$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa File: f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa (raw, json) Hash identifier: As/Oaz2iUteOOz2PY7bXqqIHXUNeHGjOQW2k1aY47yE= Subject key identifier: 3D:84:76:D2:C6:35:2D:4D:63:7E:35:45:38:BE:61:C6:67:E9:E5:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16B4351BE7681CFE4AB801EBE0EB381D5D1A8052 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa Signing time: Fri 13 Feb 2026 00:20:10 +0000 ROA not before: Fri 13 Feb 2026 00:20:10 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 13.128.240.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:b4:35:1b:e7:68:1c:fe:4a:b8:01:eb:e0:eb:38:1d:5d:1a:80:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:20:10 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=7ae366107c6e3121a0802ef17bf54c5c60352cf5383e772fb38f6ecfd045f09d, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:7f:49:c9:f9:96:f2:40:49:bd:61:96:9a:49: 0c:dd:ba:69:88:80:80:fb:94:a5:2e:7b:47:b3:32: 80:9c:c2:91:72:60:c9:37:4e:cd:4d:e6:44:e5:92: 1a:76:8f:5c:32:51:64:4d:c1:4b:34:05:c6:11:bf: 43:8f:3f:a6:3b:30:2a:1b:8f:40:80:60:93:f2:93: 9c:a6:ff:b7:56:1c:b0:56:b3:51:f1:f4:d0:3b:fa: 8d:c0:b7:b4:a5:b4:e2:ce:0f:e1:ea:2f:e0:5c:95: 86:3d:79:2d:6e:81:70:e1:cc:af:18:c3:4c:85:c0: 08:0b:96:f6:0c:c6:4b:93:06:be:69:d6:e4:2f:d7: 12:51:f7:0e:c8:d6:b3:cd:88:fd:20:48:20:76:60: 53:09:ff:78:e0:e5:c4:6e:38:01:14:89:fa:ee:98: 33:95:af:75:fa:f6:66:a9:ef:7f:85:aa:cb:3d:00: f5:af:61:48:6a:75:d9:21:b8:a4:f4:ac:3b:23:6e: 30:5f:09:e9:c9:e3:99:ef:bd:44:5e:1d:8e:97:61: 74:a1:6b:66:50:a6:fd:1e:eb:2d:f6:fd:c3:0d:ca: 48:57:73:5d:96:d2:c6:3c:c7:fc:06:5e:f6:eb:4f: 5c:37:09:79:34:8f:bb:62:68:bb:07:6a:23:7a:cf: dc:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:84:76:D2:C6:35:2D:4D:63:7E:35:45:38:BE:61:C6:67:E9:E5:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8d8c762-dbfd-4268-bc1b-e7fb289da015.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 13.128.240.0/21 Signature Algorithm: sha256WithRSAEncryption 46:6f:87:eb:55:b2:e1:ed:0c:2c:4d:73:c5:8b:ce:d9:b6:43: 56:89:b5:9d:a4:39:fa:e0:ca:db:46:07:88:45:1e:13:c8:1f: 02:a4:b8:17:9b:38:41:f3:4a:c8:67:23:ba:19:74:3d:7e:ca: 19:a2:2a:d2:4e:ab:b4:2d:7a:be:c7:a6:20:4c:7b:57:3a:b7: 12:f1:0a:93:3d:3d:e7:eb:98:da:ca:ea:78:13:a2:4a:35:b2: 63:ea:c3:7d:bc:ff:b8:dd:04:16:09:ec:aa:17:6f:d2:92:79: 6f:a4:67:76:31:a5:d9:db:f2:bd:f5:21:9d:af:3d:10:87:fc: 1e:66:a0:67:9a:7e:5e:bb:ae:ca:6f:9e:cb:49:27:f5:6b:bc: b0:36:07:9e:f3:fc:bf:52:54:ce:d4:39:f6:94:8c:7e:b5:6e: 85:91:95:dd:e9:1b:8c:db:9e:3d:ca:2a:32:50:45:75:bc:8e: 2e:e2:7e:9b:54:2e:cc:20:1f:8a:4f:7f:53:82:bd:9c:e9:aa: 22:f1:db:dc:ec:23:7c:0d:fb:7d:09:cd:d4:03:3e:e7:d2:36: 71:35:0e:46:e6:d9:c3:73:31:df:2b:63:76:ac:1f:36:83:e7: a8:86:23:b2:fd:e1:59:ff:30:b6:a3:b8:e1:c0:7f:f5:de:e0: 13:9d:8e:03 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUFrQ1G+doHP5KuAHr4Os4HV0agFIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAyMDEwWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A3YWUzNjYxMDdjNmUzMTIxYTA4MDJlZjE3YmY1NGM1YzYw MzUyY2Y1MzgzZTc3MmZiMzhmNmVjZmQwNDVmMDlkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDjf0nJ+ZbyQEm9YZaaSQzdummIgID7lKUue0ezMoCcwpFy YMk3Ts1N5kTlkhp2j1wyUWRNwUs0BcYRv0OPP6Y7MCobj0CAYJPyk5ym/7dWHLBW s1Hx9NA7+o3At7SltOLOD+HqL+BclYY9eS1ugXDhzK8Yw0yFwAgLlvYMxkuTBr5p 1uQv1xJR9w7I1rPNiP0gSCB2YFMJ/3jg5cRuOAEUifrumDOVr3X69map73+Fqss9 APWvYUhqddkhuKT0rDsjbjBfCenJ45nvvUReHY6XYXSha2ZQpv0e6y32/cMNykhX c12W0sY8x/wGXvbrT1w3CXk0j7tiaLsHaiN6z9wbAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUPYR20sY1LU1jfjVFOL5hxmfp5cowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4ZDhjNzYyLWRiZmQtNDI2OC1iYzFiLWU3ZmIyODlkYTAxNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAMNgPAwDQYJKoZIhvcNAQELBQADggEBAEZvh+tVsuHtDCxNc8WLztm2Q1aJ tZ2kOfrgyttGB4hFHhPIHwKkuBebOEHzSshnI7oZdD1+yhmiKtJOq7Qter7HpiBM e1c6txLxCpM9PefrmNrK6ngToko1smPqw328/7jdBBYJ7KoXb9KSeW+kZ3Yxpdnb 8r31IZ2vPRCH/B5moGeafl67rspvnstJJ/VrvLA2B57z/L9SVM7UOfaUjH61boWR ld3pG4zbnj3KKjJQRXW8ji7ifptULswgH4pPf1OCvZzpqiLx29zsI3wN+30JzdQD PufSNnE1Dkbm2cNzMd8rY3asHzaD56iGI7L94Vn/MLajuOHAf/Xe4BOdjgM= -----END CERTIFICATE-----Generated at Mon Mar 2 13:18:59 2026 by rpki-client