$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98c6682-15ea-4f71-9c0e-97127590dea1.roa File: f98c6682-15ea-4f71-9c0e-97127590dea1.roa (raw, json) Hash identifier: j4SWUv6sy25Bx/h9aeLFQD6jVcPUcn195OLaMyl6UW4= Subject key identifier: B1:AC:38:9B:D4:A0:F2:3C:53:61:2F:7E:AB:4B:4F:DC:A9:90:E8:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2884F096F0EF8FE014F99F7F6674EE68C0491B71 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98c6682-15ea-4f71-9c0e-97127590dea1.roa Signing time: Tue 10 Feb 2026 00:50:07 +0000 ROA not before: Tue 10 Feb 2026 00:50:07 +0000 ROA not after: Mon 11 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 63.176.0.0/14 maxlen: 14 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 28:84:f0:96:f0:ef:8f:e0:14:f9:9f:7f:66:74:ee:68:c0:49:1b:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 10 00:50:07 2026 GMT Not After : May 11 23:59:59 2026 GMT Subject: serialNumber=a74d4016e1155fb5782dd06a54b74b59d76916688a64570f450c88ce120035e6, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:5c:a3:4d:40:c8:a9:38:5e:76:82:c1:80:c9: c4:c9:fb:47:70:37:73:c6:d1:d0:6b:88:b9:77:00: 39:64:cf:53:37:73:b3:8b:fc:a5:90:10:fc:3a:85: e4:f5:1d:9f:74:45:bb:78:da:9d:24:77:07:03:e5: ef:7a:53:66:b3:32:85:28:1e:30:50:c1:15:35:7c: 60:d6:21:66:a3:11:5a:9d:5d:b1:f0:c2:fa:dc:92: 86:a5:c7:4a:9a:f5:6d:1f:ee:4f:b4:d2:9e:ff:e3: f1:bc:12:c6:30:71:07:92:43:68:dc:e1:2d:db:1f: 81:a6:62:ab:bd:fb:18:f1:7a:28:c2:1b:11:ab:fc: c0:21:a3:27:f0:7c:9b:15:38:3c:8f:9d:b6:78:92: 00:87:2d:04:46:ea:5f:b5:01:ff:aa:1a:b4:44:cd: dd:aa:6e:42:0e:ae:97:4d:69:7f:37:d7:4b:c2:8d: e7:16:a0:7f:90:62:a4:18:3c:46:c9:07:8c:5a:74: d9:19:c2:e5:8e:c9:fd:01:30:9f:f0:12:a7:48:fd: eb:a8:d1:c9:31:e5:f2:d8:09:4e:ae:15:f4:03:80: 42:5f:6f:2b:08:2b:c5:00:aa:40:36:24:b8:0e:b9: d5:09:41:61:dd:48:62:48:d2:ba:0a:48:0b:0a:15: 2a:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:AC:38:9B:D4:A0:F2:3C:53:61:2F:7E:AB:4B:4F:DC:A9:90:E8:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/f98c6682-15ea-4f71-9c0e-97127590dea1.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 63.176.0.0/14 Signature Algorithm: sha256WithRSAEncryption 97:ec:11:3c:30:a3:ce:31:5c:8a:4b:35:28:3f:f5:1a:41:8d: 5b:fb:1f:54:6e:32:56:7c:fb:09:21:84:d1:fd:59:f4:bd:97: 8b:a6:77:26:14:7d:6c:4e:ce:41:b6:46:15:36:1e:dd:c2:09: 73:ff:91:fe:b2:74:b8:98:da:af:05:a1:3b:a0:1c:f9:ea:85: 13:6d:1d:ea:cb:c3:d3:28:3b:f6:c9:0a:48:3d:40:1b:bc:43: 6a:de:19:5d:34:18:3a:b3:2b:a3:d8:ae:7a:78:47:5a:e5:3b: 50:9b:8f:33:4f:0a:cb:c1:1d:40:ce:1b:02:fe:45:d1:0d:2d: 64:a5:d6:76:e9:c7:63:ec:9f:94:e5:e5:3b:33:14:76:28:fe: fc:47:b0:87:19:bf:16:61:66:54:ef:ab:89:57:4a:a7:ab:8c: a5:54:d4:a7:87:5c:bc:27:2b:db:16:a8:a5:b9:d6:e5:be:6e: 54:a1:cb:e7:af:89:e3:f1:8f:aa:4e:07:05:5a:fb:36:bd:1e: 73:b7:9d:ae:60:52:57:f8:7a:95:11:8d:35:3e:fb:f2:e1:a5: b7:3e:6a:1d:ed:b9:3c:84:56:3f:75:23:26:43:7d:35:26:db: da:bf:19:5d:7f:d1:82:96:2b:6e:12:ed:c2:a1:35:16:cd:54: 5c:d2:b0:47 -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUKITwlvDvj+AU+Z9/ZnTuaMBJG3EwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEwMDA1MDA3WhcNMjYwNTExMjM1OTU5 WjB6MUkwRwYDVQQFE0BhNzRkNDAxNmUxMTU1ZmI1NzgyZGQwNmE1NGI3NGI1OWQ3 NjkxNjY4OGE2NDU3MGY0NTBjODhjZTEyMDAzNWU2MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCPXKNNQMipOF52gsGAycTJ+0dwN3PG0dBriLl3ADlkz1M3 c7OL/KWQEPw6heT1HZ90Rbt42p0kdwcD5e96U2azMoUoHjBQwRU1fGDWIWajEVqd XbHwwvrckoalx0qa9W0f7k+00p7/4/G8EsYwcQeSQ2jc4S3bH4GmYqu9+xjxeijC GxGr/MAhoyfwfJsVODyPnbZ4kgCHLQRG6l+1Af+qGrREzd2qbkIOrpdNaX8310vC jecWoH+QYqQYPEbJB4xadNkZwuWOyf0BMJ/wEqdI/euo0ckx5fLYCU6uFfQDgEJf bysIK8UAqkA2JLgOudUJQWHdSGJI0roKSAsKFSovAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUsaw4m9Sg8jxTYS9+q0tP3KmQ6G8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2Y5OGM2NjgyLTE1ZWEtNGY3MS05YzBlLTk3MTI3NTkwZGVhMS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwI/sDANBgkqhkiG9w0BAQsFAAOCAQEAl+wRPDCjzjFciks1KD/1GkGNW/sf VG4yVnz7CSGE0f1Z9L2Xi6Z3JhR9bE7OQbZGFTYe3cIJc/+R/rJ0uJjarwWhO6Ac +eqFE20d6svD0yg79skKSD1AG7xDat4ZXTQYOrMro9iuenhHWuU7UJuPM08Ky8Ed QM4bAv5F0Q0tZKXWdunHY+yflOXlOzMUdij+/Eewhxm/FmFmVO+riVdKp6uMpVTU p4dcvCcr2xaopbnW5b5uVKHL56+J4/GPqk4HBVr7Nr0ec7edrmBSV/h6lRGNNT77 8uGltz5qHe25PIRWP3UjJkN9NSbb2r8ZXX/RgpYrbhLtwqE1Fs1UXNKwRw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:27 2026 by rpki-client