$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aed058e-8a89-4a3a-98d6-a76022818bde.roa File: 0aed058e-8a89-4a3a-98d6-a76022818bde.roa (raw, json) Hash identifier: wi4FgZCh2ImhmiXNuYhYoh1VzGi5AC6ZBjJYbSTn6u8= Subject key identifier: E9:6D:C9:49:E6:4A:FF:D0:6C:13:3B:9E:25:2E:E6:41:B4:93:2B:B0 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 591CF6263203FB3309E5D9652A18F111A1BB70A0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aed058e-8a89-4a3a-98d6-a76022818bde.roa Signing time: Wed 25 Feb 2026 02:21:56 +0000 ROA not before: Wed 25 Feb 2026 02:21:56 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f17:4c00::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 59:1c:f6:26:32:03:fb:33:09:e5:d9:65:2a:18:f1:11:a1:bb:70:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:21:56 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=1524ca523ca9d400bfcd4b0b9d5bb3c1c3030191d054576c76c71b65ce50e31f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:f8:8b:35:c4:95:37:05:ba:be:f0:c6:eb:ab: d2:18:f5:18:f9:c4:5d:1b:fe:66:fb:3e:97:0f:d7: 4d:03:03:8c:50:3d:1c:73:24:5f:8e:ef:d2:56:1b: 90:ca:47:80:43:e9:d9:e5:3b:b6:f6:61:fd:4e:12: 3b:33:05:24:42:d3:b0:df:6d:d7:9e:bb:56:08:47: 13:5b:03:68:19:7a:bb:cc:3e:8f:4d:b2:81:f8:3e: 52:30:d5:cf:37:fa:ba:75:0e:1e:ec:09:0e:6f:84: 64:ef:6e:60:8e:25:8e:54:b6:69:10:0a:21:24:f4: 3e:ef:73:a1:fc:cd:fc:a9:f9:e2:d5:d8:34:c2:86: 53:9c:b8:c6:eb:11:b4:db:84:ae:07:1c:5e:3a:aa: d2:fa:73:cb:e0:a0:ee:61:ef:20:78:1a:d6:52:07: 70:31:da:f8:e3:8c:bb:c6:1a:24:5f:bb:3a:9d:b7: 81:68:fc:a7:44:ad:b5:74:1f:69:ff:15:ed:85:83: 1a:73:01:75:bb:a0:d3:7e:4e:f0:03:47:0c:dd:52: 81:19:22:2d:6b:a0:35:ea:28:ba:63:a3:2e:bc:44: d7:9b:de:e6:09:00:d7:fb:56:27:c9:cd:ec:29:9c: d0:72:7a:ef:65:01:65:09:36:68:25:35:c7:0f:e9: 4e:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:6D:C9:49:E6:4A:FF:D0:6C:13:3B:9E:25:2E:E6:41:B4:93:2B:B0 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/0aed058e-8a89-4a3a-98d6-a76022818bde.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f17:4c00::/38 Signature Algorithm: sha256WithRSAEncryption 42:ab:e7:88:30:e2:46:10:cf:3c:be:13:c1:48:0a:0d:3e:7f: 0e:32:21:0b:68:2a:45:1e:81:40:67:59:3e:87:3f:66:e6:c5: 25:6b:70:df:c7:1e:5e:3f:11:ff:53:89:30:08:ad:c1:ca:d1: cd:18:dc:b5:c4:5d:e7:bd:76:da:cc:79:d9:74:54:90:cf:79: 71:cd:31:74:58:bf:6b:59:15:37:51:d3:81:52:e6:77:fe:c0: 99:e6:26:17:24:01:ef:c3:8c:94:cb:c5:b0:51:07:c7:04:68: 5e:f3:04:3f:42:12:6a:f7:b3:07:0d:b3:41:53:aa:2f:96:73: 13:74:75:80:dc:d6:84:b3:10:74:5c:c2:c4:c1:d9:c4:dd:81: 85:f5:7e:b7:c1:84:7c:96:80:d1:d6:0c:1b:4a:c4:f4:9a:d8: 79:50:a5:31:57:f6:6e:f5:8b:8d:92:1c:08:79:b5:78:3d:5f: 38:f8:9b:eb:7f:5c:df:69:fc:8a:9a:5e:88:0e:17:b8:dc:6f: ba:e7:a3:17:13:22:fc:78:15:7f:2b:f5:63:ea:56:00:86:aa: 98:47:61:2e:d1:35:85:31:fb:bf:f3:4a:75:61:f0:01:dc:dc: 11:c6:c8:02:7f:9f:d8:55:76:69:cf:81:6c:0f:b5:1b:6e:4a: 8b:da:98:7b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUWRz2JjID+zMJ5dllKhjxEaG7cKAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIyMTU2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNTI0Y2E1MjNjYTlkNDAwYmZjZDRiMGI5ZDViYjNjMWMz MDMwMTkxZDA1NDU3NmM3NmM3MWI2NWNlNTBlMzFmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC/+Is1xJU3Bbq+8Mbrq9IY9Rj5xF0b/mb7PpcP100DA4xQ PRxzJF+O79JWG5DKR4BD6dnlO7b2Yf1OEjszBSRC07Dfbdeeu1YIRxNbA2gZervM Po9NsoH4PlIw1c83+rp1Dh7sCQ5vhGTvbmCOJY5UtmkQCiEk9D7vc6H8zfyp+eLV 2DTChlOcuMbrEbTbhK4HHF46qtL6c8vgoO5h7yB4GtZSB3Ax2vjjjLvGGiRfuzqd t4Fo/KdErbV0H2n/Fe2FgxpzAXW7oNN+TvADRwzdUoEZIi1roDXqKLpjoy68RNeb 3uYJANf7VifJzewpnNByeu9lAWUJNmglNccP6U4bAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU6W3JSeZK/9BsEzueJS7mQbSTK7AwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzBhZWQwNThlLThhODktNGEzYS05OGQ2LWE3NjAyMjgxOGJkZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8XTDANBgkqhkiG9w0BAQsFAAOCAQEAQqvniDDiRhDPPL4TwUgKDT5/ DjIhC2gqRR6BQGdZPoc/ZubFJWtw38ceXj8R/1OJMAitwcrRzRjctcRd57122sx5 2XRUkM95cc0xdFi/a1kVN1HTgVLmd/7AmeYmFyQB78OMlMvFsFEHxwRoXvMEP0IS avezBw2zQVOqL5ZzE3R1gNzWhLMQdFzCxMHZxN2BhfV+t8GEfJaA0dYMG0rE9JrY eVClMVf2bvWLjZIcCHm1eD1fOPib639c32n8ippeiA4XuNxvuuejFxMi/HgVfyv1 Y+pWAIaqmEdhLtE1hTH7v/NKdWHwAdzcEcbIAn+f2FV2ac+BbA+1G25Ki9qYew== -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:10 2026 by rpki-client