$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c1564a-03d7-493a-959b-6e79233e689b.roa File: f2c1564a-03d7-493a-959b-6e79233e689b.roa (raw, json) Hash identifier: C1HCjCTBGF8DKAvzCdLrk0IuT/u3SlzaNBhC7J5JVIM= Subject key identifier: BB:BE:46:4A:42:CC:F3:2F:E4:5C:56:4B:D8:78:22:67:DB:7F:09:68 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52E1826A4517216CD4FBD10A7AE7A011B6085A07 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c1564a-03d7-493a-959b-6e79233e689b.roa Signing time: Sun 15 Feb 2026 00:21:03 +0000 ROA not before: Sun 15 Feb 2026 00:21:03 +0000 ROA not after: Sat 16 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 99.150.72.0/21 maxlen: 21 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:e1:82:6a:45:17:21:6c:d4:fb:d1:0a:7a:e7:a0:11:b6:08:5a:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 15 00:21:03 2026 GMT Not After : May 16 23:59:59 2026 GMT Subject: serialNumber=673fbd51544ba53ef81792b00c0ee32b613a58e781ebee4284f7177f8c05af61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:6f:a7:43:74:6e:e9:d8:e5:14:c1:7d:2d:6a: 01:26:de:68:1e:76:ca:5f:f5:e7:5a:33:30:52:e9: e0:fb:d3:ee:26:d6:3b:35:d7:7b:1f:96:84:cc:ce: fb:99:49:88:e2:f8:bf:ec:2f:20:99:06:04:38:2c: 5d:b9:27:e7:62:fa:a7:a4:7a:69:04:2a:82:19:45: 6a:d4:ef:67:97:c7:2a:fc:a4:b5:74:b6:04:c9:34: b5:e4:40:ce:8e:cd:1c:fa:1d:8d:5d:48:03:33:44: d1:2b:af:25:72:53:90:a5:54:9e:a9:e2:0b:0c:68: 46:ce:45:88:0f:31:13:9d:39:7a:e9:af:45:fa:a7: bb:ba:4d:e3:c5:be:4d:dc:b8:a0:88:2d:e2:b5:a0: 5f:c3:86:05:1f:ad:2c:64:11:86:07:49:30:e9:97: 67:7e:49:73:77:55:8e:d8:f7:54:00:de:21:a7:e2: 77:be:d4:af:c8:28:a6:45:8e:ea:1f:d1:8a:82:ff: 4f:f3:91:ba:14:a7:5a:da:c4:c0:89:51:46:7b:f4: 2a:9c:83:2c:1d:b2:46:cf:db:f1:47:74:58:6d:14: f5:64:64:6c:4b:06:af:4d:64:65:ae:a4:8d:a5:2e: 18:22:c0:7d:38:b2:66:0a:d2:b7:25:ec:ad:43:1a: b4:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:BE:46:4A:42:CC:F3:2F:E4:5C:56:4B:D8:78:22:67:DB:7F:09:68 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2c1564a-03d7-493a-959b-6e79233e689b.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 99.150.72.0/21 Signature Algorithm: sha256WithRSAEncryption c5:08:d7:f6:7b:7c:3e:62:bf:10:f7:71:b0:a1:b9:d4:39:0b: 1b:3d:21:59:81:23:d3:2f:94:2e:74:68:96:00:2b:68:28:c1: b8:a2:00:fd:32:44:36:46:23:20:65:b9:ab:54:1c:cc:20:6c: e8:58:7c:d7:26:76:5b:ae:70:d3:84:b0:59:1d:bc:1e:0a:85: 7f:29:71:81:c7:ab:65:81:59:eb:bd:1c:7b:f7:b9:64:a5:5c: 06:2b:fc:b8:cd:b0:3c:49:08:5c:94:70:86:27:1b:85:9c:96: 45:18:f0:74:09:e5:d1:15:e7:01:9c:70:da:4c:7e:b8:aa:ed: 46:e6:33:cf:9a:0a:74:2a:c7:35:22:13:ae:29:4a:8b:4f:1a: 3a:3e:1a:c6:44:92:26:8d:e7:1f:53:c4:04:b5:1a:75:be:18: 13:6d:ba:0d:ee:bf:01:be:13:fc:8e:06:2c:2d:97:54:bd:bf: c9:50:9d:b1:f9:50:3d:e2:b1:fb:45:15:14:17:66:41:1e:5c: 69:ca:fa:82:23:74:f6:ae:73:d0:c0:10:cb:8c:66:43:09:fb: 98:4e:ee:97:92:7e:a2:29:7c:23:ac:f8:0b:9e:37:51:b4:38: 02:a9:1b:87:d6:7a:42:5d:ba:51:85:bd:ff:d2:b6:99:89:e9: 5f:20:4b:7f -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUuGCakUXIWzU+9EKeuegEbYIWgcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE1MDAyMTAzWhcNMjYwNTE2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2NzNmYmQ1MTU0NGJhNTNlZjgxNzkyYjAwYzBlZTMyYjYx M2E1OGU3ODFlYmVlNDI4NGY3MTc3ZjhjMDVhZjYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3b6dDdG7p2OUUwX0tagEm3mgedspf9edaMzBS6eD70+4m 1js113sfloTMzvuZSYji+L/sLyCZBgQ4LF25J+di+qekemkEKoIZRWrU72eXxyr8 pLV0tgTJNLXkQM6OzRz6HY1dSAMzRNErryVyU5ClVJ6p4gsMaEbORYgPMROdOXrp r0X6p7u6TePFvk3cuKCILeK1oF/DhgUfrSxkEYYHSTDpl2d+SXN3VY7Y91QA3iGn 4ne+1K/IKKZFjuof0YqC/0/zkboUp1raxMCJUUZ79CqcgywdskbP2/FHdFhtFPVk ZGxLBq9NZGWupI2lLhgiwH04smYK0rcl7K1DGrSrAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUu75GSkLM8y/kXFZL2HgiZ9t/CWgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyYzE1NjRhLTAzZDctNDkzYS05NTliLTZlNzkyMzNlNjg5Yi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBANjlkgwDQYJKoZIhvcNAQELBQADggEBAMUI1/Z7fD5ivxD3cbChudQ5Cxs9 IVmBI9MvlC50aJYAK2gowbiiAP0yRDZGIyBluatUHMwgbOhYfNcmdluucNOEsFkd vB4KhX8pcYHHq2WBWeu9HHv3uWSlXAYr/LjNsDxJCFyUcIYnG4WclkUY8HQJ5dEV 5wGccNpMfriq7UbmM8+aCnQqxzUiE64pSotPGjo+GsZEkiaN5x9TxAS1GnW+GBNt ug3uvwG+E/yOBiwtl1S9v8lQnbH5UD3isftFFRQXZkEeXGnK+oIjdPauc9DAEMuM ZkMJ+5hO7peSfqIpfCOs+AueN1G0OAKpG4fWekJdulGFvf/StpmJ6V8gS38= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:32 2026 by rpki-client