$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa File: e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa (raw, json) Hash identifier: SjAYqqlMEEVY+0fVjVvzXdqN+honiVNNkQXbc6i5GJk= Subject key identifier: 5A:54:7A:C3:FE:DF:5A:16:61:0A:D0:07:CA:11:CB:87:DA:97:53:97 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2088C0E41356A54A0EDCB6AA3FC27351B294DCAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa Signing time: Sun 01 Mar 2026 00:30:44 +0000 ROA not before: Sun 01 Mar 2026 00:30:44 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 23.228.192.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:88:c0:e4:13:56:a5:4a:0e:dc:b6:aa:3f:c2:73:51:b2:94:dc:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:30:44 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=a1234120f33f4039db3bd5fc1dfd307d87431a7377156522ff81b34259946f8b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:d8:39:14:7f:d4:3f:f8:12:4e:20:5f:cc:ab: 7a:07:d8:21:0d:41:24:04:21:1c:53:a1:4d:bc:dd: cb:da:58:a6:03:16:46:17:e5:c1:8b:d6:2d:6d:b5: 31:f1:e9:1e:16:fa:a7:6c:10:d3:d7:d6:60:47:13: df:f1:85:9f:d4:4f:2d:85:52:94:c7:f4:0e:d0:e1: 0f:a7:0e:31:f8:49:14:9c:f0:de:48:40:f2:78:82: 80:42:1c:35:10:bd:cc:54:03:ab:8d:da:d2:86:ee: a1:d6:ff:d3:f0:4d:20:56:03:00:57:de:b2:36:49: e2:e1:52:b7:27:ee:c3:30:f2:a4:7d:35:6c:97:ac: 0d:2b:b7:e3:a7:73:67:6c:a8:1f:8a:92:6c:a8:82: d5:43:46:a7:5a:ae:2b:69:d5:cb:47:c9:51:25:9c: fc:8f:2d:2b:79:16:ac:41:86:29:51:37:f0:a6:8e: 6f:77:29:d8:7d:90:07:14:45:54:65:f9:3b:ed:50: 6e:11:57:41:7f:c0:f9:77:27:5e:f7:1c:35:a9:5f: 45:05:cc:9d:cb:e2:96:dc:61:a6:56:d1:8b:1a:1f: 43:a7:fe:72:ef:6d:33:a7:a9:f9:f8:57:62:81:0d: c1:67:3a:45:a0:23:5f:17:8f:68:e7:9a:52:e5:16: 70:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5A:54:7A:C3:FE:DF:5A:16:61:0A:D0:07:CA:11:CB:87:DA:97:53:97 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e2fd9155-8aca-4f0e-b0d4-1ac47bb17b2f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 23.228.192.0/18 Signature Algorithm: sha256WithRSAEncryption 73:61:92:03:e6:a2:b8:31:4c:07:81:3f:43:eb:56:b1:6a:60: 99:cc:86:36:3f:c7:5a:9c:c6:f2:2c:85:11:89:37:53:55:70: e3:00:6e:f9:c2:95:c0:fa:28:68:d6:f6:53:45:ff:d3:32:e4: d1:7b:f4:4d:fe:e7:54:51:91:63:49:3d:4e:d2:4c:58:0f:7c: 8d:9b:f6:7a:a1:3c:e2:10:a6:59:05:dd:bd:52:1d:fb:69:7a: 55:af:2c:eb:a5:ff:64:6c:94:4b:f8:60:d2:87:f9:d5:47:18: 83:4c:df:fe:37:34:84:2b:87:95:79:93:42:8f:65:30:d1:62: ae:4e:46:0b:03:aa:87:ad:fe:d8:62:7f:ed:96:9e:16:ad:e5: ed:45:d2:da:49:ca:62:85:a7:e0:af:7f:c4:8b:d9:18:ec:cc: e3:8c:e5:ae:c5:c6:a3:f7:d4:93:f6:e8:ae:32:17:f0:e4:64: 66:49:b2:f2:25:fd:1c:ee:d1:aa:2b:47:03:27:d6:7e:99:ab: 49:96:95:bb:21:a1:a6:46:60:37:ec:41:49:24:44:46:ff:5b: eb:9c:61:d1:7a:33:20:64:bb:96:eb:19:cc:c8:6c:af:d6:d4: 2a:eb:e2:60:1b:24:01:1b:dd:e1:a2:1d:0a:2a:db:ba:8c:cd: fe:e5:e5:28 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUIIjA5BNWpUoO3LaqP8JzUbKU3KwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMDQ0WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTIzNDEyMGYzM2Y0MDM5ZGIzYmQ1ZmMxZGZkMzA3ZDg3 NDMxYTczNzcxNTY1MjJmZjgxYjM0MjU5OTQ2ZjhiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC62DkUf9Q/+BJOIF/Mq3oH2CENQSQEIRxToU283cvaWKYD FkYX5cGL1i1ttTHx6R4W+qdsENPX1mBHE9/xhZ/UTy2FUpTH9A7Q4Q+nDjH4SRSc 8N5IQPJ4goBCHDUQvcxUA6uN2tKG7qHW/9PwTSBWAwBX3rI2SeLhUrcn7sMw8qR9 NWyXrA0rt+Onc2dsqB+KkmyogtVDRqdaritp1ctHyVElnPyPLSt5FqxBhilRN/Cm jm93Kdh9kAcURVRl+TvtUG4RV0F/wPl3J173HDWpX0UFzJ3L4pbcYaZW0YsaH0On /nLvbTOnqfn4V2KBDcFnOkWgI18Xj2jnmlLlFnDLAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWlR6w/7fWhZhCtAHyhHLh9qXU5cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2UyZmQ5MTU1LThhY2EtNGYwZS1iMGQ0LTFhYzQ3YmIxN2IyZi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAYX5MAwDQYJKoZIhvcNAQELBQADggEBAHNhkgPmorgxTAeBP0PrVrFqYJnM hjY/x1qcxvIshRGJN1NVcOMAbvnClcD6KGjW9lNF/9My5NF79E3+51RRkWNJPU7S TFgPfI2b9nqhPOIQplkF3b1SHftpelWvLOul/2RslEv4YNKH+dVHGINM3/43NIQr h5V5k0KPZTDRYq5ORgsDqoet/thif+2Wnhat5e1F0tpJymKFp+Cvf8SL2RjszOOM 5a7FxqP31JP26K4yF/DkZGZJsvIl/Rzu0aorRwMn1n6Zq0mWlbshoaZGYDfsQUkk REb/W+ucYdF6MyBku5brGczIbK/W1Crr4mAbJAEb3eGiHQoq27qMzf7l5Sg= -----END CERTIFICATE-----Generated at Mon Mar 2 05:16:30 2026 by rpki-client