$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa File: f962418c-9cd6-4d29-bc13-088cd1d70e66.roa (raw, json) Hash identifier: hv2VxOsAuqKT5ku3n/xBfoBsqOEo+Zs47vRHFAR1In8= Subject key identifier: C9:7B:87:4A:F4:38:3E:4B:47:E1:CB:07:B5:58:1F:A4:24:63:02:34 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2521110B3652036CC3C016EC1C0F140A24C2127D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa Signing time: Sun 08 Feb 2026 01:01:25 +0000 ROA not before: Sun 08 Feb 2026 01:01:25 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.93.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 25:21:11:0b:36:52:03:6c:c3:c0:16:ec:1c:0f:14:0a:24:c2:12:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 01:01:25 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=7d42c87c3c35146d4b8ba293fd4278bd90ae2f8df6d2d4dccee078a8689061d5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:ea:fb:98:1e:02:24:e6:40:29:1f:8c:12:b7: 4e:9a:73:6a:fa:51:5b:08:1e:aa:7e:26:20:50:46: 4c:48:0a:b6:9d:01:37:3f:d7:0a:91:7a:4a:ff:38: d3:f6:e9:1f:a1:8c:3d:41:20:08:f3:c3:94:0c:8f: 0d:b5:5e:95:7b:71:2f:5f:00:df:82:9c:5f:dc:cb: 86:8c:09:09:10:33:99:5e:47:9e:10:3e:cb:c5:76: a8:f0:e9:3c:67:74:d8:4f:31:c6:34:7c:f1:de:44: fe:29:5c:ef:5a:7a:68:c6:f3:bb:5c:92:de:2d:83: 89:dc:9b:cd:2f:42:11:de:ae:01:0b:ce:89:d7:5d: f7:32:08:2d:1e:d9:f4:3f:7c:84:20:94:67:7c:57: 23:00:cd:e1:ce:59:cd:d4:62:59:f8:7c:3e:34:0a: 5a:2a:ea:f2:f9:92:5a:08:5e:c6:db:17:1b:75:7d: 17:82:41:cd:7b:ed:1a:49:03:29:2d:ab:f4:33:b9: f6:33:44:1b:f4:ee:3f:63:2c:55:45:0f:0d:2c:bb: 99:05:93:f8:16:78:c9:32:7e:90:e0:1c:f1:af:ee: 17:b8:47:1d:4d:4f:53:57:27:ee:85:33:13:dd:14: 4a:66:34:26:6e:ca:71:c8:16:1a:60:6d:16:d0:a3: 94:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:7B:87:4A:F4:38:3E:4B:47:E1:CB:07:B5:58:1F:A4:24:63:02:34 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f962418c-9cd6-4d29-bc13-088cd1d70e66.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.93.0.0/16 Signature Algorithm: sha256WithRSAEncryption 92:65:d0:2e:94:43:85:6f:0d:77:98:65:68:a7:4c:9b:fe:5e: 9f:f4:0e:40:87:58:02:2e:77:62:d1:3f:5f:06:d4:85:c6:bb: 75:40:8c:73:2b:00:32:a7:eb:c0:21:ea:be:dc:cd:84:cb:c3: 9e:5d:4a:0e:9c:0a:a2:53:62:f3:6c:18:20:dc:41:72:58:cf: 7d:53:4a:43:84:8f:52:83:75:47:2b:b5:aa:17:f1:8d:32:66: ea:59:51:b3:01:31:07:cf:00:16:80:3c:b2:dd:34:d1:04:65: d3:ce:af:91:e5:f6:c9:49:00:7f:74:e1:87:a6:bb:e0:a1:83: 3c:b2:29:cc:02:c4:39:f9:29:41:2f:39:d1:22:7f:4f:8e:0a: 6c:9b:d3:e9:a9:29:70:51:d5:d2:26:39:db:53:04:5f:ad:2e: 21:05:1f:45:18:76:42:a4:58:ba:9f:bb:de:6b:3c:2a:92:d4: 31:db:91:1e:60:d4:7d:a0:07:1b:26:60:77:e8:ba:e7:34:16: 00:fb:4b:d1:80:67:82:c0:73:d8:97:ae:e7:8a:c7:37:e1:4b: 52:70:8d:f4:89:99:8f:8b:97:5f:a5:14:bc:fc:17:f4:e7:8d: f1:f4:dd:a6:bd:10:b8:84:4e:01:08:1b:84:7b:c6:53:2a:25: 59:aa:e3:a2 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUJSERCzZSA2zDwBbsHA8UCiTCEn0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDEwMTI1WhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A3ZDQyYzg3YzNjMzUxNDZkNGI4YmEyOTNmZDQyNzhiZDkw YWUyZjhkZjZkMmQ0ZGNjZWUwNzhhODY4OTA2MWQ1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDW6vuYHgIk5kApH4wSt06ac2r6UVsIHqp+JiBQRkxICrad ATc/1wqRekr/ONP26R+hjD1BIAjzw5QMjw21XpV7cS9fAN+CnF/cy4aMCQkQM5le R54QPsvFdqjw6TxndNhPMcY0fPHeRP4pXO9aemjG87tckt4tg4ncm80vQhHergEL zonXXfcyCC0e2fQ/fIQglGd8VyMAzeHOWc3UYln4fD40Cloq6vL5kloIXsbbFxt1 fReCQc177RpJAyktq/QzufYzRBv07j9jLFVFDw0su5kFk/gWeMkyfpDgHPGv7he4 Rx1NT1NXJ+6FMxPdFEpmNCZuynHIFhpgbRbQo5TtAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUyXuHSvQ4PktH4csHtVgfpCRjAjQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5NjI0MThjLTljZDYtNGQyOS1iYzEzLTA4OGNkMWQ3MGU2Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQXTANBgkqhkiG9w0BAQsFAAOCAQEAkmXQLpRDhW8Nd5hlaKdMm/5en/QO QIdYAi53YtE/XwbUhca7dUCMcysAMqfrwCHqvtzNhMvDnl1KDpwKolNi82wYINxB cljPfVNKQ4SPUoN1Ryu1qhfxjTJm6llRswExB88AFoA8st000QRl086vkeX2yUkA f3Thh6a74KGDPLIpzALEOfkpQS850SJ/T44KbJvT6akpcFHV0iY521MEX60uIQUf RRh2QqRYup+73ms8KpLUMduRHmDUfaAHGyZgd+i65zQWAPtL0YBngsBz2Jeu54rH N+FLUnCN9ImZj4uXX6UUvPwX9OeN8fTdpr0QuIROAQgbhHvGUyolWarjog== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:34 2026 by rpki-client