$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35d8b8e0-8b5e-4f54-933c-eff053d0f3a8.roa File: 35d8b8e0-8b5e-4f54-933c-eff053d0f3a8.roa (raw, json) Hash identifier: MHERx+U+aT6EV52MrYVvR35CcwZuNu96GXncBunhqyM= Subject key identifier: 30:06:D6:D0:F2:5D:60:5F:C4:02:6F:8D:88:59:48:A9:17:51:E9:DA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 156F0CD83833FAFBCFD75083D0D48D2950B37B00 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35d8b8e0-8b5e-4f54-933c-eff053d0f3a8.roa Signing time: Tue 24 Feb 2026 01:01:22 +0000 ROA not before: Tue 24 Feb 2026 01:01:22 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:8060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 15:6f:0c:d8:38:33:fa:fb:cf:d7:50:83:d0:d4:8d:29:50:b3:7b:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:01:22 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=08f26b88cfb64fc419ab6ada2a5c84d17e9da4e6c43dcec4ae9a4caa209aa0a4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c2:ae:1e:ec:f3:25:df:7a:42:d6:de:c1:d5: 14:c3:ad:b3:47:0f:e2:f9:e4:21:ad:3e:73:11:34: cd:27:dd:48:4a:b9:b0:02:17:9b:e9:f3:ec:9e:b0: 83:e2:79:b4:27:7a:63:d4:4a:86:67:77:e4:0c:e0: d8:4a:22:34:68:5f:c6:ad:e0:41:ec:bc:3f:ce:15: a0:cb:72:b7:b2:cd:3c:a5:84:73:2f:8a:6a:f3:aa: 75:9c:86:60:63:44:bf:fd:78:ea:81:01:25:8c:ee: fa:8b:6d:d5:95:5d:9a:88:5a:f4:24:1c:d9:58:34: 40:55:48:13:e6:1f:45:2f:68:44:a0:3b:93:30:d3: 22:db:5a:4f:4d:a4:c0:9f:68:e8:5a:56:28:14:e7: c7:38:d3:d1:90:9f:f6:b2:da:6c:d4:50:d2:b1:11: ff:96:61:5c:e2:f1:9e:f5:b3:19:a0:c8:34:6b:6f: b7:e7:9a:ae:3f:63:98:26:5d:67:44:66:de:32:3d: 9e:a3:f6:d6:68:3e:79:34:8c:21:3e:09:e7:ba:5c: 9c:cc:27:98:96:7b:d0:fc:df:bf:8f:3c:a0:b2:a9: 76:80:11:41:55:10:45:45:db:36:cd:43:f8:6f:60: 80:6d:19:82:79:a0:dc:c3:68:3d:fc:56:df:cb:81: f6:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:06:D6:D0:F2:5D:60:5F:C4:02:6F:8D:88:59:48:A9:17:51:E9:DA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/35d8b8e0-8b5e-4f54-933c-eff053d0f3a8.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8060::/48 Signature Algorithm: sha256WithRSAEncryption 56:22:7e:ec:1c:8d:d3:fa:65:e1:9c:87:c6:15:21:bc:b8:ab: 46:c6:1e:21:b0:44:cf:d5:66:f8:9d:f8:0c:a1:9b:18:4c:f4: 46:26:ac:9b:01:81:5f:4d:72:fb:18:24:e1:61:61:b9:8b:2d: 88:95:25:9f:69:cd:c9:37:fd:c9:29:77:6e:1b:75:60:ec:90: 2c:3b:21:cd:1a:fc:89:86:d1:1d:56:11:29:bd:12:32:03:9b: 5e:db:a4:b4:6e:6e:5b:3e:b6:7d:55:7d:31:94:50:6f:4b:9f: 96:40:ca:c6:f4:da:74:7d:88:7c:17:55:3e:b3:f9:09:a0:07: 62:50:7e:a9:43:35:72:e1:69:0c:4f:e5:0e:67:cb:be:6b:9d: 25:e8:7a:04:e2:f7:22:b2:73:6c:19:b7:36:48:14:d4:de:51: e3:e7:22:fe:af:cb:b1:26:65:75:c2:36:87:c1:92:5a:f2:78: 2b:21:ba:76:f6:82:b9:5d:9b:49:fb:5c:2d:ff:13:7c:8d:51: 74:4a:a4:b6:17:7e:03:da:37:c9:7e:36:43:7a:04:4a:c3:2f: ef:86:65:8f:f1:03:97:b9:f2:12:0e:40:4e:d9:18:82:f6:86: 56:2a:8f:a3:e1:d9:0b:fc:f9:46:6b:a0:5a:e6:9e:db:cc:81: 0a:3c:3b:59 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFW8M2Dgz+vvP11CD0NSNKVCzewAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMTIyWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AwOGYyNmI4OGNmYjY0ZmM0MTlhYjZhZGEyYTVjODRkMTdl OWRhNGU2YzQzZGNlYzRhZTlhNGNhYTIwOWFhMGE0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSwq4e7PMl33pC1t7B1RTDrbNHD+L55CGtPnMRNM0n3UhK ubACF5vp8+yesIPiebQnemPUSoZnd+QM4NhKIjRoX8at4EHsvD/OFaDLcreyzTyl hHMvimrzqnWchmBjRL/9eOqBASWM7vqLbdWVXZqIWvQkHNlYNEBVSBPmH0UvaESg O5Mw0yLbWk9NpMCfaOhaVigU58c409GQn/ay2mzUUNKxEf+WYVzi8Z71sxmgyDRr b7fnmq4/Y5gmXWdEZt4yPZ6j9tZoPnk0jCE+Cee6XJzMJ5iWe9D837+PPKCyqXaA EUFVEEVF2zbNQ/hvYIBtGYJ5oNzDaD38Vt/LgfZDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUMAbW0PJdYF/EAm+NiFlIqRdR6dowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzM1ZDhiOGUwLThiNWUtNGY1NC05MzNjLWVmZjA1M2QwZjNhOC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygGAwDQYJKoZIhvcNAQELBQADggEBAFYifuwcjdP6ZeGch8YVIby4 q0bGHiGwRM/VZvid+AyhmxhM9EYmrJsBgV9NcvsYJOFhYbmLLYiVJZ9pzck3/ckp d24bdWDskCw7Ic0a/ImG0R1WESm9EjIDm17bpLRubls+tn1VfTGUUG9Ln5ZAysb0 2nR9iHwXVT6z+QmgB2JQfqlDNXLhaQxP5Q5ny75rnSXoegTi9yKyc2wZtzZIFNTe UePnIv6vy7EmZXXCNofBklryeCshunb2grldm0n7XC3/E3yNUXRKpLYXfgPaN8l+ NkN6BErDL++GZY/xA5e58hIOQE7ZGIL2hlYqj6Ph2Qv8+UZroFrmntvMgQo8O1k= -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:57 2026 by rpki-client