$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21aa0dd7-3715-4fba-9058-ff15105f4485.roa File: 21aa0dd7-3715-4fba-9058-ff15105f4485.roa (raw, json) Hash identifier: tSvmF4M7Bpgdx8G3hXyHbIPmcrtFteBhF0aN+UntRvg= Subject key identifier: B0:97:41:32:40:4B:6A:52:BE:F8:59:01:6B:41:6F:D8:C8:F9:EF:42 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 7F03D7DEA4F66E0A6D056F27EB1ECD093078D2B1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21aa0dd7-3715-4fba-9058-ff15105f4485.roa Signing time: Tue 24 Feb 2026 00:20:47 +0000 ROA not before: Tue 24 Feb 2026 00:20:47 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f00:10c0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7f:03:d7:de:a4:f6:6e:0a:6d:05:6f:27:eb:1e:cd:09:30:78:d2:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:20:47 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=4b3bd71062271369e2027cf551df41a7f5a7f3f195eb88a0939463bdf4e955dc, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:06:c0:a1:ec:4e:55:e0:97:ee:37:cb:be:88: 62:6b:df:58:de:f4:d6:ee:a6:f9:35:47:43:1e:9e: 77:25:0e:f7:e7:72:34:16:56:d6:be:d2:05:92:d4: b9:ec:72:f0:2f:93:0f:43:40:15:da:d0:d4:5f:af: 93:36:34:05:af:b7:85:42:e0:e4:18:e9:27:42:e0: bd:a3:c1:fe:72:14:94:39:d9:b4:b5:23:ef:b6:6e: 0f:3f:7e:fb:96:05:f4:a6:ee:a6:47:ad:9c:43:24: c5:f6:17:9c:f5:57:a9:c1:91:92:40:e0:1a:7e:f2: 4d:17:7f:0d:b2:50:32:d5:60:21:69:48:e8:65:24: cc:e5:98:15:a2:93:1f:4f:f2:a8:d2:f4:dd:62:c2: 07:17:cf:9a:30:7b:53:c4:70:41:4c:cc:7a:9a:9d: ec:75:c7:a9:83:3b:df:4c:a1:77:ad:14:3c:99:6c: 3c:56:6f:5b:f2:11:ba:9a:38:06:cf:7a:5c:ec:70: ff:ed:89:79:b2:0b:3f:52:b4:4a:91:a1:ea:fa:62: f9:57:45:e0:e1:f3:c4:9a:86:d9:94:47:cb:9f:40: 7c:19:ef:4b:15:58:04:ee:6f:be:35:d3:cb:a5:f9: 1f:e1:fa:5b:21:2d:e3:72:cf:6d:a9:a4:09:7c:43: 82:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:97:41:32:40:4B:6A:52:BE:F8:59:01:6B:41:6F:D8:C8:F9:EF:42 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/21aa0dd7-3715-4fba-9058-ff15105f4485.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:10c0::/48 Signature Algorithm: sha256WithRSAEncryption 5b:f7:07:81:58:01:cd:5d:87:47:2d:d8:e0:0a:aa:53:cd:0b: 07:8f:fb:98:a0:41:2f:8c:ea:d0:a3:85:78:51:c7:54:6a:b4: a6:67:36:df:f2:0f:ac:f1:88:89:7c:85:50:13:ef:f3:d8:dd: d1:7c:09:13:f8:bf:52:00:f1:e2:e5:fd:36:dd:02:61:9a:e2: fc:ee:23:c1:9b:3e:59:28:7f:e3:ea:3e:f7:72:28:b3:85:9f: bd:da:61:7e:8f:2c:05:97:53:e4:91:b8:e7:81:5c:83:3b:d0: 94:38:d7:c9:eb:83:08:61:d8:be:54:b1:77:46:1f:a0:2e:d0: 07:02:de:98:3a:07:0b:da:66:95:d4:ea:3d:59:47:c9:59:b0: cf:e8:6a:03:d5:24:51:c5:d4:ff:d1:c0:62:45:f9:05:7f:8d: 9a:36:6d:c8:d1:96:15:01:e8:d2:28:52:74:06:af:45:1a:dd: ec:31:56:82:8a:96:94:6e:d7:1b:8d:74:54:9d:74:f5:c3:f4: bf:ab:ec:c2:6e:03:91:29:f1:30:53:90:fe:e5:9a:70:93:03: 2d:99:99:a9:8d:25:8c:c0:76:86:0b:a6:f8:5f:9a:2e:b7:22: 21:87:ce:f2:3f:45:ea:79:97:be:57:c0:65:7b:7c:2b:de:a7: 5d:04:6c:80 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUfwPX3qT2bgptBW8n6x7NCTB40rEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAyMDQ3WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A0YjNiZDcxMDYyMjcxMzY5ZTIwMjdjZjU1MWRmNDFhN2Y1 YTdmM2YxOTVlYjg4YTA5Mzk0NjNiZGY0ZTk1NWRjMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCRBsCh7E5V4JfuN8u+iGJr31je9Nbupvk1R0MennclDvfn cjQWVta+0gWS1LnscvAvkw9DQBXa0NRfr5M2NAWvt4VC4OQY6SdC4L2jwf5yFJQ5 2bS1I++2bg8/fvuWBfSm7qZHrZxDJMX2F5z1V6nBkZJA4Bp+8k0Xfw2yUDLVYCFp SOhlJMzlmBWikx9P8qjS9N1iwgcXz5owe1PEcEFMzHqanex1x6mDO99MoXetFDyZ bDxWb1vyEbqaOAbPelzscP/tiXmyCz9StEqRoer6YvlXReDh88SahtmUR8ufQHwZ 70sVWATub74108ul+R/h+lshLeNyz22ppAl8Q4JVAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsJdBMkBLalK++FkBa0Fv2Mj570IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzIxYWEwZGQ3LTM3MTUtNGZiYS05MDU4LWZmMTUxMDVmNDQ4NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB8AEMAwDQYJKoZIhvcNAQELBQADggEBAFv3B4FYAc1dh0ct2OAKqlPN CweP+5igQS+M6tCjhXhRx1RqtKZnNt/yD6zxiIl8hVAT7/PY3dF8CRP4v1IA8eLl /TbdAmGa4vzuI8GbPlkof+PqPvdyKLOFn73aYX6PLAWXU+SRuOeBXIM70JQ418nr gwhh2L5UsXdGH6Au0AcC3pg6BwvaZpXU6j1ZR8lZsM/oagPVJFHF1P/RwGJF+QV/ jZo2bcjRlhUB6NIoUnQGr0Ua3ewxVoKKlpRu1xuNdFSddPXD9L+r7MJuA5Ep8TBT kP7lmnCTAy2ZmamNJYzAdoYLpvhfmi63IiGHzvI/Rep5l75XwGV7fCvep10EbIA= -----END CERTIFICATE-----Generated at Mon Mar 2 09:03:59 2026 by rpki-client