$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa File: f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa (raw, json) Hash identifier: oHODg0ePXdA9wpFwNAhyx/5ZJJ/zf49SXux85In5QFs= Subject key identifier: F0:F7:A4:92:56:93:32:CF:72:48:16:A5:84:1A:97:2B:C7:53:5C:B7 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 64C1EC9063B68438FE1E369E5EC8152E6F77628B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa Signing time: Tue 24 Feb 2026 01:20:11 +0000 ROA not before: Tue 24 Feb 2026 01:20:11 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.151.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:c1:ec:90:63:b6:84:38:fe:1e:36:9e:5e:c8:15:2e:6f:77:62:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:20:11 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=0f28bdbd06479483e50a0b56a145e57db2699958b02db1ccbe5e9df2069faa6b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:93:da:27:00:bd:8d:c8:d0:92:02:d9:d1:ee:de: 4c:a6:63:49:72:34:d3:1f:b3:f7:e3:56:dc:e6:2b: 3a:ed:fd:91:8c:5a:be:f6:34:66:44:c2:eb:bf:ef: 91:7e:7b:56:d0:5a:24:a6:f8:21:23:6c:93:ee:6e: 59:d7:ec:f1:b4:b4:92:c8:42:d2:ef:49:79:78:eb: a7:76:b4:45:34:c1:ab:ec:80:8e:c7:37:58:9a:cf: 9c:5b:e8:06:18:47:b6:40:0f:17:fc:0c:2b:76:60: f1:c9:b2:ec:e8:eb:d2:a4:8d:40:c8:af:a6:b8:b9: 00:ac:a9:29:f2:94:0e:19:29:60:ec:c5:73:3d:cb: 09:76:ad:7f:95:26:d8:ad:a6:58:d1:53:10:57:6d: 8f:aa:9a:6e:7e:a8:49:c2:a7:63:74:de:7d:70:97: 4c:f2:a6:c7:44:dd:07:18:00:0b:0c:0f:3e:eb:49: 78:c2:a9:70:09:d9:79:1f:e9:00:48:d3:f5:f1:5c: b4:43:26:bf:e3:92:d3:8a:b6:9d:a3:80:47:7e:ff: 38:84:73:bf:78:dd:40:af:7d:bd:5a:c1:1a:8f:19: ee:e4:37:c3:d9:9d:7d:b7:e5:dd:29:7d:7f:33:81: 42:d6:a3:21:33:ae:f7:7f:9f:33:d6:c3:75:e9:bd: 8f:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:F7:A4:92:56:93:32:CF:72:48:16:A5:84:1A:97:2B:C7:53:5C:B7 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2bdfb52-3c99-4bc0-9cee-2768dc39c10c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.151.0.0/16 Signature Algorithm: sha256WithRSAEncryption cf:9a:e5:83:11:b1:c1:33:bf:ad:06:50:b5:3a:21:db:3d:81: 61:90:d3:7a:25:1b:be:82:05:07:67:55:0b:9b:a2:ba:e6:c4: 79:1d:cc:1a:bf:c7:c5:b4:c1:66:dc:0a:07:90:ef:8e:43:34: e8:11:0e:69:12:70:d6:0d:17:86:f6:2e:00:ee:99:0e:52:16: 14:20:6a:da:25:cf:f2:36:69:38:0d:97:c8:b3:22:97:6c:e6: a3:8e:fe:6e:9e:d3:08:d2:41:b0:bf:b7:c7:c3:43:68:3c:19: 64:0a:56:f1:cd:21:e8:a7:51:af:0f:53:ee:3b:04:39:ed:d5: a9:9d:6c:e8:85:e5:ca:cd:77:35:9c:0a:50:49:c4:5b:85:5d: 1a:b5:e0:79:42:f9:2a:89:8d:46:2a:5d:ad:d6:50:ac:36:e1: 16:ad:39:19:1c:17:79:e2:48:bd:24:89:c6:d4:95:bf:28:5e: 1e:9d:0e:0d:41:2d:bc:21:8f:ed:ec:38:bf:12:01:8b:4a:5c: 1b:12:66:24:d8:0c:d5:d7:81:c9:12:9d:74:1b:ed:12:6d:2b: b2:91:10:f8:68:0e:69:6d:a9:e5:31:13:77:ac:45:e6:82:fe: 6a:60:02:7c:a7:a4:9b:52:db:ff:9b:61:b9:b3:76:a9:3f:3a: 94:00:3d:9e -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUZMHskGO2hDj+HjaeXsgVLm93YoswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEyMDExWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwZjI4YmRiZDA2NDc5NDgzZTUwYTBiNTZhMTQ1ZTU3ZGIy Njk5OTU4YjAyZGIxY2NiZTVlOWRmMjA2OWZhYTZiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCT2icAvY3I0JIC2dHu3kymY0lyNNMfs/fjVtzmKzrt/ZGM Wr72NGZEwuu/75F+e1bQWiSm+CEjbJPublnX7PG0tJLIQtLvSXl466d2tEU0wavs gI7HN1iaz5xb6AYYR7ZADxf8DCt2YPHJsuzo69KkjUDIr6a4uQCsqSnylA4ZKWDs xXM9ywl2rX+VJtitpljRUxBXbY+qmm5+qEnCp2N03n1wl0zypsdE3QcYAAsMDz7r SXjCqXAJ2Xkf6QBI0/XxXLRDJr/jktOKtp2jgEd+/ziEc7943UCvfb1awRqPGe7k N8PZnX235d0pfX8zgULWoyEzrvd/nzPWw3XpvY/7AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU8PekklaTMs9ySBalhBqXK8dTXLcwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYmRmYjUyLTNjOTktNGJjMC05Y2VlLTI3NjhkYzM5YzEwYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQlzANBgkqhkiG9w0BAQsFAAOCAQEAz5rlgxGxwTO/rQZQtToh2z2BYZDT eiUbvoIFB2dVC5uiuubEeR3MGr/HxbTBZtwKB5DvjkM06BEOaRJw1g0XhvYuAO6Z DlIWFCBq2iXP8jZpOA2XyLMil2zmo47+bp7TCNJBsL+3x8NDaDwZZApW8c0h6KdR rw9T7jsEOe3VqZ1s6IXlys13NZwKUEnEW4VdGrXgeUL5KomNRipdrdZQrDbhFq05 GRwXeeJIvSSJxtSVvyheHp0ODUEtvCGP7ew4vxIBi0pcGxJmJNgM1deByRKddBvt Em0rspEQ+GgOaW2p5TETd6xF5oL+amACfKekm1Lb/5thubN2qT86lAA9ng== -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:17 2026 by rpki-client