$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c593235-d4d1-42e7-a46c-4f5812080ba3.roa File: 1c593235-d4d1-42e7-a46c-4f5812080ba3.roa (raw, json) Hash identifier: U/8147DKZQibterNljQA+coGWd1F0dGVXSPD2JT/Zbg= Subject key identifier: 79:63:BE:E9:83:74:FF:77:00:5B:16:10:4D:42:9D:8E:46:D7:E3:47 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 05E6C495F9E8EBC1A7CEC126E738272E6BD90CE8 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c593235-d4d1-42e7-a46c-4f5812080ba3.roa Signing time: Tue 24 Feb 2026 01:00:16 +0000 ROA not before: Tue 24 Feb 2026 01:00:16 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:8160::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 05:e6:c4:95:f9:e8:eb:c1:a7:ce:c1:26:e7:38:27:2e:6b:d9:0c:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:00:16 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=b63a59f48e70a3f1aa9d8314bb6e3e78828844fddbac19f530e377255729b87a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:6d:27:9f:2f:a4:fd:f1:a4:66:a9:49:da:24: c4:9c:af:46:60:80:de:8e:83:c8:78:aa:28:42:a1: af:d1:68:54:9f:aa:22:9a:d3:64:a2:2b:e3:1a:1f: 55:4a:17:22:9e:65:04:19:2f:8d:65:e0:aa:45:3c: 18:16:a4:d5:b2:f3:3d:0e:4f:8b:b1:37:b0:87:44: f7:2d:e9:85:e4:b5:61:fa:bb:e9:e5:2f:b5:12:c5: ab:22:68:32:a8:39:3f:3d:db:3d:5b:80:11:87:9e: e6:15:67:23:fb:98:72:a0:eb:87:cf:13:a7:8e:08: 26:0c:d2:22:e0:58:7e:c8:52:0c:0e:fa:fd:1b:3e: e1:4b:73:33:15:30:34:c5:66:ae:a3:e6:bb:34:72: b4:ed:10:9a:1d:f4:36:66:27:03:ee:a0:01:b3:4f: 60:f4:89:a1:7c:26:06:df:1f:7f:68:57:b4:57:70: c1:40:11:f3:1d:43:d6:37:c0:2b:44:69:89:63:cd: 4b:c5:9b:c8:f2:46:87:52:7d:91:c8:19:d1:08:15: 42:38:e0:ab:b4:03:a8:1f:72:00:ee:4f:fb:53:ac: 3e:ec:2a:f5:cc:55:04:a5:b9:b7:d8:7d:a0:c0:1f: 94:17:eb:3a:c1:00:6b:6b:13:d2:0a:49:5c:40:63: 5a:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:63:BE:E9:83:74:FF:77:00:5B:16:10:4D:42:9D:8E:46:D7:E3:47 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1c593235-d4d1-42e7-a46c-4f5812080ba3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:8160::/48 Signature Algorithm: sha256WithRSAEncryption d6:08:e9:56:a5:10:f3:f8:8b:5f:3d:29:d3:7d:52:f8:e6:9b: 9a:e9:e7:45:00:54:0c:05:32:ab:7e:bc:cd:53:f9:14:fb:81: 67:7c:0a:f9:62:07:65:02:88:4f:42:c3:e3:7e:84:3b:43:30: f1:d5:82:74:6a:4c:78:fc:a5:7e:f3:d2:44:75:a0:a7:36:d9: a5:52:90:12:45:75:20:a5:99:a8:fa:92:a9:be:64:84:5c:a5: 87:0f:f0:f4:be:31:6c:84:c7:5e:4e:81:3f:06:e1:09:0a:65: d6:c7:ae:dc:c9:44:ca:00:8b:82:ce:04:39:2b:66:fa:18:7d: b0:53:f2:b2:ee:81:62:48:cf:d0:6f:1f:ef:d0:de:65:bf:7a: f4:96:8c:eb:d5:bc:fd:5e:39:d9:9d:9f:49:c9:b5:1e:10:58: c5:b3:94:37:48:19:d2:e7:e4:d8:90:7e:5e:58:0f:a2:d3:d0: 48:3a:2e:cb:9b:ab:4d:87:cf:d7:f0:cd:10:62:4f:96:c8:50: 29:91:02:06:30:67:da:b8:1f:4e:f9:85:0d:8a:60:72:39:f7: 5b:f9:91:11:a5:2f:a2:41:c4:78:f0:fb:2d:5c:19:7e:ba:0a: 07:be:bb:85:e4:e5:c7:00:a8:87:16:15:4e:c3:0e:7d:1c:6f: f1:a3:10:6d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUBebElfno68GnzsEm5zgnLmvZDOgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMDE2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BiNjNhNTlmNDhlNzBhM2YxYWE5ZDgzMTRiYjZlM2U3ODgy ODg0NGZkZGJhYzE5ZjUzMGUzNzcyNTU3MjliODdhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCkbSefL6T98aRmqUnaJMScr0ZggN6Og8h4qihCoa/RaFSf qiKa02SiK+MaH1VKFyKeZQQZL41l4KpFPBgWpNWy8z0OT4uxN7CHRPct6YXktWH6 u+nlL7USxasiaDKoOT892z1bgBGHnuYVZyP7mHKg64fPE6eOCCYM0iLgWH7IUgwO +v0bPuFLczMVMDTFZq6j5rs0crTtEJod9DZmJwPuoAGzT2D0iaF8JgbfH39oV7RX cMFAEfMdQ9Y3wCtEaYljzUvFm8jyRodSfZHIGdEIFUI44Ku0A6gfcgDuT/tTrD7s KvXMVQSlubfYfaDAH5QX6zrBAGtrE9IKSVxAY1rJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUeWO+6YN0/3cAWxYQTUKdjkbX40cwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFjNTkzMjM1LWQ0ZDEtNDJlNy1hNDZjLTRmNTgxMjA4MGJhMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AgWAwDQYJKoZIhvcNAQELBQADggEBANYI6ValEPP4i189KdN9Uvjm m5rp50UAVAwFMqt+vM1T+RT7gWd8CvliB2UCiE9Cw+N+hDtDMPHVgnRqTHj8pX7z 0kR1oKc22aVSkBJFdSClmaj6kqm+ZIRcpYcP8PS+MWyEx15OgT8G4QkKZdbHrtzJ RMoAi4LOBDkrZvoYfbBT8rLugWJIz9BvH+/Q3mW/evSWjOvVvP1eOdmdn0nJtR4Q WMWzlDdIGdLn5NiQfl5YD6LT0Eg6Lsubq02Hz9fwzRBiT5bIUCmRAgYwZ9q4H075 hQ2KYHI591v5kRGlL6JBxHjw+y1cGX66Cge+u4Xk5ccAqIcWFU7DDn0cb/GjEG0= -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:46 2026 by rpki-client