$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa File: dc633947-b61c-41cb-9d60-602b871ef0ec.roa (raw, json) Hash identifier: CfguSX5Cri8aM9ytcNh6GXMz9FJAzxBhIJaEBVHxOJQ= Subject key identifier: 0D:A2:A0:08:42:EF:10:9F:63:0E:44:A6:5B:DF:9D:CF:AF:9C:0D:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 35D6A0A9E6EE3856B5FBEAD277099CB696E0409D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa Signing time: Thu 26 Feb 2026 00:40:50 +0000 ROA not before: Thu 26 Feb 2026 00:40:50 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 65.2.16.0/23 maxlen: 23 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:d6:a0:a9:e6:ee:38:56:b5:fb:ea:d2:77:09:9c:b6:96:e0:40:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:40:50 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=bd17e5718cbf3ce5942c276043fe913888a5fcaf35c52393c7447c43f93c382a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:fb:55:41:7a:69:9a:02:c3:09:f5:e2:f6:48: fd:bd:ae:c9:f8:e6:30:de:21:ec:9b:3a:ca:0c:4f: 6c:14:79:b1:39:64:fc:cb:fa:fa:ac:8a:ad:7f:7c: b2:3c:71:99:9e:0e:7c:a2:78:6c:7d:01:3a:6c:48: 1b:6f:a5:b2:cc:24:a9:2a:94:f8:9c:0c:eb:71:5d: d1:2a:9b:db:0e:d6:6f:56:a6:35:ef:b1:30:ae:70: cd:08:fc:42:78:c0:86:31:f7:50:9a:22:fd:50:94: 2c:57:a8:f2:7e:a7:92:3f:0d:88:36:bd:40:3e:83: 79:c2:7b:0d:de:2f:da:d3:a7:ae:3b:1c:cf:0d:8c: 63:84:b5:d8:7a:1b:9c:c1:88:9d:b7:2e:6e:7a:f9: 90:0a:c2:19:bf:1a:0f:fd:97:0d:ee:e9:c5:5a:81: 51:45:e1:14:54:ef:56:ef:9b:6a:c6:56:26:dd:20: 52:dc:12:0d:a7:3a:cb:5c:85:42:06:ad:2b:de:a7: 6f:f0:bd:b6:c9:65:ba:ac:2f:ed:98:cd:97:26:3d: 83:b8:12:db:b0:c0:a1:40:3e:d2:67:31:61:75:24: b4:d9:60:d4:e6:8e:c3:54:47:d0:30:8b:37:de:dc: 7e:7a:e4:3b:83:27:40:0d:7d:51:6c:af:91:cd:54: b2:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0D:A2:A0:08:42:EF:10:9F:63:0E:44:A6:5B:DF:9D:CF:AF:9C:0D:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dc633947-b61c-41cb-9d60-602b871ef0ec.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 65.2.16.0/23 Signature Algorithm: sha256WithRSAEncryption 6a:d7:23:a6:1a:ea:eb:d6:fb:4e:d7:e2:00:c7:8f:6d:8d:cb: 88:86:8c:11:48:e9:ab:5e:b8:20:29:7b:d2:1b:13:41:e8:0c: b8:85:92:a3:88:0b:4d:58:3b:33:14:c6:74:76:3b:53:d6:64: 00:21:bc:e8:17:58:69:2e:5c:30:a0:5d:74:65:3e:53:63:57: 71:ac:64:0c:c4:7d:b8:40:b2:d6:4f:74:9b:8a:0e:a3:90:3e: 5f:3f:33:47:37:0a:0c:fc:3e:06:3e:79:1f:b7:60:a1:e6:71: f5:c7:51:83:93:18:bf:d1:a6:58:30:b6:20:b9:98:60:a5:d9: 20:2e:dd:60:f8:db:ab:3f:43:24:89:56:a5:b7:d8:5a:94:75: 86:72:e3:46:8a:a0:5a:f3:40:9c:45:60:a4:fa:b9:66:e5:ad: 2a:14:20:26:c0:dc:48:37:b0:9d:be:f3:d1:48:3e:7f:e3:7d: 83:ba:3d:f7:66:20:d0:33:eb:6f:fe:07:d7:7e:c0:3c:91:d7: c3:e6:63:e6:cf:e1:f1:94:87:e7:1e:f1:3e:c4:41:6d:e2:79: 8b:0d:be:9f:7a:62:f4:92:ea:0a:ac:68:c1:b8:4e:15:89:4b: 27:cb:6c:bd:53:7e:11:eb:c6:d7:b0:85:07:96:de:b3:e5:b9: a6:0d:39:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUNdagqebuOFa1++rSdwmctpbgQJ0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA0MDUwWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BiZDE3ZTU3MThjYmYzY2U1OTQyYzI3NjA0M2ZlOTEzODg4 YTVmY2FmMzVjNTIzOTNjNzQ0N2M0M2Y5M2MzODJhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1+1VBemmaAsMJ9eL2SP29rsn45jDeIeybOsoMT2wUebE5 ZPzL+vqsiq1/fLI8cZmeDnyieGx9ATpsSBtvpbLMJKkqlPicDOtxXdEqm9sO1m9W pjXvsTCucM0I/EJ4wIYx91CaIv1QlCxXqPJ+p5I/DYg2vUA+g3nCew3eL9rTp647 HM8NjGOEtdh6G5zBiJ23Lm56+ZAKwhm/Gg/9lw3u6cVagVFF4RRU71bvm2rGVibd IFLcEg2nOstchUIGrSvep2/wvbbJZbqsL+2YzZcmPYO4EtuwwKFAPtJnMWF1JLTZ YNTmjsNUR9Awizfe3H565DuDJ0ANfVFsr5HNVLILAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUDaKgCELvEJ9jDkSmW9+dz6+cDSwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RjNjMzOTQ3LWI2MWMtNDFjYi05ZDYwLTYwMmI4NzFlZjBlYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAFBAhAwDQYJKoZIhvcNAQELBQADggEBAGrXI6Ya6uvW+07X4gDHj22Ny4iG jBFI6ateuCApe9IbE0HoDLiFkqOIC01YOzMUxnR2O1PWZAAhvOgXWGkuXDCgXXRl PlNjV3GsZAzEfbhAstZPdJuKDqOQPl8/M0c3Cgz8PgY+eR+3YKHmcfXHUYOTGL/R plgwtiC5mGCl2SAu3WD426s/QySJVqW32FqUdYZy40aKoFrzQJxFYKT6uWblrSoU ICbA3Eg3sJ2+89FIPn/jfYO6PfdmINAz62/+B9d+wDyR18PmY+bP4fGUh+ce8T7E QW3ieYsNvp96YvSS6gqsaMG4ThWJSyfLbL1TfhHrxtewhQeW3rPluaYNOX8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:35 2026 by rpki-client