$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcb7f9cb-0b65-4161-9f84-771b93b7be73.roa File: fcb7f9cb-0b65-4161-9f84-771b93b7be73.roa (raw, json) Hash identifier: aVu/VH+U9fbvcKQ3NW6vmuWYo3GA5CEkByEn76iAmzw= Subject key identifier: 5B:E4:C8:62:B0:D0:0C:3E:B2:D1:63:68:93:AE:CD:98:A8:F1:99:B3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 1C722D9731C718DBC8409E535C984C721BDA360E Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcb7f9cb-0b65-4161-9f84-771b93b7be73.roa Signing time: Fri 06 Mar 2026 00:00:06 +0000 ROA not before: Fri 06 Mar 2026 00:00:06 +0000 ROA not after: Thu 04 Jun 2026 23:59:59 +0000 asID: 16509 IP address blocks: 16.60.0.0/16 maxlen: 16 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sat 21 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1c:72:2d:97:31:c7:18:db:c8:40:9e:53:5c:98:4c:72:1b:da:36:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Mar 6 00:00:06 2026 GMT Not After : Jun 4 23:59:59 2026 GMT Subject: serialNumber=57f41c120ceceff407670e77587d2bf8a9a1764c2d93d4807e10b5ba15f65ccd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:35:b1:6e:b7:c5:d8:58:55:56:e4:d4:8e:60: d0:47:ac:e8:68:47:98:2f:e9:49:ee:f5:f6:5c:61: 8e:6d:b2:33:47:b6:1b:07:c1:15:ec:1a:17:70:74: 51:20:a4:f7:25:94:17:2b:a3:a7:b2:57:f7:81:2e: 53:bd:23:38:05:0c:dd:d4:05:0d:81:bb:46:c9:fe: fd:d8:c2:97:1b:6d:c1:e3:fc:33:9b:88:09:df:3f: 28:9e:9e:0b:44:34:0d:9f:20:f1:55:ab:3b:20:26: ed:33:05:f9:9b:2f:28:c5:07:8d:e2:b4:0a:8f:35: c3:dc:73:7e:de:bb:ed:6a:47:c3:2e:07:34:b1:38: 35:41:48:6a:2e:62:ce:35:77:0e:1c:bb:47:07:61: 28:83:6b:d0:39:ca:70:b4:fc:78:49:f6:70:d6:90: 9f:e4:84:04:09:8a:4f:71:ad:2c:b8:6f:1e:9a:56: 06:cb:59:d5:4b:7d:88:c2:c8:7b:ac:3c:b1:52:5c: e1:f0:ad:27:59:68:2b:8e:56:86:2f:e0:06:6a:d5: 3a:4a:a9:3a:98:db:37:c3:49:5c:d3:3a:6f:8c:09: 21:60:bb:3f:22:4e:99:1a:ae:7d:29:66:9c:80:df: 95:66:4b:6b:60:5d:82:f2:6e:4e:37:ae:af:12:66: 88:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5B:E4:C8:62:B0:D0:0C:3E:B2:D1:63:68:93:AE:CD:98:A8:F1:99:B3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/fcb7f9cb-0b65-4161-9f84-771b93b7be73.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 16.60.0.0/16 Signature Algorithm: sha256WithRSAEncryption d6:d4:0b:f5:6e:50:bd:e2:a4:d2:74:75:b1:de:60:9b:3e:cf: be:c1:43:3b:36:7e:77:f3:f4:5d:a3:9c:ce:f0:25:1b:8e:8a: 92:b6:00:2b:40:f3:ef:dd:49:6b:69:51:d7:f1:b9:6a:89:ec: 29:66:e5:ab:5f:c0:c0:d2:9a:ee:9b:1e:d3:19:d5:90:dd:ce: bf:6c:71:d5:46:a5:30:6c:b9:00:83:76:68:b3:4e:8c:4c:78: b5:d9:5c:93:35:97:64:4e:cc:57:01:4e:18:8f:92:a0:f0:c2: dd:9d:14:39:5b:fe:7e:6b:b9:51:f8:ea:d7:86:94:a5:cb:b2: 21:1e:19:ca:43:b3:54:4c:0b:33:63:8e:f9:33:b4:9e:d1:3a: e0:79:ff:8e:f1:48:a1:54:cd:d5:0c:e1:5b:ef:b6:8f:19:24: ed:b5:1d:eb:0c:8f:40:cc:b5:67:91:83:a4:ff:fe:2f:8c:d1: 51:11:9b:3b:b0:17:41:a9:94:67:40:68:89:73:a7:46:4c:59: 54:7f:d7:08:4e:0d:6e:33:35:1c:73:b2:91:8a:ae:3f:a6:c0: d9:dc:18:4f:c5:bc:fe:30:31:1b:95:38:74:65:6b:8c:13:3e: 62:22:0b:a7:5f:b2:f5:0f:8b:c1:09:ae:c7:25:ca:f5:66:0f: fd:9e:54:bc -----BEGIN CERTIFICATE----- MIIF9zCCBN+gAwIBAgIUHHItlzHHGNvIQJ5TXJhMchvaNg4wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMzA2MDAwMDA2WhcNMjYwNjA0MjM1OTU5 WjB6MUkwRwYDVQQFE0A1N2Y0MWMxMjBjZWNlZmY0MDc2NzBlNzc1ODdkMmJmOGE5 YTE3NjRjMmQ5M2Q0ODA3ZTEwYjViYTE1ZjY1Y2NkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDwNbFut8XYWFVW5NSOYNBHrOhoR5gv6Unu9fZcYY5tsjNH thsHwRXsGhdwdFEgpPcllBcro6eyV/eBLlO9IzgFDN3UBQ2Bu0bJ/v3YwpcbbcHj /DObiAnfPyiengtENA2fIPFVqzsgJu0zBfmbLyjFB43itAqPNcPcc37eu+1qR8Mu BzSxODVBSGouYs41dw4cu0cHYSiDa9A5ynC0/HhJ9nDWkJ/khAQJik9xrSy4bx6a VgbLWdVLfYjCyHusPLFSXOHwrSdZaCuOVoYv4AZq1TpKqTqY2zfDSVzTOm+MCSFg uz8iTpkarn0pZpyA35VmS2tgXYLybk43rq8SZohTAgMBAAGjggKwMIICrDAdBgNV HQ4EFgQUW+TIYrDQDD6y0WNok67NmKjxmbMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyL2ZjYjdmOWNiLTBiNjUtNDE2MS05Zjg0LTc3MWI5M2I3YmU3My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHgYIKwYBBQUHAQcBAf8EDzANMAsEAgAB MAUDAwAQPDANBgkqhkiG9w0BAQsFAAOCAQEA1tQL9W5QveKk0nR1sd5gmz7PvsFD OzZ+d/P0XaOczvAlG46KkrYAK0Dz791Ja2lR1/G5aonsKWblq1/AwNKa7pse0xnV kN3Ov2xx1UalMGy5AIN2aLNOjEx4tdlckzWXZE7MVwFOGI+SoPDC3Z0UOVv+fmu5 Ufjq14aUpcuyIR4ZykOzVEwLM2OO+TO0ntE64Hn/jvFIoVTN1QzhW++2jxkk7bUd 6wyPQMy1Z5GDpP/+L4zRURGbO7AXQamUZ0BoiXOnRkxZVH/XCE4NbjM1HHOykYqu P6bA2dwYT8W8/jAxG5U4dGVrjBM+YiILp1+y9Q+LwQmuxyXK9WYP/Z5UvA== -----END CERTIFICATE-----Generated at Fri Mar 20 16:59:32 2026 by rpki-client