$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa File: 78dd989c-1826-4000-a1be-585b3b82efe8.roa (raw, json) Hash identifier: fQSDWFOHdHl39hTvhaFV+ND0Hq/es1+t63SP84kL5cQ= Subject key identifier: C5:70:32:97:28:6E:03:EF:58:BF:9B:DA:A9:D2:52:CA:DB:A1:4E:E4 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 16AFB5B2B2C247801A89F7AE43E6423E3955ECAE Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa Signing time: Sun 08 Feb 2026 00:10:02 +0000 ROA not before: Sun 08 Feb 2026 00:10:02 +0000 ROA not after: Sat 09 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 56.48.0.0/16 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Mon 02 Mar 2026 00:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 16:af:b5:b2:b2:c2:47:80:1a:89:f7:ae:43:e6:42:3e:39:55:ec:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 8 00:10:02 2026 GMT Not After : May 9 23:59:59 2026 GMT Subject: serialNumber=82db0ddc1523eff8d7941c9865536727af8dcba154b4f9043e52e4aa96cdecc4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:a7:8f:54:e0:97:bc:ba:82:ee:9d:96:04:5d: 4d:48:8c:ce:63:90:61:50:48:e2:3e:86:38:34:68: 8c:25:6b:bb:2c:fe:d7:10:41:9d:17:5e:35:a9:59: fe:87:d1:ed:21:c4:8b:e5:31:f0:07:20:7d:ff:eb: 13:1b:5f:cc:d2:ca:ee:9d:88:e6:99:01:23:3c:9a: 1e:75:12:3f:ef:32:db:bf:d3:13:b2:a7:ee:c3:0b: 42:3c:20:ac:88:58:c7:0d:ff:9a:e2:07:1a:13:5f: 7a:b5:8d:68:57:c9:7f:36:12:fb:6d:00:a9:7f:c4: 43:b5:2f:85:9a:d0:78:ac:da:94:76:e3:77:5d:07: a7:37:29:2e:fe:b3:e4:b4:07:2e:bd:25:c1:f9:2a: 75:b2:c6:7a:f6:93:c2:7e:88:c0:fe:e4:d6:b1:ca: ea:84:c8:50:df:55:74:99:eb:6e:bb:13:aa:cb:19: 0f:f5:79:e5:58:ce:c7:3a:06:61:02:a3:51:30:fe: e7:68:c3:9e:c8:59:bf:a5:7f:d5:17:fd:f8:6c:f9: 21:b6:f8:ef:e0:42:cd:f9:e9:bf:f8:8d:f9:6b:00: dd:f7:4b:25:33:64:7a:69:19:8c:99:82:23:34:cd: 1b:a3:a9:e7:59:24:3a:9c:55:1b:56:e3:e8:a6:db: 6d:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:70:32:97:28:6E:03:EF:58:BF:9B:DA:A9:D2:52:CA:DB:A1:4E:E4 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/78dd989c-1826-4000-a1be-585b3b82efe8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 56.48.0.0/16 Signature Algorithm: sha256WithRSAEncryption 39:29:ed:2f:f0:37:6f:c5:fc:98:70:da:0a:44:d1:a0:01:3f: af:4f:d8:6c:ca:4d:0c:b1:b6:a4:18:d3:10:06:d2:17:c8:17: da:34:8d:dc:c2:c3:55:e8:be:2b:ab:3c:5b:d7:27:06:6a:c6: f3:e2:1c:d7:76:94:38:4c:f9:60:68:44:ca:2a:17:a2:1e:62: a8:b4:52:14:6e:54:be:4e:05:f4:46:8e:47:ba:83:e4:87:ac: f1:aa:f6:ef:b1:14:0e:2e:64:26:f6:fa:ec:4f:1b:d7:28:72: ca:ac:e6:0c:69:ba:ad:cb:7e:22:45:e8:fd:82:31:94:af:db: 66:4e:c3:5f:f3:d7:b7:b9:c8:d4:df:ac:b2:bd:49:1a:9e:a1: 62:28:52:49:51:05:05:6c:e5:58:85:a3:8a:d8:a0:14:12:5e: 6e:02:a3:d8:a0:a2:75:5b:35:3b:f0:2f:33:7d:c9:d7:d7:79: 12:e1:4c:2b:11:4a:83:c4:16:28:f1:11:4f:ef:ca:50:5e:58: de:3e:23:97:cd:a0:e9:ae:79:fb:b4:72:54:5b:e7:59:ec:da: 6a:e3:25:7c:9b:51:a4:48:e3:9c:5e:e5:f4:ee:35:54:3b:bd: 43:6f:77:20:d2:27:57:e6:48:08:ce:09:4a:37:68:da:4e:63: d0:ee:59:3f -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUFq+1srLCR4AaifeuQ+ZCPjlV7K4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjA4MDAxMDAyWhcNMjYwNTA5MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MmRiMGRkYzE1MjNlZmY4ZDc5NDFjOTg2NTUzNjcyN2Fm OGRjYmExNTRiNGY5MDQzZTUyZTRhYTk2Y2RlY2M0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCfp49U4Je8uoLunZYEXU1IjM5jkGFQSOI+hjg0aIwla7ss /tcQQZ0XXjWpWf6H0e0hxIvlMfAHIH3/6xMbX8zSyu6diOaZASM8mh51Ej/vMtu/ 0xOyp+7DC0I8IKyIWMcN/5riBxoTX3q1jWhXyX82EvttAKl/xEO1L4Wa0His2pR2 43ddB6c3KS7+s+S0By69JcH5KnWyxnr2k8J+iMD+5NaxyuqEyFDfVXSZ6267E6rL GQ/1eeVYzsc6BmECo1Ew/udow57IWb+lf9UX/fhs+SG2+O/gQs356b/4jflrAN33 SyUzZHppGYyZgiM0zRujqedZJDqcVRtW4+im223/AgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUxXAylyhuA+9Yv5vaqdJSytuhTuQwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzc4ZGQ5ODljLTE4MjYtNDAwMC1hMWJlLTU4NWIzYjgyZWZlOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwA4MDANBgkqhkiG9w0BAQsFAAOCAQEAOSntL/A3b8X8mHDaCkTRoAE/r0/Y bMpNDLG2pBjTEAbSF8gX2jSN3MLDVei+K6s8W9cnBmrG8+Ic13aUOEz5YGhEyioX oh5iqLRSFG5Uvk4F9EaOR7qD5Ies8ar277EUDi5kJvb67E8b1yhyyqzmDGm6rct+ IkXo/YIxlK/bZk7DX/PXt7nI1N+ssr1JGp6hYihSSVEFBWzlWIWjitigFBJebgKj 2KCidVs1O/AvM33J19d5EuFMKxFKg8QWKPERT+/KUF5Y3j4jl82g6a55+7RyVFvn WezaauMlfJtRpEjjnF7l9O41VDu9Q293INInV+ZICM4JSjdo2k5j0O5ZPw== -----END CERTIFICATE-----Generated at Sun Mar 1 00:05:21 2026 by rpki-client