$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa File: d2526c3a-77ad-4669-af27-f2171d468d2d.roa (raw, json) Hash identifier: CJ87HA9/wOAE7iNcmB0vZwODrkQB0lXu9sK3K2iHISw= Subject key identifier: D6:42:4A:6E:48:91:8C:3E:93:75:1E:FF:F5:B4:3B:08:5E:CA:1D:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 578A719E3397C1FCDF1E5540070B2D3533AF2282 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa Signing time: Sun 01 Mar 2026 00:10:46 +0000 ROA not before: Sun 01 Mar 2026 00:10:46 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 63.246.116.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:8a:71:9e:33:97:c1:fc:df:1e:55:40:07:0b:2d:35:33:af:22:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:10:46 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=a5c7e4e6d308ea6a96d0d3af4b50825f1a2f210427b77b3516a5cc67431db686, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:81:69:fa:03:1d:09:ca:61:f4:7d:a6:c0:b4: 65:3a:4a:b3:68:fb:88:b4:23:a9:ca:b1:4a:5d:3d: 47:fc:c6:0a:00:36:2c:30:1c:7d:67:5f:47:cf:8a: a8:0c:89:7d:24:2d:25:06:be:eb:67:cb:63:44:a0: 28:5c:98:ba:c7:38:d6:e5:12:fb:d9:c4:0d:a1:e4: 9f:01:0f:73:da:de:13:03:be:14:94:5e:09:31:58: 3c:2c:fe:96:d7:cb:42:76:19:62:d6:7f:37:bb:da: 0d:43:3b:4b:0e:9a:11:29:47:bd:56:8d:46:1d:38: 84:2d:58:6e:73:f2:7f:a3:cb:13:17:3a:02:55:75: bf:52:fc:89:29:b7:7a:8b:84:6f:05:84:13:03:bb: 9f:bc:b5:3c:62:48:1e:04:7f:df:43:2d:34:db:cc: 49:d6:ac:31:b6:fe:04:e6:1a:50:8f:19:b1:e3:20: 20:fe:f3:2f:d7:db:dc:5d:4d:47:85:a5:e6:e4:74: b2:0c:d5:de:1d:a4:d8:5e:a7:ef:55:82:5a:e6:db: 84:63:f7:22:99:ea:a7:01:9b:31:f0:c4:07:4f:93: 52:16:84:6e:23:b8:af:90:49:3a:f9:48:40:7e:13: f9:70:3b:d8:fb:37:b7:35:d6:93:5b:9b:c4:d5:16: 64:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:42:4A:6E:48:91:8C:3E:93:75:1E:FF:F5:B4:3B:08:5E:CA:1D:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d2526c3a-77ad-4669-af27-f2171d468d2d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.246.116.0/24 Signature Algorithm: sha256WithRSAEncryption a4:93:98:c1:fa:24:02:26:52:d7:f7:b1:56:74:52:6e:e8:d8: c3:dd:90:cf:1b:ea:70:c6:e6:15:88:37:f8:90:46:66:40:2e: 92:2f:51:52:21:1e:3e:c2:07:ef:97:63:3b:a7:02:39:c0:11: 47:a8:cb:c0:3e:24:91:24:70:55:61:91:51:6c:43:3c:1c:1c: b9:8e:ab:06:66:3b:96:e8:0b:3e:33:b8:de:01:a6:2b:10:be: d3:c2:d1:e7:26:29:c4:2b:ad:8d:69:5d:82:6e:f9:85:7e:7f: 2a:2a:6f:77:1f:71:a6:c9:e7:7a:6f:1c:ce:bb:aa:5e:bc:6a: bb:f7:7a:88:c4:8b:85:2c:6e:cd:03:68:65:a1:d3:37:cf:c3: 59:f0:63:d7:06:4e:4f:76:ae:22:02:79:4c:62:b7:42:9b:2a: 51:54:58:e2:ce:b7:78:41:78:cc:35:9e:43:7d:ad:25:1f:b8: d7:c2:57:92:f2:89:de:6d:23:bf:44:6a:44:09:c0:7a:fb:48: 51:63:df:e8:bc:92:e3:27:90:cc:cf:67:41:22:b4:bb:37:7d: 8d:87:c7:b4:a8:5d:e4:68:82:8b:7c:5b:a1:41:1a:f9:60:c4: fd:8a:43:54:a4:f2:cf:fb:fa:f6:f9:2a:60:3a:e4:a3:83:16: 39:cf:fc:3c -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUV4pxnjOXwfzfHlVABwstNTOvIoIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAxMDQ2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNWM3ZTRlNmQzMDhlYTZhOTZkMGQzYWY0YjUwODI1ZjFh MmYyMTA0MjdiNzdiMzUxNmE1Y2M2NzQzMWRiNjg2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCTgWn6Ax0JymH0fabAtGU6SrNo+4i0I6nKsUpdPUf8xgoA NiwwHH1nX0fPiqgMiX0kLSUGvutny2NEoChcmLrHONblEvvZxA2h5J8BD3Pa3hMD vhSUXgkxWDws/pbXy0J2GWLWfze72g1DO0sOmhEpR71WjUYdOIQtWG5z8n+jyxMX OgJVdb9S/Ikpt3qLhG8FhBMDu5+8tTxiSB4Ef99DLTTbzEnWrDG2/gTmGlCPGbHj ICD+8y/X29xdTUeFpebkdLIM1d4dpNhep+9Vglrm24Rj9yKZ6qcBmzHwxAdPk1IW hG4juK+QSTr5SEB+E/lwO9j7N7c11pNbm8TVFmTPAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU1kJKbkiRjD6TdR7/9bQ7CF7KHXEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QyNTI2YzNhLTc3YWQtNDY2OS1hZjI3LWYyMTcxZDQ2OGQyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAA/9nQwDQYJKoZIhvcNAQELBQADggEBAKSTmMH6JAImUtf3sVZ0Um7o2MPd kM8b6nDG5hWIN/iQRmZALpIvUVIhHj7CB++XYzunAjnAEUeoy8A+JJEkcFVhkVFs QzwcHLmOqwZmO5boCz4zuN4BpisQvtPC0ecmKcQrrY1pXYJu+YV+fyoqb3cfcabJ 53pvHM67ql68arv3eojEi4Usbs0DaGWh0zfPw1nwY9cGTk92riICeUxit0KbKlFU WOLOt3hBeMw1nkN9rSUfuNfCV5Lyid5tI79EakQJwHr7SFFj3+i8kuMnkMzPZ0Ei tLs3fY2Hx7SoXeRogot8W6FBGvlgxP2KQ1Sk8s/7+vb5KmA65KODFjnP/Dw= -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:58 2026 by rpki-client