$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a1447c-63be-441c-867b-64a338ff41ca.roa File: f1a1447c-63be-441c-867b-64a338ff41ca.roa (raw, json) Hash identifier: O1dH+CZ4WY/bc48ru2ihABY/eAwvMmDEzOysJwW+SV4= Subject key identifier: C4:45:9F:C2:44:0A:CA:C3:A2:60:53:21:A8:B4:98:CE:B2:7E:9D:AA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7C71AD3E3C8E41F6768D8FD53069139E47247198 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a1447c-63be-441c-867b-64a338ff41ca.roa Signing time: Tue 10 Feb 2026 00:51:23 +0000 ROA not before: Tue 10 Feb 2026 00:51:23 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.201.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:71:ad:3e:3c:8e:41:f6:76:8d:8f:d5:30:69:13:9e:47:24:71:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:51:23 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=df2e5adf72e2f673f091c31632247379cafaa1a7ca53614093320621ca3b6878, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:84:ab:00:9c:ae:cc:3e:de:08:9a:f3:30:9a: 6a:0b:1d:25:e1:80:ca:99:23:28:47:bd:cc:90:43: 54:c5:cd:25:b3:b0:62:96:ad:9b:bb:54:a0:00:f0: 9e:05:1d:1b:10:b0:85:df:ba:b7:77:b5:79:59:f8: e5:f8:63:72:8e:12:7c:01:95:aa:87:c6:d5:cc:58: ff:ca:b1:00:32:22:47:dd:96:90:34:55:b0:99:1f: 0c:ff:4b:3d:ac:ff:12:58:fa:c9:63:e8:47:1e:a6: e7:48:05:0b:b0:5d:81:c4:6d:66:b2:f7:b1:a9:67: 04:74:72:5a:9c:28:03:7c:bd:97:20:06:7b:68:e2: 04:4b:99:bf:d7:a0:1e:bd:f4:57:cd:eb:82:e8:b9: 43:85:3d:4b:37:c1:db:79:06:79:46:b0:b0:69:b9: 65:f8:2e:3d:11:48:96:1c:75:4c:35:cf:31:97:8b: 5d:c4:c6:76:1b:9e:32:da:a3:65:6b:0c:55:dd:bb: 76:45:13:cd:84:f0:da:41:38:e6:93:85:12:7d:78: ce:be:c5:fc:93:2e:15:83:0a:a7:97:77:ee:3b:07: 7c:d5:9f:12:5d:4e:79:70:d1:8f:09:db:f1:f6:5f: c6:50:d9:47:64:d0:86:9e:61:1a:9c:00:10:22:cf: 7e:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C4:45:9F:C2:44:0A:CA:C3:A2:60:53:21:A8:B4:98:CE:B2:7E:9D:AA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f1a1447c-63be-441c-867b-64a338ff41ca.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.201.0.0/16 Signature Algorithm: sha256WithRSAEncryption 93:29:d8:62:89:1c:62:55:af:96:dc:61:e0:c9:c3:40:88:ae: a7:ec:15:48:29:1c:4b:2f:14:2b:c3:20:f7:4a:0b:24:96:cf: 02:e1:97:10:2c:82:aa:db:e6:54:ee:8f:07:27:b7:a8:d8:95: 22:a9:67:9f:1a:83:79:c4:62:bb:80:b7:86:15:da:82:ef:d6: b7:26:d4:11:e2:38:9c:b4:d1:1e:43:a6:2f:57:8b:46:13:d4: b3:3b:92:70:c4:25:1d:5e:a6:5b:8d:94:4f:6c:3b:47:86:9e: 59:3f:f5:93:03:16:ab:95:9d:d8:60:61:30:08:49:9f:1f:ae: 53:81:8d:3b:64:da:13:b3:1c:cc:13:76:19:94:3d:21:18:3b: a7:cf:9b:46:0d:a3:96:9b:04:33:5c:f2:20:ab:e9:31:d2:a7: 75:9a:fd:3d:73:98:ef:a5:30:ef:0d:68:cd:6b:2f:5d:a5:1f: 57:1e:69:83:9f:53:9c:07:46:b7:47:fa:25:b1:78:75:f8:fe: 2a:92:ab:7b:f6:12:22:96:5a:05:7b:75:03:9b:41:0b:d1:d7: 2d:44:0e:3b:75:39:a8:8d:1c:c8:ca:99:f4:e7:0f:c0:32:95: 81:b7:fe:35:60:1d:a0:22:e8:38:e9:84:27:38:24:a0:cf:96: 7c:44:cb:df -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUfHGtPjyOQfZ2jY/VMGkTnkckcZgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDA1MTIzWhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BkZjJlNWFkZjcyZTJmNjczZjA5MWMzMTYzMjI0NzM3OWNh ZmFhMWE3Y2E1MzYxNDA5MzMyMDYyMWNhM2I2ODc4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzhKsAnK7MPt4ImvMwmmoLHSXhgMqZIyhHvcyQQ1TFzSWz sGKWrZu7VKAA8J4FHRsQsIXfurd3tXlZ+OX4Y3KOEnwBlaqHxtXMWP/KsQAyIkfd lpA0VbCZHwz/Sz2s/xJY+slj6EcepudIBQuwXYHEbWay97GpZwR0clqcKAN8vZcg Bnto4gRLmb/XoB699FfN64LouUOFPUs3wdt5BnlGsLBpuWX4Lj0RSJYcdUw1zzGX i13ExnYbnjLao2VrDFXdu3ZFE82E8NpBOOaThRJ9eM6+xfyTLhWDCqeXd+47B3zV nxJdTnlw0Y8J2/H2X8ZQ2Udk0IaeYRqcABAiz359AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxEWfwkQKysOiYFMhqLSYzrJ+naowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YxYTE0NDdjLTYzYmUtNDQxYy04NjdiLTY0YTMzOGZmNDFjYS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAoyTANBgkqhkiG9w0BAQsFAAOCAQEAkynYYokcYlWvltxh4MnDQIiup+wV SCkcSy8UK8Mg90oLJJbPAuGXECyCqtvmVO6PBye3qNiVIqlnnxqDecRiu4C3hhXa gu/WtybUEeI4nLTRHkOmL1eLRhPUszuScMQlHV6mW42UT2w7R4aeWT/1kwMWq5Wd 2GBhMAhJnx+uU4GNO2TaE7MczBN2GZQ9IRg7p8+bRg2jlpsEM1zyIKvpMdKndZr9 PXOY76Uw7w1ozWsvXaUfVx5pg59TnAdGt0f6JbF4dfj+KpKre/YSIpZaBXt1A5tB C9HXLUQOO3U5qI0cyMqZ9OcPwDKVgbf+NWAdoCLoOOmEJzgkoM+WfETL3w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:32 2026 by rpki-client