$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa File: f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa (raw, json) Hash identifier: 74fjfgy8oc73oJx2XYP+0isg/QsZzqME+N5q/P5UJtQ= Subject key identifier: 21:7A:18:CE:76:91:B9:08:3C:F0:89:B7:3E:9E:F3:EC:0D:A0:B0:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F93A594B87B787D6298BF592F6F93F01910F82A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa Signing time: Tue 24 Feb 2026 00:40:39 +0000 ROA not before: Tue 24 Feb 2026 00:40:39 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 107.20.136.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:93:a5:94:b8:7b:78:7d:62:98:bf:59:2f:6f:93:f0:19:10:f8:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:40:39 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=6d81fd446c0d11bf48d1b04e8b2ad7d3c2819721ff0334b275cdf6f828ca9dd9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ed:55:85:cf:f7:9d:fe:3c:03:fe:2d:3d:fe: 24:ae:4f:5b:03:18:6c:a2:ef:78:13:8e:58:59:be: 6f:55:13:82:c6:56:9c:4e:ba:0d:99:09:e0:43:ac: 18:06:67:de:83:7a:04:e8:e8:2c:2b:62:9b:01:3f: 2f:de:da:38:75:27:8f:59:31:c4:2b:2f:d2:86:aa: 17:59:c5:d9:93:68:10:ad:10:a2:34:ad:b6:6d:08: 90:50:be:c7:0c:f3:fe:4b:69:22:55:17:1d:ec:05: 9b:d3:1d:f1:cc:0f:7d:98:75:4c:95:d6:a1:60:bc: d6:34:50:e0:47:83:a5:0a:09:77:ed:08:40:67:3d: 33:2d:56:fe:7f:65:a5:57:9d:a3:2e:c7:5e:7e:d2: af:f7:29:89:9b:7f:7f:bd:5f:20:ed:8b:91:a4:fa: d4:cc:8a:33:85:02:80:ec:76:2c:4a:7d:45:16:d2: 3b:32:12:50:4d:b6:48:9a:19:6e:7d:8a:6f:32:f7: 93:f0:1d:51:32:bd:b0:55:53:fd:d5:3e:57:16:a4: 17:b4:2e:49:68:83:0d:50:e8:69:82:0d:82:d8:02: 2a:3b:07:2f:65:d3:c3:12:df:d1:3b:bc:01:26:37: 41:f6:af:e8:c1:28:cb:7a:5f:e1:50:8e:b8:a6:a7: c5:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:7A:18:CE:76:91:B9:08:3C:F0:89:B7:3E:9E:F3:EC:0D:A0:B0:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f0a08b83-d5c1-4313-aaae-b3f390aa8189.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 107.20.136.0/21 Signature Algorithm: sha256WithRSAEncryption 57:49:7c:0b:3e:35:29:c4:2d:53:47:69:2e:dd:ba:ab:b1:ed: 77:93:40:64:dc:80:56:c8:4a:ae:fd:67:97:b7:a3:72:45:cc: b8:b0:aa:b9:c2:d1:df:32:be:88:5a:b9:4b:7d:77:2f:48:0b: 38:1b:d6:0e:93:6c:f3:bc:1c:6b:78:54:03:cd:9f:30:ff:a7: 60:7c:dd:98:10:9a:80:20:20:93:ac:35:e7:05:65:f5:9c:0d: 97:a3:9f:5a:11:f0:c9:5e:15:ca:b8:4b:27:a6:b7:43:29:cd: 52:ed:6f:4e:5e:4a:c1:d9:b3:aa:92:32:0a:30:d8:21:66:ea: 57:a7:1b:ac:f2:b1:6e:3d:01:d6:19:15:e0:d8:d0:00:c2:55: f0:ef:fd:96:ad:02:16:b6:18:3c:db:26:bb:29:2a:e6:64:51: 14:af:b2:7f:e3:bc:cd:dd:1c:7b:33:7e:63:47:c5:3a:40:95: 26:5b:29:a4:be:f4:c5:74:d9:05:1f:19:4d:93:b7:9a:1d:6c: 4b:f0:56:8c:0d:d6:b7:8e:c0:dd:e0:48:5c:22:c9:04:d2:58: b9:0b:35:38:25:d5:bc:2c:9c:c5:8e:80:35:e4:54:c7:6b:49: b3:26:b0:91:48:ee:c0:9f:a1:92:e2:e8:97:92:e9:c6:ee:05: bf:64:8c:9e -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUf5OllLh7eH1imL9ZL2+T8BkQ+CowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA0MDM5WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZDgxZmQ0NDZjMGQxMWJmNDhkMWIwNGU4YjJhZDdkM2My ODE5NzIxZmYwMzM0YjI3NWNkZjZmODI4Y2E5ZGQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCU7VWFz/ed/jwD/i09/iSuT1sDGGyi73gTjlhZvm9VE4LG VpxOug2ZCeBDrBgGZ96DegTo6CwrYpsBPy/e2jh1J49ZMcQrL9KGqhdZxdmTaBCt EKI0rbZtCJBQvscM8/5LaSJVFx3sBZvTHfHMD32YdUyV1qFgvNY0UOBHg6UKCXft CEBnPTMtVv5/ZaVXnaMux15+0q/3KYmbf3+9XyDti5Gk+tTMijOFAoDsdixKfUUW 0jsyElBNtkiaGW59im8y95PwHVEyvbBVU/3VPlcWpBe0Lklogw1Q6GmCDYLYAio7 By9l08MS39E7vAEmN0H2r+jBKMt6X+FQjrimp8XfAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUIXoYznaRuQg88Im3Pp7z7A2gsDswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YwYTA4YjgzLWQ1YzEtNDMxMy1hYWFlLWIzZjM5MGFhODE4OS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANrFIgwDQYJKoZIhvcNAQELBQADggEBAFdJfAs+NSnELVNHaS7duqux7XeT QGTcgFbISq79Z5e3o3JFzLiwqrnC0d8yvohauUt9dy9ICzgb1g6TbPO8HGt4VAPN nzD/p2B83ZgQmoAgIJOsNecFZfWcDZejn1oR8MleFcq4Syemt0MpzVLtb05eSsHZ s6qSMgow2CFm6lenG6zysW49AdYZFeDY0ADCVfDv/ZatAha2GDzbJrspKuZkURSv sn/jvM3dHHszfmNHxTpAlSZbKaS+9MV02QUfGU2Tt5odbEvwVowN1reOwN3gSFwi yQTSWLkLNTgl1bwsnMWOgDXkVMdrSbMmsJFI7sCfoZLi6JeS6cbuBb9kjJ4= -----END CERTIFICATE-----Generated at Mon Mar 2 00:07:58 2026 by rpki-client