$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa File: dfeccc68-b535-451a-9cc7-983817c87adf.roa (raw, json) Hash identifier: Kk9LkcQgNUI5s0rpC4D+H6ycfj06PaNZjB6XqmMBGg8= Subject key identifier: 08:62:68:C4:D8:8D:DE:22:0E:61:BB:A5:5D:12:B8:45:0E:F2:49:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0AAF7DA8D0C7AE61F94F7AF5FDCAF8B4387A628E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa Signing time: Wed 25 Feb 2026 01:31:20 +0000 ROA not before: Wed 25 Feb 2026 01:31:20 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.174.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0a:af:7d:a8:d0:c7:ae:61:f9:4f:7a:f5:fd:ca:f8:b4:38:7a:62:8e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:31:20 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=f389680a88ca9c88ca1550057215e4883e9b93cc9b6c961d2f5d5ce0e144a412, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:a8:3f:57:c4:c9:14:83:9e:60:01:eb:69:7c: 01:30:cd:e6:c6:38:4d:92:af:44:b5:72:95:bc:fa: bd:b6:1e:a9:ef:fb:70:f6:28:3e:11:f6:54:04:15: 63:00:7a:db:27:a3:ab:a8:2d:b8:a6:a4:ea:c9:d8: 8c:08:eb:f2:84:8f:3d:da:fb:03:2f:ca:f2:35:90: 64:fd:f4:e4:07:cf:d9:d7:86:36:77:fb:58:de:bb: b9:20:d2:cf:fa:0d:63:1d:2f:50:3f:f9:38:8a:5e: 74:e0:7b:58:20:1f:00:80:c8:13:b8:39:ce:7d:6b: ed:a8:48:a2:4d:be:77:9b:3d:21:ff:72:ea:60:92: bb:98:9f:dc:8e:0d:8d:44:53:c9:ed:f7:59:ff:f6: 83:25:11:f7:a2:9c:84:e2:66:45:83:ff:17:ba:af: 7e:c4:98:47:fb:ef:a6:72:d8:f3:5b:f0:5b:75:7c: c4:7a:20:b8:b4:3a:c1:21:1f:ed:7b:2a:99:7b:62: 5f:80:93:81:64:8d:f6:a9:f4:b9:22:73:ff:24:35: 08:cc:02:02:69:0b:fd:a5:10:6a:78:e3:bd:c7:62: e1:91:61:38:cc:ce:fa:85:fe:8b:36:c6:26:86:52: cd:9b:1c:4a:b2:de:d9:02:40:86:eb:10:bb:f8:b8: 56:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:62:68:C4:D8:8D:DE:22:0E:61:BB:A5:5D:12:B8:45:0E:F2:49:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/dfeccc68-b535-451a-9cc7-983817c87adf.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.174.0.0/15 Signature Algorithm: sha256WithRSAEncryption 0a:38:1f:48:84:e1:35:56:fb:2d:cc:f9:1f:24:23:be:76:0c: 6f:aa:fc:a9:3b:3d:09:18:0a:ae:1c:10:19:0b:2e:c4:ce:b5: 1b:a4:f7:45:86:dc:5d:d1:e4:9e:64:b3:d4:b1:8e:72:02:88: 96:24:1b:5e:1b:0d:76:36:4d:46:07:ee:bd:41:b4:62:64:40: 00:48:bd:33:0c:27:51:1f:a6:82:1c:08:45:21:28:15:24:7c: f7:a3:25:36:e6:b8:6d:3a:21:f6:27:ba:72:d8:1a:a6:b5:cb: 49:97:9e:36:e2:98:ed:f3:85:ca:83:63:ac:98:f3:b4:26:43: 68:2c:57:7f:94:95:1b:61:f1:26:6c:a2:81:d4:c1:0f:a3:d0: 00:d8:5c:ba:4b:de:08:c5:ad:72:c4:55:35:e1:16:8d:39:55: 43:21:9b:68:33:7c:24:34:21:d7:67:3a:10:5a:da:91:53:00: f5:8d:31:99:45:6b:dc:c1:bb:77:66:a5:32:d6:60:cf:27:dc: 80:d9:d9:1a:57:e8:19:63:d6:2c:85:2f:9c:5f:1a:af:a4:23: ed:cc:c2:cd:01:21:f6:28:cf:3e:ee:f7:84:48:01:f8:37:e0: 2b:d7:4a:e2:af:48:44:1a:4f:53:74:d0:9a:3a:8e:ff:ef:ba: f1:95:31:70 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUCq99qNDHrmH5T3r1/cr4tDh6Yo4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEzMTIwWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMzg5NjgwYTg4Y2E5Yzg4Y2ExNTUwMDU3MjE1ZTQ4ODNl OWI5M2NjOWI2Yzk2MWQyZjVkNWNlMGUxNDRhNDEyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTqD9XxMkUg55gAetpfAEwzebGOE2Sr0S1cpW8+r22Hqnv +3D2KD4R9lQEFWMAetsno6uoLbimpOrJ2IwI6/KEjz3a+wMvyvI1kGT99OQHz9nX hjZ3+1jeu7kg0s/6DWMdL1A/+TiKXnTge1ggHwCAyBO4Oc59a+2oSKJNvnebPSH/ cupgkruYn9yODY1EU8nt91n/9oMlEfeinITiZkWD/xe6r37EmEf776Zy2PNb8Ft1 fMR6ILi0OsEhH+17Kpl7Yl+Ak4Fkjfap9Lkic/8kNQjMAgJpC/2lEGp4473HYuGR YTjMzvqF/os2xiaGUs2bHEqy3tkCQIbrELv4uFa7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUCGJoxNiN3iIOYbulXRK4RQ7ySWgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2RmZWNjYzY4LWI1MzUtNDUxYS05Y2M3LTk4MzgxN2M4N2FkZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEorjANBgkqhkiG9w0BAQsFAAOCAQEACjgfSIThNVb7Lcz5HyQjvnYMb6r8 qTs9CRgKrhwQGQsuxM61G6T3RYbcXdHknmSz1LGOcgKIliQbXhsNdjZNRgfuvUG0 YmRAAEi9MwwnUR+mghwIRSEoFSR896MlNua4bToh9ie6ctgaprXLSZeeNuKY7fOF yoNjrJjztCZDaCxXf5SVG2HxJmyigdTBD6PQANhcukveCMWtcsRVNeEWjTlVQyGb aDN8JDQh12c6EFrakVMA9Y0xmUVr3MG7d2alMtZgzyfcgNnZGlfoGWPWLIUvnF8a r6Qj7czCzQEh9ijPPu73hEgB+DfgK9dK4q9IRBpPU3TQmjqO/++68ZUxcA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:04 2026 by rpki-client