$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d81bd9c4-1630-463c-825b-1687bb88569f.roa File: d81bd9c4-1630-463c-825b-1687bb88569f.roa (raw, json) Hash identifier: nlR5EbN3klOUNRRsC/CO3rThPdAX9aZTRlfvvsGZViI= Subject key identifier: 03:8F:34:9B:DC:8F:54:4D:1D:EC:90:D6:28:98:B8:47:09:FD:DF:C6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 01D89F0596468705F4F26F7DDDDAAEA55D27109E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d81bd9c4-1630-463c-825b-1687bb88569f.roa Signing time: Wed 25 Feb 2026 01:10:52 +0000 ROA not before: Wed 25 Feb 2026 01:10:52 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.9.137.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:d8:9f:05:96:46:87:05:f4:f2:6f:7d:dd:da:ae:a5:5d:27:10:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:10:52 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=d98aa1dc132b8765ac77e10ad123774f90d2f92e58e7fbc1262cc52e31902321, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:28:da:19:98:ee:31:29:69:bb:38:a9:81:5b: dd:ec:48:a4:99:e0:67:b1:65:b7:35:cc:3f:f1:8d: ae:0d:1f:72:a1:5b:e0:8a:07:dd:31:55:94:2b:18: 38:8c:63:0b:e7:38:e5:e6:9f:2f:8d:7a:b7:bb:ec: 1f:14:6a:75:77:5e:e6:8c:a8:bd:01:91:e8:cd:c4: a0:5d:69:b7:ae:80:e3:7e:5e:14:f8:67:62:06:96: 91:de:99:56:b3:b9:a4:9d:ce:f9:6d:e6:33:05:16: 6d:62:50:83:bc:1f:cf:a7:29:b4:72:fe:a1:4c:6b: bb:2d:6c:f2:48:45:b6:16:46:53:f1:a4:7e:c9:8c: 10:e8:08:46:9d:be:da:1b:bc:fe:89:ad:3f:7a:54: 68:ac:25:f1:36:20:52:c1:c3:ca:d7:93:84:04:d8: 17:16:ba:9a:d4:86:70:0e:a2:cd:ff:1f:04:9c:46: 0a:67:84:60:e1:b2:16:e5:5b:aa:a7:df:d2:aa:d8: e4:9e:d8:5f:4d:48:f9:8b:dd:bd:55:73:68:1a:c3: 5e:85:3b:fc:7f:f7:f8:a1:73:71:83:f6:fc:70:95: d8:76:ed:c3:c5:1f:f8:da:bc:54:85:ff:c9:1a:3a: 6b:25:36:89:b7:30:ca:bd:91:63:31:ec:0c:5e:d1: 4f:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:8F:34:9B:DC:8F:54:4D:1D:EC:90:D6:28:98:B8:47:09:FD:DF:C6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d81bd9c4-1630-463c-825b-1687bb88569f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.9.137.0/24 Signature Algorithm: sha256WithRSAEncryption 12:13:00:da:a5:14:5d:2d:99:38:81:5c:3b:f3:a7:45:7a:ab: 38:95:b0:6b:c2:53:76:86:fb:bb:78:f7:4d:7d:1d:1b:d4:34: 07:1f:0e:38:d0:f8:04:2f:49:96:e4:50:4c:58:ad:21:4c:0b: 2f:07:a5:1e:a8:f0:44:04:3d:07:cd:18:63:89:45:8a:f4:4a: ec:fe:99:eb:9a:43:a5:14:a1:35:fa:42:06:a1:d9:a4:b9:16: 57:ee:31:3c:b8:f3:ea:f3:f3:83:7f:6f:ea:17:9c:8c:6c:e5: 03:fb:f6:95:c3:33:dc:08:14:9f:d8:9f:65:77:50:e5:9d:f0: fe:55:6e:6d:d3:64:e7:ed:35:78:76:d2:a5:a4:93:fe:70:0a: 0b:14:1d:16:e9:6b:89:9e:52:08:99:0a:d2:02:a6:36:55:81: ee:22:0a:d7:e9:0e:88:22:99:6a:2b:d7:d7:ad:59:ae:fd:85: 97:bc:9c:50:ae:5e:53:34:c8:b4:e7:cc:d8:4f:f4:09:5b:c7: 55:7d:97:23:64:9d:ff:80:3d:03:9f:bc:5b:1f:2c:d8:98:6a: d9:35:22:75:3c:3a:2d:8f:cf:0a:12:3f:5b:41:a9:1f:6d:5c: 27:6b:66:36:10:e1:49:b0:05:e7:df:b7:da:b5:8a:ac:f2:ed: 86:d9:68:67 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUAdifBZZGhwX08m993dqupV0nEJ4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDExMDUyWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOThhYTFkYzEzMmI4NzY1YWM3N2UxMGFkMTIzNzc0Zjkw ZDJmOTJlNThlN2ZiYzEyNjJjYzUyZTMxOTAyMzIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDCKNoZmO4xKWm7OKmBW93sSKSZ4GexZbc1zD/xja4NH3Kh W+CKB90xVZQrGDiMYwvnOOXmny+Nere77B8UanV3XuaMqL0BkejNxKBdabeugON+ XhT4Z2IGlpHemVazuaSdzvlt5jMFFm1iUIO8H8+nKbRy/qFMa7stbPJIRbYWRlPx pH7JjBDoCEadvtobvP6JrT96VGisJfE2IFLBw8rXk4QE2BcWuprUhnAOos3/HwSc RgpnhGDhshblW6qn39Kq2OSe2F9NSPmL3b1Vc2gaw16FO/x/9/ihc3GD9vxwldh2 7cPFH/javFSF/8kaOmslNom3MMq9kWMx7Axe0U8JAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUA480m9yPVE0d7JDWKJi4Rwn938YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4MWJkOWM0LTE2MzAtNDYzYy04MjViLTE2ODdiYjg4NTY5Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABBCYkwDQYJKoZIhvcNAQELBQADggEBABITANqlFF0tmTiBXDvzp0V6qziV sGvCU3aG+7t49019HRvUNAcfDjjQ+AQvSZbkUExYrSFMCy8HpR6o8EQEPQfNGGOJ RYr0Suz+meuaQ6UUoTX6Qgah2aS5FlfuMTy48+rz84N/b+oXnIxs5QP79pXDM9wI FJ/Yn2V3UOWd8P5Vbm3TZOftNXh20qWkk/5wCgsUHRbpa4meUgiZCtICpjZVge4i CtfpDogimWor19etWa79hZe8nFCuXlM0yLTnzNhP9Albx1V9lyNknf+APQOfvFsf LNiYatk1InU8Oi2PzwoSP1tBqR9tXCdrZjYQ4UmwBefft9q1iqzy7YbZaGc= -----END CERTIFICATE-----Generated at Sun Mar 1 22:37:39 2026 by rpki-client