$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e13db33d-b492-48c9-a7e4-aa878a359fe3.roa File: e13db33d-b492-48c9-a7e4-aa878a359fe3.roa (raw, json) Hash identifier: rU62DVRW/VEq2E4itJqNDS/8f2mXpGc4hYPhXG9P5Jg= Subject key identifier: 07:7C:FF:C6:A9:92:62:FE:DC:2B:04:69:9A:CE:AD:17:F9:76:68:8A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3B1496D6E89EAD86ED36AD4B570DF20F6F78352C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e13db33d-b492-48c9-a7e4-aa878a359fe3.roa Signing time: Sat 07 Feb 2026 00:00:06 +0000 ROA not before: Sat 07 Feb 2026 00:00:06 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 23.254.120.0/22 maxlen: 22 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3b:14:96:d6:e8:9e:ad:86:ed:36:ad:4b:57:0d:f2:0f:6f:78:35:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:06 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=93ada52d03d7c11a7c927e4300390b68a5f31aa4c6a145cf16a982f2024bffc1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:84:43:14:13:d1:b4:2d:f1:8e:e0:94:ad:ff: c7:9c:1e:50:07:bf:41:14:fe:2a:0d:cf:5e:d3:7f: 9a:ac:47:5d:75:78:a5:6c:57:50:68:f5:8e:20:5e: db:73:20:1a:99:9b:94:d6:9f:88:19:f1:8f:d2:2e: fb:4b:0a:19:b0:ea:f0:35:9b:cf:9d:f0:6f:a6:25: 5c:28:7d:94:f6:b7:33:dc:4f:78:50:f0:da:e5:8a: 84:84:51:6b:65:79:1c:63:41:0b:e8:b9:3e:81:59: d1:60:02:f1:49:aa:4b:61:20:fc:00:89:87:2b:ad: aa:3f:20:db:fc:0e:49:35:8f:9a:03:91:a0:ad:02: 60:52:39:d9:0e:8f:e7:0f:80:c4:e3:66:43:0c:de: 40:ed:66:26:2f:bd:9c:67:a9:ca:5b:bc:90:7e:2c: a9:17:68:b6:5e:3a:fd:5b:7a:30:15:ac:84:9f:ac: 0d:6b:96:1f:09:8d:8a:a5:44:2f:f1:8b:51:d3:ef: 48:d8:bf:6e:a0:5f:24:24:1b:13:69:bd:74:23:0c: 94:f4:d0:fe:b8:65:21:6e:f8:a6:3d:8a:c9:d9:e7: 70:7b:5d:bc:41:34:62:70:aa:14:b0:83:5f:25:bd: ab:2a:e0:b6:f4:3e:67:d9:62:5f:e6:5b:fc:8f:57: 58:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:7C:FF:C6:A9:92:62:FE:DC:2B:04:69:9A:CE:AD:17:F9:76:68:8A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e13db33d-b492-48c9-a7e4-aa878a359fe3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.254.120.0/22 Signature Algorithm: sha256WithRSAEncryption 78:a5:ad:ee:33:73:c8:19:8e:9f:e5:8c:ba:fd:8f:90:20:41: 33:1a:03:b9:c1:89:a9:46:1e:86:b5:3a:5c:67:e0:98:f7:d6: 41:8e:e0:9e:7b:d2:8c:5c:4e:8a:0c:6a:a7:b5:d8:78:92:00: 44:ea:a3:8c:eb:78:42:2b:fc:cc:d4:b7:08:55:6e:fd:40:90: cd:a0:f6:7d:d3:d8:b6:2c:a3:9b:7a:0a:88:1f:80:3f:01:51: 6d:fb:32:02:53:6a:41:9e:3c:8b:84:63:75:71:12:a1:f4:40: 2d:ac:d3:5f:c4:0b:74:5c:e1:2f:01:9a:d3:10:71:ca:bb:00: 13:b0:01:d5:ff:f2:6e:2c:3f:4c:a8:3e:42:3e:b8:c0:a4:26: de:63:a2:1e:38:93:24:fb:40:84:7c:c4:f8:41:10:78:2d:75: 1b:f2:89:46:b0:d7:fc:5d:46:82:f4:d6:95:df:c4:6c:20:2d: 6c:fe:de:31:ec:f2:12:4f:f1:dd:4f:8d:e8:11:97:bb:fa:66: 5a:cb:d1:70:2d:42:10:de:b4:f9:6a:84:04:02:ea:45:b8:3d: 13:4c:43:81:e5:d4:1c:d1:fc:14:05:14:a5:08:39:7b:6c:14: 64:65:ae:ff:e5:d1:49:c3:23:a6:63:5d:05:6b:02:ae:a9:21: 64:f5:a9:53 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUOxSW1uierYbtNq1LVw3yD294NSwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAwMDA2WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5M2FkYTUyZDAzZDdjMTFhN2M5MjdlNDMwMDM5MGI2OGE1 ZjMxYWE0YzZhMTQ1Y2YxNmE5ODJmMjAyNGJmZmMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDChEMUE9G0LfGO4JSt/8ecHlAHv0EU/ioNz17Tf5qsR111 eKVsV1Bo9Y4gXttzIBqZm5TWn4gZ8Y/SLvtLChmw6vA1m8+d8G+mJVwofZT2tzPc T3hQ8NrlioSEUWtleRxjQQvouT6BWdFgAvFJqkthIPwAiYcrrao/INv8Dkk1j5oD kaCtAmBSOdkOj+cPgMTjZkMM3kDtZiYvvZxnqcpbvJB+LKkXaLZeOv1bejAVrISf rA1rlh8JjYqlRC/xi1HT70jYv26gXyQkGxNpvXQjDJT00P64ZSFu+KY9isnZ53B7 XbxBNGJwqhSwg18lvasq4Lb0PmfZYl/mW/yPV1ipAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUB3z/xqmSYv7cKwRpms6tF/l2aIowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UxM2RiMzNkLWI0OTItNDhjOS1hN2U0LWFhODc4YTM1OWZlMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAIX/ngwDQYJKoZIhvcNAQELBQADggEBAHilre4zc8gZjp/ljLr9j5AgQTMa A7nBialGHoa1Olxn4Jj31kGO4J570oxcTooMaqe12HiSAETqo4zreEIr/MzUtwhV bv1AkM2g9n3T2LYso5t6CogfgD8BUW37MgJTakGePIuEY3VxEqH0QC2s01/EC3Rc 4S8BmtMQccq7ABOwAdX/8m4sP0yoPkI+uMCkJt5joh44kyT7QIR8xPhBEHgtdRvy iUaw1/xdRoL01pXfxGwgLWz+3jHs8hJP8d1PjegRl7v6ZlrL0XAtQhDetPlqhAQC 6kW4PRNMQ4Hl1BzR/BQFFKUIOXtsFGRlrv/l0UnDI6ZjXQVrAq6pIWT1qVM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:14 2026 by rpki-client