$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa File: f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa (raw, json) Hash identifier: d5b5kuamFtTHiVKZDM1Pmw5n+G1DnhySmU6X0V+DFV0= Subject key identifier: 43:32:5B:D6:6B:E4:04:98:14:56:0A:CF:2B:1C:AF:8B:2D:5D:F5:2F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11429CE0A4362DACF9640B1324CC2F2A148B9FD9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa Signing time: Thu 26 Feb 2026 00:10:08 +0000 ROA not before: Thu 26 Feb 2026 00:10:08 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 147.106.64.0/18 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:42:9c:e0:a4:36:2d:ac:f9:64:0b:13:24:cc:2f:2a:14:8b:9f:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:10:08 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=d1dd225eced5aa0a0fe7354275c22a8a02835f3bc2b6ac94f878c8b50783ee1b, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:47:ad:c0:f3:95:d4:42:00:8c:e8:95:d8:4a: 22:ad:48:18:09:ba:89:25:c8:52:bf:69:50:e8:2b: 09:c5:dc:1e:38:f1:fe:29:c0:db:86:1a:2c:1d:ce: fb:bb:b5:b0:4d:7f:71:97:f5:87:07:10:22:73:fa: 8d:f7:db:78:86:c8:ab:51:85:b9:df:59:ad:f5:07: 92:ad:85:5a:64:9b:65:22:48:13:f0:47:0f:a1:14: 9c:02:54:8c:e9:a4:ab:c8:1f:ce:e7:bf:13:d5:5f: 8a:77:75:4d:00:fe:71:da:14:d9:fd:9b:0d:97:30: bb:69:57:06:0f:bd:3b:e5:0f:45:a7:89:a9:4f:87: 2e:78:51:82:46:18:df:27:9e:d0:94:5f:22:47:ec: 5f:ec:a9:b5:37:0b:48:10:4c:92:35:1c:5c:6b:c6: 54:dd:ba:5f:c3:92:9c:c4:37:9e:88:96:be:94:5e: 45:5a:b6:3b:f0:d7:09:d9:34:1d:61:d2:0b:26:f1: 56:fb:96:ef:a4:71:10:44:0b:42:96:7f:2c:6e:f8: 71:9b:4d:4d:87:0f:4d:c7:6f:df:49:f2:2c:ae:2b: 14:36:79:7a:77:ec:92:f5:f8:cd:28:91:80:9e:40: 82:d2:4e:6e:bd:d2:08:89:67:c4:3a:ce:a4:86:3e: e7:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:32:5B:D6:6B:E4:04:98:14:56:0A:CF:2B:1C:AF:8B:2D:5D:F5:2F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f2fc25c4-cbcb-41d6-abb1-81a32332c760.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 147.106.64.0/18 Signature Algorithm: sha256WithRSAEncryption 77:8d:ff:67:7d:08:05:43:89:d3:21:14:a7:ae:fb:2a:1f:8c: fa:fc:49:b5:d4:0e:5a:08:ba:31:b1:5b:be:4c:00:43:1f:64: 12:83:7f:b5:c5:83:6c:d7:a1:f3:71:19:2b:97:e8:75:54:02: b2:3c:a7:0a:81:08:5f:26:10:85:b8:74:a0:df:c9:64:30:59: a9:31:83:b8:5d:8b:a7:47:f3:dd:bb:2f:9a:cc:94:8e:66:a7: e3:99:f1:99:68:a8:3d:e3:1b:8d:5f:4a:52:87:84:6b:11:05: 6d:f0:0f:d8:2d:30:6d:56:fd:90:84:08:fe:92:bb:4f:a1:2c: a0:21:02:34:5e:9f:3f:86:5c:36:68:3a:a7:cf:60:06:60:50: 11:2d:fb:39:af:2b:c5:f2:72:e2:e7:9b:54:3c:e3:7e:43:ec: da:7d:98:cf:8f:5b:df:f8:52:04:28:b5:26:b7:3a:ec:43:c5: 13:62:e0:b5:86:4e:b4:f7:7e:ed:25:2c:99:30:d5:d3:a8:25: 3b:27:f1:49:5f:38:9b:ff:d3:6c:68:df:cf:f3:fe:3e:14:e2: 67:58:f3:a5:88:3b:ad:8c:94:7d:75:e7:0d:8d:37:94:96:80: ba:63:3a:44:e3:5c:3a:43:7b:e8:4b:5a:60:12:cf:52:15:4a: 54:6b:a6:a8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUEUKc4KQ2Laz5ZAsTJMwvKhSLn9kwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAxMDA4WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BkMWRkMjI1ZWNlZDVhYTBhMGZlNzM1NDI3NWMyMmE4YTAy ODM1ZjNiYzJiNmFjOTRmODc4YzhiNTA3ODNlZTFiMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC7R63A85XUQgCM6JXYSiKtSBgJuoklyFK/aVDoKwnF3B44 8f4pwNuGGiwdzvu7tbBNf3GX9YcHECJz+o3323iGyKtRhbnfWa31B5KthVpkm2Ui SBPwRw+hFJwCVIzppKvIH87nvxPVX4p3dU0A/nHaFNn9mw2XMLtpVwYPvTvlD0Wn ialPhy54UYJGGN8nntCUXyJH7F/sqbU3C0gQTJI1HFxrxlTdul/DkpzEN56Ilr6U XkVatjvw1wnZNB1h0gsm8Vb7lu+kcRBEC0KWfyxu+HGbTU2HD03Hb99J8iyuKxQ2 eXp37JL1+M0okYCeQILSTm690giJZ8Q6zqSGPuehAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUQzJb1mvkBJgUVgrPKxyviy1d9S8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YyZmMyNWM0LWNiY2ItNDFkNi1hYmIxLTgxYTMyMzMyYzc2MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAaTakAwDQYJKoZIhvcNAQELBQADggEBAHeN/2d9CAVDidMhFKeu+yofjPr8 SbXUDloIujGxW75MAEMfZBKDf7XFg2zXofNxGSuX6HVUArI8pwqBCF8mEIW4dKDf yWQwWakxg7hdi6dH8927L5rMlI5mp+OZ8ZloqD3jG41fSlKHhGsRBW3wD9gtMG1W /ZCECP6Su0+hLKAhAjRenz+GXDZoOqfPYAZgUBEt+zmvK8XycuLnm1Q8435D7Np9 mM+PW9/4UgQotSa3OuxDxRNi4LWGTrT3fu0lLJkw1dOoJTsn8UlfOJv/02xo38/z /j4U4mdY86WIO62MlH115w2NN5SWgLpjOkTjXDpDe+hLWmASz1IVSlRrpqg= -----END CERTIFICATE-----Generated at Mon Mar 2 03:41:26 2026 by rpki-client