$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27b37178-c8b2-446a-9459-9b54ee75e23e.roa File: 27b37178-c8b2-446a-9459-9b54ee75e23e.roa (raw, json) Hash identifier: zHoOBeOEbMqptXzkp3QDy/eVtq9Jp3SVktE+s/vTlI0= Subject key identifier: D9:3D:21:B0:50:00:85:69:AE:FA:E5:DD:85:93:C8:6C:00:CB:B5:D1 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 34B174DA31018B522EC754627253C00F228A4138 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27b37178-c8b2-446a-9459-9b54ee75e23e.roa Signing time: Wed 25 Feb 2026 02:01:14 +0000 ROA not before: Wed 25 Feb 2026 02:01:14 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:a440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34:b1:74:da:31:01:8b:52:2e:c7:54:62:72:53:c0:0f:22:8a:41:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:01:14 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=6b5614baa09de199ba4a4033b562807f295fda27801bacacead72633b7c995d7, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:3a:55:7b:2e:c2:86:a7:b2:a4:c6:63:14:c3: f1:48:01:97:a4:6d:d4:a2:99:46:ec:bd:94:3d:0d: c8:7c:5a:f2:4d:c8:8e:25:d5:2b:6f:f2:75:a9:56: 84:00:11:c1:02:7d:60:90:66:6f:c7:66:e1:63:d3: 5b:69:9d:d2:6e:3d:d8:c7:bf:4d:53:14:aa:1a:7c: 2e:db:07:ff:2d:60:41:06:3a:6d:65:20:78:90:20: bc:4e:8d:2b:2e:e9:0d:99:50:92:89:c5:ef:30:bd: ee:de:4d:af:60:e6:16:25:ee:2f:18:e7:2e:37:ae: 5d:11:d1:9e:2b:13:b9:71:8c:ff:97:42:bb:b9:11: 57:2d:b2:6f:09:89:71:f2:2a:db:73:e8:40:e9:00: 7a:94:f9:84:c0:d9:28:53:8b:84:c2:55:16:07:5c: bd:76:87:4f:78:54:23:76:16:f0:e5:d4:9d:a1:61: af:3d:ed:14:cf:26:39:e9:f3:63:8a:5e:13:c1:d0: a4:b8:c2:86:ac:79:80:02:01:95:29:31:ed:bb:29: a1:6b:c3:0e:0e:fa:04:d3:67:d9:96:de:ce:01:7e: 30:30:4b:d3:18:d7:d9:30:81:c7:08:97:e9:1d:0a: 5f:4c:06:13:af:22:1a:84:f2:c9:18:e1:c7:0f:3b: 78:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:3D:21:B0:50:00:85:69:AE:FA:E5:DD:85:93:C8:6C:00:CB:B5:D1 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/27b37178-c8b2-446a-9459-9b54ee75e23e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:a440::/48 Signature Algorithm: sha256WithRSAEncryption d5:72:9c:3f:fe:c0:a2:b8:90:db:28:06:46:1e:b5:73:85:cb: 79:1c:77:09:2f:47:4f:01:db:20:9f:b0:33:4b:c4:fa:2c:4f: 41:b3:a0:1e:b8:9c:70:40:88:96:d1:ab:55:f7:35:6e:2c:71: 3d:39:a8:e4:08:24:2a:3b:f2:0f:5a:9b:4f:80:b8:ef:e7:b5: 82:80:8b:e8:59:b6:f2:72:b5:d5:1c:17:91:a4:5c:8f:74:54: 62:ea:1e:b8:ff:4f:98:63:73:59:c4:61:5b:88:c3:4a:7c:37: 01:0e:4b:79:b3:78:08:04:cf:f7:72:12:f6:51:c8:46:be:6c: c3:64:8f:72:aa:8a:6e:4c:1d:aa:2c:b2:ae:f2:25:a3:03:79: 0c:84:88:be:b6:91:6b:e1:70:5b:19:c9:40:59:f4:c5:b8:b3: 59:3f:15:ff:8d:5f:eb:2f:0e:cc:09:f5:3b:a6:c3:8f:8c:d4: 5d:ed:bf:50:23:0a:8f:fe:e6:f0:7a:af:c5:2a:a2:c3:c6:33: 42:9e:c2:48:2e:ab:7b:5f:3a:fb:6a:5f:b0:84:d2:4e:6c:0d: 5a:eb:79:b7:cf:43:d5:98:8b:29:79:1d:91:c0:8c:1c:f1:99: 35:d6:31:99:0d:62:ab:f7:de:8c:a1:21:2e:e8:4e:fd:ca:84: 42:d1:04:a8 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNLF02jEBi1Iux1RiclPADyKKQTgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIwMTE0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YjU2MTRiYWEwOWRlMTk5YmE0YTQwMzNiNTYyODA3ZjI5 NWZkYTI3ODAxYmFjYWNlYWQ3MjYzM2I3Yzk5NWQ3MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCOOlV7LsKGp7KkxmMUw/FIAZekbdSimUbsvZQ9Dch8WvJN yI4l1Stv8nWpVoQAEcECfWCQZm/HZuFj01tpndJuPdjHv01TFKoafC7bB/8tYEEG Om1lIHiQILxOjSsu6Q2ZUJKJxe8wve7eTa9g5hYl7i8Y5y43rl0R0Z4rE7lxjP+X Qru5EVctsm8JiXHyKttz6EDpAHqU+YTA2ShTi4TCVRYHXL12h094VCN2FvDl1J2h Ya897RTPJjnp82OKXhPB0KS4woaseYACAZUpMe27KaFrww4O+gTTZ9mW3s4BfjAw S9MY19kwgccIl+kdCl9MBhOvIhqE8skY4ccPO3hNAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU2T0hsFAAhWmu+uXdhZPIbADLtdEwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzI3YjM3MTc4LWM4YjItNDQ2YS05NDU5LTliNTRlZTc1ZTIzZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//pEAwDQYJKoZIhvcNAQELBQADggEBANVynD/+wKK4kNsoBkYetXOF y3kcdwkvR08B2yCfsDNLxPosT0GzoB64nHBAiJbRq1X3NW4scT05qOQIJCo78g9a m0+AuO/ntYKAi+hZtvJytdUcF5GkXI90VGLqHrj/T5hjc1nEYVuIw0p8NwEOS3mz eAgEz/dyEvZRyEa+bMNkj3Kqim5MHaossq7yJaMDeQyEiL62kWvhcFsZyUBZ9MW4 s1k/Ff+NX+svDswJ9Tumw4+M1F3tv1AjCo/+5vB6r8UqosPGM0Kewkguq3tfOvtq X7CE0k5sDVrrebfPQ9WYiyl5HZHAjBzxmTXWMZkNYqv33oyhIS7oTv3KhELRBKg= -----END CERTIFICATE-----Generated at Sun Mar 1 22:17:44 2026 by rpki-client