$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa File: f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa (raw, json) Hash identifier: WDvWzWQCuyFLvjXcAzX36urXBK43vUjr0IHiofkK7OE= Subject key identifier: 30:8F:04:3C:68:60:8B:FD:74:75:2F:0B:1B:40:55:77:1B:BE:55:AC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7BCF4A8ECA6335137BA26687CAAA9EDC772D4F07 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa Signing time: Tue 24 Feb 2026 01:31:34 +0000 ROA not before: Tue 24 Feb 2026 01:31:34 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 119.12.96.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:cf:4a:8e:ca:63:35:13:7b:a2:66:87:ca:aa:9e:dc:77:2d:4f:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:31:34 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=9965b9885b949b3c0d08dbdd39b8a261f932649c0e162b9cbd0ac356a55601e9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:56:6b:1e:89:12:46:35:6e:c2:ed:e5:0b:22: 46:5f:c3:40:72:78:51:12:f4:86:8f:b5:05:92:ce: 1e:0d:c8:64:7d:b2:8c:8a:79:51:1d:08:44:20:fb: 0a:82:11:11:db:c8:7c:4a:10:ba:22:b1:ce:a7:93: 98:10:78:36:f2:b6:7e:f7:3e:dd:54:7c:cb:23:53: 78:23:22:f1:c3:fc:b0:f2:d3:5f:f5:0a:0a:10:d3: 80:52:3f:10:85:9a:de:2b:64:e5:19:39:51:a9:27: c3:08:fc:80:a7:5b:25:e3:47:19:46:d6:5b:a1:10: ab:d9:00:65:5f:ea:27:79:a8:94:4a:5c:4d:18:3f: 27:c4:82:ad:0c:32:48:1e:9f:de:60:31:38:fb:ae: be:6c:69:b7:aa:18:d5:fb:fd:91:b4:34:59:08:39: 3b:a9:f6:c9:df:35:b4:79:f0:1e:67:fb:08:af:b5: a6:01:7a:7b:0c:70:90:37:38:42:21:55:9e:fe:a8: 73:cd:db:d2:06:f0:50:a2:42:c0:bc:5c:09:da:6a: 46:33:61:e5:2a:dd:2b:59:38:0b:0a:b1:73:6b:d2: f0:65:dd:6f:1d:2c:a2:a4:a7:6d:7a:23:3b:42:de: 5b:3d:f0:65:b2:03:a2:be:11:5a:54:83:8e:fc:9b: 78:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:8F:04:3C:68:60:8B:FD:74:75:2F:0B:1B:40:55:77:1B:BE:55:AC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f3733ff4-60a5-4bde-8a28-1e0bb271609e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 119.12.96.0/21 Signature Algorithm: sha256WithRSAEncryption 9e:77:0d:a4:4a:f0:55:43:6c:83:a3:a4:45:65:8e:d3:f3:58: f0:3b:e3:85:b0:10:54:17:6f:5c:7d:b9:8b:39:9a:68:aa:54: 9c:af:41:5e:db:ea:4d:dc:d7:58:d0:d3:39:59:68:e7:dd:aa: 67:69:16:85:b6:de:c2:44:ba:99:25:d7:0e:57:ef:bb:35:bd: d4:29:c2:ce:5a:24:9f:e2:24:cd:72:52:de:47:3f:95:5e:26: c1:26:81:21:9c:8a:6e:f2:b3:12:0d:ee:45:f3:3d:2e:08:36: 0c:75:6a:e3:2d:84:7e:cc:27:f0:ad:df:7a:43:88:6e:56:1f: c5:48:4d:73:08:c8:e1:b3:9e:69:10:38:df:7c:53:74:7f:60: fd:43:1b:25:07:ce:e2:aa:69:6f:9f:26:31:84:03:b3:59:7c: d3:1a:8c:30:b6:91:56:d5:46:dc:4f:3a:c1:5d:3a:6d:ec:fc: 8b:0c:b4:bc:f8:c9:aa:84:e0:4d:7f:85:40:db:57:c3:3e:c2: 7b:5c:c0:7a:39:8d:e0:b1:7a:c9:29:88:9a:8c:28:e3:9c:23: bb:7d:60:cd:41:da:7e:48:48:0f:bf:6e:d8:3e:5c:02:c3:80: d8:20:9d:ec:07:db:76:51:de:5d:90:c0:93:13:4d:ba:87:a8: a9:69:85:f8 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUe89KjspjNRN7omaHyqqe3HctTwcwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEzMTM0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5OTY1Yjk4ODViOTQ5YjNjMGQwOGRiZGQzOWI4YTI2MWY5 MzI2NDljMGUxNjJiOWNiZDBhYzM1NmE1NTYwMWU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiVmseiRJGNW7C7eULIkZfw0ByeFES9IaPtQWSzh4NyGR9 soyKeVEdCEQg+wqCERHbyHxKELoisc6nk5gQeDbytn73Pt1UfMsjU3gjIvHD/LDy 01/1CgoQ04BSPxCFmt4rZOUZOVGpJ8MI/ICnWyXjRxlG1luhEKvZAGVf6id5qJRK XE0YPyfEgq0MMkgen95gMTj7rr5sabeqGNX7/ZG0NFkIOTup9snfNbR58B5n+wiv taYBensMcJA3OEIhVZ7+qHPN29IG8FCiQsC8XAnaakYzYeUq3StZOAsKsXNr0vBl 3W8dLKKkp216IztC3ls98GWyA6K+EVpUg478m3gNAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUMI8EPGhgi/10dS8LG0BVdxu+VawwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2YzNzMzZmY0LTYwYTUtNGJkZS04YTI4LTFlMGJiMjcxNjA5ZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAN3DGAwDQYJKoZIhvcNAQELBQADggEBAJ53DaRK8FVDbIOjpEVljtPzWPA7 44WwEFQXb1x9uYs5mmiqVJyvQV7b6k3c11jQ0zlZaOfdqmdpFoW23sJEupkl1w5X 77s1vdQpws5aJJ/iJM1yUt5HP5VeJsEmgSGcim7ysxIN7kXzPS4INgx1auMthH7M J/Ct33pDiG5WH8VITXMIyOGznmkQON98U3R/YP1DGyUHzuKqaW+fJjGEA7NZfNMa jDC2kVbVRtxPOsFdOm3s/IsMtLz4yaqE4E1/hUDbV8M+wntcwHo5jeCxeskpiJqM KOOcI7t9YM1B2n5ISA+/btg+XALDgNggnewH23ZR3l2QwJMTTbqHqKlphfg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:56 2026 by rpki-client