$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa File: e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa (raw, json) Hash identifier: bvNqO/SRsHVPy0GDuIz4KE3rdElt5x06kk3wuLalO9E= Subject key identifier: 76:31:CC:E2:33:16:E2:E8:25:AC:5F:3A:9C:DA:90:0A:44:B2:07:E6 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 342AE1FB2CA805E4F8F79D0E1C8F6BDB7CB9C2F2 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa Signing time: Sun 01 Mar 2026 00:21:44 +0000 ROA not before: Sun 01 Mar 2026 00:21:44 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 35.41.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:2a:e1:fb:2c:a8:05:e4:f8:f7:9d:0e:1c:8f:6b:db:7c:b9:c2:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:21:44 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=7ac0b3df9987aef0c32a1ea0433470509205354a3078ae4f091ede5e05c5fc80, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:45:b7:ab:42:1c:c5:36:80:ad:4a:ce:9b:96: df:25:7a:7f:78:6f:60:17:43:50:e4:86:d7:0e:f1: f9:5e:f1:f7:0e:28:dc:cf:e1:28:0a:77:ce:20:20: 70:08:44:94:9b:75:a8:84:16:4a:8c:1c:06:f1:f8: 7f:e2:cf:c1:98:51:9a:c8:37:97:ee:9f:33:04:32: a1:aa:56:d4:7e:0d:a0:fe:c7:65:bf:f5:0a:4e:9a: 5a:5d:b6:08:49:40:83:41:5e:4c:b3:79:26:8e:03: af:e0:07:bb:2b:6c:72:1a:19:48:45:f3:14:af:dd: d5:f5:3f:d3:be:1c:2d:80:77:8a:ab:d3:89:61:a2: 6b:ee:0c:e1:52:32:3b:83:15:5e:23:e3:ed:17:a1: 8a:33:e1:6b:ef:b7:a2:63:98:3e:e2:45:da:e6:ac: 83:34:87:c5:77:e4:82:6a:a6:d4:4c:67:35:23:c3: 9e:d2:aa:b2:d6:94:45:7b:b0:ff:62:f7:a9:e0:ab: 6f:b9:87:2d:a0:ac:8f:dd:4d:f4:bd:02:0e:9c:24: d6:17:31:36:21:8e:b7:c7:e3:5c:33:1a:ab:6c:ff: b1:78:30:31:5b:b2:9b:99:c5:9b:be:2e:2e:fe:f4: 41:5e:6d:9a:29:cd:51:69:d6:f3:9c:f3:5a:68:9c: bb:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 76:31:CC:E2:33:16:E2:E8:25:AC:5F:3A:9C:DA:90:0A:44:B2:07:E6 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e99801eb-2ad6-48ea-8827-0f2ada07b0b2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.41.0.0/16 Signature Algorithm: sha256WithRSAEncryption c9:1a:a4:41:2b:34:44:d2:f1:80:2f:5c:e5:4a:58:99:75:68: c9:87:dc:a3:97:7f:53:ee:d2:7f:11:d3:78:28:f0:e8:1e:0f: c4:83:e4:03:5b:5e:f8:3b:bd:41:cf:16:03:67:1a:1b:99:f5: 63:64:19:02:eb:6a:5c:84:d2:0e:0c:d4:41:bf:9f:5a:c2:f9: 10:50:43:bd:10:3c:76:2a:f9:3f:ba:d2:31:67:3d:8e:72:e9: 61:34:7a:48:c6:c9:87:4c:d1:c3:1a:e5:d6:a0:5c:9e:bc:8d: a8:60:ad:c3:19:f8:44:3a:fd:a3:81:7f:b9:f2:16:64:07:66: fa:f7:bd:11:64:14:e1:9f:0f:ce:71:f8:28:8c:df:a3:6f:ab: 5b:f8:8c:f7:5e:a5:1d:4b:55:4d:9f:90:b4:d1:4c:ac:dd:f1: 96:bc:b4:ae:ee:5f:f0:91:90:bc:ca:ca:6c:29:77:9e:46:3b: bc:13:0d:20:d0:05:a9:ce:29:57:b4:18:07:d6:cf:e6:e1:84: ec:9f:1c:cf:5c:e1:b3:e5:99:8b:b0:93:d4:8e:a3:bd:33:33: 88:4c:f5:fd:97:4f:a2:73:be:81:dd:68:78:b1:b3:be:24:1d: 17:22:54:6c:8c:35:76:39:cf:c4:2f:ba:01:a8:0f:af:ed:7e: 88:0b:60:67 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUNCrh+yyoBeT4950OHI9r23y5wvIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMTQ0WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWMwYjNkZjk5ODdhZWYwYzMyYTFlYTA0MzM0NzA1MDky MDUzNTRhMzA3OGFlNGYwOTFlZGU1ZTA1YzVmYzgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDHRberQhzFNoCtSs6blt8len94b2AXQ1DkhtcO8fle8fcO KNzP4SgKd84gIHAIRJSbdaiEFkqMHAbx+H/iz8GYUZrIN5funzMEMqGqVtR+DaD+ x2W/9QpOmlpdtghJQINBXkyzeSaOA6/gB7srbHIaGUhF8xSv3dX1P9O+HC2Ad4qr 04lhomvuDOFSMjuDFV4j4+0XoYoz4Wvvt6JjmD7iRdrmrIM0h8V35IJqptRMZzUj w57SqrLWlEV7sP9i96ngq2+5hy2grI/dTfS9Ag6cJNYXMTYhjrfH41wzGqts/7F4 MDFbspuZxZu+Li7+9EFebZopzVFp1vOc81ponLtRAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUdjHM4jMW4uglrF86nNqQCkSyB+YwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5OTgwMWViLTJhZDYtNDhlYS04ODI3LTBmMmFkYTA3YjBiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAjKTANBgkqhkiG9w0BAQsFAAOCAQEAyRqkQSs0RNLxgC9c5UpYmXVoyYfc o5d/U+7SfxHTeCjw6B4PxIPkA1te+Du9Qc8WA2caG5n1Y2QZAutqXITSDgzUQb+f WsL5EFBDvRA8dir5P7rSMWc9jnLpYTR6SMbJh0zRwxrl1qBcnryNqGCtwxn4RDr9 o4F/ufIWZAdm+ve9EWQU4Z8PznH4KIzfo2+rW/iM916lHUtVTZ+QtNFMrN3xlry0 ru5f8JGQvMrKbCl3nkY7vBMNINAFqc4pV7QYB9bP5uGE7J8cz1zhs+WZi7CT1I6j vTMziEz1/ZdPonO+gd1oeLGzviQdFyJUbIw1djnPxC+6AagPr+1+iAtgZw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:37 2026 by rpki-client