$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8f69e0f-af75-4a08-9d97-31505d87d67d.roa File: f8f69e0f-af75-4a08-9d97-31505d87d67d.roa (raw, json) Hash identifier: tca2K/KXlSNe20gADOe82+Cn0ImugqhxfVOLoAYvpJo= Subject key identifier: 50:3C:3B:11:FE:C7:25:B6:8D:44:85:EF:37:A6:06:EC:2F:0C:DC:D4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 537BC1302E823C32A9381F32AEFAE81CE6D79113 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8f69e0f-af75-4a08-9d97-31505d87d67d.roa Signing time: Thu 26 Feb 2026 00:00:47 +0000 ROA not before: Thu 26 Feb 2026 00:00:47 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.239.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 53:7b:c1:30:2e:82:3c:32:a9:38:1f:32:ae:fa:e8:1c:e6:d7:91:13 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:00:47 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=4b6d842339a0e42c219e8f63dbbf86b09db4e47f316a88054f638d5a13810968, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:cb:c9:09:19:5d:14:7b:d5:12:6a:aa:3b:f3: f3:ed:af:08:34:03:b3:f5:51:de:c1:db:03:a4:97: 5d:e6:bf:d6:5c:e6:eb:13:96:27:13:72:86:a0:20: 00:1a:67:49:d0:40:1c:2e:2b:a0:2a:61:29:b5:fa: 6a:cd:14:c2:67:6f:99:45:d3:31:76:7b:fd:b2:61: be:e1:90:3f:13:f5:6f:38:ac:78:b0:65:6c:a5:b5: 53:2b:31:9b:30:aa:5f:44:17:86:75:31:6f:ad:93: 40:35:25:c8:be:43:93:f1:f5:71:fa:9f:66:6f:90: 17:92:5c:42:8c:cf:ef:16:f1:d4:86:ad:8f:1b:b7: b3:96:8d:2b:e7:35:12:61:ad:d9:5d:50:0c:89:42: ef:26:40:7a:11:56:a6:73:73:f8:49:7b:8c:7e:69: ad:c2:bc:01:f2:8d:25:0b:f8:30:65:0f:c1:f9:bb: 0c:86:7d:d3:34:c1:f1:84:d9:33:58:21:7c:e1:5d: 2c:46:f7:13:8f:6b:7f:c1:f0:28:ea:0d:56:92:56: 2f:71:06:94:d8:b7:92:c0:58:1a:f5:77:0c:7c:9f: 34:2a:37:c1:60:e2:d7:01:b1:f0:8a:30:3e:9c:85: c3:19:43:c8:a1:03:f4:8b:d4:26:ba:97:24:75:69: 4e:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 50:3C:3B:11:FE:C7:25:B6:8D:44:85:EF:37:A6:06:EC:2F:0C:DC:D4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f8f69e0f-af75-4a08-9d97-31505d87d67d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.239.0.0/16 Signature Algorithm: sha256WithRSAEncryption 0d:7d:1e:d4:c1:b8:e8:be:cc:c0:1f:21:a8:8f:3c:1a:1a:0d: 15:bc:bc:8e:bd:77:0e:12:86:0f:0a:4a:e6:d9:94:51:ea:ef: 61:51:7a:a9:8b:c0:03:a2:05:bb:8d:6a:58:8b:bf:8a:d9:2a: 03:8a:7f:0c:d3:a3:dc:bc:4a:9f:70:cf:32:83:02:d8:a1:9a: 7d:a3:cb:64:cb:df:d3:67:34:42:7d:dc:77:b0:72:7b:b9:0e: 04:47:2f:39:b9:06:0a:43:ec:b7:48:6f:52:41:60:37:30:6c: 6c:10:84:f8:8b:c1:40:85:0c:14:9e:09:3f:bf:78:7b:5c:ec: eb:6f:f0:a2:e5:af:b5:24:6c:48:c5:4c:2c:6a:90:e1:29:05: 9f:fe:79:05:83:43:ce:9d:3d:17:85:2a:2d:9e:aa:14:37:e9: bd:8c:da:d4:b7:df:75:93:26:3d:41:96:cc:41:22:f0:3d:6f: 46:cc:fb:80:ab:9f:19:24:36:ca:b5:1d:2d:89:14:a3:1d:26: 3d:56:08:3a:46:07:05:a0:16:29:18:2c:53:22:f3:45:41:9c: ac:30:bf:7e:58:9a:b5:31:3e:4a:cb:5d:7f:54:47:5f:19:b9: 56:c3:ee:b1:93:c4:68:cf:be:4f:6c:a1:b6:85:fa:e3:33:23: 94:5f:bb:fb -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUU3vBMC6CPDKpOB8yrvroHObXkRMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDAwMDQ3WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjZkODQyMzM5YTBlNDJjMjE5ZThmNjNkYmJmODZiMDlk YjRlNDdmMzE2YTg4MDU0ZjYzOGQ1YTEzODEwOTY4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC0y8kJGV0Ue9USaqo78/Ptrwg0A7P1Ud7B2wOkl13mv9Zc 5usTlicTcoagIAAaZ0nQQBwuK6AqYSm1+mrNFMJnb5lF0zF2e/2yYb7hkD8T9W84 rHiwZWyltVMrMZswql9EF4Z1MW+tk0A1Jci+Q5Px9XH6n2ZvkBeSXEKMz+8W8dSG rY8bt7OWjSvnNRJhrdldUAyJQu8mQHoRVqZzc/hJe4x+aa3CvAHyjSUL+DBlD8H5 uwyGfdM0wfGE2TNYIXzhXSxG9xOPa3/B8CjqDVaSVi9xBpTYt5LAWBr1dwx8nzQq N8Fg4tcBsfCKMD6chcMZQ8ihA/SL1Ca6lyR1aU4nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUUDw7Ef7HJbaNRIXvN6YG7C8M3NQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y4ZjY5ZTBmLWFmNzUtNGEwOC05ZDk3LTMxNTA1ZDg3ZDY3ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA47zANBgkqhkiG9w0BAQsFAAOCAQEADX0e1MG46L7MwB8hqI88GhoNFby8 jr13DhKGDwpK5tmUUervYVF6qYvAA6IFu41qWIu/itkqA4p/DNOj3LxKn3DPMoMC 2KGafaPLZMvf02c0Qn3cd7Bye7kOBEcvObkGCkPst0hvUkFgNzBsbBCE+IvBQIUM FJ4JP794e1zs62/wouWvtSRsSMVMLGqQ4SkFn/55BYNDzp09F4UqLZ6qFDfpvYza 1LffdZMmPUGWzEEi8D1vRsz7gKufGSQ2yrUdLYkUox0mPVYIOkYHBaAWKRgsUyLz RUGcrDC/fliatTE+Sstdf1RHXxm5VsPusZPEaM++T2yhtoX64zMjlF+7+w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:20:12 2026 by rpki-client