$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20755d60-bf66-4983-a6c3-090f1c287f3f.roa File: 20755d60-bf66-4983-a6c3-090f1c287f3f.roa (raw, json) Hash identifier: 2TOF4GW2kQ3Cy93wffnoNBwgkuv5r1t5TeKySYRB9Vg= Subject key identifier: 69:B8:9C:C7:68:48:C7:17:C4:96:4D:71:23:F3:1A:EC:55:6A:30:57 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2431AD4E2795E1C53AC765069F185838DEDDA9 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20755d60-bf66-4983-a6c3-090f1c287f3f.roa Signing time: Wed 25 Feb 2026 02:10:40 +0000 ROA not before: Wed 25 Feb 2026 02:10:40 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1fff:8010::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:31:ad:4e:27:95:e1:c5:3a:c7:65:06:9f:18:58:38:de:dd:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:10:40 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=6792274f4cc19b5efc47384cb87c54f39e7bb25fc40f71f5170e792d8cd8e3ed, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:dd:4e:1c:bd:6d:1c:73:17:51:71:fc:c8:e1: 05:a4:ca:03:49:ae:d2:50:bb:b8:56:cd:10:57:98: f8:88:26:c4:d4:8b:7e:82:cf:dc:91:4f:3f:68:50: a2:a6:69:be:2f:f7:1e:3d:96:80:65:d2:d7:c0:0d: d2:76:be:a4:d2:99:42:20:2b:d8:36:2a:0d:e0:1e: 67:d5:55:b9:f8:8c:b5:ed:f7:64:95:25:7d:fc:5b: bd:b1:d6:0b:87:41:39:85:8a:a3:d0:3a:92:69:be: 0a:f2:5d:ef:c9:1c:e4:40:01:8c:87:67:a3:b2:c3: ba:c5:8d:56:3a:f5:0f:4c:be:4e:54:d7:e9:5e:49: 10:6e:10:2e:4d:9a:18:31:aa:fb:0b:57:0c:e7:d8: f0:5b:c0:24:b7:ce:77:9d:7b:ce:41:08:38:e1:c0: 51:0b:72:1c:34:10:41:86:92:02:28:0e:99:bf:2f: 8e:17:51:fa:4b:20:4d:c4:7b:b0:31:7f:4c:8d:ca: 2b:a0:b4:7a:dd:36:12:57:70:33:59:2d:68:8d:b2: cb:0a:2a:8b:55:88:84:d3:7d:9d:44:65:e9:32:dd: c6:b0:da:5a:9b:80:19:e4:ad:16:b8:af:75:3a:1f: 9a:9c:1e:eb:f2:d3:70:7f:22:7f:4e:16:a0:3e:25: 11:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:B8:9C:C7:68:48:C7:17:C4:96:4D:71:23:F3:1A:EC:55:6A:30:57 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/20755d60-bf66-4983-a6c3-090f1c287f3f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:8010::/48 Signature Algorithm: sha256WithRSAEncryption ce:03:a5:72:70:13:a2:b9:da:35:b1:f7:e1:78:d6:0a:9a:c9: c1:bf:80:a8:e0:45:32:2d:de:a4:6e:9c:14:56:56:21:19:b8: 5c:c7:8d:d3:12:a3:43:e3:87:3c:90:02:da:f7:ee:cb:e9:54: 5d:93:58:05:07:d0:e3:cf:f3:71:99:62:10:f1:4f:d4:15:bb: 71:d4:5b:a7:c4:36:12:76:73:c7:ca:5f:5f:fa:9d:7e:3b:0d: dd:91:4c:43:86:9d:12:06:43:73:dd:bf:53:64:8c:00:d5:8e: 74:65:e1:b5:dc:1b:41:0f:8e:93:e6:b3:72:0f:fb:ff:c5:3a: 24:f0:51:7f:24:c8:a3:12:4d:7a:28:ba:e4:f6:94:39:f7:2d: 98:04:e9:7b:b9:b9:5b:b9:1f:bb:f7:ee:7b:32:93:41:e3:22: 9a:f8:cc:e4:ad:5b:27:42:4c:4c:f3:fd:8e:29:52:a1:87:bc: 21:41:d9:f9:e5:e1:1e:3d:39:6f:5a:f7:44:32:cc:d1:8b:85: a4:24:1d:52:fc:fe:b7:a5:41:43:28:1f:0d:dc:1d:c7:16:29: 3c:97:51:fc:f9:ea:2f:ba:af:44:0a:19:88:ae:84:85:a4:be: 6a:1b:17:54:6c:42:9b:60:02:76:5a:1e:1b:f9:a3:22:6b:26: b3:8f:63:4a -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgITJDGtTieV4cU6x2UGnxhYON7dqTANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjAyMjUwMjEwNDBaFw0yNjA1MjYyMzU5NTla MHoxSTBHBgNVBAUTQDY3OTIyNzRmNGNjMTliNWVmYzQ3Mzg0Y2I4N2M1NGYzOWU3 YmIyNWZjNDBmNzFmNTE3MGU3OTJkOGNkOGUzZWQxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAK/dThy9bRxzF1Fx/MjhBaTKA0mu0lC7uFbNEFeY+IgmxNSL foLP3JFPP2hQoqZpvi/3Hj2WgGXS18AN0na+pNKZQiAr2DYqDeAeZ9VVufiMte33 ZJUlffxbvbHWC4dBOYWKo9A6kmm+CvJd78kc5EABjIdno7LDusWNVjr1D0y+TlTX 6V5JEG4QLk2aGDGq+wtXDOfY8FvAJLfOd517zkEIOOHAUQtyHDQQQYaSAigOmb8v jhdR+ksgTcR7sDF/TI3KK6C0et02EldwM1ktaI2yywoqi1WIhNN9nURl6TLdxrDa WpuAGeStFrivdTofmpwe6/LTcH8if04WoD4lERUCAwEAAaOCArQwggKwMB0GA1Ud DgQWBBRpuJzHaEjHF8SWTXEj8xrsVWowVzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvMjA3NTVkNjAtYmY2Ni00OTgzLWE2YzMtMDkwZjFjMjg3ZjNmLnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAiBggrBgEFBQcBBwEB/wQTMBEwDwQCAAIw CQMHACYAH/+AEDANBgkqhkiG9w0BAQsFAAOCAQEAzgOlcnATornaNbH34XjWCprJ wb+AqOBFMi3epG6cFFZWIRm4XMeN0xKjQ+OHPJAC2vfuy+lUXZNYBQfQ48/zcZli EPFP1BW7cdRbp8Q2EnZzx8pfX/qdfjsN3ZFMQ4adEgZDc92/U2SMANWOdGXhtdwb QQ+Ok+azcg/7/8U6JPBRfyTIoxJNeii65PaUOfctmATpe7m5W7kfu/fuezKTQeMi mvjM5K1bJ0JMTPP9jilSoYe8IUHZ+eXhHj05b1r3RDLM0YuFpCQdUvz+t6VBQygf DdwdxxYpPJdR/PnqL7qvRAoZiK6EhaS+ahsXVGxCm2ACdloeG/mjImsms49jSg== -----END CERTIFICATE-----Generated at Mon Mar 2 04:56:15 2026 by rpki-client