$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ece817ba-1836-4dad-96cc-8943737923e6.roa File: ece817ba-1836-4dad-96cc-8943737923e6.roa (raw, json) Hash identifier: mVBtGuUL+Hxf824nXFaPXZro4bkym/O+ZRSsDYWQnug= Subject key identifier: 1B:A2:B1:72:28:AD:DF:74:5E:C3:D2:22:EE:E9:0B:B7:3C:01:B3:41 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 330206884A51803DBDD4170A8F5825E7DBB9D589 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ece817ba-1836-4dad-96cc-8943737923e6.roa Signing time: Wed 25 Feb 2026 01:10:55 +0000 ROA not before: Wed 25 Feb 2026 01:10:55 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.232.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:02:06:88:4a:51:80:3d:bd:d4:17:0a:8f:58:25:e7:db:b9:d5:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:10:55 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=92242f20e8793755fe9845cfe9fc80ed0b84290d3ac4618ef2f3e428c09230d6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:d1:00:3d:e2:7d:63:43:d9:0b:d5:50:7d:d1: 3d:ce:05:96:49:4d:af:ab:7f:11:67:ec:57:36:3a: c2:50:24:86:e9:29:07:da:fb:b3:ce:43:de:a1:00: 8c:d6:77:6d:32:40:5f:10:70:4a:69:1f:59:72:55: 58:01:3d:70:e2:dc:5c:55:ad:05:10:28:87:5d:50: 7d:2a:c7:09:d5:8f:54:75:56:94:95:79:2a:8d:91: f1:45:bf:c2:ee:c4:0e:f3:6f:cc:e4:6b:85:24:cd: 32:13:da:98:49:5e:3d:0e:ac:d6:79:81:4f:af:08: d5:87:66:98:84:0d:48:a0:71:9b:37:a1:ab:f6:90: a6:49:0d:06:04:2d:68:f3:a5:73:c4:bb:bf:66:34: be:6c:1e:ad:77:42:6f:94:5b:42:bc:23:f9:24:61: 50:21:00:9a:76:a6:9f:6c:db:5f:9d:78:e7:08:ba: 78:19:8f:60:51:c9:ca:22:88:27:10:84:c8:c5:68: 5d:00:bb:26:ea:8e:78:ac:d3:42:d9:37:f3:23:8d: 13:47:81:d1:c5:f6:de:78:9e:9a:f2:8e:7d:f0:fe: 66:3f:b8:65:21:81:01:38:69:ba:8d:6b:0e:36:1b: a5:91:55:ca:1e:53:eb:b8:f0:e7:4e:1a:3b:19:08: ea:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:A2:B1:72:28:AD:DF:74:5E:C3:D2:22:EE:E9:0B:B7:3C:01:B3:41 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ece817ba-1836-4dad-96cc-8943737923e6.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.232.0.0/16 Signature Algorithm: sha256WithRSAEncryption 20:d8:79:36:03:f6:c2:4a:74:b3:31:eb:b2:ad:1f:bb:12:34: 00:bd:19:66:6b:c4:2c:d8:0c:be:2e:b1:58:10:31:b9:a6:65: 12:6e:7c:fc:2e:84:a6:a1:6f:98:07:c9:20:4c:6c:f2:77:b1: 79:24:40:c9:c9:d8:8c:01:8a:7c:d0:2a:49:75:7b:4b:e6:72: 15:2e:81:dd:45:b8:54:31:52:d5:a9:37:b2:00:d2:6f:51:46: 59:df:43:8a:53:40:3f:ec:da:21:79:21:cc:67:91:d1:77:c9: 23:18:55:ba:51:63:58:16:9b:27:6b:6f:8b:0c:bf:6b:25:42: e8:41:99:71:a7:86:ca:c2:a0:d8:8b:cf:bb:1b:1b:ea:f9:5f: 35:0b:27:7b:1d:17:97:66:f4:91:6c:6c:28:33:bb:20:de:2f: 19:fc:5f:f6:4d:e3:a9:41:46:99:bd:1a:09:13:00:26:c1:b3: 11:87:f1:d2:b5:aa:39:3f:70:52:b4:39:25:4a:a5:8c:d1:23: 68:92:49:97:7c:16:df:46:b8:4a:a5:ca:f1:bb:ee:e0:94:00: 20:3d:5d:fa:15:57:5e:27:76:e0:3d:a6:11:a7:be:d5:1f:22: d2:15:e5:e3:25:b6:3a:0a:dd:e2:67:0f:54:e7:6f:f8:05:cd: 69:f1:c9:e0 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUMwIGiEpRgD291BcKj1gl59u51YkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDExMDU1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5MjI0MmYyMGU4NzkzNzU1ZmU5ODQ1Y2ZlOWZjODBlZDBi ODQyOTBkM2FjNDYxOGVmMmYzZTQyOGMwOTIzMGQ2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDb0QA94n1jQ9kL1VB90T3OBZZJTa+rfxFn7Fc2OsJQJIbp KQfa+7POQ96hAIzWd20yQF8QcEppH1lyVVgBPXDi3FxVrQUQKIddUH0qxwnVj1R1 VpSVeSqNkfFFv8LuxA7zb8zka4UkzTIT2phJXj0OrNZ5gU+vCNWHZpiEDUigcZs3 oav2kKZJDQYELWjzpXPEu79mNL5sHq13Qm+UW0K8I/kkYVAhAJp2pp9s21+deOcI ungZj2BRycoiiCcQhMjFaF0Auybqjnis00LZN/MjjRNHgdHF9t54npryjn3w/mY/ uGUhgQE4abqNaw42G6WRVcoeU+u48OdOGjsZCOorAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUG6Kxciit33Rew9Ii7ukLtzwBs0EwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VjZTgxN2JhLTE4MzYtNGRhZC05NmNjLTg5NDM3Mzc5MjNlNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAg6DANBgkqhkiG9w0BAQsFAAOCAQEAINh5NgP2wkp0szHrsq0fuxI0AL0Z ZmvELNgMvi6xWBAxuaZlEm58/C6EpqFvmAfJIExs8nexeSRAycnYjAGKfNAqSXV7 S+ZyFS6B3UW4VDFS1ak3sgDSb1FGWd9DilNAP+zaIXkhzGeR0XfJIxhVulFjWBab J2tviwy/ayVC6EGZcaeGysKg2IvPuxsb6vlfNQsnex0Xl2b0kWxsKDO7IN4vGfxf 9k3jqUFGmb0aCRMAJsGzEYfx0rWqOT9wUrQ5JUqljNEjaJJJl3wW30a4SqXK8bvu 4JQAID1d+hVXXid24D2mEae+1R8i0hXl4yW2Ogrd4mcPVOdv+AXNafHJ4A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:30:42 2026 by rpki-client