$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa File: 10eee66f-24d2-4d20-b7f1-d2d46838c237.roa (raw, json) Hash identifier: erL/HvznRnknzy21S3vZyN49PGd5JImRZXZdNgjpnT0= Subject key identifier: F0:64:1F:70:BB:62:AD:56:BD:30:76:5F:61:E8:D6:2D:62:3E:E9:71 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0571E615B7C709AE2ECED7AFE4EF37B4502A4061 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa Signing time: Sat 28 Feb 2026 00:20:07 +0000 ROA not before: Sat 28 Feb 2026 00:20:07 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fef:2000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:71:e6:15:b7:c7:09:ae:2e:ce:d7:af:e4:ef:37:b4:50:2a:40:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:20:07 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=3045c10d3689063282f804204231f379c82e8b746576e031b3e11423acceecf3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e6:64:99:3d:b5:f5:3b:b2:8b:03:c8:c8:c8:ee: 28:c2:ee:7c:72:d0:49:0c:26:0e:17:08:67:05:01: e2:de:e8:96:5e:e2:3d:45:72:e5:85:32:05:ff:5e: 0f:d8:9c:40:57:8f:90:52:6a:bf:2a:6a:69:af:29: 0f:e0:a9:3f:61:7c:1b:e5:42:70:01:0f:8a:b5:14: f0:00:c3:ec:c3:b4:ff:67:b3:bd:be:ce:34:ee:7e: 92:57:f0:3d:0f:e2:e0:71:64:03:be:08:f4:86:c7: 7e:14:3a:bf:d4:d2:7f:f4:f2:6f:ad:df:08:80:5f: 94:30:88:da:7d:a8:02:5b:ff:1d:73:4a:e1:a1:4a: c6:dc:2b:58:5b:e4:70:84:ea:3a:ff:c0:04:43:f0: c8:1a:ca:9d:05:1c:83:0f:09:40:87:7f:20:76:bd: 19:8d:3f:09:f0:3d:4f:7f:ed:fb:69:85:20:74:bf: 0e:6b:04:a2:84:24:49:74:aa:51:02:e3:df:02:85: 99:65:2b:db:96:8f:f1:76:c4:34:70:4c:72:b5:0e: b8:aa:c9:c6:14:a9:32:21:ef:99:e9:da:33:5e:1e: f8:02:e0:d2:4a:56:a6:4b:15:55:63:06:92:60:69: c2:ea:86:c6:bd:d1:ae:28:09:71:a6:22:d5:4f:4e: 51:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:64:1F:70:BB:62:AD:56:BD:30:76:5F:61:E8:D6:2D:62:3E:E9:71 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/10eee66f-24d2-4d20-b7f1-d2d46838c237.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fef:2000::/40 Signature Algorithm: sha256WithRSAEncryption c0:4a:68:77:2d:35:4c:59:4b:cd:53:c7:50:9a:cb:5f:d4:1f: 34:61:8d:f4:cb:0a:e4:d5:95:ad:39:c8:cb:f0:c2:3f:70:ee: 89:78:a1:02:b3:e3:7b:22:c9:7c:60:07:4f:51:b8:86:23:a8: 08:98:6e:e9:ea:ae:1e:30:d8:94:27:93:06:3e:ad:da:8a:2d: a2:75:52:6f:a1:ba:66:01:f5:e0:26:8d:36:99:87:c4:f4:a2: d4:9e:0f:08:4a:6e:91:4f:57:21:19:be:ea:d2:cc:2d:2c:18: 44:cc:ba:79:38:04:d5:14:33:2e:94:32:4c:5c:e4:aa:f2:97: ce:f5:fc:02:bc:8b:32:2c:27:32:ca:ba:32:f7:d0:e3:09:02: f5:31:e3:fc:97:ca:df:a4:15:4e:98:12:99:ba:a3:ad:98:a5: 4b:24:d5:9f:74:ed:55:65:a6:01:35:fa:d0:78:72:b6:38:5d: 66:2d:27:ae:e3:0b:70:52:05:23:a9:2e:9c:75:c2:4b:30:0c: 4d:66:da:2c:c8:39:4e:3b:98:ac:c5:03:29:41:a3:cc:37:d9: 04:56:fd:e2:be:9c:20:3b:06:e3:3a:5f:fa:27:2e:43:25:dc: 34:60:c4:ff:c7:9a:c2:fa:a1:3c:8b:65:08:d8:47:1d:49:a9: 41:10:be:00 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUBXHmFbfHCa4uztev5O83tFAqQGEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI4MDAyMDA3WhcNMjYwNTI5MjM1OTU5 WjB6MUkwRwYDVQQFE0AzMDQ1YzEwZDM2ODkwNjMyODJmODA0MjA0MjMxZjM3OWM4 MmU4Yjc0NjU3NmUwMzFiM2UxMTQyM2FjY2VlY2YzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDmZJk9tfU7sosDyMjI7ijC7nxy0EkMJg4XCGcFAeLe6JZe 4j1FcuWFMgX/Xg/YnEBXj5BSar8qammvKQ/gqT9hfBvlQnABD4q1FPAAw+zDtP9n s72+zjTufpJX8D0P4uBxZAO+CPSGx34UOr/U0n/08m+t3wiAX5QwiNp9qAJb/x1z SuGhSsbcK1hb5HCE6jr/wARD8Mgayp0FHIMPCUCHfyB2vRmNPwnwPU9/7ftphSB0 vw5rBKKEJEl0qlEC498ChZllK9uWj/F2xDRwTHK1DriqycYUqTIh75np2jNeHvgC 4NJKVqZLFVVjBpJgacLqhsa90a4oCXGmItVPTlGrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU8GQfcLtirVa9MHZfYejWLWI+6XEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzEwZWVlNjZmLTI0ZDItNGQyMC1iN2YxLWQyZDQ2ODM4YzIzNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/vIDANBgkqhkiG9w0BAQsFAAOCAQEAwEpody01TFlLzVPHUJrLX9Qf NGGN9MsK5NWVrTnIy/DCP3DuiXihArPjeyLJfGAHT1G4hiOoCJhu6equHjDYlCeT Bj6t2ootonVSb6G6ZgH14CaNNpmHxPSi1J4PCEpukU9XIRm+6tLMLSwYRMy6eTgE 1RQzLpQyTFzkqvKXzvX8AryLMiwnMsq6MvfQ4wkC9THj/JfK36QVTpgSmbqjrZil SyTVn3TtVWWmATX60HhytjhdZi0nruMLcFIFI6kunHXCSzAMTWbaLMg5TjuYrMUD KUGjzDfZBFb94r6cIDsG4zpf+icuQyXcNGDE/8eawvqhPItlCNhHHUmpQRC+AA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:22:25 2026 by rpki-client