$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb8335c-6007-42c5-94bf-b06a36e147c9.roa File: eeb8335c-6007-42c5-94bf-b06a36e147c9.roa (raw, json) Hash identifier: kTBn8mamEJpnpIcBVsb99xl/lPqDsYKCnxIRkjaSL2U= Subject key identifier: CC:7C:4A:06:62:BB:4A:0C:96:0F:F6:39:D7:73:70:BD:26:0A:71:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 58D6CAFEE45B8528A2F00216620A730118CF8D89 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb8335c-6007-42c5-94bf-b06a36e147c9.roa Signing time: Tue 24 Feb 2026 02:10:05 +0000 ROA not before: Tue 24 Feb 2026 02:10:05 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.168.0.0/15 maxlen: 15 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 58:d6:ca:fe:e4:5b:85:28:a2:f0:02:16:62:0a:73:01:18:cf:8d:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:10:05 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=82f707c4197c6351248f77f27e2cc72fe44f36d94fef72fdcdf3194434b10b74, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:38:be:45:60:57:88:98:ce:7f:d5:60:19:73: c7:c0:a4:f4:20:cd:da:53:13:ef:1f:4f:23:a4:7f: d4:d9:b1:c4:5e:de:4a:cc:bc:47:ec:7b:68:bc:a9: 86:41:a9:78:f8:3b:db:f9:1b:d9:2e:db:f7:6a:e4: f6:5a:53:bb:a0:69:d9:57:e1:ce:c9:c0:59:53:6d: 16:36:a6:6a:7a:80:84:61:2c:39:51:d2:0a:cf:28: bc:22:ef:3d:9e:f7:bd:7d:8c:f7:21:a1:dd:2d:36: 2a:47:68:90:4e:dd:8d:28:79:be:c8:89:03:cb:83: 55:cb:09:8f:08:b4:71:be:d8:ca:fa:3f:5d:49:b8: 57:53:19:c7:e4:bc:31:96:9e:44:18:c6:dc:e8:04: 74:3d:b1:76:b2:72:ba:de:5e:a4:d4:2a:ab:d0:ec: 3f:ef:1d:85:2a:23:87:24:cc:84:5d:92:84:67:df: e8:8b:16:a7:34:cf:57:7b:67:0f:42:c2:35:d8:66: 4a:d3:a0:35:48:5a:16:68:47:92:fb:ac:22:ca:fe: b6:10:4d:9e:6d:cd:07:fd:a8:56:82:69:a0:1c:30: 90:e0:ad:78:6c:42:46:cc:73:55:ef:0e:4b:55:a2: 32:96:6a:38:4b:b3:2f:a0:2b:35:3b:59:bf:ff:05: 46:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:7C:4A:06:62:BB:4A:0C:96:0F:F6:39:D7:73:70:BD:26:0A:71:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/eeb8335c-6007-42c5-94bf-b06a36e147c9.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.168.0.0/15 Signature Algorithm: sha256WithRSAEncryption 14:39:78:b3:bc:d9:4b:81:4d:b2:05:11:8c:9d:b8:1f:97:55: 40:b8:6b:7e:c9:78:75:75:f1:a2:2e:43:69:78:45:af:1e:11: 57:9e:43:aa:87:48:38:35:09:97:15:60:91:a6:f0:97:d3:fb: 67:cd:fc:bd:ce:cb:fa:14:d9:ad:31:d7:dc:cc:ea:40:83:8c: 34:1b:c1:e7:14:a1:73:8f:15:e6:8e:73:80:47:8e:a9:c3:e3: 8a:fe:a5:c2:50:cb:5e:0e:20:f5:9f:f3:30:71:5b:cf:1b:81: c8:24:4a:cb:1c:7f:0f:9c:91:83:bb:37:d8:36:23:da:4e:f3: 74:93:27:29:33:1d:dd:ac:ea:30:f6:0c:48:5a:76:0d:01:18: ae:19:f9:36:bf:73:08:c5:22:8c:df:b8:b1:bd:b9:db:bd:d6: 68:5e:24:6f:ae:6a:e9:4e:78:dc:54:a9:f2:c7:62:bd:93:53: a4:41:ab:3d:66:e5:57:dc:57:38:11:17:64:2e:5d:f6:f1:31: 11:ab:98:a3:ca:7e:7e:2b:22:69:9a:86:7e:3d:47:2d:b7:c7: 91:8c:78:4e:1a:65:17:d3:a8:8d:f9:6f:35:fa:a4:4a:2b:30: 07:16:74:79:95:5a:31:2b:55:4d:e8:86:1d:37:cf:ed:ff:92: ac:6a:37:f6 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUWNbK/uRbhSii8AIWYgpzARjPjYkwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIxMDA1WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmY3MDdjNDE5N2M2MzUxMjQ4Zjc3ZjI3ZTJjYzcyZmU0 NGYzNmQ5NGZlZjcyZmRjZGYzMTk0NDM0YjEwYjc0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUOL5FYFeImM5/1WAZc8fApPQgzdpTE+8fTyOkf9TZscRe 3krMvEfse2i8qYZBqXj4O9v5G9ku2/dq5PZaU7ugadlX4c7JwFlTbRY2pmp6gIRh LDlR0grPKLwi7z2e9719jPchod0tNipHaJBO3Y0oeb7IiQPLg1XLCY8ItHG+2Mr6 P11JuFdTGcfkvDGWnkQYxtzoBHQ9sXaycrreXqTUKqvQ7D/vHYUqI4ckzIRdkoRn 3+iLFqc0z1d7Zw9CwjXYZkrToDVIWhZoR5L7rCLK/rYQTZ5tzQf9qFaCaaAcMJDg rXhsQkbMc1XvDktVojKWajhLsy+gKzU7Wb//BUafAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUzHxKBmK7SgyWD/Y513NwvSYKcQMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2VlYjgzMzVjLTYwMDctNDJjNS05NGJmLWIwNmEzNmUxNDdjOS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEQqDANBgkqhkiG9w0BAQsFAAOCAQEAFDl4s7zZS4FNsgURjJ24H5dVQLhr fsl4dXXxoi5DaXhFrx4RV55DqodIODUJlxVgkabwl9P7Z838vc7L+hTZrTHX3Mzq QIOMNBvB5xShc48V5o5zgEeOqcPjiv6lwlDLXg4g9Z/zMHFbzxuByCRKyxx/D5yR g7s32DYj2k7zdJMnKTMd3azqMPYMSFp2DQEYrhn5Nr9zCMUijN+4sb25273WaF4k b65q6U543FSp8sdivZNTpEGrPWblV9xXOBEXZC5d9vExEauYo8p+fisiaZqGfj1H LbfHkYx4ThplF9OojflvNfqkSiswBxZ0eZVaMStVTeiGHTfP7f+SrGo39g== -----END CERTIFICATE-----Generated at Sun Mar 1 22:27:08 2026 by rpki-client