$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b39f42e-3903-4926-ae1f-f90681592c51.roa File: 3b39f42e-3903-4926-ae1f-f90681592c51.roa (raw, json) Hash identifier: DoofMwY1YKtagL7UHmzs7HomdqtrcKQpj2vzr++EH9E= Subject key identifier: 59:2D:5C:27:4D:A8:ED:DB:A9:E9:61:1C:67:03:42:4D:EB:BD:A1:6C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 14E2A9874E308CA5308904FF01349F72A5134E2D Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b39f42e-3903-4926-ae1f-f90681592c51.roa Signing time: Wed 25 Feb 2026 02:30:16 +0000 ROA not before: Wed 25 Feb 2026 02:30:16 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:e2:a9:87:4e:30:8c:a5:30:89:04:ff:01:34:9f:72:a5:13:4e:2d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:30:16 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=f74e9a45baa83c6718810fb7acd6a0378a539462b5e515812f752ea433a78195, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:49:d5:81:31:6c:13:33:f8:76:30:80:ed:35: ae:45:65:b7:76:b1:86:73:f1:9b:af:c9:d9:e5:bb: 18:21:74:3d:9c:e4:bb:d6:b1:15:45:68:fb:2f:46: 6f:b1:ee:57:c0:b1:56:fc:3c:db:08:07:9f:b7:95: 18:2b:92:de:3c:30:a0:41:91:21:00:99:33:74:e8: 6c:76:d8:a2:bd:b5:43:3e:7b:7e:ae:28:a5:8b:34: 59:3a:8a:8e:c0:4e:34:61:24:4f:1d:f1:15:73:ca: 45:9c:83:2a:29:a4:03:ac:dd:1f:0e:b6:cd:ff:bc: 9f:03:57:dc:49:2b:20:c9:15:50:e1:ca:4b:2d:51: 7d:ec:5c:87:0c:8e:09:91:61:9e:80:15:35:e0:e2: 00:d0:bc:c3:10:bb:67:9b:36:55:40:15:9b:95:29: 2a:8f:d6:a2:36:4f:d3:e8:05:af:8e:7c:1d:3d:cb: 77:38:b4:bd:a7:37:39:e7:31:ae:04:80:55:fb:b4: f7:72:69:51:48:ee:72:fd:3a:39:22:f6:a7:30:2d: 89:6d:22:7f:36:5d:cd:37:41:8d:5d:44:63:42:02: 8e:38:d5:eb:df:3e:68:99:42:43:a2:83:87:a4:c3: d7:65:70:7d:f0:0b:5b:49:04:c5:af:9c:76:f8:5b: 6c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:2D:5C:27:4D:A8:ED:DB:A9:E9:61:1C:67:03:42:4D:EB:BD:A1:6C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b39f42e-3903-4926-ae1f-f90681592c51.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:7440::/48 Signature Algorithm: sha256WithRSAEncryption 98:90:1e:74:be:54:1c:f9:80:bc:22:d5:5f:23:98:ce:f6:74: 25:9a:a0:9f:3b:dd:40:59:7b:73:ff:44:03:64:78:f1:7b:72: 48:0e:c5:58:0d:ec:bc:ee:3f:08:1d:0c:84:a4:a0:e1:78:b4: c3:d1:e2:fb:e9:59:a5:58:28:9c:a5:5e:50:bc:a4:80:35:83: fe:31:28:da:99:ca:cf:dc:49:da:0e:02:7a:8e:9f:46:2c:ce: 51:79:94:e4:78:99:e8:ab:b7:43:16:d1:b1:c7:70:5e:2c:e9: e7:84:70:c5:a2:a7:0e:71:29:c0:f3:9a:c6:46:29:6e:90:fa: 16:a0:be:6c:77:1c:6f:82:fd:f9:3c:60:c2:dd:b5:42:2d:a6: 12:46:34:f6:ef:e5:8a:14:67:bc:7e:70:66:3d:08:c1:36:9e: 1e:d0:24:29:e8:ae:cc:07:20:34:2f:86:c2:24:b2:9d:44:0d: a6:ed:05:ef:7e:8e:39:5d:05:0b:50:0f:6c:c6:31:82:8e:19: d6:fe:0e:9a:ad:1c:23:7d:10:fb:bb:23:e9:1f:1d:30:1e:53: 92:06:1d:e8:3d:89:6f:46:82:46:d2:7c:e8:e3:06:b4:99:bd: a3:3c:3f:55:57:61:25:c6:62:87:4c:4f:e9:fc:18:af:5c:3f: 47:2f:87:f1 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUFOKph04wjKUwiQT/ATSfcqUTTi0wDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIzMDE2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmNzRlOWE0NWJhYTgzYzY3MTg4MTBmYjdhY2Q2YTAzNzhh NTM5NDYyYjVlNTE1ODEyZjc1MmVhNDMzYTc4MTk1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC+SdWBMWwTM/h2MIDtNa5FZbd2sYZz8ZuvydnluxghdD2c 5LvWsRVFaPsvRm+x7lfAsVb8PNsIB5+3lRgrkt48MKBBkSEAmTN06Gx22KK9tUM+ e36uKKWLNFk6io7ATjRhJE8d8RVzykWcgyoppAOs3R8Ots3/vJ8DV9xJKyDJFVDh ykstUX3sXIcMjgmRYZ6AFTXg4gDQvMMQu2ebNlVAFZuVKSqP1qI2T9PoBa+OfB09 y3c4tL2nNznnMa4EgFX7tPdyaVFI7nL9Ojki9qcwLYltIn82Xc03QY1dRGNCAo44 1evfPmiZQkOig4ekw9dlcH3wC1tJBMWvnHb4W2y1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUWS1cJ02o7dup6WEcZwNCTeu9oWwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiMzlmNDJlLTM5MDMtNDkyNi1hZTFmLWY5MDY4MTU5MmM1MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9hdEAwDQYJKoZIhvcNAQELBQADggEBAJiQHnS+VBz5gLwi1V8jmM72 dCWaoJ873UBZe3P/RANkePF7ckgOxVgN7LzuPwgdDISkoOF4tMPR4vvpWaVYKJyl XlC8pIA1g/4xKNqZys/cSdoOAnqOn0YszlF5lOR4meirt0MW0bHHcF4s6eeEcMWi pw5xKcDzmsZGKW6Q+hagvmx3HG+C/fk8YMLdtUItphJGNPbv5YoUZ7x+cGY9CME2 nh7QJCnorswHIDQvhsIksp1EDabtBe9+jjldBQtQD2zGMYKOGdb+DpqtHCN9EPu7 I+kfHTAeU5IGHeg9iW9GgkbSfOjjBrSZvaM8P1VXYSXGYodMT+n8GK9cP0cvh/E= -----END CERTIFICATE-----Generated at Mon Mar 2 06:49:19 2026 by rpki-client