$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d845b310-ed3d-4505-8597-970be13c03af.roa File: d845b310-ed3d-4505-8597-970be13c03af.roa (raw, json) Hash identifier: /I8G4zj+E/qrd37otN1xBU7c9eLSdC3WicKMVvjxUZM= Subject key identifier: 5C:45:B1:CD:37:EE:B8:7A:3E:DE:B9:2A:DF:4E:93:1F:5F:8C:F3:A5 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6454DD4F53E40A742831FFBAD72181701D386C27 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d845b310-ed3d-4505-8597-970be13c03af.roa Signing time: Thu 26 Feb 2026 00:30:13 +0000 ROA not before: Thu 26 Feb 2026 00:30:13 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 156.4.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:54:dd:4f:53:e4:0a:74:28:31:ff:ba:d7:21:81:70:1d:38:6c:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:30:13 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=9ec8cda178bb751091162eb6e0b42a9c3cb595f56a9e0982b5febe227b2f494b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:13:ab:d4:ea:bd:f6:fa:89:66:f4:65:97:11: 72:b7:ab:bd:08:04:5b:24:71:81:05:8d:48:22:75: ce:20:0b:a3:54:84:7f:8d:8a:bc:2b:8d:76:24:04: 9e:9b:b9:e8:2a:6e:70:e1:11:db:59:60:95:da:88: e9:e4:2f:6b:44:1c:18:cd:7c:ad:cb:18:84:35:cf: 49:13:64:65:75:85:f8:64:f6:0d:86:f8:c5:0b:12: e8:96:76:d9:26:8d:02:39:39:eb:f3:4f:96:d8:4e: 70:14:2d:67:df:88:b7:51:f7:91:a0:6a:7f:67:bb: 02:61:e4:de:89:75:9a:8e:43:6b:d3:d5:8a:eb:63: 8a:c7:47:6d:bf:ab:23:e7:e6:cf:3d:b1:75:d7:f4: 0e:bf:1b:3a:c2:7a:b2:95:89:d2:a7:ab:1c:7f:2b: fb:be:d2:5a:c1:1a:67:ca:0a:a0:3b:66:35:1e:79: ae:df:48:a5:52:47:3a:e2:be:6e:ff:b8:5b:ad:25: 40:48:c6:b3:4f:de:b5:3c:da:57:c3:80:7f:e3:a1: dc:00:4a:8b:45:70:5b:54:70:0b:e1:1c:ae:98:57: 11:f9:9f:2b:8e:c7:8b:47:cc:7e:ab:50:8f:4b:25: 2c:7c:9d:ab:38:57:74:66:bb:9a:f1:bf:0f:df:33: 95:85 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:45:B1:CD:37:EE:B8:7A:3E:DE:B9:2A:DF:4E:93:1F:5F:8C:F3:A5 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d845b310-ed3d-4505-8597-970be13c03af.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.4.0.0/15 Signature Algorithm: sha256WithRSAEncryption b1:f0:aa:e6:8d:c1:f1:6e:8b:b8:9a:fb:2d:e3:65:2c:d0:1d: 40:8e:18:ef:ba:95:ac:6a:37:65:bc:ee:8d:a9:01:0e:3f:a8: ba:a1:91:d8:0c:1d:d6:f8:99:bf:66:5d:de:5d:09:fa:9a:ca: 06:db:1f:f6:77:bf:ae:4b:64:4d:bf:5b:a9:0d:47:94:37:23: ba:8e:9b:6a:42:d6:27:dd:a5:a4:c2:fb:5f:66:9a:5d:68:6a: 40:bc:e9:2d:19:e7:eb:ed:47:32:67:bb:7f:22:37:0b:65:20: f2:e0:02:72:49:78:5b:53:a2:04:10:dc:bc:7c:5e:41:bd:b1: 3e:09:22:32:9a:4c:e9:e2:d6:00:3e:27:1c:e9:31:37:0b:18: d9:74:7b:0d:73:ff:37:9b:64:ce:d2:3a:93:ea:c4:e1:df:b0: 17:67:b2:0a:58:82:bd:ae:11:7d:e7:6b:c1:64:6e:d1:a8:87: 28:78:a0:f5:a3:11:23:0e:2e:bf:68:f9:06:15:b4:de:bd:be: 4f:26:5a:5b:1b:36:80:c1:62:67:56:8f:7e:10:3c:40:6f:15: f3:c2:34:42:d1:ed:78:f9:e0:bd:63:ac:ad:c7:01:ef:c2:50: 69:42:b8:b3:a0:75:06:06:cd:b8:29:f6:41:ec:b7:c5:c4:9b: 4c:57:77:6d -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZFTdT1PkCnQoMf+61yGBcB04bCcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAzMDEzWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZWM4Y2RhMTc4YmI3NTEwOTExNjJlYjZlMGI0MmE5YzNj YjU5NWY1NmE5ZTA5ODJiNWZlYmUyMjdiMmY0OTRiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOE6vU6r32+olm9GWXEXK3q70IBFskcYEFjUgidc4gC6NU hH+NirwrjXYkBJ6buegqbnDhEdtZYJXaiOnkL2tEHBjNfK3LGIQ1z0kTZGV1hfhk 9g2G+MULEuiWdtkmjQI5OevzT5bYTnAULWffiLdR95Ggan9nuwJh5N6JdZqOQ2vT 1YrrY4rHR22/qyPn5s89sXXX9A6/GzrCerKVidKnqxx/K/u+0lrBGmfKCqA7ZjUe ea7fSKVSRzrivm7/uFutJUBIxrNP3rU82lfDgH/jodwASotFcFtUcAvhHK6YVxH5 nyuOx4tHzH6rUI9LJSx8nas4V3Rmu5rxvw/fM5WFAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUXEWxzTfuuHo+3rkq306TH1+M86UwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4NDViMzEwLWVkM2QtNDUwNS04NTk3LTk3MGJlMTNjMDNhZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwGcBDANBgkqhkiG9w0BAQsFAAOCAQEAsfCq5o3B8W6LuJr7LeNlLNAdQI4Y 77qVrGo3ZbzujakBDj+ouqGR2Awd1viZv2Zd3l0J+prKBtsf9ne/rktkTb9bqQ1H lDcjuo6bakLWJ92lpML7X2aaXWhqQLzpLRnn6+1HMme7fyI3C2Ug8uACckl4W1Oi BBDcvHxeQb2xPgkiMppM6eLWAD4nHOkxNwsY2XR7DXP/N5tkztI6k+rE4d+wF2ey CliCva4RfedrwWRu0aiHKHig9aMRIw4uv2j5BhW03r2+TyZaWxs2gMFiZ1aPfhA8 QG8V88I0QtHtePngvWOsrccB78JQaUK4s6B1BgbNuCn2Qey3xcSbTFd3bQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:48 2026 by rpki-client