$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d48b025f-a321-47d8-af69-ecdb293eee21.roa File: d48b025f-a321-47d8-af69-ecdb293eee21.roa (raw, json) Hash identifier: 5Mw832gS5rUwqWghXohVhS/MJIHmEyYDpybMykecGo4= Subject key identifier: 7B:D8:9E:F3:CD:60:1E:28:C8:A6:6F:88:A5:29:B8:39:00:4B:75:32 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1A3A204EC71D2CFA9C2051967F1F4CEE727EB090 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d48b025f-a321-47d8-af69-ecdb293eee21.roa Signing time: Sun 08 Feb 2026 00:50:35 +0000 ROA not before: Sun 08 Feb 2026 00:50:35 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 16.207.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:3a:20:4e:c7:1d:2c:fa:9c:20:51:96:7f:1f:4c:ee:72:7e:b0:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:50:35 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=94b6e70492d3aeb839b9809b8718d91ea4b7876450b0793100d0eb38392d6bff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:e0:a1:90:20:7a:9b:9b:46:6b:1a:85:7b:8a: 28:0b:c0:1b:b0:26:9c:9c:56:c7:ee:f1:a6:d6:b7: 6c:46:dd:e9:61:e0:2e:e9:ec:2e:c0:8e:45:b9:c8: 2a:99:be:09:b6:5c:04:01:82:51:5a:1f:51:5d:a1: 10:1a:e5:e7:4a:5f:91:f1:2b:d4:93:5c:c0:e6:b7: d4:b6:cb:34:6a:6c:16:8e:63:3c:02:0d:59:8c:4a: 07:6a:84:ed:4b:4d:25:d4:89:5e:2d:a3:56:43:5f: 47:f4:9c:06:ce:64:81:db:6d:bc:bf:a3:01:fd:19: 73:58:54:58:00:21:50:72:6e:de:9f:49:1e:91:ef: 0f:cd:e1:e8:aa:35:4b:97:30:65:65:72:a1:2b:12: 4f:2f:91:1f:09:f2:48:1f:9d:c4:2d:b9:27:48:5c: 81:2d:b7:ad:1f:4a:e5:1b:33:d0:af:fe:16:65:fb: bb:01:ab:6f:58:2d:37:41:94:bd:2c:d4:5e:ff:99: 74:42:64:41:b8:dd:b0:97:90:b7:4b:9d:9c:77:e8: 90:5c:a6:2f:0e:3d:7f:91:7b:2a:d7:ab:60:cc:dc: 5d:2a:e3:46:fb:ca:28:93:c7:56:f3:6c:f0:f4:c1: f9:06:cf:1b:ca:47:c9:5d:14:ae:ce:c8:8e:b0:c0: a6:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:D8:9E:F3:CD:60:1E:28:C8:A6:6F:88:A5:29:B8:39:00:4B:75:32 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d48b025f-a321-47d8-af69-ecdb293eee21.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.207.0.0/16 Signature Algorithm: sha256WithRSAEncryption 1c:24:fa:d9:93:11:83:ab:01:49:45:7d:0c:f8:93:f5:ac:77: 70:b3:eb:c0:01:b6:bc:90:59:a4:21:44:67:fa:df:98:78:b9: 0e:7b:a9:27:5d:9a:ac:a6:4a:ad:a1:a9:17:be:c4:66:eb:ef: 7b:e4:b8:16:e3:8e:ae:e2:7e:71:2b:fd:37:35:91:40:56:f6: 86:af:90:6d:6b:44:d9:40:46:a5:26:e9:0c:cf:6e:c1:d4:c9: ef:0c:b7:5a:ac:a1:de:6f:94:cc:3a:54:ed:1d:f1:ee:86:09: f4:f0:53:ab:0b:03:68:9f:68:98:a9:5f:ee:a3:b9:2c:e6:57: e6:7c:d3:2b:02:aa:86:4e:de:e1:41:d0:31:48:36:10:e8:89: 96:92:2e:f8:8e:92:fe:9e:4c:6a:c5:1c:e8:e4:d8:e5:19:99: b4:53:62:a4:a8:38:e8:bd:4f:27:63:50:c3:db:d8:b2:3a:9b: 99:5a:4d:76:cf:b2:d9:8f:78:c7:67:2e:72:1d:d0:99:08:4f: e4:1e:d6:18:43:08:e3:4e:5e:03:c3:d2:0e:ad:e3:c1:b5:1a: 11:81:92:af:c9:c4:74:72:6d:04:af:15:21:58:da:6c:c3:b7: c5:21:34:d0:93:88:4b:7c:68:6b:bf:dd:80:71:bf:a4:bc:af: 3a:f2:02:4d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUGjogTscdLPqcIFGWfx9M7nJ+sJAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDA1MDM1WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NGI2ZTcwNDkyZDNhZWI4MzliOTgwOWI4NzE4ZDkxZWE0 Yjc4NzY0NTBiMDc5MzEwMGQwZWIzODM5MmQ2YmZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCt4KGQIHqbm0ZrGoV7iigLwBuwJpycVsfu8abWt2xG3elh 4C7p7C7AjkW5yCqZvgm2XAQBglFaH1FdoRAa5edKX5HxK9STXMDmt9S2yzRqbBaO YzwCDVmMSgdqhO1LTSXUiV4to1ZDX0f0nAbOZIHbbby/owH9GXNYVFgAIVBybt6f SR6R7w/N4eiqNUuXMGVlcqErEk8vkR8J8kgfncQtuSdIXIEtt60fSuUbM9Cv/hZl +7sBq29YLTdBlL0s1F7/mXRCZEG43bCXkLdLnZx36JBcpi8OPX+ReyrXq2DM3F0q 40b7yiiTx1bzbPD0wfkGzxvKR8ldFK7OyI6wwKbrAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUe9ie881gHijIpm+IpSm4OQBLdTIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q0OGIwMjVmLWEzMjEtNDdkOC1hZjY5LWVjZGIyOTNlZWUyMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQzzANBgkqhkiG9w0BAQsFAAOCAQEAHCT62ZMRg6sBSUV9DPiT9ax3cLPr wAG2vJBZpCFEZ/rfmHi5DnupJ12arKZKraGpF77EZuvve+S4FuOOruJ+cSv9NzWR QFb2hq+QbWtE2UBGpSbpDM9uwdTJ7wy3Wqyh3m+UzDpU7R3x7oYJ9PBTqwsDaJ9o mKlf7qO5LOZX5nzTKwKqhk7e4UHQMUg2EOiJlpIu+I6S/p5MasUc6OTY5RmZtFNi pKg46L1PJ2NQw9vYsjqbmVpNds+y2Y94x2cuch3QmQhP5B7WGEMI405eA8PSDq3j wbUaEYGSr8nEdHJtBK8VIVjabMO3xSE00JOIS3xoa7/dgHG/pLyvOvICTQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:06:35 2026 by rpki-client