$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa File: 33a8e79a-f50b-45fa-87c0-dad918540ac7.roa (raw, json) Hash identifier: ugam9Z6Br31HE0UKupBoBe3owZyxpRKaI0hDhknemC0= Subject key identifier: 19:B5:AA:54:B3:83:D6:25:0D:40:D7:39:04:66:1F:7E:9F:D8:37:62 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 491C163AF686618471B9839853A510BCC3160D24 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa Signing time: Wed 25 Feb 2026 01:41:01 +0000 ROA not before: Wed 25 Feb 2026 01:41:01 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f15::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1c:16:3a:f6:86:61:84:71:b9:83:98:53:a5:10:bc:c3:16:0d:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:41:01 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=81341bfe2a980fc5259fac3a3dcebe4f98f00adfaaf587b4bc041c52f7123b20, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:76:13:03:a8:45:60:a0:64:08:5d:25:cb:02: f3:1b:b1:7f:5b:ee:93:08:15:f0:5c:8e:bc:3f:60: 13:4a:ba:59:52:fd:e7:56:d4:ab:08:07:a5:ee:2c: ba:2c:f1:e3:e7:a5:41:57:0e:9a:e3:96:ba:80:be: a3:55:f7:56:0a:39:ec:55:ba:5f:1f:c3:83:16:fa: ff:0f:ac:c4:eb:80:63:3d:9c:61:f2:7d:54:53:e6: ff:c7:81:dd:d4:08:63:6a:0c:ca:02:84:3d:84:b1: 00:15:2d:de:03:d2:ef:e1:a2:36:13:16:f6:12:44: 20:aa:65:30:3f:61:3a:c4:69:95:6f:fa:24:74:f4: 49:e2:5b:3d:9d:98:f9:41:68:6b:41:2a:95:df:e1: 49:10:e1:59:de:9f:ef:25:39:d2:da:80:94:ab:1b: 90:ef:b7:bf:e6:0c:f7:cf:ad:33:b1:41:ee:cb:56: d9:83:35:2f:97:dc:b6:da:25:f9:68:26:00:9c:35: fd:1f:16:93:63:45:52:bd:9d:3e:a2:87:f3:89:23: b9:28:c4:9b:9c:77:1c:fe:05:a4:55:2b:5a:47:fe: 7d:56:86:6f:db:23:e7:3f:5a:7c:a2:1a:ce:12:6a: 7b:23:56:84:9b:fa:6e:72:ed:7d:ed:d7:37:2e:67: 8e:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:B5:AA:54:B3:83:D6:25:0D:40:D7:39:04:66:1F:7E:9F:D8:37:62 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/33a8e79a-f50b-45fa-87c0-dad918540ac7.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f15::/36 Signature Algorithm: sha256WithRSAEncryption 7e:5e:c8:ff:3f:a6:fa:03:5e:fe:9c:79:96:db:09:e8:38:5b: f9:1a:da:31:47:ca:18:8d:33:2d:88:3b:8d:85:ba:31:89:77: 71:ea:ec:d4:57:dc:aa:14:1d:1b:e4:b6:14:3a:2e:21:05:7f: 22:d8:0b:4c:b7:3e:83:9a:bb:74:e8:ea:57:26:da:f3:96:13: 2a:44:fa:8d:30:a1:46:52:5a:07:e4:9d:4b:0a:d0:d5:8d:52: 37:77:ed:9d:56:73:88:7e:77:d0:1a:0d:78:6b:27:90:6e:82: ad:ae:bc:52:d5:c5:6d:23:d9:a2:04:d1:ab:02:57:76:8e:2c: 44:31:83:cf:44:44:26:3d:be:89:e8:e6:50:ad:f8:a7:e6:1e: fe:80:e0:ad:aa:4b:c7:80:7e:c6:bd:5c:e3:5e:ab:71:59:54: d8:8c:3b:73:fa:24:07:2a:c9:82:c7:91:bc:25:5c:e4:02:8c: 88:3b:69:0d:9b:e6:6a:e2:ef:40:6f:d7:70:7e:b9:22:d4:ba: be:16:df:6b:ea:4a:d2:60:b5:df:21:54:6d:a1:d2:82:a6:9b: 9e:df:11:97:45:b0:7c:b0:64:76:94:24:42:81:34:c4:91:91: a5:9b:53:76:8d:03:54:96:9a:fb:26:91:16:55:3a:93:bc:76: e1:94:b6:49 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUSRwWOvaGYYRxuYOYU6UQvMMWDSQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDE0MTAxWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTM0MWJmZTJhOTgwZmM1MjU5ZmFjM2EzZGNlYmU0Zjk4 ZjAwYWRmYWFmNTg3YjRiYzA0MWM1MmY3MTIzYjIwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCxdhMDqEVgoGQIXSXLAvMbsX9b7pMIFfBcjrw/YBNKullS /edW1KsIB6XuLLos8ePnpUFXDprjlrqAvqNV91YKOexVul8fw4MW+v8PrMTrgGM9 nGHyfVRT5v/Hgd3UCGNqDMoChD2EsQAVLd4D0u/hojYTFvYSRCCqZTA/YTrEaZVv +iR09EniWz2dmPlBaGtBKpXf4UkQ4Vnen+8lOdLagJSrG5Dvt7/mDPfPrTOxQe7L VtmDNS+X3LbaJfloJgCcNf0fFpNjRVK9nT6ih/OJI7koxJucdxz+BaRVK1pH/n1W hm/bI+c/WnyiGs4SansjVoSb+m5y7X3t1zcuZ461AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUGbWqVLOD1iUNQNc5BGYffp/YN2IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzMzYThlNzlhLWY1MGItNDVmYS04N2MwLWRhZDkxODU0MGFjNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8VADANBgkqhkiG9w0BAQsFAAOCAQEAfl7I/z+m+gNe/px5ltsJ6Dhb +RraMUfKGI0zLYg7jYW6MYl3cers1FfcqhQdG+S2FDouIQV/ItgLTLc+g5q7dOjq Vyba85YTKkT6jTChRlJaB+SdSwrQ1Y1SN3ftnVZziH530BoNeGsnkG6Cra68UtXF bSPZogTRqwJXdo4sRDGDz0REJj2+iejmUK34p+Ye/oDgrapLx4B+xr1c416rcVlU 2Iw7c/okByrJgseRvCVc5AKMiDtpDZvmauLvQG/XcH65ItS6vhbfa+pK0mC13yFU baHSgqabnt8Rl0WwfLBkdpQkQoE0xJGRpZtTdo0DVJaa+yaRFlU6k7x24ZS2SQ== -----END CERTIFICATE-----Generated at Mon Mar 2 00:18:43 2026 by rpki-client