$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fbc2657-4f39-44e6-9df2-4b8132378814.roa File: 1fbc2657-4f39-44e6-9df2-4b8132378814.roa (raw, json) Hash identifier: pHjKWvv91U/nYtS79rSfRZFYoSnIlGzii3lUJ0zCEw8= Subject key identifier: A3:B9:63:4B:53:DC:F4:63:E7:EC:54:C8:8E:73:96:23:8B:AC:78:4C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 292CF0465B737AEE664DA13880B3ED45BBB12277 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fbc2657-4f39-44e6-9df2-4b8132378814.roa Signing time: Wed 25 Feb 2026 01:30:49 +0000 ROA not before: Wed 25 Feb 2026 01:30:49 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f32:a400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2c:f0:46:5b:73:7a:ee:66:4d:a1:38:80:b3:ed:45:bb:b1:22:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:30:49 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=3534998828bb2f93589b40bfad53171d35d5866c5c5f541e3b42801976df32da, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:6f:ac:1d:85:c1:2d:17:28:82:02:a7:be:3b: 3d:d6:51:4e:44:08:0f:9a:9f:9c:e4:c1:6a:be:7a: cd:00:f4:14:01:47:da:46:54:c1:18:da:5a:ea:d4: 74:52:a2:d6:64:3b:d8:e4:58:be:62:19:ef:e1:2d: 79:d8:07:9b:36:85:7e:0d:35:6c:02:e6:d2:fa:5e: 99:b6:09:99:43:fd:92:b5:2b:18:35:7a:17:1e:df: c4:15:ed:0f:3a:48:15:ee:18:87:93:13:90:29:c0: 3a:c6:8d:25:9a:24:d7:33:ca:c4:42:01:f1:b4:fd: f3:0e:f5:70:6e:e0:ca:bc:d9:e8:ad:c9:63:39:0b: 44:3a:7e:f3:79:33:71:3d:f6:10:3e:26:f4:61:07: 83:3f:99:b0:d6:90:67:f3:1e:aa:ca:74:44:78:c1: ac:dd:a8:74:72:3b:62:3b:4f:48:71:d3:da:64:49: cd:d8:0a:00:9e:3f:ea:cf:84:ad:a0:c6:84:a7:e8: bb:df:33:3c:4a:d4:e4:2b:fd:5d:1e:90:2f:6b:89: c8:98:62:09:0f:83:a4:3c:de:8b:ab:17:0a:d7:a8: b3:fd:87:8b:5e:24:d2:54:d8:05:4e:90:77:de:d0: 5f:23:f6:07:85:c7:cf:b2:8b:94:a8:52:3a:e8:39: cb:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:B9:63:4B:53:DC:F4:63:E7:EC:54:C8:8E:73:96:23:8B:AC:78:4C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/1fbc2657-4f39-44e6-9df2-4b8132378814.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f32:a400::/40 Signature Algorithm: sha256WithRSAEncryption 3b:2e:89:43:cf:e2:ab:fc:d4:42:54:9a:88:be:e7:0c:8a:78: cf:f3:fe:95:3b:96:b6:d4:b7:5d:e5:56:f6:bd:06:00:31:20: 2c:bc:67:58:9b:99:f3:16:b3:09:83:25:33:2e:94:fe:d2:cb: ca:96:b4:ac:6a:f3:16:4b:ff:6c:b2:b1:c4:0d:37:96:0a:b5: 07:19:5d:57:5d:93:1f:c9:34:b7:48:fd:a9:38:18:1d:8d:84: e8:52:01:94:a7:d7:8e:1a:7d:04:07:5d:9b:7a:0f:67:69:dd: 78:7c:37:5a:2a:3a:ab:a7:de:2f:ba:77:0b:4b:39:75:b5:3a: 77:9c:43:c8:f2:64:ce:ad:e0:63:21:49:9c:a4:fa:0a:3f:3f: 95:3d:c4:8e:e8:6b:a3:50:37:80:df:fc:bf:29:f8:a7:4e:ea: a1:21:a0:0f:83:05:37:70:16:bf:b9:38:8a:24:4b:8d:c3:43: 78:d3:1d:25:8f:ac:4f:58:14:13:8a:13:2a:da:4f:98:31:a4: e1:62:13:35:91:d5:1c:1d:34:7a:d1:05:45:ac:d0:73:79:a4: 29:d5:e4:29:5d:e1:e9:66:ce:3c:21:2b:bc:9f:68:9c:e4:b1: 07:d8:cf:9a:7b:ec:82:58:ed:8d:bf:1e:61:ec:6f:d9:8e:58: e7:7e:d1:7f -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKSzwRltzeu5mTaE4gLPtRbuxIncwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEzMDQ5WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AzNTM0OTk4ODI4YmIyZjkzNTg5YjQwYmZhZDUzMTcxZDM1 ZDU4NjZjNWM1ZjU0MWUzYjQyODAxOTc2ZGYzMmRhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCvb6wdhcEtFyiCAqe+Oz3WUU5ECA+an5zkwWq+es0A9BQB R9pGVMEY2lrq1HRSotZkO9jkWL5iGe/hLXnYB5s2hX4NNWwC5tL6Xpm2CZlD/ZK1 Kxg1ehce38QV7Q86SBXuGIeTE5ApwDrGjSWaJNczysRCAfG0/fMO9XBu4Mq82eit yWM5C0Q6fvN5M3E99hA+JvRhB4M/mbDWkGfzHqrKdER4wazdqHRyO2I7T0hx09pk Sc3YCgCeP+rPhK2gxoSn6LvfMzxK1OQr/V0ekC9riciYYgkPg6Q83ourFwrXqLP9 h4teJNJU2AVOkHfe0F8j9geFx8+yi5SoUjroOcv7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUo7ljS1Pc9GPn7FTIjnOWI4useEwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzFmYmMyNjU3LTRmMzktNDRlNi05ZGYyLTRiODEzMjM3ODgxNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8ypDANBgkqhkiG9w0BAQsFAAOCAQEAOy6JQ8/iq/zUQlSaiL7nDIp4 z/P+lTuWttS3XeVW9r0GADEgLLxnWJuZ8xazCYMlMy6U/tLLypa0rGrzFkv/bLKx xA03lgq1BxldV12TH8k0t0j9qTgYHY2E6FIBlKfXjhp9BAddm3oPZ2ndeHw3Wio6 q6feL7p3C0s5dbU6d5xDyPJkzq3gYyFJnKT6Cj8/lT3Ejuhro1A3gN/8vyn4p07q oSGgD4MFN3AWv7k4iiRLjcNDeNMdJY+sT1gUE4oTKtpPmDGk4WITNZHVHB00etEF RazQc3mkKdXkKV3h6WbOPCErvJ9onOSxB9jPmnvsgljtjb8eYexv2Y5Y537Rfw== -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:17 2026 by rpki-client