$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7b50e9c-3edf-4fc9-a4cc-de7202665f35.roa File: d7b50e9c-3edf-4fc9-a4cc-de7202665f35.roa (raw, json) Hash identifier: xXQuEHViO4xoxc/0e4X+GxOKVLfPEaVXIgHuZHb9l20= Subject key identifier: 36:6D:F7:AA:48:0E:DB:9C:87:01:31:3F:CA:78:51:0D:EC:CB:87:5D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5A7DDA06E21A20064DB3D2B6C63AE5AEF91136D6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7b50e9c-3edf-4fc9-a4cc-de7202665f35.roa Signing time: Sat 21 Feb 2026 01:10:12 +0000 ROA not before: Sat 21 Feb 2026 01:10:12 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.127.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5a:7d:da:06:e2:1a:20:06:4d:b3:d2:b6:c6:3a:e5:ae:f9:11:36:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:10:12 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=8186a81eb1c0411b81af5700c0de150853b6f69e8889bc01b33aceec49f0a887, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:07:8d:b1:22:56:b1:7c:a2:f6:4d:c2:b8:6e: 19:d0:39:d9:10:a1:ed:2b:35:41:10:c4:b9:56:1b: 8d:6b:27:ea:7c:52:b0:75:e3:56:06:53:b4:39:62: 86:e7:eb:b6:84:87:53:55:52:bc:4e:3d:07:82:20: 52:51:4b:4f:43:6a:7f:88:0b:12:17:30:f5:99:e4: 2e:44:f9:6f:95:15:87:60:55:dd:e9:67:e8:20:14: 0d:dd:c3:2b:6b:5b:5a:3c:df:51:0e:7b:20:ff:1f: 1b:88:cb:b8:22:7b:14:55:22:ad:fe:22:24:ea:c5: 5c:49:04:40:ce:7e:97:e3:24:92:3d:62:39:4f:2e: 72:3a:c4:51:4e:0a:79:9a:42:ff:80:b8:98:bf:fe: 37:7f:c5:b1:de:56:cc:30:2d:39:7d:11:63:4b:f9: 49:13:66:2e:9b:18:43:cd:3a:b3:15:99:0c:56:7a: c1:02:b2:4b:f8:a8:2c:67:98:bf:c8:35:0d:ba:58: 5f:ae:3c:da:1c:17:3f:23:01:94:cd:d6:00:f0:95: 20:84:04:c6:67:52:56:06:32:7b:da:5f:4a:0a:f1: 3a:c9:7e:a0:71:ab:21:b1:7d:86:06:d7:6a:d2:91: d8:3a:89:2c:ff:bd:6d:d3:e3:f1:85:62:4a:e5:af: c4:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:6D:F7:AA:48:0E:DB:9C:87:01:31:3F:CA:78:51:0D:EC:CB:87:5D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d7b50e9c-3edf-4fc9-a4cc-de7202665f35.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.127.0/24 Signature Algorithm: sha256WithRSAEncryption 48:c7:cf:2d:db:0d:24:9d:51:66:52:99:4e:fe:64:13:95:4f: 51:b4:89:60:89:e0:f3:80:c3:c9:77:95:5b:83:37:a3:71:90: e2:34:98:35:1a:6d:5c:f1:b1:3b:fd:33:03:f3:b6:3b:75:3e: 79:d0:13:1b:45:33:42:5d:4a:7e:ee:3b:fe:20:f4:91:82:4d: 44:fa:bc:11:7b:58:09:11:98:38:c4:0f:63:28:5e:5e:21:c0: 19:06:09:30:ec:59:8f:e8:1d:75:6d:2a:32:3c:12:b2:97:d2: 97:9d:aa:7f:89:5b:32:5e:1a:36:7a:6e:0f:13:a1:cb:ed:c1: 50:eb:b8:58:2d:1b:02:95:dc:67:00:d7:85:37:fd:cf:d5:b2: 8f:78:b0:1e:ac:47:5b:e7:63:32:e7:4c:d7:e6:73:d2:2c:9e: 65:f5:4b:59:78:d3:8c:bb:05:84:82:5b:31:2b:11:66:8f:c3: 6a:32:38:5b:17:41:50:37:04:4a:51:47:19:4a:f3:14:c3:96: 58:ae:04:7d:86:89:9f:0d:2e:42:54:fb:bc:06:fa:95:99:8d: 9e:74:a4:15:34:04:11:4d:db:0e:b5:40:8f:61:01:66:72:9c: f6:a3:90:4d:09:4f:f3:d8:f5:d2:f0:f5:25:9b:cb:a2:7d:83: 16:9a:69:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUWn3aBuIaIAZNs9K2xjrlrvkRNtYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDExMDEyWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTg2YTgxZWIxYzA0MTFiODFhZjU3MDBjMGRlMTUwODUz YjZmNjllODg4OWJjMDFiMzNhY2VlYzQ5ZjBhODg3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDPB42xIlaxfKL2TcK4bhnQOdkQoe0rNUEQxLlWG41rJ+p8 UrB141YGU7Q5Yobn67aEh1NVUrxOPQeCIFJRS09Dan+ICxIXMPWZ5C5E+W+VFYdg Vd3pZ+ggFA3dwytrW1o831EOeyD/HxuIy7giexRVIq3+IiTqxVxJBEDOfpfjJJI9 YjlPLnI6xFFOCnmaQv+AuJi//jd/xbHeVswwLTl9EWNL+UkTZi6bGEPNOrMVmQxW esECskv4qCxnmL/INQ26WF+uPNocFz8jAZTN1gDwlSCEBMZnUlYGMnvaX0oK8TrJ fqBxqyGxfYYG12rSkdg6iSz/vW3T4/GFYkrlr8QNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNm33qkgO25yHATE/ynhRDezLh10wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q3YjUwZTljLTNlZGYtNGZjOS1hNGNjLWRlNzIwMjY2NWYzNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmH8wDQYJKoZIhvcNAQELBQADggEBAEjHzy3bDSSdUWZSmU7+ZBOVT1G0 iWCJ4POAw8l3lVuDN6NxkOI0mDUabVzxsTv9MwPztjt1PnnQExtFM0JdSn7uO/4g 9JGCTUT6vBF7WAkRmDjED2MoXl4hwBkGCTDsWY/oHXVtKjI8ErKX0pedqn+JWzJe GjZ6bg8TocvtwVDruFgtGwKV3GcA14U3/c/Vso94sB6sR1vnYzLnTNfmc9IsnmX1 S1l404y7BYSCWzErEWaPw2oyOFsXQVA3BEpRRxlK8xTDlliuBH2GiZ8NLkJU+7wG +pWZjZ50pBU0BBFN2w61QI9hAWZynPajkE0JT/PY9dLw9SWby6J9gxaaaZU= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:07 2026 by rpki-client