$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa File: 2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa (raw, json) Hash identifier: m5spcOdhLpmqzQPsQ6kOxIEEA2zIDcvL59wu1X0qzMk= Subject key identifier: 2E:05:4B:5B:CB:82:5A:4C:78:C0:E7:70:47:A6:2F:9C:BB:82:EC:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 66B3BE0CEB6EA808E8D491B9214B825423FC4496 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa Signing time: Wed 25 Feb 2026 02:10:38 +0000 ROA not before: Wed 25 Feb 2026 02:10:38 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:3480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:b3:be:0c:eb:6e:a8:08:e8:d4:91:b9:21:4b:82:54:23:fc:44:96 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:10:38 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=6ec514c8b493f0c3719a055fab77d0f13f4d080f27616ac350a7453a5c51fe23, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:f7:21:5d:bc:06:b9:d4:7a:fd:28:57:1f:3c: 47:34:bb:db:9d:53:9b:9d:7d:5c:df:fc:82:d3:d8: 45:fd:49:59:47:ff:8d:e5:55:e5:a8:6d:8f:b7:3e: 62:b9:f1:57:b0:7d:fa:77:51:e5:29:7a:45:a9:31: 95:d5:4c:f0:5b:19:ac:12:bb:f2:79:dd:60:57:85: 2b:3d:8f:ae:a2:4b:9b:27:73:1e:a1:8f:2c:6d:a8: c0:0c:8b:ca:26:54:df:5f:1c:21:8a:18:87:5b:33: 40:85:cd:57:66:64:e4:b5:e8:af:eb:5e:71:4c:07: cb:64:d0:2d:f3:88:20:9f:dc:12:29:c2:44:12:bd: 24:e1:dd:84:a9:f3:6e:57:85:2f:16:b8:3f:ba:17: e4:75:c7:ea:17:41:56:69:1e:b4:ad:b3:f7:ba:30: 86:21:5e:2c:46:d9:03:23:4d:c3:85:a0:73:5e:45: d4:72:d6:2a:a6:92:5c:7b:97:2d:a9:2d:ee:da:c7: c4:57:c4:37:a9:50:ba:cc:b3:d9:4a:4b:2a:18:4a: 42:4d:55:46:c1:95:0a:4a:13:0e:42:90:62:ad:1f: 29:4d:3b:8b:f2:93:99:36:eb:ed:cb:2d:4a:49:41: 6d:ff:8c:28:39:a8:54:10:dd:76:83:25:b8:61:a7: 7f:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:05:4B:5B:CB:82:5A:4C:78:C0:E7:70:47:A6:2F:9C:BB:82:EC:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/2b0e10c2-b7e4-4715-83f7-a13456221bb2.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:3480::/48 Signature Algorithm: sha256WithRSAEncryption 4b:29:2b:ae:63:7c:c3:e9:97:6c:84:4b:a6:88:97:09:df:d6: 2c:f4:2e:b1:ba:20:40:03:fd:95:93:b8:94:91:cc:39:fc:3f: 6a:c6:b5:16:01:c5:64:7d:61:19:9b:d5:e5:3c:51:10:cf:23: 95:bf:97:6c:49:f8:43:31:68:9c:71:33:af:cd:10:57:64:3f: e0:d2:cd:0f:6e:f7:12:ef:f0:99:3c:10:ff:94:09:95:94:84: e5:54:3d:52:6e:fc:b5:d7:69:b0:22:f9:89:05:c6:bd:ed:60: f9:e5:0b:16:05:04:68:5d:5f:cf:16:8e:c6:31:d0:15:dc:d7: 40:02:3d:74:1e:63:af:1f:26:d0:22:85:15:e7:32:2c:d5:03: fb:79:af:c6:af:40:0e:2f:b4:b7:38:52:f8:a3:3f:8b:5a:f6: 80:07:02:fa:6a:05:a4:b0:31:85:b7:1a:48:bd:ab:e6:49:d8: 4d:b5:de:52:d1:60:17:21:8f:a3:27:61:7a:a0:59:84:28:cc: 43:41:4d:52:1d:fe:67:a5:92:3b:e1:90:a7:3e:68:60:1b:0d: 6d:22:1f:86:21:f7:b7:fd:b3:68:cd:9c:59:70:c3:40:97:1c: 32:1b:59:c8:b8:86:fd:42:5f:89:d3:80:0c:37:8f:28:8f:60: cc:73:b1:71 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUZrO+DOtuqAjo1JG5IUuCVCP8RJYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIxMDM4WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A2ZWM1MTRjOGI0OTNmMGMzNzE5YTA1NWZhYjc3ZDBmMTNm NGQwODBmMjc2MTZhYzM1MGE3NDUzYTVjNTFmZTIzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCM9yFdvAa51Hr9KFcfPEc0u9udU5udfVzf/ILT2EX9SVlH /43lVeWobY+3PmK58Vewffp3UeUpekWpMZXVTPBbGawSu/J53WBXhSs9j66iS5sn cx6hjyxtqMAMi8omVN9fHCGKGIdbM0CFzVdmZOS16K/rXnFMB8tk0C3ziCCf3BIp wkQSvSTh3YSp825XhS8WuD+6F+R1x+oXQVZpHrSts/e6MIYhXixG2QMjTcOFoHNe RdRy1iqmklx7ly2pLe7ax8RXxDepULrMs9lKSyoYSkJNVUbBlQpKEw5CkGKtHylN O4vyk5k26+3LLUpJQW3/jCg5qFQQ3XaDJbhhp3/DAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQULgVLW8uCWkx4wOdwR6YvnLuC7FIwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzJiMGUxMGMyLWI3ZTQtNDcxNS04M2Y3LWExMzQ1NjIyMWJiMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/yNIAwDQYJKoZIhvcNAQELBQADggEBAEspK65jfMPpl2yES6aIlwnf 1iz0LrG6IEAD/ZWTuJSRzDn8P2rGtRYBxWR9YRmb1eU8URDPI5W/l2xJ+EMxaJxx M6/NEFdkP+DSzQ9u9xLv8Jk8EP+UCZWUhOVUPVJu/LXXabAi+YkFxr3tYPnlCxYF BGhdX88WjsYx0BXc10ACPXQeY68fJtAihRXnMizVA/t5r8avQA4vtLc4UvijP4ta 9oAHAvpqBaSwMYW3Gki9q+ZJ2E213lLRYBchj6MnYXqgWYQozENBTVId/melkjvh kKc+aGAbDW0iH4Yh97f9s2jNnFlww0CXHDIbWci4hv1CX4nTgAw3jyiPYMxzsXE= -----END CERTIFICATE-----Generated at Mon Mar 2 00:06:55 2026 by rpki-client