$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff90eae9-15f0-4127-a52b-fecf4aec8f2c.roa File: ff90eae9-15f0-4127-a52b-fecf4aec8f2c.roa (raw, json) Hash identifier: 2Zj1ZZHxs2Qp1xVlSUqZ+9EmH7IaoN0/0OVpfKE+KAE= Subject key identifier: 34:A8:90:B6:63:D4:70:31:2D:7E:F1:65:59:77:24:D8:82:A3:E7:2E Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4346F3A9A037F3F88D4A84C1AC7737B72D0B389C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff90eae9-15f0-4127-a52b-fecf4aec8f2c.roa Signing time: Sat 07 Feb 2026 00:00:08 +0000 ROA not before: Sat 07 Feb 2026 00:00:08 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 15.233.0.0/17 maxlen: 17 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 43:46:f3:a9:a0:37:f3:f8:8d:4a:84:c1:ac:77:37:b7:2d:0b:38:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:00:08 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=9fe18534432a8093ddd474b15b9fc48007ed0c773ff448960f0ea13d699eab59, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:89:d2:71:6c:77:aa:13:94:c6:8c:52:6e:21:f3: 9c:7a:97:25:dd:06:5d:b3:5b:5d:9f:64:fa:db:f8: 38:0f:20:77:df:37:65:5e:f7:29:a0:7d:66:f6:66: 03:71:80:89:8f:d7:87:4d:a0:cb:56:06:fa:98:95: 69:83:de:c5:97:33:d0:f0:13:c8:e9:26:d0:c4:25: dc:eb:e0:44:c0:51:08:81:0b:9a:08:67:38:28:c1: e2:b7:6a:5d:96:15:be:fd:5a:90:d3:8e:b6:f9:a0: e8:ac:f2:f5:38:c5:89:21:86:2e:b6:50:a9:c3:c9: 97:d9:f4:20:6a:a7:f0:a6:11:01:d3:d8:fd:19:bb: 40:0b:1c:c2:16:f4:63:b8:ae:25:ec:09:8b:fd:13: 84:98:66:3b:50:96:d4:76:55:33:a2:51:cf:55:c2: 00:fb:ba:d5:e3:85:ae:ce:12:36:97:60:31:0f:67: 9f:48:80:04:cc:dc:95:23:72:25:33:07:60:91:62: d7:f5:35:86:f3:dc:2c:45:f0:57:c5:88:1f:76:eb: 10:20:78:92:6b:92:bc:1d:29:42:ae:04:2f:85:cc: c9:fd:15:b2:94:1d:d6:10:e8:16:08:1c:4d:af:5b: ed:b7:3b:8c:36:4a:ac:47:6a:88:e8:d4:93:6e:1d: c1:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:A8:90:B6:63:D4:70:31:2D:7E:F1:65:59:77:24:D8:82:A3:E7:2E X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/ff90eae9-15f0-4127-a52b-fecf4aec8f2c.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 15.233.0.0/17 Signature Algorithm: sha256WithRSAEncryption 4d:30:95:47:51:d2:c8:da:04:cf:9f:df:13:e8:ea:5f:e6:17: 79:ea:72:bd:04:a6:b0:2d:e6:7b:99:7d:51:98:a8:0a:95:18: 02:34:58:66:d7:77:fa:d4:17:7f:23:19:3a:45:c8:96:27:4b: b6:bf:61:36:d1:cc:91:7f:ef:ea:2c:eb:bd:a9:cd:87:25:6d: 91:1b:2a:17:55:e6:13:34:be:6c:c8:cf:8e:32:7b:a7:2d:fc: fc:bd:b3:bb:45:67:8b:7f:5a:ee:59:66:ba:d7:c5:02:af:ac: e1:98:50:ba:ce:cb:60:db:dd:1c:8a:97:dd:0a:61:36:52:5e: 1a:b0:19:81:ad:dc:fb:b7:68:b2:37:3c:26:25:e7:77:b0:47: 2c:21:79:86:49:f5:f2:36:25:ee:45:83:43:0a:7b:d6:4a:9f: 90:95:10:ee:1e:2e:66:b9:90:87:c9:b1:9c:e1:49:97:ab:94: 8e:71:54:be:8e:40:64:79:3d:3d:a5:2d:5b:01:76:fb:e1:fc: 60:87:42:20:29:e1:23:e1:9b:9c:a1:40:24:29:5e:61:d1:67: 59:06:69:c3:ff:d1:06:94:37:09:04:02:a7:3f:16:29:cc:66: b4:60:47:49:0a:b2:78:b3:5c:93:af:36:d2:e2:70:a5:f8:d8: 42:66:d5:d1 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUQ0bzqaA38/iNSoTBrHc3ty0LOJwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAwMDA4WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0A5ZmUxODUzNDQzMmE4MDkzZGRkNDc0YjE1YjlmYzQ4MDA3 ZWQwYzc3M2ZmNDQ4OTYwZjBlYTEzZDY5OWVhYjU5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCJ0nFsd6oTlMaMUm4h85x6lyXdBl2zW12fZPrb+DgPIHff N2Ve9ymgfWb2ZgNxgImP14dNoMtWBvqYlWmD3sWXM9DwE8jpJtDEJdzr4ETAUQiB C5oIZzgoweK3al2WFb79WpDTjrb5oOis8vU4xYkhhi62UKnDyZfZ9CBqp/CmEQHT 2P0Zu0ALHMIW9GO4riXsCYv9E4SYZjtQltR2VTOiUc9VwgD7utXjha7OEjaXYDEP Z59IgATM3JUjciUzB2CRYtf1NYbz3CxF8FfFiB926xAgeJJrkrwdKUKuBC+FzMn9 FbKUHdYQ6BYIHE2vW+23O4w2SqxHaojo1JNuHcFpAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUNKiQtmPUcDEtfvFlWXck2IKj5y4wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZmOTBlYWU5LTE1ZjAtNDEyNy1hNTJiLWZlY2Y0YWVjOGYyYy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAcP6QAwDQYJKoZIhvcNAQELBQADggEBAE0wlUdR0sjaBM+f3xPo6l/mF3nq cr0EprAt5nuZfVGYqAqVGAI0WGbXd/rUF38jGTpFyJYnS7a/YTbRzJF/7+os672p zYclbZEbKhdV5hM0vmzIz44ye6ct/Py9s7tFZ4t/Wu5ZZrrXxQKvrOGYULrOy2Db 3RyKl90KYTZSXhqwGYGt3Pu3aLI3PCYl53ewRywheYZJ9fI2Je5Fg0MKe9ZKn5CV EO4eLma5kIfJsZzhSZerlI5xVL6OQGR5PT2lLVsBdvvh/GCHQiAp4SPhm5yhQCQp XmHRZ1kGacP/0QaUNwkEAqc/FinMZrRgR0kKsnizXJOvNtLicKX42EJm1dE= -----END CERTIFICATE-----Generated at Mon Mar 2 00:11:27 2026 by rpki-client