$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa File: 2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa (raw, json) Hash identifier: Wf7TWk5zclFwlaxtmENct5XuzdpSUUOMT+sptFHGPRI= Subject key identifier: A6:07:5B:00:AA:E8:1B:30:0D:8A:4F:4A:C1:7C:29:50:0A:5D:66:61 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 17D17A7882B5F2A1B34C4B0315BD0501A009BE90 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa Signing time: Sat 07 Feb 2026 00:20:37 +0000 ROA not before: Sat 07 Feb 2026 00:20:37 +0000 ROA not after: Fri 08 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 155.40.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 01 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d1:7a:78:82:b5:f2:a1:b3:4c:4b:03:15:bd:05:01:a0:09:be:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 7 00:20:37 2026 GMT Not After : May 8 23:59:59 2026 GMT Subject: serialNumber=c19ac592413b8048c4f95253b7024e106557abbc78fa1bf0a9da3fd5f2887cc9, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:23:6d:bf:12:b8:ce:4d:28:70:63:07:98:ff: 3d:21:e2:54:62:1a:85:7d:04:36:df:4f:e1:62:54: 15:f4:29:65:6d:36:55:c3:69:00:4a:a7:0d:ff:b4: f3:26:ce:fa:2a:1e:76:48:c1:9d:72:0a:7e:64:fb: 7b:8d:d4:53:0b:43:a6:a4:64:02:a4:b7:b7:4a:7a: a3:5f:c5:20:d0:86:b5:02:6f:9d:c1:a5:83:0b:31: 2d:7e:3e:7b:5c:83:45:96:eb:12:1b:06:9e:a5:a3: 08:b8:e9:9a:c0:2a:9c:91:a7:97:74:a2:71:16:68: 7c:25:22:d6:f6:a9:a8:6b:c9:78:16:93:80:33:7d: 7f:6a:0f:7c:81:cf:56:e1:23:97:91:6d:29:74:c0: 79:80:7d:31:49:ff:90:20:18:f7:50:25:9f:d7:40: e9:cd:48:34:64:5d:4e:5f:d0:a9:49:71:c3:33:61: 18:dc:2d:68:1a:0a:f3:4a:0a:7d:68:fc:aa:7e:70: 33:bf:f8:62:6e:72:da:9b:86:34:a8:9f:21:a7:b8: ee:e8:97:3a:8a:2b:72:7e:2b:3a:f6:b4:49:88:fe: 1c:8d:62:20:51:d2:1b:19:6d:b1:45:61:34:47:93: 1e:c4:74:c5:0d:7e:a6:1f:fa:1f:bc:55:54:25:6f: df:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:07:5B:00:AA:E8:1B:30:0D:8A:4F:4A:C1:7C:29:50:0A:5D:66:61 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2f4d1e5f-1483-4011-a7b3-0353a2c74128.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 155.40.0.0/16 Signature Algorithm: sha256WithRSAEncryption 24:fc:db:b2:3f:6d:3b:a7:9e:87:48:99:69:3b:15:57:62:7a: 07:f4:b6:53:cd:af:66:e9:a5:0b:91:97:f6:d0:a4:8d:f9:d5: 84:ee:cd:76:a3:8b:db:d2:c0:b9:14:79:32:6e:ea:d2:35:13: 62:e3:53:a5:f2:a9:7d:e6:d4:9e:f3:8b:30:da:c4:b6:51:e7: b1:c8:39:a6:d3:9a:71:92:3d:14:0e:be:d7:5d:79:a9:c8:a1: cc:f1:e6:29:33:c8:8b:4e:44:cc:7d:26:04:ee:64:6e:40:54: d4:57:a0:55:a8:c4:42:d0:a6:01:26:c4:ac:83:02:5b:77:78: 88:92:30:0a:78:95:1d:55:86:41:5a:34:57:4a:44:88:01:f2: 93:d4:e2:83:28:0d:ee:40:4b:8c:a9:9a:36:5e:d9:f8:af:df: 34:70:a9:e2:ce:69:4e:a2:83:93:87:02:23:30:a5:60:c6:80: be:e4:d2:06:dc:7a:8d:0c:b0:b2:73:97:7d:1c:95:72:33:9c: 4e:c2:c0:95:ee:a7:85:fc:17:2f:68:12:81:3a:6f:2c:e3:72: b4:b1:da:57:52:a5:af:6b:82:93:06:99:66:7a:38:81:8b:4a: 95:32:bf:0f:ad:a0:67:1f:3b:c5:61:93:48:9f:81:e8:d9:89: ad:74:0a:6a -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUF9F6eIK18qGzTEsDFb0FAaAJvpAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA3MDAyMDM3WhcNMjYwNTA4MjM1OTU5 WjB6MUkwRwYDVQQFE0BjMTlhYzU5MjQxM2I4MDQ4YzRmOTUyNTNiNzAyNGUxMDY1 NTdhYmJjNzhmYTFiZjBhOWRhM2ZkNWYyODg3Y2M5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCsI22/ErjOTShwYweY/z0h4lRiGoV9BDbfT+FiVBX0KWVt NlXDaQBKpw3/tPMmzvoqHnZIwZ1yCn5k+3uN1FMLQ6akZAKkt7dKeqNfxSDQhrUC b53BpYMLMS1+Pntcg0WW6xIbBp6lowi46ZrAKpyRp5d0onEWaHwlItb2qahryXgW k4AzfX9qD3yBz1bhI5eRbSl0wHmAfTFJ/5AgGPdQJZ/XQOnNSDRkXU5f0KlJccMz YRjcLWgaCvNKCn1o/Kp+cDO/+GJuctqbhjSonyGnuO7olzqKK3J+Kzr2tEmI/hyN YiBR0hsZbbFFYTRHkx7EdMUNfqYf+h+8VVQlb9+nAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUpgdbAKroGzANik9KwXwpUApdZmEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJmNGQxZTVmLTE0ODMtNDAxMS1hN2IzLTAzNTNhMmM3NDEyOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwCbKDANBgkqhkiG9w0BAQsFAAOCAQEAJPzbsj9tO6eeh0iZaTsVV2J6B/S2 U82vZumlC5GX9tCkjfnVhO7NdqOL29LAuRR5Mm7q0jUTYuNTpfKpfebUnvOLMNrE tlHnscg5ptOacZI9FA6+1115qcihzPHmKTPIi05EzH0mBO5kbkBU1FegVajEQtCm ASbErIMCW3d4iJIwCniVHVWGQVo0V0pEiAHyk9TigygN7kBLjKmaNl7Z+K/fNHCp 4s5pTqKDk4cCIzClYMaAvuTSBtx6jQywsnOXfRyVcjOcTsLAle6nhfwXL2gSgTpv LONytLHaV1Klr2uCkwaZZno4gYtKlTK/D62gZx87xWGTSJ+B6NmJrXQKag== -----END CERTIFICATE-----Generated at Sat Feb 28 11:46:38 2026 by rpki-client