$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa File: f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa (raw, json) Hash identifier: c0kWu0cqpAGq4TU2IocGrhBmPtaAHbggHCkMIPJP5U0= Subject key identifier: 1C:2E:EB:00:A5:D1:05:35:64:4E:A2:DA:FE:05:EF:5E:F3:12:A5:3B Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72CEC869C7E5654EFDAE5BC93090BD5B46352A86 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa Signing time: Sun 01 Mar 2026 00:21:50 +0000 ROA not before: Sun 01 Mar 2026 00:21:50 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.180.0.0/15 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:ce:c8:69:c7:e5:65:4e:fd:ae:5b:c9:30:90:bd:5b:46:35:2a:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:21:50 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=602ffee1dd00b640b02c84aa5288972749ae14fde48c027b85daddc4849bc9ac, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:1e:48:8f:d6:6b:be:8f:d3:15:50:84:45:59: 82:df:be:f3:ac:37:41:80:5d:7d:66:ec:95:af:88: 59:90:a2:61:26:2c:30:e5:83:62:91:ba:43:f7:b3: 26:97:6e:e8:77:98:3a:1d:fc:cf:e3:09:ae:1e:52: 74:bc:11:8d:b2:83:9f:15:c6:49:29:6e:02:d7:b2: 65:47:12:ed:a3:cb:5e:e2:cb:19:9a:eb:68:c5:c5: 81:0a:25:89:aa:e4:31:d4:df:42:67:42:e9:95:c5: 1d:73:51:f8:e2:c6:62:b3:16:09:7d:6e:16:4d:8d: f7:4b:8d:54:0f:3b:54:76:a0:73:45:99:ff:08:fb: 0a:40:05:98:44:fb:83:31:de:85:99:98:90:44:6e: 97:79:04:72:dc:35:97:bf:92:46:d2:64:00:63:9a: 28:fa:82:71:10:50:5b:20:e7:9a:97:51:8a:44:8b: 6f:37:7b:f3:9d:ee:75:3e:ef:3b:b1:a2:f5:27:ee: c0:da:3b:2c:be:b4:1e:b2:b8:33:2b:e2:d0:cc:13: 96:9d:52:b7:f1:81:69:f4:33:db:1c:de:92:ec:24: 4f:4f:c6:63:6a:f2:bd:80:79:99:71:d8:f5:5a:49: d5:ef:de:ef:b5:36:cb:19:02:ea:07:73:95:a6:9b: b4:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:2E:EB:00:A5:D1:05:35:64:4E:A2:DA:FE:05:EF:5E:F3:12:A5:3B X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3125e31-ed97-4e31-89e9-d4af00e5b32d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.180.0.0/15 Signature Algorithm: sha256WithRSAEncryption 6e:b7:ce:bd:36:bc:ac:7e:92:d2:a8:21:a7:ce:39:fd:8d:d5: f5:3d:04:7a:13:74:5b:ab:78:b9:08:84:91:de:da:b0:fb:36: b9:10:a9:71:15:cd:20:07:5c:dd:16:b7:63:20:8f:14:f4:dc: e0:8b:fb:79:7f:c7:b6:64:e7:9c:5a:da:5a:c1:e7:e1:03:50: 71:b3:b7:03:b4:71:a3:b1:72:a5:f2:77:26:4b:a3:4f:f0:da: aa:18:7b:18:1e:25:00:7d:28:c0:da:3a:4f:51:6c:94:21:0d: a0:47:9a:60:f0:f2:4c:fc:e4:08:83:d1:1f:09:50:46:f8:14: 7c:7c:42:83:9d:52:11:c7:78:5d:c0:3b:be:84:70:a8:dc:ae: 50:33:ab:18:5b:ff:8d:bc:a1:3b:ab:15:0c:27:25:82:f9:70: 95:3e:3f:7c:db:21:8e:19:4d:8e:7c:ad:51:b2:d4:ea:28:cd: 46:f8:ff:75:e7:d1:c9:50:49:3f:f9:3c:2d:45:69:ea:7b:a3: 9a:d3:e5:6b:25:29:d6:55:11:94:57:2f:1e:a1:74:8e:0e:71: 34:24:7a:a0:de:a6:14:8a:27:14:0f:35:c5:f3:c6:8c:8d:69: 26:ca:85:c1:5b:4b:4a:38:0b:36:14:7a:64:73:24:41:e7:de: b7:09:fd:18 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUcs7IacflZU79rlvJMJC9W0Y1KoYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMTUwWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A2MDJmZmVlMWRkMDBiNjQwYjAyYzg0YWE1Mjg4OTcyNzQ5 YWUxNGZkZTQ4YzAyN2I4NWRhZGRjNDg0OWJjOWFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCdHkiP1mu+j9MVUIRFWYLfvvOsN0GAXX1m7JWviFmQomEm LDDlg2KRukP3syaXbuh3mDod/M/jCa4eUnS8EY2yg58VxkkpbgLXsmVHEu2jy17i yxma62jFxYEKJYmq5DHU30JnQumVxR1zUfjixmKzFgl9bhZNjfdLjVQPO1R2oHNF mf8I+wpABZhE+4Mx3oWZmJBEbpd5BHLcNZe/kkbSZABjmij6gnEQUFsg55qXUYpE i283e/Od7nU+7zuxovUn7sDaOyy+tB6yuDMr4tDME5adUrfxgWn0M9sc3pLsJE9P xmNq8r2AeZlx2PVaSdXv3u+1NssZAuoHc5Wmm7TDAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUHC7rAKXRBTVkTqLa/gXvXvMSpTswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzMTI1ZTMxLWVkOTctNGUzMS04OWU5LWQ0YWYwMGU1YjMyZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwEotDANBgkqhkiG9w0BAQsFAAOCAQEAbrfOvTa8rH6S0qghp845/Y3V9T0E ehN0W6t4uQiEkd7asPs2uRCpcRXNIAdc3Ra3YyCPFPTc4Iv7eX/HtmTnnFraWsHn 4QNQcbO3A7Rxo7FypfJ3JkujT/Daqhh7GB4lAH0owNo6T1FslCENoEeaYPDyTPzk CIPRHwlQRvgUfHxCg51SEcd4XcA7voRwqNyuUDOrGFv/jbyhO6sVDCclgvlwlT4/ fNshjhlNjnytUbLU6ijNRvj/defRyVBJP/k8LUVp6nujmtPlayUp1lURlFcvHqF0 jg5xNCR6oN6mFIonFA81xfPGjI1pJsqFwVtLSjgLNhR6ZHMkQefetwn9GA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:12:27 2026 by rpki-client