$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9dbfe7a-efda-4ffb-a0bd-f69d913f21d8.roa File: e9dbfe7a-efda-4ffb-a0bd-f69d913f21d8.roa (raw, json) Hash identifier: UZZvp9Umpeh/ygs76N1khUmTyEg2L5fbtMRLUxQjFKM= Subject key identifier: 30:39:E2:22:2A:FA:EA:EE:EF:09:A9:53:80:5F:B6:02:BD:8F:B0:05 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 038B6EB659E443F3E6EDD307CBB040E10E4EE54A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9dbfe7a-efda-4ffb-a0bd-f69d913f21d8.roa Signing time: Wed 25 Feb 2026 01:10:54 +0000 ROA not before: Wed 25 Feb 2026 01:10:54 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 204.236.192.0/20 maxlen: 20 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:8b:6e:b6:59:e4:43:f3:e6:ed:d3:07:cb:b0:40:e1:0e:4e:e5:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:10:54 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=7deacf415a1d57c094bff72fa214aa56e53e4d9efa1109777609d590eacee94e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:fa:c9:e6:76:db:af:c7:0b:26:a1:69:4a:4e: 89:f3:ba:3c:53:94:39:ba:87:fc:04:47:a7:0a:45: 7c:ce:43:85:88:69:d8:14:52:d3:19:a5:2d:db:8f: 44:f6:3b:37:7c:a1:35:a0:1c:6c:02:eb:47:74:6b: 19:32:c5:a6:63:f4:f1:d6:e8:91:fc:af:0a:e3:77: cb:c3:63:52:b1:c5:02:90:da:bc:7b:64:40:db:40: f3:ca:9c:1c:59:6a:81:3b:e3:8e:5f:1e:06:3d:8f: 10:0d:34:e3:5f:91:be:16:d2:7d:66:e2:d0:d1:66: 14:a1:22:79:c7:9b:eb:f2:ee:7d:f3:de:5a:d7:0e: 3e:44:64:89:ce:cd:7e:bc:1e:a9:02:f0:b9:cd:70: 89:11:78:62:c6:6f:d6:3b:72:da:f2:c4:6f:56:80: 36:97:c1:7e:bf:15:9f:01:8e:d6:42:0e:f1:8d:4f: 91:9b:79:d1:61:41:9f:5f:2d:6e:c9:f3:8a:9f:e6: 1f:a4:8c:ac:d9:43:f5:87:d1:00:79:3c:ad:0f:3c: 80:8f:7f:28:e2:b9:4f:98:f2:b2:26:7c:54:c3:e3: 4a:f0:cb:80:18:42:78:bf:83:d9:c7:8a:5c:96:7c: d1:8e:1a:7a:72:8b:78:ac:52:d0:88:c1:b9:77:75: d6:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:39:E2:22:2A:FA:EA:EE:EF:09:A9:53:80:5F:B6:02:BD:8F:B0:05 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/e9dbfe7a-efda-4ffb-a0bd-f69d913f21d8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 204.236.192.0/20 Signature Algorithm: sha256WithRSAEncryption 45:3f:42:9c:58:04:e3:5c:6e:0d:05:c7:a7:c6:bf:f5:c2:d4: 4e:d9:88:28:a4:ed:6d:8d:58:0c:94:dd:20:a6:1e:c9:bc:36: 2e:3f:d8:93:99:cb:6a:52:8c:94:e0:8e:ae:c0:02:d3:ce:7f: 11:70:fd:b2:01:60:bb:06:27:93:d1:69:43:d1:b5:2c:45:af: 0c:22:33:b4:00:f2:c8:7d:c3:2a:7e:73:58:8c:fe:29:2d:a6: 7d:c8:03:2b:e6:ad:cb:e8:48:80:0e:39:53:30:fe:bc:b6:12: 92:22:66:d0:62:ff:de:f8:2d:f2:74:07:9a:29:ef:bb:f4:11: 21:5d:71:f5:df:3f:db:1b:35:80:0f:4d:f7:47:31:29:08:5c: f5:47:75:1d:77:33:74:39:2b:4a:f7:31:a0:23:e1:6c:79:05: a3:a8:9d:53:61:a3:80:04:1f:94:75:39:38:c8:85:7d:20:49: 2a:0a:06:16:0e:44:14:90:6e:7f:be:8c:17:a5:09:70:37:4d: ae:f0:16:27:19:4e:e6:87:b2:40:81:27:91:63:af:42:05:60: 3d:df:93:ec:0f:b9:dc:2a:e7:aa:2d:ce:8f:c1:9a:dc:68:89: 22:e2:92:be:c4:9c:f9:7c:e4:25:65:54:a3:b2:50:f4:13:8a: 97:89:ab:cb -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUA4tutlnkQ/Pm7dMHy7BA4Q5O5UowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDExMDU0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZGVhY2Y0MTVhMWQ1N2MwOTRiZmY3MmZhMjE0YWE1NmU1 M2U0ZDllZmExMTA5Nzc3NjA5ZDU5MGVhY2VlOTRlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk+snmdtuvxwsmoWlKTonzujxTlDm6h/wER6cKRXzOQ4WI adgUUtMZpS3bj0T2Ozd8oTWgHGwC60d0axkyxaZj9PHW6JH8rwrjd8vDY1KxxQKQ 2rx7ZEDbQPPKnBxZaoE7445fHgY9jxANNONfkb4W0n1m4tDRZhShInnHm+vy7n3z 3lrXDj5EZInOzX68HqkC8LnNcIkReGLGb9Y7ctryxG9WgDaXwX6/FZ8BjtZCDvGN T5GbedFhQZ9fLW7J84qf5h+kjKzZQ/WH0QB5PK0PPICPfyjiuU+Y8rImfFTD40rw y4AYQni/g9nHilyWfNGOGnpyi3isUtCIwbl3ddZlAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMDniIir66u7vCalTgF+2Ar2PsAUwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2U5ZGJmZTdhLWVmZGEtNGZmYi1hMGJkLWY2OWQ5MTNmMjFkOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBATM7MAwDQYJKoZIhvcNAQELBQADggEBAEU/QpxYBONcbg0Fx6fGv/XC1E7Z iCik7W2NWAyU3SCmHsm8Ni4/2JOZy2pSjJTgjq7AAtPOfxFw/bIBYLsGJ5PRaUPR tSxFrwwiM7QA8sh9wyp+c1iM/iktpn3IAyvmrcvoSIAOOVMw/ry2EpIiZtBi/974 LfJ0B5op77v0ESFdcfXfP9sbNYAPTfdHMSkIXPVHdR13M3Q5K0r3MaAj4Wx5BaOo nVNho4AEH5R1OTjIhX0gSSoKBhYORBSQbn++jBelCXA3Ta7wFicZTuaHskCBJ5Fj r0IFYD3fk+wPudwq56otzo/BmtxoiSLikr7EnPl85CVlVKOyUPQTipeJq8s= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:28 2026 by rpki-client