$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa File: e968971f-95ed-4299-906a-f72c00ea6e69.roa (raw, json) Hash identifier: 5fvFBFnE4rIQt5NL05WnnWRYOWj6l1Vrm2NmqGzSKvs= Subject key identifier: FC:41:14:8F:37:85:F7:B0:B2:61:A3:6A:5F:DA:AD:CA:F6:67:19:8D Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11D0D745E04BB7598512BE4C907B9CCB1854155F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa Signing time: Sun 01 Mar 2026 00:31:53 +0000 ROA not before: Sun 01 Mar 2026 00:31:53 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 161.228.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:d0:d7:45:e0:4b:b7:59:85:12:be:4c:90:7b:9c:cb:18:54:15:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:31:53 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=3f7581d0f86515001e31daf2c9bec73c2bbc4526cfeaa0084d84be39647922b4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:44:b1:80:5c:76:b9:2f:50:13:06:38:e4:41: cd:00:49:23:47:fb:9c:98:f1:d1:88:56:14:b5:3d: ff:1f:db:87:b8:8a:74:fa:d9:de:53:c0:18:46:ad: e4:9d:59:60:17:34:13:ff:c2:2b:43:31:c5:f4:16: cf:0e:23:5d:95:b1:e2:cf:ea:4e:fc:91:5e:62:22: ae:d2:6e:8d:b9:a5:93:ad:40:5e:93:f1:15:02:cb: f5:d5:9b:e4:16:33:b5:45:d5:fe:99:5c:80:42:4b: d2:49:9d:c1:4d:e8:35:bf:9a:52:bd:8a:bc:45:08: 52:0b:2b:20:38:8f:a9:dd:d0:5d:8a:3b:b3:0d:40: d1:31:ae:3e:c9:24:00:2d:36:26:e4:f6:08:f1:11: 0b:0a:96:c7:8f:b7:18:3e:1b:9b:2f:f1:4e:16:63: b4:e8:55:b2:24:6c:70:bc:e3:15:7a:45:c9:30:29: 21:78:52:7e:b5:b8:b8:08:74:1a:69:c8:7f:1d:b6: c0:a1:2e:11:22:d3:89:62:5a:ae:13:ef:fd:18:7f: 36:60:cc:b2:f5:30:b0:f9:25:24:e7:45:17:1f:04: 75:c3:62:3b:96:b3:01:f3:5d:0d:96:31:68:c2:40: 30:07:93:39:69:7d:98:0a:17:9c:d1:51:a7:0e:3b: 75:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:41:14:8F:37:85:F7:B0:B2:61:A3:6A:5F:DA:AD:CA:F6:67:19:8D X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e968971f-95ed-4299-906a-f72c00ea6e69.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 161.228.64.0/18 Signature Algorithm: sha256WithRSAEncryption 07:5e:9e:f4:13:6c:4e:52:fd:99:d3:b3:b7:40:d6:69:ca:59: 94:97:96:20:0e:8c:01:54:e3:f1:db:e3:82:3b:62:31:64:48: d0:f2:07:bb:71:6a:7c:d5:87:13:39:76:d1:a8:d3:9a:71:fd: 1d:e5:35:ce:ed:31:5a:ae:70:61:b9:84:5b:db:24:21:99:2d: c2:3f:e3:e8:4b:b3:3d:1f:9a:3c:1f:97:73:6f:bc:6e:60:e6: a1:b7:fa:7e:09:ff:8a:aa:dc:01:57:f6:08:b8:20:21:ac:01: e2:a3:77:06:36:08:93:8c:d1:db:c6:6c:0f:9c:f9:bc:12:e5: 5e:c9:c5:f3:e8:7f:bf:22:34:e7:9d:b0:a8:fb:bc:db:fa:6d: 0a:11:41:a0:2f:4d:49:90:c8:be:d0:41:25:b6:c4:a7:4a:a0: 16:96:74:7c:96:19:bf:15:5f:a4:01:be:6d:bf:c5:c9:f9:ce: ed:9f:a2:81:c4:b5:44:0c:d3:2a:da:f1:f6:87:8a:73:d0:e7: 72:d6:ba:b1:0e:96:1a:0f:fb:27:5d:fa:c8:ba:82:7e:b9:55: 34:f7:ae:dd:43:9e:a2:d2:df:47:cd:0d:6d:df:e6:55:f9:72: 4c:c4:c9:10:1d:a2:2d:bc:02:c3:d8:54:a1:9c:a0:39:a6:b2: ac:4d:42:e1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEdDXReBLt1mFEr5MkHucyxhUFV8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAzMTUzWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AzZjc1ODFkMGY4NjUxNTAwMWUzMWRhZjJjOWJlYzczYzJi YmM0NTI2Y2ZlYWEwMDg0ZDg0YmUzOTY0NzkyMmI0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCQRLGAXHa5L1ATBjjkQc0ASSNH+5yY8dGIVhS1Pf8f24e4 inT62d5TwBhGreSdWWAXNBP/witDMcX0Fs8OI12VseLP6k78kV5iIq7Sbo25pZOt QF6T8RUCy/XVm+QWM7VF1f6ZXIBCS9JJncFN6DW/mlK9irxFCFILKyA4j6nd0F2K O7MNQNExrj7JJAAtNibk9gjxEQsKlsePtxg+G5sv8U4WY7ToVbIkbHC84xV6Rckw KSF4Un61uLgIdBppyH8dtsChLhEi04liWq4T7/0YfzZgzLL1MLD5JSTnRRcfBHXD YjuWswHzXQ2WMWjCQDAHkzlpfZgKF5zRUacOO3VbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/EEUjzeF97CyYaNqX9qtyvZnGY0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5Njg5NzFmLTk1ZWQtNDI5OS05MDZhLWY3MmMwMGVhNmU2OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAah5EAwDQYJKoZIhvcNAQELBQADggEBAAdenvQTbE5S/ZnTs7dA1mnKWZSX liAOjAFU4/Hb44I7YjFkSNDyB7txanzVhxM5dtGo05px/R3lNc7tMVqucGG5hFvb JCGZLcI/4+hLsz0fmjwfl3NvvG5g5qG3+n4J/4qq3AFX9gi4ICGsAeKjdwY2CJOM 0dvGbA+c+bwS5V7JxfPof78iNOedsKj7vNv6bQoRQaAvTUmQyL7QQSW2xKdKoBaW dHyWGb8VX6QBvm2/xcn5zu2fooHEtUQM0yra8faHinPQ53LWurEOlhoP+ydd+si6 gn65VTT3rt1DnqLS30fNDW3f5lX5ckzEyRAdoi28AsPYVKGcoDmmsqxNQuE= -----END CERTIFICATE-----Generated at Sun Mar 1 22:41:52 2026 by rpki-client