$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa File: d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa (raw, json) Hash identifier: 7GYuFDE29DlclyyonBA1NlcCO/EaLhY92CPLcXAb0ks= Subject key identifier: E1:11:96:81:29:75:CE:46:D0:D1:C3:94:04:95:50:C0:6B:BF:7F:54 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 69DC2C9BC587D8C1CE3AFAA435190F7DFDCFDD47 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa Signing time: Sun 01 Mar 2026 00:00:50 +0000 ROA not before: Sun 01 Mar 2026 00:00:50 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 76.223.163.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:dc:2c:9b:c5:87:d8:c1:ce:3a:fa:a4:35:19:0f:7d:fd:cf:dd:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:00:50 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=dc329bfcd0b39e9003c078f0faad61944c5f1212200a5c02fa1f0bc385267dff, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:0e:37:20:76:a2:e3:22:f2:df:1c:42:ba:da: 18:4c:1d:43:b0:6e:b8:ed:90:a9:80:70:b6:6e:73: f1:e7:59:e0:1c:2a:09:53:a2:e1:93:67:c2:0d:6e: 70:71:32:16:13:ad:83:a5:2f:1d:5e:01:93:20:f6: bf:ce:7a:cf:a5:e4:78:be:57:71:66:75:24:49:91: 06:af:99:60:09:07:6f:50:c8:05:dd:cc:43:75:1b: fb:c6:f8:d4:8a:57:7e:0c:09:77:2c:29:bb:75:10: c9:90:af:b2:d8:a1:b6:c1:69:12:27:5d:43:fc:bf: 38:e8:7e:59:fd:26:e5:36:08:45:24:ac:fd:8c:5b: b7:f9:e6:9e:9c:b3:13:fd:77:4a:61:b5:14:ee:8d: 90:2b:32:0b:8d:7a:6a:66:bf:ab:8e:85:38:aa:f3: 88:42:2b:9c:18:e0:44:e1:90:0c:56:4c:71:0b:29: 7d:5a:dc:19:9c:75:26:f2:89:76:0e:fe:6e:c2:a9: 7c:af:e4:b9:57:2d:d6:c5:e1:b7:47:f8:85:9b:7f: cd:e6:0c:f8:cd:f8:f1:a2:52:50:2b:f1:37:14:3c: 74:4a:f6:4d:df:e7:8b:da:24:cd:5c:7e:fc:69:a6: 4c:9d:cb:85:58:38:f8:bb:2b:66:96:06:b9:90:28: 95:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:11:96:81:29:75:CE:46:D0:D1:C3:94:04:95:50:C0:6B:BF:7F:54 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/d8dca2ec-87e2-4014-a5ad-0affc06c2cc6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 76.223.163.0/24 Signature Algorithm: sha256WithRSAEncryption 00:06:d1:62:a4:bc:21:26:34:a4:7a:b8:c3:86:04:1f:08:c7: 6d:25:ad:cf:40:7b:d0:50:01:06:54:2a:09:52:d9:65:7e:83: 7f:49:8a:69:d8:08:06:be:95:0c:a8:ea:58:91:52:3f:7f:d3: 4a:0e:83:f2:d6:95:6b:aa:39:cc:fc:e6:14:eb:ab:78:83:ee: f7:f7:40:8d:60:5e:ff:8b:04:04:a0:b6:01:02:bf:6a:82:f5: ca:7a:69:5a:4f:28:93:91:7c:e8:58:52:22:a9:85:b9:b7:b1: 63:d8:19:96:e8:7c:67:7c:2e:55:a2:4e:af:62:51:d3:25:76: 09:18:42:8c:54:5a:0d:a0:27:4d:0c:48:10:9a:bf:6a:98:a2: f6:75:f7:cd:3e:a7:e1:00:42:4c:15:ae:1f:e4:18:7c:fe:ce: 18:a7:62:d8:a8:34:48:20:72:b3:7e:a5:96:48:d6:f0:50:b2: 46:50:ed:c5:49:49:64:61:e3:d4:49:47:d7:9a:c0:33:c9:bc: db:46:fa:7d:15:93:4f:1a:42:f5:f9:6e:aa:09:66:8c:b1:ed: 1e:11:83:4c:23:3f:50:10:18:a6:64:f0:e7:b9:de:bc:e9:85: 8b:be:25:11:f8:74:19:7b:08:dc:54:c8:10:95:bf:cf:12:b0: 11:68:a5:d3 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUadwsm8WH2MHOOvqkNRkPff3P3UcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAwMDUwWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BkYzMyOWJmY2QwYjM5ZTkwMDNjMDc4ZjBmYWFkNjE5NDRj NWYxMjEyMjAwYTVjMDJmYTFmMGJjMzg1MjY3ZGZmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC9DjcgdqLjIvLfHEK62hhMHUOwbrjtkKmAcLZuc/HnWeAc KglTouGTZ8INbnBxMhYTrYOlLx1eAZMg9r/Oes+l5Hi+V3FmdSRJkQavmWAJB29Q yAXdzEN1G/vG+NSKV34MCXcsKbt1EMmQr7LYobbBaRInXUP8vzjofln9JuU2CEUk rP2MW7f55p6csxP9d0phtRTujZArMguNempmv6uOhTiq84hCK5wY4EThkAxWTHEL KX1a3BmcdSbyiXYO/m7CqXyv5LlXLdbF4bdH+IWbf83mDPjN+PGiUlAr8TcUPHRK 9k3f54vaJM1cfvxppkydy4VYOPi7K2aWBrmQKJVvAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU4RGWgSl1zkbQ0cOUBJVQwGu/f1QwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Q4ZGNhMmVjLTg3ZTItNDAxNC1hNWFkLTBhZmZjMDZjMmNjNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABM36MwDQYJKoZIhvcNAQELBQADggEBAAAG0WKkvCEmNKR6uMOGBB8Ix20l rc9Ae9BQAQZUKglS2WV+g39JimnYCAa+lQyo6liRUj9/00oOg/LWlWuqOcz85hTr q3iD7vf3QI1gXv+LBASgtgECv2qC9cp6aVpPKJORfOhYUiKphbm3sWPYGZbofGd8 LlWiTq9iUdMldgkYQoxUWg2gJ00MSBCav2qYovZ1980+p+EAQkwVrh/kGHz+zhin YtioNEggcrN+pZZI1vBQskZQ7cVJSWRh49RJR9eawDPJvNtG+n0Vk08aQvX5bqoJ Zoyx7R4Rg0wjP1AQGKZk8Oe53rzphYu+JRH4dBl7CNxUyBCVv88SsBFopdM= -----END CERTIFICATE-----Generated at Sun Mar 1 21:57:32 2026 by rpki-client