$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f254adf9-85bf-40df-9c5a-0885b19305f3.roa File: f254adf9-85bf-40df-9c5a-0885b19305f3.roa (raw, json) Hash identifier: l1qg983PACmDEzxPYTJjL8x8xk49wqn6qvOlWDMVCI0= Subject key identifier: FE:D2:07:CA:6A:34:2F:EE:CC:D5:F7:D0:00:AC:8F:15:08:C0:B1:D7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0DA5DBFC8277D55B0ECD4EAF9A6596E15CE5804A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f254adf9-85bf-40df-9c5a-0885b19305f3.roa Signing time: Sat 21 Feb 2026 01:31:01 +0000 ROA not before: Sat 21 Feb 2026 01:31:01 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 71.152.80.0/24 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0d:a5:db:fc:82:77:d5:5b:0e:cd:4e:af:9a:65:96:e1:5c:e5:80:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 01:31:01 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=00ad609ae2de541ffaece5f1b2967d85cb88d94b48c9bc65e2e5a399ae6128e4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:85:65:01:b7:75:62:88:3d:b7:17:25:6d:c9: 11:0c:8d:01:f3:93:15:23:a3:80:4e:78:84:04:de: ac:ea:38:45:88:60:27:43:33:7c:50:41:4c:00:ad: 3a:04:14:46:70:98:63:a0:7c:e9:ec:76:d8:34:95: 2b:96:f5:89:f3:3a:41:ab:d9:ea:ab:7d:d1:e1:a6: 1c:c6:08:11:10:05:95:08:46:66:cd:12:3f:75:fd: 3a:50:e1:26:f4:b5:59:5f:5a:11:cc:0e:31:eb:be: da:4b:13:ea:be:3d:39:24:87:b1:62:1a:c0:50:3b: 20:df:be:f5:a4:7a:0b:17:4b:4f:71:c6:93:91:6d: 36:9b:98:f4:cf:9e:1a:40:ac:02:73:9b:81:78:16: f6:52:29:20:1f:9d:58:c2:ef:f7:26:98:9d:e6:be: 49:49:38:87:d4:70:2f:39:a1:ce:40:df:3b:63:33: 3a:63:f6:e0:b4:3b:d6:b2:76:91:67:6d:5d:2f:45: 78:4c:c8:2f:fc:48:0a:f2:fa:52:99:72:77:76:c5: 12:45:47:e4:2f:8e:4f:11:2d:57:47:c3:90:20:1e: 2a:1d:65:37:5f:3f:f3:d0:e7:3c:c0:8f:7b:6e:dc: f5:9c:c4:bc:64:05:e0:a9:5d:ac:b6:2c:52:da:da: ee:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:D2:07:CA:6A:34:2F:EE:CC:D5:F7:D0:00:AC:8F:15:08:C0:B1:D7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f254adf9-85bf-40df-9c5a-0885b19305f3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 71.152.80.0/24 Signature Algorithm: sha256WithRSAEncryption 9f:37:52:6b:05:70:38:08:9e:54:18:dc:84:39:95:41:b5:48: f7:b4:c9:36:18:a7:30:77:c5:7d:76:4c:72:23:36:54:d7:1d: b6:2f:f3:aa:31:5c:e5:7e:7d:b8:a8:b7:c3:46:52:80:cc:4a: 80:71:85:f4:08:d7:20:49:8e:77:2a:7d:9d:fc:e1:0e:78:7a: 82:91:41:00:81:99:6c:79:c9:56:a8:5c:f4:b1:4d:90:77:04: 45:1f:e6:39:3f:82:32:f4:24:c8:48:21:74:27:2d:7e:3c:46: 81:ac:e4:2a:e6:89:f7:a9:e4:83:3a:9a:a9:9e:6b:bd:6a:cf: f8:b3:1a:5c:9f:79:15:6a:d7:1b:46:db:63:76:01:e1:3d:15: 03:52:83:e7:dd:b5:1a:57:b0:e9:3b:3b:bd:fa:0b:b8:3a:ae: 35:12:d9:d2:79:bd:87:e4:85:c9:21:19:50:16:e5:c2:0e:62: 71:b0:f8:de:c2:d3:01:c5:30:97:75:10:3a:c2:9a:60:03:c5: 8d:47:d7:86:af:78:cf:e4:d6:5e:13:15:7f:a2:20:db:0f:e0: e2:de:31:e7:db:fc:15:34:08:af:32:08:34:ce:26:58:9d:cc: 55:ec:07:93:ad:84:0e:e6:a9:95:54:54:47:db:1c:96:88:1b: fb:e3:b7:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUDaXb/IJ31VsOzU6vmmWW4VzlgEowDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDEzMTAxWhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AwMGFkNjA5YWUyZGU1NDFmZmFlY2U1ZjFiMjk2N2Q4NWNi ODhkOTRiNDhjOWJjNjVlMmU1YTM5OWFlNjEyOGU0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCphWUBt3ViiD23FyVtyREMjQHzkxUjo4BOeIQE3qzqOEWI YCdDM3xQQUwArToEFEZwmGOgfOnsdtg0lSuW9YnzOkGr2eqrfdHhphzGCBEQBZUI RmbNEj91/TpQ4Sb0tVlfWhHMDjHrvtpLE+q+PTkkh7FiGsBQOyDfvvWkegsXS09x xpORbTabmPTPnhpArAJzm4F4FvZSKSAfnVjC7/cmmJ3mvklJOIfUcC85oc5A3ztj Mzpj9uC0O9aydpFnbV0vRXhMyC/8SAry+lKZcnd2xRJFR+Qvjk8RLVdHw5AgHiod ZTdfP/PQ5zzAj3tu3PWcxLxkBeCpXay2LFLa2u5zAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQU/tIHymo0L+7M1ffQAKyPFQjAsdcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyNTRhZGY5LTg1YmYtNDBkZi05YzVhLTA4ODViMTkzMDVmMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBABHmFAwDQYJKoZIhvcNAQELBQADggEBAJ83UmsFcDgInlQY3IQ5lUG1SPe0 yTYYpzB3xX12THIjNlTXHbYv86oxXOV+fbiot8NGUoDMSoBxhfQI1yBJjncqfZ38 4Q54eoKRQQCBmWx5yVaoXPSxTZB3BEUf5jk/gjL0JMhIIXQnLX48RoGs5Crmifep 5IM6mqmea71qz/izGlyfeRVq1xtG22N2AeE9FQNSg+fdtRpXsOk7O736C7g6rjUS 2dJ5vYfkhckhGVAW5cIOYnGw+N7C0wHFMJd1EDrCmmADxY1H14aveM/k1l4TFX+i INsP4OLeMefb/BU0CK8yCDTOJlidzFXsB5OthA7mqZVUVEfbHJaIG/vjt38= -----END CERTIFICATE-----Generated at Mon Mar 2 04:54:53 2026 by rpki-client