$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc1d185e-05d0-4ae9-bc23-cf1c70c53cfd.roa File: dc1d185e-05d0-4ae9-bc23-cf1c70c53cfd.roa (raw, json) Hash identifier: HgPeA1oiRB3iBoMixuJwhxeyitbpAuU2w/Wg1Rae3F4= Subject key identifier: 7B:8F:BC:59:45:BF:E2:94:32:9B:A5:02:30:9A:3E:16:E9:26:19:B8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BA00725DA7114B77204D63AD3E789AEBF275E44 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc1d185e-05d0-4ae9-bc23-cf1c70c53cfd.roa Signing time: Tue 24 Feb 2026 02:40:41 +0000 ROA not before: Tue 24 Feb 2026 02:40:41 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 108.136.2.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:a0:07:25:da:71:14:b7:72:04:d6:3a:d3:e7:89:ae:bf:27:5e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:40:41 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=a7bb72bce6628a7a7e1a043eebef3717d5e66bab71b233e5776ff4fcccba092f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:7e:4e:bf:cc:a0:a1:e0:9e:55:67:39:75:6c: 3e:6e:d8:2c:9f:81:41:95:74:24:06:30:a8:18:14: c6:ff:94:bf:13:59:1f:c9:28:59:f3:18:e8:ba:f3: 01:24:ff:e0:4d:99:5e:03:e3:8f:cc:17:2c:74:a4: 3c:ff:47:8b:a2:c1:96:01:f8:11:ea:93:f7:93:88: b0:d5:ad:eb:cd:88:87:23:de:12:3a:51:71:79:95: 60:7f:a2:16:18:30:81:2f:2d:6a:81:81:0a:b3:95: 50:7b:63:cf:a6:1b:4c:3b:1b:23:d4:3a:fc:df:2a: e5:01:ca:ca:19:16:42:a4:8d:a9:87:a7:e3:27:51: eb:20:0c:b8:0a:a7:0c:47:13:5f:38:8c:c5:4d:37: e4:41:fb:5c:89:97:54:95:1a:2e:1b:1e:7a:3e:86: c2:05:18:57:eb:3a:55:e6:d7:c3:b4:6e:8a:b5:4c: a2:81:45:9c:de:5c:e5:38:bc:77:ce:01:84:21:2d: a6:e6:f2:7b:a1:bc:ef:f3:1d:14:f4:09:85:fb:18: 7f:c2:02:88:8e:e6:9a:5c:c9:dd:f0:5c:3e:da:95: 7a:f5:5d:30:5b:88:5f:83:c7:a0:8e:f0:32:3c:67: 1d:b8:3b:51:11:cb:df:22:04:6d:79:14:29:2e:cc: 0c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:8F:BC:59:45:BF:E2:94:32:9B:A5:02:30:9A:3E:16:E9:26:19:B8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc1d185e-05d0-4ae9-bc23-cf1c70c53cfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 108.136.2.0/23 Signature Algorithm: sha256WithRSAEncryption 9a:22:8f:61:54:7c:61:8d:78:ca:54:76:08:4f:cc:cb:92:c5: 8b:74:99:2f:71:ed:53:7b:ec:18:b8:20:ee:d9:00:b6:7b:4f: 9c:db:78:af:b1:79:a5:69:4f:7f:20:b3:a5:7c:7a:7a:a7:2b: 6f:8d:3e:f5:43:1b:70:f3:ae:95:35:14:79:66:47:d5:68:fa: f4:7d:a6:fb:7f:60:01:c2:1d:22:0a:a0:fc:d0:a4:8c:2e:84: a3:68:67:44:42:f9:25:1b:0e:bc:f4:ae:f0:16:16:63:c0:83: 1a:89:e9:42:a1:48:84:5b:c9:fe:d9:90:f7:26:f5:a5:1c:73: 17:66:a6:97:13:29:04:84:f7:3c:48:37:58:bb:f4:e5:4a:e7: bc:2e:76:21:b8:62:20:a5:2e:ae:6d:6f:af:bc:57:51:b1:95: 13:6b:5d:80:17:0d:45:17:e8:e3:d7:4a:38:04:73:5d:51:db: 93:71:b7:2e:5a:a8:53:3c:14:19:59:e2:f6:b8:db:d6:55:84: f0:59:d2:1e:ee:1b:23:6a:64:a9:f6:15:6b:eb:a2:d4:a5:f1: 98:b5:2b:11:47:7c:0d:43:83:47:f1:a5:dc:2a:a6:3a:cd:bc: 33:e6:2f:44:5b:fc:8b:8e:44:a0:5e:ff:12:da:45:f5:1e:1b: 00:d7:23:55 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe6AHJdpxFLdyBNY60+eJrr8nXkQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDI0MDQxWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhN2JiNzJiY2U2NjI4YTdhN2UxYTA0M2VlYmVmMzcxN2Q1 ZTY2YmFiNzFiMjMzZTU3NzZmZjRmY2NjYmEwOTJmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZfk6/zKCh4J5VZzl1bD5u2CyfgUGVdCQGMKgYFMb/lL8T WR/JKFnzGOi68wEk/+BNmV4D44/MFyx0pDz/R4uiwZYB+BHqk/eTiLDVrevNiIcj 3hI6UXF5lWB/ohYYMIEvLWqBgQqzlVB7Y8+mG0w7GyPUOvzfKuUBysoZFkKkjamH p+MnUesgDLgKpwxHE184jMVNN+RB+1yJl1SVGi4bHno+hsIFGFfrOlXm18O0boq1 TKKBRZzeXOU4vHfOAYQhLabm8nuhvO/zHRT0CYX7GH/CAoiO5ppcyd3wXD7alXr1 XTBbiF+Dx6CO8DI8Zx24O1ERy98iBG15FCkuzAxDAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUe4+8WUW/4pQym6UCMJo+FukmGbgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjMWQxODVlLTA1ZDAtNGFlOS1iYzIzLWNmMWM3MGM1M2NmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFsiAIwDQYJKoZIhvcNAQELBQADggEBAJoij2FUfGGNeMpUdghPzMuSxYt0 mS9x7VN77Bi4IO7ZALZ7T5zbeK+xeaVpT38gs6V8enqnK2+NPvVDG3DzrpU1FHlm R9Vo+vR9pvt/YAHCHSIKoPzQpIwuhKNoZ0RC+SUbDrz0rvAWFmPAgxqJ6UKhSIRb yf7ZkPcm9aUccxdmppcTKQSE9zxIN1i79OVK57wudiG4YiClLq5tb6+8V1GxlRNr XYAXDUUX6OPXSjgEc11R25Nxty5aqFM8FBlZ4va429ZVhPBZ0h7uGyNqZKn2FWvr otSl8Zi1KxFHfA1Dg0fxpdwqpjrNvDPmL0Rb/IuORKBe/xLaRfUeGwDXI1U= -----END CERTIFICATE-----Generated at Sun Mar 1 22:15:07 2026 by rpki-client