$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/036a67f7-252e-4131-a438-c4749fe3d147.roa File: 036a67f7-252e-4131-a438-c4749fe3d147.roa (raw, json) Hash identifier: aCGIbUd7xAQ9KumTqAHSr6EK5FbPidthIYKD2XGYG3Y= Subject key identifier: B4:B6:BA:8F:32:46:C3:53:78:0E:A7:EA:6A:A0:44:50:EA:F2:22:AF Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 5C325AF931578EA9C7DE7421F6F21882C33AECB6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/036a67f7-252e-4131-a438-c4749fe3d147.roa Signing time: Sat 14 Feb 2026 00:50:05 +0000 ROA not before: Sat 14 Feb 2026 00:50:05 +0000 ROA not after: Fri 15 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fbb:8000::/39 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5c:32:5a:f9:31:57:8e:a9:c7:de:74:21:f6:f2:18:82:c3:3a:ec:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 14 00:50:05 2026 GMT Not After : May 15 23:59:59 2026 GMT Subject: serialNumber=9cd7851cb386fd9a1c1e2c26534c39fca7703d8971040758672e50b9bae9937e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:05:7c:b7:d4:4b:c4:84:c2:ee:9d:ee:e6:05: 5d:05:42:86:46:26:84:cd:ce:c6:20:0b:e1:9f:b4: 1d:4c:ab:24:ac:72:17:a5:6b:02:85:6a:48:f6:d0: 01:67:ec:7b:0f:30:ef:a7:49:28:a4:32:5c:b7:ac: bb:a4:34:18:4f:a5:c1:eb:97:8c:22:ba:c9:a7:9c: 4c:60:24:9c:57:05:72:43:fb:e5:88:11:b4:92:bd: e7:fc:82:0e:b8:90:18:68:4f:38:60:43:98:95:1c: 84:4f:a8:55:d7:20:fb:9f:a1:ab:c2:cd:b1:80:bd: 40:5d:8e:31:30:c3:5d:62:1a:6d:37:e5:b3:be:c2: 5e:37:2f:14:7f:1c:f0:0c:59:8f:85:cd:1b:b1:b2: 74:c7:8d:03:20:3c:e7:11:a8:96:6d:88:e5:6c:42: 73:30:6c:03:05:15:2b:ed:bf:31:8f:c7:9a:df:69: c1:53:a4:e5:2e:a2:3b:13:09:2c:08:b8:59:bc:9f: cd:8c:c2:50:9b:bf:09:97:c6:a5:1d:26:91:0e:61: fe:9c:72:a0:fd:3e:08:cb:dd:d4:7e:fb:62:98:ca: 98:b7:67:90:6b:76:00:41:26:f7:2f:f0:3b:fb:81: 60:36:ab:3c:e9:e4:57:18:39:8f:bd:f9:c4:9e:db: c7:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:B6:BA:8F:32:46:C3:53:78:0E:A7:EA:6A:A0:44:50:EA:F2:22:AF X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/036a67f7-252e-4131-a438-c4749fe3d147.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fbb:8000::/39 Signature Algorithm: sha256WithRSAEncryption 14:d9:14:70:c5:d0:f2:1e:0b:87:08:c6:39:9d:56:63:47:56: 4e:11:cd:bb:6a:4c:20:0f:94:a9:9b:7d:81:d0:20:42:98:1c: 7e:2d:bd:b8:c1:f0:56:48:05:03:33:18:ab:53:fc:1e:e3:15: 0a:8e:ef:99:6c:3c:ed:50:57:78:bb:31:bd:33:a0:53:a4:0e: ec:52:69:00:bc:67:47:87:e7:b8:fa:ec:64:f0:e8:56:12:37: 77:25:fd:74:24:25:d6:e9:b2:95:9b:dd:62:1e:93:bc:17:d5: 62:51:1f:5e:20:c7:92:97:98:59:81:32:04:e4:57:96:e5:cb: 4d:a5:6f:1e:f7:87:dd:2a:e2:57:80:59:d7:7c:0c:cc:97:be: 59:de:ed:93:80:a6:b2:c2:35:33:33:e1:2e:26:2c:85:2e:a7: 57:92:fb:3c:60:74:a5:f9:ec:56:37:65:76:53:90:65:c4:bb: 2f:0c:d4:9b:eb:27:6c:8d:c0:ce:07:7b:a2:0a:89:b5:8a:88: d8:3f:97:55:af:35:14:2f:21:70:4f:84:19:24:c0:e8:82:e1: a5:8c:ce:2b:f8:93:e1:6d:52:a3:ed:e0:1c:09:66:f8:78:c4: 67:14:f2:e6:3c:53:8b:3a:39:52:04:d1:a0:8b:e6:7e:88:ca: 1a:80:a4:5c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUXDJa+TFXjqnH3nQh9vIYgsM67LYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjE0MDA1MDA1WhcNMjYwNTE1MjM1OTU5 WjB6MUkwRwYDVQQFE0A5Y2Q3ODUxY2IzODZmZDlhMWMxZTJjMjY1MzRjMzlmY2E3 NzAzZDg5NzEwNDA3NTg2NzJlNTBiOWJhZTk5MzdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCKBXy31EvEhMLune7mBV0FQoZGJoTNzsYgC+GftB1MqySs chelawKFakj20AFn7HsPMO+nSSikMly3rLukNBhPpcHrl4wiusmnnExgJJxXBXJD ++WIEbSSvef8gg64kBhoTzhgQ5iVHIRPqFXXIPufoavCzbGAvUBdjjEww11iGm03 5bO+wl43LxR/HPAMWY+FzRuxsnTHjQMgPOcRqJZtiOVsQnMwbAMFFSvtvzGPx5rf acFTpOUuojsTCSwIuFm8n82MwlCbvwmXxqUdJpEOYf6ccqD9PgjL3dR++2KYypi3 Z5BrdgBBJvcv8Dv7gWA2qzzp5FcYOY+9+cSe28fPAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUtLa6jzJGw1N4DqfqaqBEUOryIq8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzAzNmE2N2Y3LTI1MmUtNDEzMS1hNDM4LWM0NzQ5ZmUzZDE0Ny5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgEmAB+7gDANBgkqhkiG9w0BAQsFAAOCAQEAFNkUcMXQ8h4LhwjGOZ1WY0dW ThHNu2pMIA+UqZt9gdAgQpgcfi29uMHwVkgFAzMYq1P8HuMVCo7vmWw87VBXeLsx vTOgU6QO7FJpALxnR4fnuPrsZPDoVhI3dyX9dCQl1umylZvdYh6TvBfVYlEfXiDH kpeYWYEyBORXluXLTaVvHveH3SriV4BZ13wMzJe+Wd7tk4CmssI1MzPhLiYshS6n V5L7PGB0pfnsVjdldlOQZcS7LwzUm+snbI3Azgd7ogqJtYqI2D+XVa81FC8hcE+E GSTA6ILhpYzOK/iT4W1So+3gHAlm+HjEZxTy5jxTizo5UgTRoIvmfojKGoCkXA== -----END CERTIFICATE-----Generated at Mon Mar 2 04:53:14 2026 by rpki-client