$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6791e6e-7c87-4b47-886c-921b0bc60437.roa File: f6791e6e-7c87-4b47-886c-921b0bc60437.roa (raw, json) Hash identifier: 8WR399km4k3P6FNgIvxcalEaxryOeYOhqVYypAde4So= Subject key identifier: E0:99:0C:45:91:90:6C:63:09:D2:EF:1B:4D:DE:59:77:8B:E7:BE:58 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1297C44DF3A2862841F307B044B4935C3E432692 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6791e6e-7c87-4b47-886c-921b0bc60437.roa Signing time: Wed 25 Feb 2026 00:10:13 +0000 ROA not before: Wed 25 Feb 2026 00:10:13 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 164.195.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 12:97:c4:4d:f3:a2:86:28:41:f3:07:b0:44:b4:93:5c:3e:43:26:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:10:13 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=bbbcb3041321debbe9b41c9f397303f18d74480b07f0e8481864b33f7927dc25, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:1f:c9:a8:d4:af:5f:41:3f:ef:0a:ed:15:be: 06:fa:e7:39:78:09:2e:5a:6e:a9:28:bb:55:3f:06: c5:39:61:29:f0:a8:0e:44:d2:dd:fc:be:c6:18:f6: c5:b8:a1:30:31:2f:32:13:8b:b2:e5:54:21:71:12: 8f:c0:82:fb:36:e4:aa:08:f9:71:55:71:2d:7e:23: 4e:fd:9c:0f:dc:b4:ff:06:a5:a5:6e:d7:2d:5f:2e: cd:5f:f8:82:9e:57:ab:79:e3:82:a4:13:fb:27:1a: d6:2d:23:20:55:87:be:72:f2:8a:91:1e:35:1e:d8: 1b:59:76:5e:65:39:de:30:a7:e7:15:8f:f5:ff:8c: d7:14:37:a8:1e:28:1e:bb:71:7d:b4:92:6b:f4:1b: 77:5c:6a:68:53:5b:ed:71:2a:73:a1:9a:f7:b5:b1: 70:60:df:07:88:34:ab:cb:2f:0e:c2:57:c0:2d:19: 54:67:67:7f:cd:6d:12:c0:ff:d3:d1:29:48:39:3e: da:ce:6c:4c:15:ea:8a:63:9b:09:1f:87:cd:23:29: 0c:c1:ea:58:bc:0c:dc:b9:83:1d:9d:2e:a5:ce:92: d8:ab:19:c8:f2:45:07:df:9b:cd:66:da:5c:92:8a: 59:86:10:38:46:5a:42:67:ac:02:5d:bd:90:bd:0d: f6:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:99:0C:45:91:90:6C:63:09:D2:EF:1B:4D:DE:59:77:8B:E7:BE:58 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f6791e6e-7c87-4b47-886c-921b0bc60437.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 164.195.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4d:1b:48:da:0c:8c:6b:ba:b2:d3:be:b7:04:09:2c:77:37:a4: b3:80:0c:5a:03:22:8e:1d:6d:5c:15:3a:cb:dd:62:a7:04:f6: 72:0c:cb:56:2b:2a:21:bc:ac:3b:ee:b9:e8:cd:90:42:f6:82: 1d:f5:94:ae:c1:4b:b3:af:34:5f:68:7d:dd:6a:a9:b7:00:6d: 0b:4c:13:a1:dc:a8:df:f8:b2:ea:ab:4d:e7:d4:fc:e3:f2:bc: 3a:bf:5e:9d:78:a0:fc:ff:93:3c:09:5d:85:27:60:92:36:5e: 3e:35:bc:5b:6a:3a:79:c5:f3:3e:b9:ba:be:58:51:a9:7b:eb: 03:70:ad:dc:f4:fd:d3:5f:06:53:50:6d:a9:df:7e:2b:6b:53: f8:ec:6c:ef:07:71:f4:ec:b1:d0:ba:55:00:fa:ad:cf:fa:d2: fc:b7:fa:42:14:3f:42:43:44:33:f8:9e:a5:5c:df:ea:d1:cd: 0d:dc:af:9f:e2:3b:0f:aa:9a:71:86:f6:64:fb:45:47:e2:a0: 58:1d:85:5f:36:28:48:1f:f7:d3:67:5a:f6:79:07:d4:7d:dc: d9:96:52:43:a4:84:fa:c0:b8:98:2e:32:78:3b:ae:d7:a5:5c: 35:eb:e7:d2:cc:7d:cd:4a:6e:f1:13:bb:76:2f:ff:10:87:c8: bc:bb:8a:9a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEpfETfOihihB8wewRLSTXD5DJpIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAxMDEzWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BiYmJjYjMwNDEzMjFkZWJiZTliNDFjOWYzOTczMDNmMThk NzQ0ODBiMDdmMGU4NDgxODY0YjMzZjc5MjdkYzI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDgH8mo1K9fQT/vCu0Vvgb65zl4CS5abqkou1U/BsU5YSnw qA5E0t38vsYY9sW4oTAxLzITi7LlVCFxEo/Agvs25KoI+XFVcS1+I079nA/ctP8G paVu1y1fLs1f+IKeV6t544KkE/snGtYtIyBVh75y8oqRHjUe2BtZdl5lOd4wp+cV j/X/jNcUN6geKB67cX20kmv0G3dcamhTW+1xKnOhmve1sXBg3weINKvLLw7CV8At GVRnZ3/NbRLA/9PRKUg5PtrObEwV6opjmwkfh80jKQzB6li8DNy5gx2dLqXOktir GcjyRQffm81m2lySilmGEDhGWkJnrAJdvZC9DfZpAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQU4JkMRZGQbGMJ0u8bTd5Zd4vnvlgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y2NzkxZTZlLTdjODctNGI0Ny04ODZjLTkyMWIwYmM2MDQzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCkwzANBgkqhkiG9w0BAQsFAAOCAQEATRtI2gyMa7qy0763BAksdzeks4AM WgMijh1tXBU6y91ipwT2cgzLVisqIbysO+656M2QQvaCHfWUrsFLs680X2h93Wqp twBtC0wTodyo3/iy6qtN59T84/K8Or9enXig/P+TPAldhSdgkjZePjW8W2o6ecXz Prm6vlhRqXvrA3Ct3PT9018GU1Btqd9+K2tT+Oxs7wdx9Oyx0LpVAPqtz/rS/Lf6 QhQ/QkNEM/iepVzf6tHNDdyvn+I7D6qacYb2ZPtFR+KgWB2FXzYoSB/302da9nkH 1H3c2ZZSQ6SE+sC4mC4yeDuu16VcNevn0sx9zUpu8RO7di//EIfIvLuKmg== -----END CERTIFICATE-----Generated at Mon Mar 2 00:30:49 2026 by rpki-client