$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa File: fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa (raw, json) Hash identifier: VXXfbdN8O62Yl9ZS8uqKMpdYNmGb5bx76+5/LaJZ1Zw= Subject key identifier: 39:12:C3:11:A4:EB:33:75:15:DC:44:4A:79:41:CE:0C:04:0B:4F:6E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 11CB831F800AD0A32351E05447139B3DB26A75B3 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa Signing time: Sat 28 Feb 2026 00:40:08 +0000 ROA not before: Sat 28 Feb 2026 00:40:08 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 40.216.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:cb:83:1f:80:0a:d0:a3:23:51:e0:54:47:13:9b:3d:b2:6a:75:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:40:08 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=5c957c43b587fda9e0344d415c2268bd5e244cf47fb19a1bd5bfdec0caba3808, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:be:de:af:97:ce:15:16:6e:df:9b:a7:74:df: de:75:41:48:b5:bd:f2:8e:7e:b3:fd:2b:a5:25:c2: 43:f2:24:9c:63:ec:1c:f0:b4:e6:46:7e:25:fc:55: 3d:1e:c0:61:cf:c2:33:9d:f8:68:f3:94:9c:0f:95: 30:b7:1d:e8:22:88:92:96:77:4d:69:d4:8d:44:0f: a8:f5:ab:3c:d7:bd:b4:c0:71:17:2e:8b:43:59:bf: 2c:bf:c3:f4:4d:eb:93:61:9e:37:3a:35:9e:c6:88: ae:9a:b7:2a:1b:95:47:b1:25:6b:28:47:06:0c:ad: f9:81:e7:38:cf:d3:be:a6:60:ec:88:9d:5c:57:78: f9:82:96:3b:4a:ae:76:ab:b7:a7:62:16:26:6d:1f: 42:ce:0e:07:93:ed:8a:1a:90:05:d5:00:4e:72:8a: 1a:9e:e5:d7:73:29:d0:5a:71:cd:69:4a:8d:80:60: 3e:3e:ec:b5:a6:32:5c:d7:99:d6:fd:a0:d6:a7:1e: c3:df:4c:14:9e:b4:23:ea:87:d8:e6:3f:36:dc:aa: a6:1f:a5:c1:01:26:e2:af:88:b7:53:d8:ce:0c:01: 9f:07:2a:e1:65:8f:91:a5:53:51:65:7c:8c:0a:1a: df:f1:f2:bb:5e:93:99:a0:8f:dc:5c:51:d2:0d:cd: 80:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:12:C3:11:A4:EB:33:75:15:DC:44:4A:79:41:CE:0C:04:0B:4F:6E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fd591dd4-3bac-44a9-bd89-e1ba9ed57670.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 40.216.0.0/16 Signature Algorithm: sha256WithRSAEncryption 3a:1c:82:f8:70:fe:c3:b1:e4:5b:c7:b8:44:c4:a7:37:df:64: db:be:1f:c6:9b:be:b3:04:ad:9b:9e:7a:5e:e0:f5:73:3a:7f: cb:7c:f2:a2:ab:22:f7:ed:ad:b5:94:4d:cf:6e:35:be:d5:f5: 0b:de:9e:97:d5:ad:6f:7e:92:de:2f:f5:9c:78:6e:a4:20:77: b5:d3:ee:53:58:51:00:fd:c4:ee:c0:d9:4e:74:25:22:45:94: a0:39:ff:7d:8c:39:76:01:75:3f:fc:53:aa:9f:ff:e6:b2:d8: 87:ee:38:69:6d:29:d6:34:1f:1b:ba:da:0a:c1:fd:11:05:86: 5e:90:21:12:5e:66:22:ae:12:45:bd:30:94:60:07:de:ad:0f: a3:40:af:10:d8:b9:8d:21:cf:24:f2:6e:a6:bb:a1:94:a2:95: 4a:ea:60:5c:e6:a9:d3:58:40:fa:da:93:a1:b1:e5:79:2c:9d: 9d:e8:58:3a:5e:68:02:a1:d0:35:37:b4:c5:10:a1:31:21:f2: 5b:c4:8a:ae:10:a0:4e:01:8c:4d:f8:1e:9d:53:6a:68:6a:46: 6d:4d:11:07:79:7d:8f:2c:5a:f4:9d:a4:10:c4:5b:9b:6d:68: 00:80:a5:2a:49:81:4e:14:c5:d5:3f:c2:65:85:b3:9f:f1:04: 8d:d5:3d:8b -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUEcuDH4AK0KMjUeBURxObPbJqdbMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDA0MDA4WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0A1Yzk1N2M0M2I1ODdmZGE5ZTAzNDRkNDE1YzIyNjhiZDVl MjQ0Y2Y0N2ZiMTlhMWJkNWJmZGVjMGNhYmEzODA4MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDTvt6vl84VFm7fm6d03951QUi1vfKOfrP9K6UlwkPyJJxj 7BzwtOZGfiX8VT0ewGHPwjOd+GjzlJwPlTC3HegiiJKWd01p1I1ED6j1qzzXvbTA cRcui0NZvyy/w/RN65Nhnjc6NZ7GiK6atyoblUexJWsoRwYMrfmB5zjP076mYOyI nVxXePmCljtKrnart6diFiZtH0LODgeT7YoakAXVAE5yihqe5ddzKdBacc1pSo2A YD4+7LWmMlzXmdb9oNanHsPfTBSetCPqh9jmPzbcqqYfpcEBJuKviLdT2M4MAZ8H KuFlj5GlU1FlfIwKGt/x8rtek5mgj9xcUdINzYC/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUORLDEaTrM3UV3ERKeUHODAQLT24wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkNTkxZGQ0LTNiYWMtNDRhOS1iZDg5LWUxYmE5ZWQ1NzY3MC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAo2DANBgkqhkiG9w0BAQsFAAOCAQEAOhyC+HD+w7HkW8e4RMSnN99k274f xpu+swStm556XuD1czp/y3zyoqsi9+2ttZRNz241vtX1C96el9Wtb36S3i/1nHhu pCB3tdPuU1hRAP3E7sDZTnQlIkWUoDn/fYw5dgF1P/xTqp//5rLYh+44aW0p1jQf G7raCsH9EQWGXpAhEl5mIq4SRb0wlGAH3q0Po0CvENi5jSHPJPJupruhlKKVSupg XOap01hA+tqTobHleSydnehYOl5oAqHQNTe0xRChMSHyW8SKrhCgTgGMTfgenVNq aGpGbU0RB3l9jyxa9J2kEMRbm21oAIClKkmBThTF1T/CZYWzn/EEjdU9iw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:46 2026 by rpki-client