$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa File: f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa (raw, json) Hash identifier: ghIuInewx2tu2xVB1Yz7yswOpOcKebOG7dQdvmLPKfI= Subject key identifier: BA:5C:0C:D7:12:1A:21:88:3E:B1:4E:B5:20:BE:E2:EA:72:D5:9C:33 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4BEED3733120B3ED2CBBC2A9D93840DF725C7E76 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa Signing time: Tue 10 Feb 2026 00:00:53 +0000 ROA not before: Tue 10 Feb 2026 00:00:53 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.77.254.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:ee:d3:73:31:20:b3:ed:2c:bb:c2:a9:d9:38:40:df:72:5c:7e:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:00:53 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=714d02e4b4d9348e37e766d5e83314615684494c594d8c7016c1a6e583ea84eb, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:b6:56:ca:cd:cf:f4:fa:04:be:ea:6b:06:7c: ec:6b:65:19:fb:ff:47:50:f1:b0:df:1c:6f:9d:4e: 97:b3:6b:7a:ae:36:d3:d3:88:83:c2:1f:4c:76:4d: d7:72:2c:52:6e:41:0b:8f:50:c4:42:16:20:0d:5f: ef:99:2f:46:95:75:1b:3a:a2:99:56:a4:11:ba:5a: fa:e7:9c:f9:5a:82:b4:bc:7b:2d:13:6f:11:8d:c1: 03:02:80:35:12:51:52:c5:6b:8f:3f:85:1d:5b:ae: e4:15:ce:54:ad:66:36:d2:41:be:79:24:bd:6f:7b: 1f:a8:42:55:57:7a:e6:b1:4b:af:57:38:69:84:21: 1c:69:56:72:dd:9b:d9:55:fd:1f:9a:88:73:fe:c2: b0:06:b0:a2:0f:b4:0b:3e:af:a9:ad:7d:24:a3:8d: 1f:91:ce:83:14:cc:57:b0:ef:2d:3e:01:cf:33:80: 4c:a0:3c:f3:c6:be:11:ae:1b:20:b1:8c:08:d9:c8: c3:2c:7e:e9:13:4b:be:df:cb:bd:3b:e9:22:f0:a3: 56:01:21:76:8a:b8:9f:68:51:0f:16:4f:cc:0e:5b: 6a:44:a2:12:a1:b1:2d:84:ea:34:7f:2b:25:ff:ab: 5f:23:cc:4f:89:ef:f6:9c:9f:6b:1c:e9:cc:eb:4b: ec:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:5C:0C:D7:12:1A:21:88:3E:B1:4E:B5:20:BE:E2:EA:72:D5:9C:33 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f189fe35-f464-4842-bd64-d80fe1cd1e2a.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.77.254.0/24 Signature Algorithm: sha256WithRSAEncryption a5:8a:b2:93:c5:b9:56:5c:44:77:59:70:77:42:de:0f:0b:30: da:91:b6:af:e5:ad:71:7d:58:cc:3e:0d:ad:d5:ba:48:db:9a: 5d:06:70:be:76:a1:c2:0a:4d:63:3e:da:c4:13:52:18:c3:5b: 28:88:46:06:9b:14:a3:c3:02:db:c3:30:04:1b:48:6b:03:75: 0c:e5:88:63:d5:cb:2b:f7:20:08:a6:0a:d4:fb:63:65:d0:87: fe:87:6e:3e:73:5b:05:bf:3b:dc:bb:1f:a4:1b:35:d6:2e:1c: 1d:98:5b:cd:7f:27:23:a9:64:e6:de:c5:65:36:34:fa:9d:0e: 52:f5:b5:02:19:0a:33:95:d0:50:31:c4:e7:3c:0c:f1:3c:df: 26:fc:21:5b:75:c2:f2:34:84:36:f0:eb:c6:9d:b1:61:14:e3: 23:4f:19:c0:1b:6e:f2:7f:7f:f8:db:df:04:5d:51:cc:57:e2: e1:8c:c2:a9:15:1b:be:61:38:86:1e:0c:f1:8b:9e:33:95:e9: bc:12:9d:59:7a:2e:00:23:63:e7:b0:2f:a3:e7:89:d0:e3:81: 48:51:e7:13:74:8f:6e:64:75:17:14:72:1c:b1:59:96:60:31: 79:ff:27:e6:ff:36:e5:d0:c4:f5:35:ca:fd:05:4e:8f:91:f4: ae:6d:c9:b0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUS+7TczEgs+0su8Kp2ThA33JcfnYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDAwMDUzWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0A3MTRkMDJlNGI0ZDkzNDhlMzdlNzY2ZDVlODMzMTQ2MTU2 ODQ0OTRjNTk0ZDhjNzAxNmMxYTZlNTgzZWE4NGViMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCctlbKzc/0+gS+6msGfOxrZRn7/0dQ8bDfHG+dTpeza3qu NtPTiIPCH0x2TddyLFJuQQuPUMRCFiANX++ZL0aVdRs6oplWpBG6WvrnnPlagrS8 ey0TbxGNwQMCgDUSUVLFa48/hR1bruQVzlStZjbSQb55JL1vex+oQlVXeuaxS69X OGmEIRxpVnLdm9lV/R+aiHP+wrAGsKIPtAs+r6mtfSSjjR+RzoMUzFew7y0+Ac8z gEygPPPGvhGuGyCxjAjZyMMsfukTS77fy7076SLwo1YBIXaKuJ9oUQ8WT8wOW2pE ohKhsS2E6jR/KyX/q18jzE+J7/acn2sc6czrS+x3AgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUulwM1xIaIYg+sU61IL7i6nLVnDMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxODlmZTM1LWY0NjQtNDg0Mi1iZDY0LWQ4MGZlMWNkMWUyYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABjTf4wDQYJKoZIhvcNAQELBQADggEBAKWKspPFuVZcRHdZcHdC3g8LMNqR tq/lrXF9WMw+Da3Vukjbml0GcL52ocIKTWM+2sQTUhjDWyiIRgabFKPDAtvDMAQb SGsDdQzliGPVyyv3IAimCtT7Y2XQh/6Hbj5zWwW/O9y7H6QbNdYuHB2YW81/JyOp ZObexWU2NPqdDlL1tQIZCjOV0FAxxOc8DPE83yb8IVt1wvI0hDbw68adsWEU4yNP GcAbbvJ/f/jb3wRdUcxX4uGMwqkVG75hOIYeDPGLnjOV6bwSnVl6LgAjY+ewL6Pn idDjgUhR5xN0j25kdRcUchyxWZZgMXn/J+b/NuXQxPU1yv0FTo+R9K5tybA= -----END CERTIFICATE-----Generated at Sun Mar 1 22:29:03 2026 by rpki-client