$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0796eace-3a85-420a-a7a4-ba54f4050cce.roa File: 0796eace-3a85-420a-a7a4-ba54f4050cce.roa (raw, json) Hash identifier: 04CL7eWz+2XFfQuhIkwKig+eQSpqZvYGUSS4eWZwqDI= Subject key identifier: F2:B3:FE:B4:BA:53:C0:E1:2C:4B:8F:B7:24:7A:3F:C4:E4:6B:FD:D3 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 4496E9098C267672AA290A1864680E9EC68A1562 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0796eace-3a85-420a-a7a4-ba54f4050cce.roa Signing time: Wed 25 Feb 2026 02:10:15 +0000 ROA not before: Wed 25 Feb 2026 02:10:15 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fb8:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:96:e9:09:8c:26:76:72:aa:29:0a:18:64:68:0e:9e:c6:8a:15:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:10:15 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=55c5dd237aa074068639c228763d3cf6b4b376874cce2dd9933d3ea78798cb70, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a9:2a:e6:b1:94:55:73:9b:06:46:93:97:91: 4c:84:a4:83:a8:f0:95:8a:c1:7e:2e:67:e5:b0:61: f9:73:1f:ae:bc:23:6d:c6:40:db:92:ec:f1:cf:a0: d4:00:14:96:c5:28:03:31:52:36:a6:f1:40:60:93: d3:0b:49:9c:24:77:4c:ce:2f:7b:fc:6b:b5:56:ea: a0:38:22:bb:06:d9:03:f4:90:f1:58:50:51:cb:21: f6:1e:03:f6:38:76:52:29:8b:cb:aa:4c:26:1c:89: 10:50:b3:18:5f:17:44:e4:a7:da:c0:03:86:cf:ab: 47:63:16:fc:e0:8e:17:5c:b0:e6:d4:72:e3:58:b1: aa:ab:95:a6:dd:b8:1d:6a:e0:1a:9c:0a:62:c8:42: 8d:2e:46:81:c5:36:a7:44:e2:8b:9c:fb:7f:0c:0c: c0:ed:ac:dc:4f:79:b2:d9:f3:53:20:db:e4:3b:89: 13:80:81:cd:12:ad:c9:e3:c2:a9:62:e6:d8:6d:f6: 41:f3:6d:52:1d:02:98:bb:08:20:84:84:3d:40:ce: d0:69:d6:7a:bd:f4:77:63:37:e1:a3:c3:59:44:ff: b1:7d:83:b7:c5:c2:b6:2c:ef:75:8e:43:d1:a5:38: 47:1c:09:4a:cd:6c:5e:26:98:d4:34:c0:df:1b:66: b0:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:B3:FE:B4:BA:53:C0:E1:2C:4B:8F:B7:24:7A:3F:C4:E4:6B:FD:D3 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0796eace-3a85-420a-a7a4-ba54f4050cce.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fb8:8000::/40 Signature Algorithm: sha256WithRSAEncryption 9f:99:33:01:fc:a3:8a:6f:f2:7c:e1:ce:4a:f9:fa:ed:d5:06: fe:5d:a6:2f:6e:7c:41:25:8d:3f:de:56:61:b7:49:16:23:72: d9:45:88:1f:66:fd:81:dc:9e:65:0b:df:9b:5b:a4:90:7b:84: f0:87:26:8a:80:68:dc:1d:5f:4f:25:50:7c:d9:d1:9a:c6:a6: 9c:90:be:2e:d3:aa:7f:c4:b3:42:41:2d:86:f8:0b:6f:a5:d6: 14:2e:a5:e4:e3:cf:10:ef:cd:16:e8:a3:d0:ad:b8:ab:19:01: 63:83:c8:b3:fd:84:73:71:59:26:b7:02:78:a6:4e:a5:5a:c5: b1:a4:02:c3:59:7f:0d:7a:23:b1:43:ab:b8:58:72:fb:3f:c3: 71:85:ad:39:fe:d7:57:b5:b8:aa:e7:a5:84:8d:91:1b:41:11: 67:6e:dc:12:e6:d0:fb:e0:e2:d9:26:91:89:9f:25:20:b1:3f: 9d:1c:0d:4c:1c:b0:75:16:05:83:5f:76:31:a7:cd:a2:6e:8b: c4:94:84:e2:0d:7e:c1:36:02:2c:5a:4f:49:6d:0e:e1:6f:c3: 72:24:7d:40:42:69:93:bd:2f:c1:5a:6d:60:5f:20:a8:ae:4d: 52:2a:b7:70:4f:a1:c0:c3:3e:b0:b6:76:ff:98:4b:1f:12:79: 04:ec:25:6f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIURJbpCYwmdnKqKQoYZGgOnsaKFWIwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIxMDE1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NWM1ZGQyMzdhYTA3NDA2ODYzOWMyMjg3NjNkM2NmNmI0 YjM3Njg3NGNjZTJkZDk5MzNkM2VhNzg3OThjYjcwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeqSrmsZRVc5sGRpOXkUyEpIOo8JWKwX4uZ+WwYflzH668 I23GQNuS7PHPoNQAFJbFKAMxUjam8UBgk9MLSZwkd0zOL3v8a7VW6qA4IrsG2QP0 kPFYUFHLIfYeA/Y4dlIpi8uqTCYciRBQsxhfF0Tkp9rAA4bPq0djFvzgjhdcsObU cuNYsaqrlabduB1q4BqcCmLIQo0uRoHFNqdE4ouc+38MDMDtrNxPebLZ81Mg2+Q7 iROAgc0Srcnjwqli5tht9kHzbVIdApi7CCCEhD1AztBp1nq99HdjN+Gjw1lE/7F9 g7fFwrYs73WOQ9GlOEccCUrNbF4mmNQ0wN8bZrBVAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8rP+tLpTwOEsS4+3JHo/xORr/dMwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzA3OTZlYWNlLTNhODUtNDIwYS1hN2E0LWJhNTRmNDA1MGNjZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB+4gDANBgkqhkiG9w0BAQsFAAOCAQEAn5kzAfyjim/yfOHOSvn67dUG /l2mL258QSWNP95WYbdJFiNy2UWIH2b9gdyeZQvfm1ukkHuE8IcmioBo3B1fTyVQ fNnRmsamnJC+LtOqf8SzQkEthvgLb6XWFC6l5OPPEO/NFuij0K24qxkBY4PIs/2E c3FZJrcCeKZOpVrFsaQCw1l/DXojsUOruFhy+z/DcYWtOf7XV7W4quelhI2RG0ER Z27cEubQ++Di2SaRiZ8lILE/nRwNTBywdRYFg192MafNom6LxJSE4g1+wTYCLFpP SW0O4W/DciR9QEJpk70vwVptYF8gqK5NUiq3cE+hwMM+sLZ2/5hLHxJ5BOwlbw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:24:25 2026 by rpki-client