$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f1d9458-2428-43f4-8951-9061986bfe05.roa File: 1f1d9458-2428-43f4-8951-9061986bfe05.roa (raw, json) Hash identifier: BG9LGGm65hOu9aKRezPZNg+IFD8AUNer+CUE7BH+D80= Subject key identifier: 7B:83:43:A4:A4:AE:68:3A:B8:70:D4:E4:34:CB:40:09:3C:07:68:DD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 52B4F8F84F538860C48F8341C74BC0F3537E9C8F Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f1d9458-2428-43f4-8951-9061986bfe05.roa Signing time: Wed 25 Feb 2026 00:31:34 +0000 ROA not before: Wed 25 Feb 2026 00:31:34 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f15:800::/38 maxlen: 38 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:b4:f8:f8:4f:53:88:60:c4:8f:83:41:c7:4b:c0:f3:53:7e:9c:8f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:31:34 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=d8c52ee3f6e9ce5e9f10a127fe5c25e30d6990f29672402bb57de711ec8ea777, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:8e:73:75:c9:b6:c8:0f:39:00:5b:8c:a1:fe: cd:8a:a1:0a:47:ae:42:d8:89:e3:66:39:2a:2e:1b: 42:e6:b7:2a:67:74:cf:c6:ff:ba:8e:f0:d8:9f:f7: 5d:23:82:49:31:65:70:ad:d2:a3:16:d1:1a:2e:f2: 2d:c3:47:3a:12:41:82:41:84:aa:40:ff:cb:98:40: 9d:c4:a3:32:55:e9:30:66:a2:cb:d7:64:cd:1c:10: b0:15:0d:0b:5f:90:18:bd:84:d4:49:5a:c7:d2:80: 05:6f:4b:35:6f:85:e4:a6:cd:db:c7:0a:3d:12:9e: 57:27:24:77:95:76:ab:2b:8c:c3:c6:64:7f:e6:ec: 54:24:29:46:f5:c2:2a:f3:1d:88:64:43:7e:32:df: 00:e8:7f:a7:dd:f1:fc:ea:35:97:58:a2:46:b3:cb: b9:56:79:e9:3c:92:48:29:d4:a9:d2:45:28:a6:59: 88:5e:0d:00:20:76:68:ca:49:54:dd:ac:86:03:af: 99:54:fb:63:0f:c9:15:fc:f7:a5:c9:ec:0b:9c:89: 43:93:e9:2f:04:87:33:36:fe:bc:3f:0b:d1:ab:26: 83:b0:39:ba:1b:68:79:6d:44:56:d5:69:c1:bc:7d: d1:f9:a5:8e:76:62:18:b2:6e:f1:19:61:34:75:9e: 79:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7B:83:43:A4:A4:AE:68:3A:B8:70:D4:E4:34:CB:40:09:3C:07:68:DD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1f1d9458-2428-43f4-8951-9061986bfe05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15:800::/38 Signature Algorithm: sha256WithRSAEncryption 7a:69:cf:7b:d7:6e:34:90:3f:59:5a:4e:c6:c6:ae:c8:6e:db: e5:e4:7f:62:82:53:1e:be:b8:e1:ba:f1:8b:a3:a1:75:be:d0: 94:6d:c8:0f:21:75:2e:f9:af:4c:1d:4a:3c:0c:99:2f:0d:83: 36:1d:e2:b4:c8:dc:b8:69:cd:bf:e3:c2:26:76:7e:29:b6:08: 13:03:51:d0:78:04:4a:8c:74:cf:5b:a5:07:cd:71:42:b1:83: e3:56:ff:f0:91:e1:96:cc:cc:1c:87:64:5b:7d:04:5c:01:1a: 72:0a:da:91:37:e7:a8:75:62:53:03:1c:02:5b:87:c3:4d:6d: 9f:1c:46:77:80:f8:d0:69:ef:67:35:56:fd:4e:16:38:e1:9a: d2:86:3b:96:cd:3e:2b:74:8c:a0:6a:e8:c6:f5:d0:5f:4e:52: d4:5f:bf:a7:16:25:a4:43:45:02:ca:e0:bf:d4:93:c5:7a:ff: d0:d0:e2:02:39:00:e9:8d:33:51:5b:f5:78:b4:3e:04:3f:e6: 5d:50:14:b0:f6:32:7b:92:89:13:4a:c6:cc:16:c3:09:e3:7e: 44:8e:02:f8:f4:eb:55:2d:ca:61:e0:28:56:05:1e:51:3a:1c: c0:a6:b3:8b:7a:ad:ed:45:ad:08:56:3f:54:d8:0d:11:39:8e: 5a:90:bb:b0 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUUrT4+E9TiGDEj4NBx0vA81N+nI8wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMTM0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BkOGM1MmVlM2Y2ZTljZTVlOWYxMGExMjdmZTVjMjVlMzBk Njk5MGYyOTY3MjQwMmJiNTdkZTcxMWVjOGVhNzc3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC3jnN1ybbIDzkAW4yh/s2KoQpHrkLYieNmOSouG0Lmtypn dM/G/7qO8Nif910jgkkxZXCt0qMW0Rou8i3DRzoSQYJBhKpA/8uYQJ3EozJV6TBm osvXZM0cELAVDQtfkBi9hNRJWsfSgAVvSzVvheSmzdvHCj0SnlcnJHeVdqsrjMPG ZH/m7FQkKUb1wirzHYhkQ34y3wDof6fd8fzqNZdYokazy7lWeek8kkgp1KnSRSim WYheDQAgdmjKSVTdrIYDr5lU+2MPyRX896XJ7AuciUOT6S8EhzM2/rw/C9GrJoOw ObobaHltRFbVacG8fdH5pY52YhiybvEZYTR1nnkrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUe4NDpKSuaDq4cNTkNMtACTwHaN0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmMWQ5NDU4LTI0MjgtNDNmNC04OTUxLTkwNjE5ODZiZmUwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgImAB8VCDANBgkqhkiG9w0BAQsFAAOCAQEAemnPe9duNJA/WVpOxsauyG7b 5eR/YoJTHr644brxi6Ohdb7QlG3IDyF1LvmvTB1KPAyZLw2DNh3itMjcuGnNv+PC JnZ+KbYIEwNR0HgESox0z1ulB81xQrGD41b/8JHhlszMHIdkW30EXAEacgrakTfn qHViUwMcAluHw01tnxxGd4D40GnvZzVW/U4WOOGa0oY7ls0+K3SMoGroxvXQX05S 1F+/pxYlpENFAsrgv9STxXr/0NDiAjkA6Y0zUVv1eLQ+BD/mXVAUsPYye5KJE0rG zBbDCeN+RI4C+PTrVS3KYeAoVgUeUTocwKazi3qt7UWtCFY/VNgNETmOWpC7sA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:38:52 2026 by rpki-client