$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da4f36e5-5307-4447-b46d-47df8180ef89.roa File: da4f36e5-5307-4447-b46d-47df8180ef89.roa (raw, json) Hash identifier: Nf70FSClXORxwvtIEzXMxSq/AD8cGcUh7kYZrKjK6/Q= Subject key identifier: 26:C6:BD:16:1A:00:D0:54:2B:CF:F9:26:7B:92:C5:51:FA:3E:D4:79 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35546AB2D0C833518C276E4902D42E3AB54F257B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da4f36e5-5307-4447-b46d-47df8180ef89.roa Signing time: Sun 15 Feb 2026 00:31:34 +0000 ROA not before: Sun 15 Feb 2026 00:31:34 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.112.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:54:6a:b2:d0:c8:33:51:8c:27:6e:49:02:d4:2e:3a:b5:4f:25:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:31:34 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=62974b5de52e791785563a3274b14c4ffecb25257055f1143e12076dc2f066b1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:e1:95:aa:ff:84:bd:44:21:1d:14:cf:37:65: 45:40:33:61:c9:2e:85:2c:d6:70:b8:c6:c5:18:0b: 80:24:0b:42:e0:ef:37:fa:b0:97:7e:31:fb:af:64: c0:10:cf:23:a8:7c:b3:37:0b:6d:35:95:99:31:45: c5:ab:1c:d0:0f:9b:d8:52:ed:3f:b8:2e:ed:10:94: 51:2d:ef:31:72:84:b3:53:48:5a:20:05:6b:bf:83: 77:ea:7f:da:e3:e8:98:cb:c6:29:3a:57:7c:09:3f: 06:6b:3b:a1:ca:db:ba:90:78:a4:e2:5c:e4:54:6b: 36:7c:44:93:db:58:16:d9:0c:03:13:b7:dd:bd:9f: 97:7a:12:41:5d:e2:92:16:83:5f:14:06:0f:53:97: 2b:51:bf:81:3c:28:d2:9a:d4:39:c0:b5:f5:35:20: 3e:c4:70:d0:54:16:f1:4e:f7:08:b8:23:e0:74:1a: d3:13:06:59:06:e1:7f:2c:f4:64:11:a7:6e:83:c0: 40:62:b7:6c:41:94:aa:3a:f3:73:e2:54:4c:91:4b: 4a:ac:2a:a7:20:4a:eb:5e:b0:86:98:fc:bb:a4:2b: cf:1d:85:86:0d:51:38:d4:0c:88:b1:97:6b:fc:6b: 25:38:96:82:18:41:df:a8:38:12:5f:c4:2b:07:a4: 0b:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:C6:BD:16:1A:00:D0:54:2B:CF:F9:26:7B:92:C5:51:FA:3E:D4:79 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/da4f36e5-5307-4447-b46d-47df8180ef89.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.112.0/21 Signature Algorithm: sha256WithRSAEncryption 7d:d6:da:d6:19:b7:c1:ac:7c:1e:1e:71:b4:93:ef:61:40:fd: df:c0:9a:2c:68:ee:57:7e:8c:97:a8:92:33:99:ef:54:42:a6: 09:ec:e9:70:52:2c:cc:fd:c3:c9:7c:62:6d:89:a3:39:54:19: bd:67:8a:84:4e:ac:07:31:29:14:e3:be:e8:f5:df:41:24:99: 4e:73:f1:d5:58:74:c4:89:6e:58:73:b3:81:c9:c2:f1:8e:c6: 4f:91:7a:25:a2:e8:12:53:54:d2:18:3d:85:56:47:ca:eb:8a: 06:01:53:94:cd:63:f3:82:21:22:d2:bf:3b:d8:92:de:fd:e6: 09:b5:09:d5:0b:e4:fe:d0:b7:6a:48:a7:a9:a3:a8:fb:81:bc: c1:87:6e:a0:19:33:86:13:ec:3c:85:08:5c:14:5c:9e:f9:61: d6:b7:da:89:1f:2e:b3:d7:01:3c:3f:ec:0c:2b:59:85:05:05: bf:e9:ba:b0:0a:af:e1:0f:0f:59:2a:8b:04:ab:d1:e2:61:af: 6f:90:5b:84:23:fd:1a:92:13:2e:cb:58:20:79:a2:a9:13:2e: d0:11:28:02:b0:0d:36:4c:d1:d3:d1:3f:b8:49:85:a0:1c:f8: ec:aa:9d:79:77:c3:d6:77:bf:a6:a1:48:f5:c7:f5:c4:77:04: 9c:8f:54:95 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNVRqstDIM1GMJ25JAtQuOrVPJXswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAzMTM0WhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2Mjk3NGI1ZGU1MmU3OTE3ODU1NjNhMzI3NGIxNGM0ZmZl Y2IyNTI1NzA1NWYxMTQzZTEyMDc2ZGMyZjA2NmIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCb4ZWq/4S9RCEdFM83ZUVAM2HJLoUs1nC4xsUYC4AkC0Lg 7zf6sJd+MfuvZMAQzyOofLM3C201lZkxRcWrHNAPm9hS7T+4Lu0QlFEt7zFyhLNT SFogBWu/g3fqf9rj6JjLxik6V3wJPwZrO6HK27qQeKTiXORUazZ8RJPbWBbZDAMT t929n5d6EkFd4pIWg18UBg9TlytRv4E8KNKa1DnAtfU1ID7EcNBUFvFO9wi4I+B0 GtMTBlkG4X8s9GQRp26DwEBit2xBlKo683PiVEyRS0qsKqcgSutesIaY/LukK88d hYYNUTjUDIixl2v8ayU4loIYQd+oOBJfxCsHpAutAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUJsa9FhoA0FQrz/kme5LFUfo+1HkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RhNGYzNmU1LTUzMDctNDQ0Ny1iNDZkLTQ3ZGY4MTgwZWY4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlnAwDQYJKoZIhvcNAQELBQADggEBAH3W2tYZt8GsfB4ecbST72FA/d/A mixo7ld+jJeokjOZ71RCpgns6XBSLMz9w8l8Ym2JozlUGb1nioROrAcxKRTjvuj1 30EkmU5z8dVYdMSJblhzs4HJwvGOxk+ReiWi6BJTVNIYPYVWR8rrigYBU5TNY/OC ISLSvzvYkt795gm1CdUL5P7Qt2pIp6mjqPuBvMGHbqAZM4YT7DyFCFwUXJ75Yda3 2okfLrPXATw/7AwrWYUFBb/purAKr+EPD1kqiwSr0eJhr2+QW4Qj/RqSEy7LWCB5 oqkTLtARKAKwDTZM0dPRP7hJhaAc+OyqnXl3w9Z3v6ahSPXH9cR3BJyPVJU= -----END CERTIFICATE-----Generated at Mon Mar 2 01:59:13 2026 by rpki-client