:ff:3d:7c:65:81:f4:d4:aa:6d:9d: 8e:8d:9c:65:d2:72:fe:39:27:9d:0e:99:bc:f6:3c:42:03:0c: 40:9c:f1:e0:87:04:f0:b5:48:43:41:ed:c9:1a:aa:fb:4f:fa: 89:e0:d8:e0:b6:ee:12:23:96:99:ac:24:1f:a6:6c:13:df:02: 37:d5:0f:1a:73:00:5a:03:9b:14:d1:c0:a7:84:29:6e:ea:d3: c6:d2:aa:19 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUL01VEucTc4bhS3IlK1P7FR0g13gwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMTE4WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1MWVkZWFjNDM5MjJkOTA4YjVhZWFmNGY3MzM0ODcwZjk5 YWFiNzM3MDZhMDBmNzYxMDI4MzFlNjEzYTgyYTMzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHL1JKMJHHB9hmaVFLUwIu34b3Zl/8DO9NBEouOfKlpgxL eXKd6LsePa23BJ5UWVewiilWvgYDfVwI3e6XHrJRdz006J7cTwVSeQrBauXfsXSv ai8ZH0hC9g61FNGe4OhNkdA58jPMJB5u1UEhBEuIsjByiVAICNvC3wEtuuCBBP+2 jZgwCvK647ZOPBmS2jnHs9rcKX7y6Igl+TRz/n8HEXhwLAjQCemi7AyAFx5Ezuj0 wXW1cs44j2firqLNAPSuNbnAiXBNOnHew67ADeBiCRaZWqtYHOT8H1cJG946xoh7 GrUdTMZLK57qA0lWpbyvKdMXwBmDEpVI9raBJgB9AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUGjoh4ZDX/aJDwaOJJy9kzXF17ecwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2NmMGMxZGViLWJlYWUtNDM2Yy1iNDg2LTEyMjlkYTczM2VmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcXFoAwDQYJKoZIhvcNAQELBQADggEBALfmAym0dqGRjF8gMdVKiPQOQj7f 4qRoUOczpRGeROUhglMqDRw883wq+vk2d3QMzraIfH64iybwkHMAyTn1OD4cdFRs oROmrmJ/6GK63uQI5uAB1C4OL4PqYIGPxm0JsDReHTPCUfLbmg8SXqs5ONLSNonC +lcIH6TpB1hUyjxrmoWbCgR551T1M4jwI+6cXV+FS/i2/v4Q5kjjnm2HUqN24pL0 gILuB9Mg/z18ZYH01KptnY6NnGXScv45J50Ombz2PEIDDECc8eCHBPC1SENB7cka qvtP+ong2OC27hIjlpmsJB+mbBPfAjfVDxpzAFoDmxTRwKeEKW7q08bSqhk= -----END CERTIFICATE-----Generated at Mon Mar 2 00:06:55 2026 by rpki-client