$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30b2f28c-86cf-492f-8dfc-8cacff8f8955.roa File: 30b2f28c-86cf-492f-8dfc-8cacff8f8955.roa (raw, json) Hash identifier: fe0Jpsz+AcgD6rAsUXDoIeXd7Do39yCAPM5YbHCcGlg= Subject key identifier: 25:10:C5:CE:D5:9E:C0:F8:F8:7C:9D:1D:63:1E:6B:E6:41:A6:0A:40 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3AFBA754CFA62781D52F345F5092BB4E7A3E05A1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30b2f28c-86cf-492f-8dfc-8cacff8f8955.roa Signing time: Sat 21 Feb 2026 00:41:57 +0000 ROA not before: Sat 21 Feb 2026 00:41:57 +0000 ROA not after: Fri 22 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ffb:6000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:fb:a7:54:cf:a6:27:81:d5:2f:34:5f:50:92:bb:4e:7a:3e:05:a1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 21 00:41:57 2026 GMT Not After : May 22 23:59:59 2026 GMT Subject: serialNumber=3a6f1e27f416d81dcd4b92c76d083423e6e9e2ca29d8e7070aa1eae4e3638f3f, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:90:33:a9:88:52:75:f0:50:13:1f:6b:8a:8f: ee:1d:65:f5:a9:93:6c:54:7c:fc:21:85:11:ea:f0: 61:1d:87:f9:05:c0:92:05:0c:b8:e4:f6:1d:db:bd: 9f:15:e3:64:88:0a:1c:de:be:54:3d:a4:37:b2:7a: 58:60:a8:f7:0a:f8:03:e9:61:4c:92:ff:fa:0d:48: b6:2f:13:0d:c9:97:7c:82:76:e2:25:11:c8:31:14: b9:21:7c:bf:9b:fb:33:8e:e6:49:ee:1f:0d:47:f2: fb:5f:0c:68:2e:3b:49:72:bc:f2:c2:41:83:a8:30: 47:72:36:67:92:cd:59:d1:2c:25:de:f0:3f:82:5c: d7:55:a6:e6:db:f7:a5:40:cc:1f:58:6a:98:2f:da: 61:d2:da:03:f1:ff:c1:8a:82:72:0a:12:5d:97:5d: 32:8b:07:1d:6a:d4:bc:6b:d6:f2:7a:eb:b2:c5:55: c0:22:d1:4d:d8:88:df:d1:bd:bc:1b:34:f4:4f:42: 19:4d:81:f3:73:4c:bc:41:0e:87:1e:37:db:3c:52: 75:64:1b:62:6a:f2:01:84:8c:bb:32:72:d4:e2:32: 16:ca:63:cf:1b:39:bd:e7:0e:51:12:ed:d1:c1:33: 45:43:6a:8e:cb:a9:d7:d9:2c:ee:1f:4d:34:d2:04: cd:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:10:C5:CE:D5:9E:C0:F8:F8:7C:9D:1D:63:1E:6B:E6:41:A6:0A:40 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/30b2f28c-86cf-492f-8dfc-8cacff8f8955.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ffb:6000::/40 Signature Algorithm: sha256WithRSAEncryption 21:ff:c9:ec:c7:36:d1:55:25:33:c6:bf:13:2b:10:4b:d0:c6: 6f:cf:66:17:8f:3f:db:a1:6b:89:16:1c:52:c6:cd:05:37:59: c0:85:52:c0:a4:1a:93:6d:cf:42:fa:e6:b3:c1:c2:dc:54:4a: 7e:5e:96:a8:5e:ad:ed:0f:86:ff:4c:81:d1:e8:d4:74:60:79: 12:0f:ca:0d:35:e0:80:a7:3b:74:fa:b0:88:c9:af:cc:a7:3b: 3d:ee:f3:7d:8b:7b:f6:29:e6:79:73:c3:20:3b:e7:f7:47:be: c4:d5:0f:51:8d:2a:83:c5:1c:e6:df:9e:f4:f5:57:7e:87:28: 5f:cd:72:6b:ec:02:c8:67:ce:5c:6b:b8:40:7c:ed:84:93:0c: f2:cb:d2:dd:0d:66:95:b3:9b:f5:bf:37:12:0b:9d:35:bd:f3: fb:1c:0e:05:8a:77:0f:76:d7:04:3b:50:68:d0:89:b7:25:ee: 27:f4:0a:56:88:b1:f8:46:89:33:f8:dc:8b:f5:6e:64:c9:96: 18:5f:c8:e6:90:ac:35:77:16:47:5d:2b:23:a3:fe:b3:22:a5: 25:bf:40:df:75:e9:56:8f:b0:51:bb:ae:b1:13:13:18:d3:db: 16:b5:cd:62:b1:68:eb:5b:40:54:9d:22:e0:47:93:05:64:25: a6:33:d5:89 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOvunVM+mJ4HVLzRfUJK7Tno+BaEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjIxMDA0MTU3WhcNMjYwNTIyMjM1OTU5 WjB6MUkwRwYDVQQFE0AzYTZmMWUyN2Y0MTZkODFkY2Q0YjkyYzc2ZDA4MzQyM2U2 ZTllMmNhMjlkOGU3MDcwYWExZWFlNGUzNjM4ZjNmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCwkDOpiFJ18FATH2uKj+4dZfWpk2xUfPwhhRHq8GEdh/kF wJIFDLjk9h3bvZ8V42SIChzevlQ9pDeyelhgqPcK+APpYUyS//oNSLYvEw3Jl3yC duIlEcgxFLkhfL+b+zOO5knuHw1H8vtfDGguO0lyvPLCQYOoMEdyNmeSzVnRLCXe 8D+CXNdVpubb96VAzB9Yapgv2mHS2gPx/8GKgnIKEl2XXTKLBx1q1Lxr1vJ667LF VcAi0U3YiN/RvbwbNPRPQhlNgfNzTLxBDoceN9s8UnVkG2Jq8gGEjLsyctTiMhbK Y88bOb3nDlES7dHBM0VDao7LqdfZLO4fTTTSBM0DAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUJRDFztWewPj4fJ0dYx5r5kGmCkAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMwYjJmMjhjLTg2Y2YtNDkyZi04ZGZjLThjYWNmZjhmODk1NS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/7YDANBgkqhkiG9w0BAQsFAAOCAQEAIf/J7Mc20VUlM8a/EysQS9DG b89mF48/26FriRYcUsbNBTdZwIVSwKQak23PQvrms8HC3FRKfl6WqF6t7Q+G/0yB 0ejUdGB5Eg/KDTXggKc7dPqwiMmvzKc7Pe7zfYt79inmeXPDIDvn90e+xNUPUY0q g8Uc5t+e9PVXfocoX81ya+wCyGfOXGu4QHzthJMM8svS3Q1mlbOb9b83EgudNb3z +xwOBYp3D3bXBDtQaNCJtyXuJ/QKVoix+EaJM/jci/VuZMmWGF/I5pCsNXcWR10r I6P+syKlJb9A33XpVo+wUbuusRMTGNPbFrXNYrFo61tAVJ0i4EeTBWQlpjPViQ== -----END CERTIFICATE-----Generated at Mon Mar 2 03:45:21 2026 by rpki-client