$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa File: ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa (raw, json) Hash identifier: SI6a+RxvGgBJSh6fUyXOWolTZZeARB/4vg89nUhC58Q= Subject key identifier: C7:7D:E6:1D:49:FD:34:DA:F1:81:E6:BF:2B:76:3D:2E:FB:42:FB:03 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 147E3EE4542A43100CCB71754D7CDB33E2A01FAC Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa Signing time: Sun 01 Mar 2026 00:21:51 +0000 ROA not before: Sun 01 Mar 2026 00:21:51 +0000 ROA not after: Sat 30 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 32.172.0.0/14 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:7e:3e:e4:54:2a:43:10:0c:cb:71:75:4d:7c:db:33:e2:a0:1f:ac Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 1 00:21:51 2026 GMT Not After : May 30 23:59:59 2026 GMT Subject: serialNumber=893de38a6ef92fe9677c69f4958d5fdc0f99652a41adf765918e210db177709c, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6d:8f:75:1c:93:e7:ef:2d:bc:88:98:4f:fc: 99:a7:70:53:9d:0e:07:f0:27:64:1b:80:f5:c3:6e: 8f:5a:88:00:32:0b:92:42:da:2b:50:41:22:ea:65: 6f:fa:e1:f3:bf:ce:3d:e9:e7:8c:17:72:76:14:69: a7:ea:38:e1:84:03:65:5f:b7:6f:a2:27:df:63:28: e7:27:1d:c4:f4:27:92:5f:02:11:54:ee:95:78:a5: 8c:4d:b9:15:6c:76:a1:fc:24:1d:20:e7:11:a2:d8: e7:3d:f3:ce:08:0f:da:ac:2b:47:a6:81:b9:09:b3: 86:f9:ca:5b:82:7a:46:84:c1:f5:06:ef:a2:f2:3b: 1c:8d:69:f6:e8:14:f4:16:d2:a0:0a:55:4b:03:18: 88:a3:db:91:a2:46:84:79:9d:d7:76:9a:f5:e9:0d: ac:e4:e2:f6:03:a1:3f:ae:36:94:94:62:55:3e:99: 5b:7f:ef:e8:dd:d4:ba:1a:a1:b3:19:b7:06:7b:9f: 81:2e:16:87:ab:22:be:fd:42:27:78:e0:f9:fe:70: c2:34:3c:1f:a7:f8:62:c8:68:8b:15:4d:9c:e6:d2: 4d:bd:c7:ec:a1:d3:53:7b:0a:40:7d:4a:09:0d:9a: c4:53:27:76:1e:53:a0:4b:72:14:0e:02:a6:d4:8a: b9:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7D:E6:1D:49:FD:34:DA:F1:81:E6:BF:2B:76:3D:2E:FB:42:FB:03 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff87e530-4ce1-4f6d-a3bd-16282ceb3920.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 32.172.0.0/14 Signature Algorithm: sha256WithRSAEncryption 11:5f:2b:a2:5e:54:bc:6c:0a:67:ea:41:da:bc:64:3d:dc:81: 78:f7:e2:6d:fa:77:e0:61:27:cc:7f:29:dd:21:3d:f9:d0:0f: 26:0c:4c:0f:78:9f:57:1d:07:08:16:ee:2f:94:b0:70:cb:9c: 39:a1:06:cd:5f:57:2b:d3:07:d1:3f:4c:14:40:4e:c8:a8:24: dc:22:72:a5:3e:aa:4c:4e:90:82:d2:ef:62:bc:1c:63:57:a8: b8:ce:cf:47:62:fa:fe:ec:f0:44:5a:9a:04:7d:73:d6:62:af: 5a:57:5b:2b:19:8d:db:6c:ff:7a:d7:f5:96:6d:23:1c:b0:13: ea:22:d6:4a:74:fc:e9:02:31:db:16:31:b3:3b:d6:cf:5a:dc: af:b4:61:2c:70:5a:5c:9b:a7:8b:66:80:ef:88:7d:30:68:ae: b5:35:31:68:f4:c9:66:fe:d3:cb:db:6b:ab:c3:e4:90:2c:74: 51:c8:78:09:99:e8:68:69:37:b7:59:28:65:9d:4e:10:b2:d3: 4a:65:56:54:77:42:af:be:ff:08:55:7d:13:63:55:6f:f1:83: 7c:6b:68:90:7c:33:ba:12:40:ec:eb:2e:d0:61:fe:fd:32:11: 74:92:63:63:97:5c:83:63:3e:98:7e:22:cc:8a:18:5b:8d:c9: 67:4f:89:4c -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFH4+5FQqQxAMy3F1TXzbM+KgH6wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzAxMDAyMTUxWhcNMjYwNTMwMjM1OTU5 WjB6MUkwRwYDVQQFE0A4OTNkZTM4YTZlZjkyZmU5Njc3YzY5ZjQ5NThkNWZkYzBm OTk2NTJhNDFhZGY3NjU5MThlMjEwZGIxNzc3MDljMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCZbY91HJPn7y28iJhP/JmncFOdDgfwJ2QbgPXDbo9aiAAy C5JC2itQQSLqZW/64fO/zj3p54wXcnYUaafqOOGEA2Vft2+iJ99jKOcnHcT0J5Jf AhFU7pV4pYxNuRVsdqH8JB0g5xGi2Oc9884ID9qsK0emgbkJs4b5yluCekaEwfUG 76LyOxyNafboFPQW0qAKVUsDGIij25GiRoR5ndd2mvXpDazk4vYDoT+uNpSUYlU+ mVt/7+jd1LoaobMZtwZ7n4EuFoerIr79Qid44Pn+cMI0PB+n+GLIaIsVTZzm0k29 x+yh01N7CkB9SgkNmsRTJ3YeU6BLchQOAqbUirldAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUx33mHUn9NNrxgea/K3Y9LvtC+wMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmODdlNTMwLTRjZTEtNGY2ZC1hM2JkLTE2MjgyY2ViMzkyMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwIgrDANBgkqhkiG9w0BAQsFAAOCAQEAEV8rol5UvGwKZ+pB2rxkPdyBePfi bfp34GEnzH8p3SE9+dAPJgxMD3ifVx0HCBbuL5SwcMucOaEGzV9XK9MH0T9MFEBO yKgk3CJypT6qTE6QgtLvYrwcY1eouM7PR2L6/uzwRFqaBH1z1mKvWldbKxmN22z/ etf1lm0jHLAT6iLWSnT86QIx2xYxszvWz1rcr7RhLHBaXJuni2aA74h9MGiutTUx aPTJZv7Ty9trq8PkkCx0Uch4CZnoaGk3t1koZZ1OELLTSmVWVHdCr77/CFV9E2NV b/GDfGtokHwzuhJA7Osu0GH+/TIRdJJjY5dcg2M+mH4izIoYW43JZ0+JTA== -----END CERTIFICATE-----Generated at Mon Mar 2 00:12:16 2026 by rpki-client