$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f188b8ee-3a4b-4868-9d1b-037431b45053.roa File: f188b8ee-3a4b-4868-9d1b-037431b45053.roa (raw, json) Hash identifier: HX7Sb6pxhlhEJ/MAUr097IdvLLtGX+jVZmwzuKpPqSk= Subject key identifier: 5B:32:91:3A:5B:25:05:03:CE:15:60:7D:27:B1:2A:7E:E0:E1:E0:17 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 263AF4C871EC353251B38ED8E1C587DFB5F56B9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f188b8ee-3a4b-4868-9d1b-037431b45053.roa Signing time: Thu 26 Feb 2026 00:00:07 +0000 ROA not before: Thu 26 Feb 2026 00:00:07 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.16.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 26:3a:f4:c8:71:ec:35:32:51:b3:8e:d8:e1:c5:87:df:b5:f5:6b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:00:07 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=a149d78bef952d29ddb953b89cfb5cda1bc4fa25a03286a95681ad58ca773b80, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:0b:03:66:46:80:a1:ba:05:8e:7b:4f:5a:bd: d1:26:80:ab:f3:41:90:e9:8c:40:14:4c:6f:01:4f: e9:0b:9d:52:97:8f:34:89:fe:91:ef:56:46:8c:bc: 95:e5:37:24:2a:94:04:5f:37:dd:f6:5d:be:fb:eb: 32:27:43:18:7b:f2:8b:e5:77:cc:c9:6e:96:27:93: e0:3a:2d:0b:45:ac:a2:65:cd:9f:9e:cf:98:67:33: 09:1b:51:21:70:8a:32:71:07:9c:9d:c2:bb:b0:69: fd:ec:c8:9d:3b:f6:eb:ba:fe:43:d4:89:40:05:b6: bc:83:09:37:f9:d1:4b:c4:5e:8c:37:92:85:21:cd: c2:5d:c9:8e:95:40:97:03:10:e1:4d:ea:b8:bb:f9: 72:f2:79:28:18:d8:f7:37:5f:6f:f9:11:ba:f0:d5: 39:4c:59:95:a5:8f:a3:31:a4:20:1a:6f:fd:2f:67: 62:2a:3f:65:4b:f5:46:47:cd:d4:92:5c:c5:00:38: a4:be:ce:b2:31:55:2d:a5:ee:51:40:0b:f6:c3:7e: 1b:18:53:c1:ed:60:85:54:91:85:1e:ef:63:a8:89: ab:dc:ce:38:de:c1:42:02:2d:c3:fb:12:0a:3e:82: 2c:28:c0:3e:35:29:7b:ad:d3:d6:1f:d4:fa:03:35: 87:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:32:91:3A:5B:25:05:03:CE:15:60:7D:27:B1:2A:7E:E0:E1:E0:17 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f188b8ee-3a4b-4868-9d1b-037431b45053.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.16.0.0/16 Signature Algorithm: sha256WithRSAEncryption c5:3d:75:3d:ea:08:ba:ba:4b:49:99:ed:d0:35:bd:36:c5:7a: 9b:f2:0e:4d:d1:4b:58:78:5e:c1:f5:49:65:16:48:61:65:25: 51:f9:7a:57:d5:cf:fd:92:64:e8:c7:d7:b6:1d:fb:f7:ef:e6: 2c:fa:52:cc:91:0a:f0:0a:33:df:45:93:23:22:30:24:6e:14: 11:6b:9c:1a:ed:f6:68:b0:56:29:5e:16:27:bf:c3:60:40:0c: 56:c3:8f:90:66:e6:a3:8e:cb:d0:78:6f:71:e3:9f:6a:81:8f: b0:08:18:21:e4:aa:bf:40:26:c2:84:61:2a:e6:b4:61:2a:1d: 85:ae:16:d2:28:7c:48:ca:36:1f:0c:f9:75:9f:c1:b0:6b:b3: 61:13:b0:45:8e:b9:c4:0c:a4:13:1f:42:f6:96:d6:65:45:a5: 22:02:b1:45:df:68:4d:0b:9d:23:9e:71:28:62:a6:11:66:11: c1:32:5a:6c:22:47:f7:bb:55:21:9f:5c:ca:2e:eb:93:63:17: b0:33:d6:40:b2:04:07:d9:49:19:1c:c0:88:0d:95:91:ff:04: ba:db:59:4e:9b:b0:d9:6e:ed:ed:3d:9c:8e:bc:f4:75:6b:8d: 80:f4:04:cb:d9:ae:08:cc:c9:71:1a:59:7c:70:c2:8d:2a:c1: 3e:4a:26:6e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJjr0yHHsNTJRs47Y4cWH37X1a5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAwMDA3WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BhMTQ5ZDc4YmVmOTUyZDI5ZGRiOTUzYjg5Y2ZiNWNkYTFi YzRmYTI1YTAzMjg2YTk1NjgxYWQ1OGNhNzczYjgwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC1CwNmRoChugWOe09avdEmgKvzQZDpjEAUTG8BT+kLnVKX jzSJ/pHvVkaMvJXlNyQqlARfN932Xb776zInQxh78ovld8zJbpYnk+A6LQtFrKJl zZ+ez5hnMwkbUSFwijJxB5ydwruwaf3syJ079uu6/kPUiUAFtryDCTf50UvEXow3 koUhzcJdyY6VQJcDEOFN6ri7+XLyeSgY2Pc3X2/5Ebrw1TlMWZWlj6MxpCAab/0v Z2IqP2VL9UZHzdSSXMUAOKS+zrIxVS2l7lFAC/bDfhsYU8HtYIVUkYUe72Ooiavc zjjewUICLcP7Ego+giwowD41KXut09Yf1PoDNYffAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUWzKROlslBQPOFWB9J7EqfuDh4BcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODhiOGVlLTNhNGItNDg2OC05ZDFiLTAzNzQzMWI0NTA1My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4EDANBgkqhkiG9w0BAQsFAAOCAQEAxT11PeoIurpLSZnt0DW9NsV6m/IO TdFLWHhewfVJZRZIYWUlUfl6V9XP/ZJk6MfXth379+/mLPpSzJEK8Aoz30WTIyIw JG4UEWucGu32aLBWKV4WJ7/DYEAMVsOPkGbmo47L0HhvceOfaoGPsAgYIeSqv0Am woRhKua0YSodha4W0ih8SMo2Hwz5dZ/BsGuzYROwRY65xAykEx9C9pbWZUWlIgKx Rd9oTQudI55xKGKmEWYRwTJabCJH97tVIZ9cyi7rk2MXsDPWQLIEB9lJGRzAiA2V kf8EuttZTpuw2W7t7T2cjrz0dWuNgPQEy9muCMzJcRpZfHDCjSrBPkombg== -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:19 2026 by rpki-client