$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa File: f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa (raw, json) Hash identifier: NZDG5pwUPynmsCRISyF0KywrCXV6hPBubYy63d4U06A= Subject key identifier: E4:10:1F:FD:23:C2:F3:CB:FC:58:8D:69:D9:A1:F1:A2:F6:56:19:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4F5C5F723584DE86AB44D467B0DF93ED2630D858 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa Signing time: Sun 01 Mar 2026 00:10:46 +0000 ROA not before: Sun 01 Mar 2026 00:10:46 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 35.18.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4f:5c:5f:72:35:84:de:86:ab:44:d4:67:b0:df:93:ed:26:30:d8:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:10:46 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=228dc73b68df3cd187882ca75a213aaecb2e6f2134c3f6f7faf66efe631bf24f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:af:46:e4:df:65:be:6e:4e:e0:41:06:51:08: b2:5b:4b:05:a4:63:00:6b:32:47:c3:ef:6a:f4:27: 33:34:46:be:c8:1e:05:7b:1e:45:f1:cc:6d:fc:26: ba:ae:c0:4f:d3:56:9c:72:2e:8b:05:f6:a2:90:f4: e9:5a:38:e7:e8:e8:c4:6a:e5:c1:78:ce:32:34:ea: 16:e5:f8:6d:6d:96:f6:74:69:86:32:81:fa:71:5e: 9f:b3:c5:1f:a2:54:ba:91:54:7d:af:ed:04:6c:15: 60:37:c4:f3:3f:95:f0:9c:34:16:ef:8d:5a:6c:60: 16:51:9e:8b:12:ba:22:60:68:cb:27:6c:e1:db:99: 50:13:30:34:92:05:22:5f:5d:96:e4:36:94:57:1a: 51:b9:e4:47:5d:62:2f:86:0e:b6:4e:48:06:ba:66: c8:e7:72:43:50:18:ee:d7:fe:ca:40:79:b7:55:ba: d3:8d:77:b3:1c:8c:89:45:36:c8:06:91:d8:ec:fe: 21:d5:c4:7d:31:c0:b4:f3:ec:20:23:6b:62:8f:26: e8:25:07:fb:18:2c:33:15:08:15:50:0e:a3:94:92: fc:0a:a7:db:1e:32:db:4e:94:fd:ba:a8:c4:79:3b: 81:d7:24:58:a1:6e:48:96:0c:c4:ac:2f:e8:09:9c: e6:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:10:1F:FD:23:C2:F3:CB:FC:58:8D:69:D9:A1:F1:A2:F6:56:19:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a12bd5-5987-4ee6-9dd7-c745c18ce4a2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 35.18.0.0/15 Signature Algorithm: sha256WithRSAEncryption 10:ed:8f:1b:50:73:15:3a:d8:28:4d:75:32:ce:b8:77:83:12: 00:f3:f5:cc:f7:9e:47:d6:4e:87:1d:7e:b7:18:21:7e:8f:43: 39:11:67:6c:95:c9:ed:37:b1:23:c0:13:d9:9d:77:35:2c:86: dd:3c:2f:2f:fc:7b:fd:22:b1:15:9e:a3:83:74:fc:40:cb:74: e9:2c:55:a6:0a:24:50:8d:56:07:62:87:5e:08:73:83:50:31: f5:c8:38:b0:f1:87:11:33:c5:6a:d1:2c:5f:ab:57:30:b1:89: fc:9a:e2:66:f5:1f:41:9c:d3:fb:fd:36:0a:ef:a9:0a:89:ef: 21:4a:b2:bb:f8:5e:44:b7:17:43:31:34:c9:74:0a:91:a1:c6: f7:49:ee:60:56:af:19:84:fe:73:0c:60:c5:ec:49:85:07:2f: 0e:b3:a9:44:8f:b5:2b:ba:16:a1:c6:a3:38:cd:41:fa:9a:fb: 28:a4:58:85:da:f7:94:60:77:df:a2:07:44:e4:a2:25:30:38: 87:09:d5:fa:de:c0:4e:6e:f3:fa:46:90:d6:5e:25:17:98:dd: c6:af:7e:2b:c6:af:61:91:04:27:a1:5c:2e:62:0d:28:2b:69: bf:57:9a:6d:0e:10:61:f8:29:9e:5e:eb:8d:4f:8b:b0:6a:82: f3:7d:31:04 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUT1xfcjWE3oarRNRnsN+T7SYw2FgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAxMDQ2WhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0AyMjhkYzczYjY4ZGYzY2QxODc4ODJjYTc1YTIxM2FhZWNi MmU2ZjIxMzRjM2Y2ZjdmYWY2NmVmZTYzMWJmMjRmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDir0bk32W+bk7gQQZRCLJbSwWkYwBrMkfD72r0JzM0Rr7I HgV7HkXxzG38JrquwE/TVpxyLosF9qKQ9OlaOOfo6MRq5cF4zjI06hbl+G1tlvZ0 aYYygfpxXp+zxR+iVLqRVH2v7QRsFWA3xPM/lfCcNBbvjVpsYBZRnosSuiJgaMsn bOHbmVATMDSSBSJfXZbkNpRXGlG55EddYi+GDrZOSAa6ZsjnckNQGO7X/spAebdV utONd7McjIlFNsgGkdjs/iHVxH0xwLTz7CAja2KPJuglB/sYLDMVCBVQDqOUkvwK p9seMttOlP26qMR5O4HXJFihbkiWDMSsL+gJnOb7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU5BAf/SPC88v8WI1p2aHxovZWGTQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxYTEyYmQ1LTU5ODctNGVlNi05ZGQ3LWM3NDVjMThjZTRhMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEjEjANBgkqhkiG9w0BAQsFAAOCAQEAEO2PG1BzFTrYKE11Ms64d4MSAPP1 zPeeR9ZOhx1+txghfo9DORFnbJXJ7TexI8AT2Z13NSyG3TwvL/x7/SKxFZ6jg3T8 QMt06SxVpgokUI1WB2KHXghzg1Ax9cg4sPGHETPFatEsX6tXMLGJ/JriZvUfQZzT +/02Cu+pConvIUqyu/heRLcXQzE0yXQKkaHG90nuYFavGYT+cwxgxexJhQcvDrOp RI+1K7oWocajOM1B+pr7KKRYhdr3lGB336IHROSiJTA4hwnV+t7ATm7z+kaQ1l4l F5jdxq9+K8avYZEEJ6FcLmINKCtpv1eabQ4QYfgpnl7rjU+LsGqC830xBA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:55:04 2026 by rpki-client