$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa File: ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa (raw, json) Hash identifier: K8WF7f3Rv1ZS721h5lz4XX1IGK9Nbb1+uJMSdL1WKO4= Subject key identifier: 33:89:E7:60:F9:4A:AE:93:68:49:06:C7:9D:5C:CE:E1:E5:CC:98:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1F1A6EDC8A98A99F16CA24621C8BA3CF7F4B7D26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa Signing time: Thu 26 Feb 2026 00:30:42 +0000 ROA not before: Thu 26 Feb 2026 00:30:42 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 70.224.196.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:1a:6e:dc:8a:98:a9:9f:16:ca:24:62:1c:8b:a3:cf:7f:4b:7d:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:30:42 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=3c1978e84d27969ba02da417d384d8cde032470c4f04bd522dd4e328a03fef01, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:c5:fd:ea:2d:ce:c5:44:13:9a:97:7f:38:1c: 5d:77:5e:1f:55:31:3c:59:0c:4e:08:16:4d:13:13: da:96:1d:5c:53:b4:58:3b:51:dd:95:9a:10:a2:4b: 7a:0e:57:72:71:09:bd:30:a9:29:29:53:60:96:6a: 25:aa:81:e2:16:45:f4:0a:df:03:90:d8:98:5d:70: ff:b6:d1:59:b7:51:5f:c9:85:97:a7:57:7c:ad:2b: d1:fc:bb:5d:49:78:58:2d:65:2e:00:49:aa:fb:f6: e6:78:c5:86:38:18:49:cb:8f:df:e5:49:2e:ec:95: 56:3f:6d:c5:81:15:df:91:6c:12:2e:12:66:71:bb: 1b:d2:5c:e1:65:13:3c:3c:4a:61:1c:37:06:be:9f: 6e:b2:45:01:8f:28:36:d7:fb:dd:74:bc:9d:84:41: 55:64:08:cb:d8:e7:23:f6:63:06:78:09:9e:ac:15: 24:a5:7a:3b:11:9d:3d:a1:a0:4e:9f:74:22:09:c8: 2e:b9:19:c3:ba:ff:56:24:0b:cc:15:a3:22:3f:4b: b4:d5:cd:9b:3e:eb:c8:67:9b:94:0b:de:f9:98:6f: 69:b7:db:ca:8e:ef:c5:34:23:38:db:41:93:46:fe: 5d:75:27:ef:83:63:67:a6:af:45:6f:94:ec:d9:6a: 0e:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:89:E7:60:F9:4A:AE:93:68:49:06:C7:9D:5C:CE:E1:E5:CC:98:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ea8bdb21-13ef-4fcb-bd54-6e345c8e3232.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 70.224.196.0/22 Signature Algorithm: sha256WithRSAEncryption 21:32:e8:c2:6f:85:53:dd:e5:98:be:c5:55:05:5f:47:5e:74: e1:89:1b:52:89:4d:35:ab:31:a2:33:bd:b9:3e:3b:8b:f0:a7: af:b1:94:33:03:88:e8:bb:0e:45:a5:11:21:0c:b8:78:15:0a: e6:c4:27:75:58:3a:52:22:8c:12:69:a5:fd:f9:32:44:5c:ee: ef:c7:54:59:f6:0e:33:ce:02:24:80:7b:77:f9:a7:7c:cf:3f: c0:c2:40:d6:28:0e:09:f0:92:d6:17:f9:e0:98:74:3e:4c:9f: e3:e4:1d:36:ca:9e:f1:be:c2:2e:da:e9:6c:b0:40:59:0c:26: 4b:75:4e:e4:91:54:ea:2b:d1:95:c1:21:7b:73:2b:1b:e2:4d: 74:c9:04:d8:43:e3:e2:82:69:3d:09:80:27:05:c6:2f:4e:28: 9d:e6:0f:3e:1f:ff:95:b2:1f:1f:49:fb:46:fa:96:70:a3:1f: b7:80:88:c7:6a:9d:49:be:f8:d0:3e:3c:b5:a4:fa:cb:c5:3f: b8:ed:d9:e5:c7:2a:dc:de:d9:3a:14:c7:84:4b:68:a6:14:8c: a7:0c:dc:86:5b:62:49:5a:53:9d:97:2a:31:fc:00:4c:40:cd: 85:73:c1:23:2a:f6:49:87:2d:53:f8:95:35:68:3d:e3:92:4c: fd:cb:24:ea -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUHxpu3IqYqZ8WyiRiHIujz39LfSYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAzMDQyWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AzYzE5NzhlODRkMjc5NjliYTAyZGE0MTdkMzg0ZDhjZGUw MzI0NzBjNGYwNGJkNTIyZGQ0ZTMyOGEwM2ZlZjAxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCjxf3qLc7FRBOal384HF13Xh9VMTxZDE4IFk0TE9qWHVxT tFg7Ud2VmhCiS3oOV3JxCb0wqSkpU2CWaiWqgeIWRfQK3wOQ2JhdcP+20Vm3UV/J hZenV3ytK9H8u11JeFgtZS4ASar79uZ4xYY4GEnLj9/lSS7slVY/bcWBFd+RbBIu EmZxuxvSXOFlEzw8SmEcNwa+n26yRQGPKDbX+910vJ2EQVVkCMvY5yP2YwZ4CZ6s FSSlejsRnT2hoE6fdCIJyC65GcO6/1YkC8wVoyI/S7TVzZs+68hnm5QL3vmYb2m3 28qO78U0IzjbQZNG/l11J++DY2emr0VvlOzZag79AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUM4nnYPlKrpNoSQbHnVzO4eXMmNowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VhOGJkYjIxLTEzZWYtNGZjYi1iZDU0LTZlMzQ1YzhlMzIzMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAJG4MQwDQYJKoZIhvcNAQELBQADggEBACEy6MJvhVPd5Zi+xVUFX0dedOGJ G1KJTTWrMaIzvbk+O4vwp6+xlDMDiOi7DkWlESEMuHgVCubEJ3VYOlIijBJppf35 MkRc7u/HVFn2DjPOAiSAe3f5p3zPP8DCQNYoDgnwktYX+eCYdD5Mn+PkHTbKnvG+ wi7a6WywQFkMJkt1TuSRVOor0ZXBIXtzKxviTXTJBNhD4+KCaT0JgCcFxi9OKJ3m Dz4f/5WyHx9J+0b6lnCjH7eAiMdqnUm++NA+PLWk+svFP7jt2eXHKtze2ToUx4RL aKYUjKcM3IZbYklaU52XKjH8AExAzYVzwSMq9kmHLVP4lTVoPeOSTP3LJOo= -----END CERTIFICATE-----Generated at Sun Mar 1 23:53:37 2026 by rpki-client