$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdfb9fa5-85eb-4a87-9293-6efcee6e67ae.roa File: fdfb9fa5-85eb-4a87-9293-6efcee6e67ae.roa (raw, json) Hash identifier: U6J+zm4PbLWwlC6+Nir0a0Ztza0sBHRPDIBoNZZyTDM= Subject key identifier: 59:13:65:4E:9D:5E:5A:B5:43:6A:27:F1:BB:7C:4A:EC:BE:D0:BB:0A Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 51CA59B91A825803BDA1CF2B06A9D7B47F714B9E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdfb9fa5-85eb-4a87-9293-6efcee6e67ae.roa Signing time: Sat 07 Feb 2026 00:31:07 +0000 ROA not before: Sat 07 Feb 2026 00:31:07 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.233.128.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:ca:59:b9:1a:82:58:03:bd:a1:cf:2b:06:a9:d7:b4:7f:71:4b:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:31:07 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=cc1026d2d6ce011174ec89f6427e598b4c7d963bc2e894c998469df0cf20881c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:1c:22:9c:1a:70:a5:d2:f9:fa:65:1d:8c:69: 7c:14:c0:d2:6f:36:10:c7:77:9a:da:2f:db:68:25: e2:6d:3f:b0:66:e8:40:f3:1e:ac:28:51:ab:d0:5f: 00:a1:16:a5:35:b2:0e:2b:00:3d:d6:d6:27:1f:b6: 10:bc:7c:bc:33:b2:db:73:b4:f4:32:d5:6b:1e:64: 62:e8:98:16:db:01:e0:6e:80:69:60:e7:d7:d7:2c: df:65:a9:3f:e4:0f:30:af:68:f8:f9:b8:e4:d4:f8: 68:02:95:22:e1:9d:fd:f7:73:c7:e6:7d:c6:9f:33: c7:60:4f:b0:f2:36:6c:f0:91:66:5e:63:02:36:d0: 84:da:3d:61:26:f1:80:f0:4b:47:cf:c1:a0:1b:5b: bd:5a:39:12:14:cb:b5:b6:e8:f8:a2:90:a2:81:ba: b3:c8:67:bc:69:78:45:7f:1b:17:c3:93:2b:49:82: b0:d1:76:b5:53:ee:20:99:95:53:48:fd:7d:e5:5b: 22:5a:00:1f:e8:a1:3f:63:0d:6d:c4:dd:e2:f4:c3: 42:ce:56:58:84:f3:0f:9c:10:f0:2c:52:6c:d0:eb: 8e:a2:77:00:6d:1a:9a:d9:26:40:25:a0:88:37:29: b6:91:fb:26:70:0c:e5:3e:dc:66:49:d3:d5:9d:6f: 8d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:13:65:4E:9D:5E:5A:B5:43:6A:27:F1:BB:7C:4A:EC:BE:D0:BB:0A X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fdfb9fa5-85eb-4a87-9293-6efcee6e67ae.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.233.128.0/17 Signature Algorithm: sha256WithRSAEncryption 1d:e1:0f:cb:7d:2a:c0:53:61:dd:8f:6a:ff:8d:6b:92:ca:41: 2d:6b:a9:70:78:f4:47:f9:5c:ca:65:0e:f1:8b:4b:14:1b:29: c1:eb:76:db:26:ba:0b:a6:5c:0f:ee:db:b7:d8:39:31:b1:16: c9:6e:52:4e:3d:82:25:3b:d1:53:b5:8e:4d:93:0d:84:fb:c6: 2c:fd:be:7b:c4:d3:0d:fe:ab:d1:a9:fd:fb:61:60:fc:41:45: 79:8a:01:b9:75:be:e3:b9:40:ae:7c:a1:df:e9:ea:bf:86:e3: bb:4c:58:7a:4a:49:75:26:b6:47:36:b8:35:c5:0f:92:a6:bc: 4f:80:4d:46:f5:86:7e:cd:0a:00:41:fe:5f:23:26:b7:a8:d8: 97:95:a6:62:d5:c2:01:8e:90:19:d7:cf:01:4c:ff:68:53:bf: 58:8c:36:d4:64:46:14:44:25:95:bc:d0:37:86:42:bc:ba:62: 3a:bd:53:6e:e2:31:20:85:27:cd:97:02:18:80:c2:44:ca:2c: 11:9e:92:e8:0c:41:7e:7c:df:d6:6d:14:a2:1a:62:3f:77:29: 4f:3c:8e:a6:46:94:8d:13:81:ef:96:dc:61:f2:eb:31:15:04: 07:87:be:1b:e9:b4:9e:77:6a:be:d8:7c:be:5f:09:27:24:58: 2a:46:c3:a0 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUUcpZuRqCWAO9oc8rBqnXtH9xS54wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAzMTA3WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYzEwMjZkMmQ2Y2UwMTExNzRlYzg5ZjY0MjdlNTk4YjRj N2Q5NjNiYzJlODk0Yzk5ODQ2OWRmMGNmMjA4ODFjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCtHCKcGnCl0vn6ZR2MaXwUwNJvNhDHd5raL9toJeJtP7Bm 6EDzHqwoUavQXwChFqU1sg4rAD3W1icfthC8fLwzsttztPQy1WseZGLomBbbAeBu gGlg59fXLN9lqT/kDzCvaPj5uOTU+GgClSLhnf33c8fmfcafM8dgT7DyNmzwkWZe YwI20ITaPWEm8YDwS0fPwaAbW71aORIUy7W26PiikKKBurPIZ7xpeEV/GxfDkytJ grDRdrVT7iCZlVNI/X3lWyJaAB/ooT9jDW3E3eL0w0LOVliE8w+cEPAsUmzQ646i dwBtGprZJkAloIg3KbaR+yZwDOU+3GZJ09Wdb40nAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUWRNlTp1eWrVDaifxu3xK7L7QuwowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZkZmI5ZmE1LTg1ZWItNGE4Ny05MjkzLTZlZmNlZTZlNjdhZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcP6YAwDQYJKoZIhvcNAQELBQADggEBAB3hD8t9KsBTYd2Pav+Na5LKQS1r qXB49Ef5XMplDvGLSxQbKcHrdtsmugumXA/u27fYOTGxFsluUk49giU70VO1jk2T DYT7xiz9vnvE0w3+q9Gp/fthYPxBRXmKAbl1vuO5QK58od/p6r+G47tMWHpKSXUm tkc2uDXFD5KmvE+ATUb1hn7NCgBB/l8jJreo2JeVpmLVwgGOkBnXzwFM/2hTv1iM NtRkRhREJZW80DeGQry6Yjq9U27iMSCFJ82XAhiAwkTKLBGekugMQX5839ZtFKIa Yj93KU88jqZGlI0Tge+W3GHy6zEVBAeHvhvptJ53ar7YfL5fCSckWCpGw6A= -----END CERTIFICATE-----Generated at Sun Mar 1 22:11:37 2026 by rpki-client