$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa File: d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa (raw, json) Hash identifier: Yc6K7Xw8syXlKahS3WYXVWrmYKh4vYuAzXHQmvr/tfQ= Subject key identifier: 91:A8:44:54:D0:43:F1:46:35:50:48:DC:FC:26:8F:77:42:61:5F:B5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 059FE40DFA21777879040998195E2900270ACDE4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa Signing time: Tue 24 Feb 2026 01:01:58 +0000 ROA not before: Tue 24 Feb 2026 01:01:58 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 1.178.88.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:9f:e4:0d:fa:21:77:78:79:04:09:98:19:5e:29:00:27:0a:cd:e4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:01:58 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=fc97e8f55b58202e4f89fadc80685573cd676646f8f5ad62a9d6e02401451e83, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:9e:ed:19:a6:11:9d:b5:d1:6c:25:80:69:27: 2f:51:da:a3:ef:28:66:89:5c:be:90:4e:cc:05:fe: 1c:91:ac:f5:60:52:1c:6d:1e:76:95:0b:81:6e:73: 98:47:37:84:9f:ba:74:2d:de:37:2f:77:8d:ef:e4: 0f:f0:5c:3b:48:89:ce:c3:e2:6d:93:1e:0f:d1:11: bb:c3:e1:8d:e4:e6:f9:54:b4:83:97:43:c3:60:67: 1a:41:fd:a1:75:1d:9d:1e:1a:a2:ae:aa:77:bb:5a: 68:ef:87:87:6e:cc:6d:84:fd:a8:63:50:f4:e6:bf: fc:9a:6b:f5:b9:5b:e8:8c:d1:a2:2b:98:f4:39:12: 8f:1a:d1:f2:c0:30:ed:9e:96:89:63:74:fb:37:a5: 0a:21:2f:9d:b0:09:7b:92:35:3e:79:d0:08:51:0f: b4:ea:cf:a6:a1:1c:dc:1a:bb:e5:07:6d:4c:6b:1f: d0:11:a5:5c:8e:c1:fc:2c:83:ce:60:07:64:56:df: 4d:90:57:a2:15:a0:df:2c:19:1b:36:bc:9a:5b:fd: 2e:cb:21:f3:c1:0c:98:86:01:44:7c:1c:b9:08:e7: 17:e5:8b:42:14:50:ce:3a:01:9e:d5:de:17:4d:f8: 75:0c:33:4d:8b:08:48:79:8c:4b:17:c5:99:49:32: 0f:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:A8:44:54:D0:43:F1:46:35:50:48:DC:FC:26:8F:77:42:61:5F:B5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d38acb1d-7805-43e5-9a8d-1c04d3e3d3fa.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 1.178.88.0/21 Signature Algorithm: sha256WithRSAEncryption 3b:3b:68:de:e0:f4:d1:ce:90:70:62:bb:ac:04:62:9c:04:a6: 51:fd:31:fa:62:44:e9:17:94:18:83:9d:c2:49:86:fc:1c:88: a6:23:05:7f:79:52:97:79:12:2d:e1:ec:52:31:99:f9:4d:7b: c9:33:08:98:e0:7c:c6:bf:1d:fa:99:6c:04:4f:2d:32:5e:f1: 37:b2:79:83:10:26:49:f7:c7:9c:25:63:0a:68:d3:66:ba:5c: 75:cc:38:ea:d8:b9:3e:81:03:f4:4e:cb:36:32:c4:90:94:ad: 23:76:81:a4:ed:39:5a:f2:d1:da:e8:43:5b:8c:8c:99:c2:43: 9b:6e:2b:71:3e:3b:31:08:96:c9:16:d0:7b:fa:58:3a:27:f6: 0b:98:c7:18:60:2b:45:eb:c9:fe:86:6f:f5:5f:92:53:ba:23: c2:bf:b9:20:eb:ca:f6:25:06:e6:85:d4:4e:43:5a:62:22:a4: b6:72:5a:9f:77:29:29:8c:ec:1c:ae:6e:82:e0:46:ef:01:c8: 70:d7:2f:34:d7:44:6f:e6:d3:a6:7d:3b:5b:31:64:ab:8c:43: f4:8b:6f:f7:89:22:c9:dc:ab:31:64:40:b5:7f:ac:d0:0e:9d: b1:33:97:3a:54:e5:e6:d7:c9:aa:a4:7b:8b:13:c8:a2:54:98: d1:1e:10:de -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUBZ/kDfohd3h5BAmYGV4pACcKzeQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMTU4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BmYzk3ZThmNTViNTgyMDJlNGY4OWZhZGM4MDY4NTU3M2Nk Njc2NjQ2ZjhmNWFkNjJhOWQ2ZTAyNDAxNDUxZTgzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDKnu0ZphGdtdFsJYBpJy9R2qPvKGaJXL6QTswF/hyRrPVg UhxtHnaVC4Fuc5hHN4SfunQt3jcvd43v5A/wXDtIic7D4m2THg/REbvD4Y3k5vlU tIOXQ8NgZxpB/aF1HZ0eGqKuqne7Wmjvh4duzG2E/ahjUPTmv/yaa/W5W+iM0aIr mPQ5Eo8a0fLAMO2eloljdPs3pQohL52wCXuSNT550AhRD7Tqz6ahHNwau+UHbUxr H9ARpVyOwfwsg85gB2RW302QV6IVoN8sGRs2vJpb/S7LIfPBDJiGAUR8HLkI5xfl i0IUUM46AZ7V3hdN+HUMM02LCEh5jEsXxZlJMg/bAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUkahEVNBD8UY1UEjc/CaPd0JhX7UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2QzOGFjYjFkLTc4MDUtNDNlNS05YThkLTFjMDRkM2UzZDNmYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMBslgwDQYJKoZIhvcNAQELBQADggEBADs7aN7g9NHOkHBiu6wEYpwEplH9 MfpiROkXlBiDncJJhvwciKYjBX95Upd5Ei3h7FIxmflNe8kzCJjgfMa/HfqZbARP LTJe8TeyeYMQJkn3x5wlYwpo02a6XHXMOOrYuT6BA/ROyzYyxJCUrSN2gaTtOVry 0droQ1uMjJnCQ5tuK3E+OzEIlskW0Hv6WDon9guYxxhgK0Xryf6Gb/VfklO6I8K/ uSDryvYlBuaF1E5DWmIipLZyWp93KSmM7ByuboLgRu8ByHDXLzTXRG/m06Z9O1sx ZKuMQ/SLb/eJIsncqzFkQLV/rNAOnbEzlzpU5ebXyaqke4sTyKJUmNEeEN4= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:28 2026 by rpki-client