$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de1f98bc-ae50-4803-b2e2-2d125089d719.roa File: de1f98bc-ae50-4803-b2e2-2d125089d719.roa (raw, json) Hash identifier: t2tgK3kY9G1AKh9TaSt4iNrPqYojxppreuQqp3dYwAE= Subject key identifier: 52:F6:7C:ED:58:ED:C4:78:8A:E9:AF:A4:E5:0D:CE:9B:F4:DD:3A:DE Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 772191C27CF3AC680318DCEA3909012965354F63 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de1f98bc-ae50-4803-b2e2-2d125089d719.roa Signing time: Fri 20 Feb 2026 00:30:11 +0000 ROA not before: Fri 20 Feb 2026 00:30:11 +0000 ROA not after: Thu 21 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.91.9.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 77:21:91:c2:7c:f3:ac:68:03:18:dc:ea:39:09:01:29:65:35:4f:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 20 00:30:11 2026 GMT Not After : May 21 23:59:59 2026 GMT Subject: serialNumber=c6ad124be557112c0dcf0e0bd971836cfe1e137557394938bfd7f995cd08af07, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:f5:49:09:14:18:48:32:e0:5f:21:ab:cd:d9: 0f:bb:80:a3:f5:9d:3e:3a:59:19:f9:78:f3:32:df: 5e:9c:20:d3:54:12:8e:1c:42:d1:c5:87:93:fb:0c: f5:60:2e:4c:6a:0e:ed:ae:ce:d3:e1:24:43:6c:05: 62:4a:65:72:51:38:83:31:d9:16:37:44:c8:c4:80: 7e:7c:42:96:2e:e5:ea:50:74:d1:a8:73:7a:66:a8: 69:0b:c9:02:58:1f:95:43:bc:bf:57:bf:7a:6c:ed: 77:1c:91:e2:7a:50:12:34:7d:22:b1:50:0e:1b:62: da:a1:17:e9:dc:a7:5c:19:dc:fc:7c:91:4c:9b:9e: d0:21:d2:0d:b2:dd:e7:32:54:94:7b:bf:4b:1e:3b: c7:3e:1f:31:46:1e:93:ce:0c:5f:76:d5:a5:4b:3d: ed:ac:dd:99:66:e5:c8:58:9e:c5:d0:e3:0f:d1:88: ca:81:4c:e7:9e:1c:07:9a:37:d5:31:41:64:48:7d: 0c:4d:01:7b:23:74:b6:8a:c0:28:b2:b2:20:74:a6: 50:c2:3a:6c:f3:b9:84:a1:69:60:bc:14:e2:ad:27: 46:b2:92:77:89:8f:a9:1f:02:6a:5d:fe:52:ce:3b: 95:52:57:ab:22:20:b7:6e:32:65:f6:62:7f:6e:58: 39:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:F6:7C:ED:58:ED:C4:78:8A:E9:AF:A4:E5:0D:CE:9B:F4:DD:3A:DE X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/de1f98bc-ae50-4803-b2e2-2d125089d719.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.91.9.0/24 Signature Algorithm: sha256WithRSAEncryption 88:bc:d3:08:a3:23:d5:1e:e5:1e:e0:5c:5f:66:79:a6:f6:27: 3b:80:38:01:99:db:6f:a1:e5:59:84:69:ca:2a:fd:42:aa:09: 47:34:d4:39:ef:fa:74:7f:47:5a:6f:a0:01:01:40:bc:7d:b3: 03:59:8a:77:fa:f0:6c:bc:c0:71:0a:a5:d6:be:58:eb:ad:88: cf:5c:4c:5d:04:39:b4:42:84:5c:93:d8:51:00:b6:63:4c:bf: 04:08:16:72:33:b1:3e:a0:9d:e7:75:c7:ef:1a:ab:e8:ba:47: 33:5e:b1:3d:52:63:ef:43:1d:7e:85:a1:20:ca:63:d2:93:e6: 02:cc:20:99:d3:dc:ea:2c:c4:93:1b:88:66:fd:ea:38:f6:30: 20:f7:90:cf:8b:09:46:98:05:ca:4f:1b:b5:af:57:4e:42:cd: 76:94:78:f0:f8:71:a7:0d:1e:c9:d8:25:da:90:96:d4:bc:53: 46:73:01:e4:a5:7f:58:55:d2:93:ba:69:24:ed:6b:89:aa:e9: 83:39:3f:08:28:8a:8f:68:db:dc:42:dc:63:ee:9d:18:a6:1e: 8a:3b:e9:48:46:12:cd:bd:0d:f2:cf:6e:0f:12:a2:52:5b:c0: 08:6c:b2:44:5e:77:2d:86:90:c9:6d:5e:4b:31:56:4b:a8:63: b1:1c:33:77 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUdyGRwnzzrGgDGNzqOQkBKWU1T2MwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIwMDAzMDExWhcNMjYwNTIxMjM1OTU5 WjB6MUkwRwYDVQQFE0BjNmFkMTI0YmU1NTcxMTJjMGRjZjBlMGJkOTcxODM2Y2Zl MWUxMzc1NTczOTQ5MzhiZmQ3Zjk5NWNkMDhhZjA3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCi9UkJFBhIMuBfIavN2Q+7gKP1nT46WRn5ePMy316cINNU Eo4cQtHFh5P7DPVgLkxqDu2uztPhJENsBWJKZXJROIMx2RY3RMjEgH58QpYu5epQ dNGoc3pmqGkLyQJYH5VDvL9Xv3ps7XcckeJ6UBI0fSKxUA4bYtqhF+ncp1wZ3Px8 kUybntAh0g2y3ecyVJR7v0seO8c+HzFGHpPODF921aVLPe2s3Zlm5chYnsXQ4w/R iMqBTOeeHAeaN9UxQWRIfQxNAXsjdLaKwCiysiB0plDCOmzzuYShaWC8FOKtJ0ay kneJj6kfAmpd/lLOO5VSV6siILduMmX2Yn9uWDl/AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUUvZ87VjtxHiK6a+k5Q3Om/TdOt4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RlMWY5OGJjLWFlNTAtNDgwMy1iMmUyLTJkMTI1MDg5ZDcxOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAAXWwkwDQYJKoZIhvcNAQELBQADggEBAIi80wijI9Ue5R7gXF9meab2JzuA OAGZ22+h5VmEacoq/UKqCUc01Dnv+nR/R1pvoAEBQLx9swNZinf68Gy8wHEKpda+ WOutiM9cTF0EObRChFyT2FEAtmNMvwQIFnIzsT6gned1x+8aq+i6RzNesT1SY+9D HX6FoSDKY9KT5gLMIJnT3OosxJMbiGb96jj2MCD3kM+LCUaYBcpPG7WvV05CzXaU ePD4cacNHsnYJdqQltS8U0ZzAeSlf1hV0pO6aSTta4mq6YM5Pwgoio9o29xC3GPu nRimHoo76UhGEs29DfLPbg8SolJbwAhsskRedy2GkMltXksxVkuoY7EcM3c= -----END CERTIFICATE-----Generated at Mon Mar 2 04:54:30 2026 by rpki-client