$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa File: 3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa (raw, json) Hash identifier: TMLWCjoa1D4WIN8qptVoIwb2kU7rkleRMIC0dV/BjkA= Subject key identifier: DD:55:46:D4:D5:E6:34:24:3C:19:DC:97:AD:6C:A5:4D:5B:92:C8:AB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6778AB767B816AB9C360E459AA9DE4F57583FDC6 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa Signing time: Wed 25 Feb 2026 00:30:40 +0000 ROA not before: Wed 25 Feb 2026 00:30:40 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:e000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:78:ab:76:7b:81:6a:b9:c3:60:e4:59:aa:9d:e4:f5:75:83:fd:c6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:30:40 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=a4cc7b0a01bb4b153c852b7975a33c47555589f6e71064354dc217e14e36b8b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:b4:80:62:d3:e0:08:65:3f:05:97:56:30:7c: 70:d6:f8:b6:7e:1c:4d:07:d7:40:99:fc:6a:25:af: aa:4c:18:a4:a2:42:ad:ee:9e:63:c1:73:75:66:8c: 2e:f8:47:de:4a:1d:b0:c8:de:60:45:b6:d9:d7:d2: 40:7b:a9:52:4b:10:e2:4d:97:af:3e:8e:2e:78:a5: 25:2e:f7:be:59:de:8a:8d:dc:e9:8f:d7:d3:04:8b: fd:eb:b7:68:94:c0:ee:d7:4d:26:b9:e9:94:d4:0e: cc:65:e6:03:46:5f:af:1f:3f:76:18:21:f2:6f:36: 63:24:63:a0:90:d8:b9:9e:c1:1c:cf:51:90:d1:5d: 76:2e:fa:73:bb:86:df:60:57:14:7b:4c:8e:ce:de: 50:3e:00:7f:27:d3:82:77:e2:66:9e:58:d7:8f:38: 3f:e9:37:2b:62:a7:33:fa:9a:d6:7c:25:a4:78:f1: e4:bf:e5:1a:ea:f4:70:e9:79:ee:03:cd:2a:38:53: 71:3f:90:f0:83:6d:53:94:3f:32:8d:99:37:38:e0: 62:5f:a8:32:f4:fe:eb:3d:f6:10:34:6c:78:36:17: 4f:55:59:da:20:cf:e6:c0:48:4a:8c:b2:95:82:7f: 99:d4:e8:51:c1:3d:76:3b:0a:40:ed:5b:4d:cb:62: b8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:55:46:D4:D5:E6:34:24:3C:19:DC:97:AD:6C:A5:4D:5B:92:C8:AB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3b3bdeab-6b13-4a28-80ed-0fe2a5fa4dfd.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:e000::/40 Signature Algorithm: sha256WithRSAEncryption 23:e3:6f:a2:f2:d7:15:28:ca:04:d3:5a:15:a5:6f:5e:b3:13: 41:d0:0c:84:40:3e:a9:7d:79:31:a7:79:e5:10:4f:60:68:25: 6a:60:69:52:da:38:4f:1d:66:50:d3:47:e5:ea:b7:1c:a7:08: 45:08:e6:e1:ff:94:1d:81:32:fe:6f:29:c1:24:b3:8f:2f:39: 52:47:b8:e8:b7:d8:18:54:d9:bb:6f:8d:83:a8:28:90:0c:c3: 1a:00:4e:96:82:af:57:e9:99:5f:2e:cb:cd:a6:83:17:e9:a9: 1f:d8:30:2b:9d:d6:18:72:9b:a5:f5:e2:33:f1:70:1b:4f:cf: 51:29:56:43:ae:e9:d6:d3:af:86:78:28:df:4f:af:28:39:2e: 77:5d:8e:96:e8:ce:04:25:51:3f:65:09:93:41:f5:ea:3b:3d: f8:3f:56:6a:d5:c2:55:63:55:0f:00:c6:66:48:d7:72:a4:37: a1:fe:c1:43:98:2e:9c:f6:a2:43:c4:15:13:07:e3:b1:41:c1: 5f:0a:39:60:87:9d:6c:9d:af:7d:0f:2d:1b:d7:db:bf:45:69: 64:0a:15:75:1e:de:26:fa:0a:e4:74:4a:53:0c:27:35:ec:39: 2e:fa:78:02:34:0a:1d:56:6d:c3:72:ec:14:fe:56:c4:1b:22: 03:5c:7e:e2 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZ3irdnuBarnDYORZqp3k9XWD/cYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMDQwWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNGNjN2IwYTAxYmI0YjE1M2M4NTJiNzk3NWEzM2M0NzU1 NTU4OWY2ZTcxMDY0MzU0ZGMyMTdlMTRlMzZiOGI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCytIBi0+AIZT8Fl1YwfHDW+LZ+HE0H10CZ/Golr6pMGKSi Qq3unmPBc3VmjC74R95KHbDI3mBFttnX0kB7qVJLEOJNl68+ji54pSUu975Z3oqN 3OmP19MEi/3rt2iUwO7XTSa56ZTUDsxl5gNGX68fP3YYIfJvNmMkY6CQ2LmewRzP UZDRXXYu+nO7ht9gVxR7TI7O3lA+AH8n04J34maeWNePOD/pNytipzP6mtZ8JaR4 8eS/5Rrq9HDpee4DzSo4U3E/kPCDbVOUPzKNmTc44GJfqDL0/us99hA0bHg2F09V Wdogz+bASEqMspWCf5nU6FHBPXY7CkDtW03LYrj/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU3VVG1NXmNCQ8GdyXrWylTVuSyKswHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNiM2JkZWFiLTZiMTMtNGEyOC04MGVkLTBmZTJhNWZhNGRmZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB//4DANBgkqhkiG9w0BAQsFAAOCAQEAI+NvovLXFSjKBNNaFaVvXrMT QdAMhEA+qX15Mad55RBPYGglamBpUto4Tx1mUNNH5eq3HKcIRQjm4f+UHYEy/m8p wSSzjy85Uke46LfYGFTZu2+Ng6gokAzDGgBOloKvV+mZXy7LzaaDF+mpH9gwK53W GHKbpfXiM/FwG0/PUSlWQ67p1tOvhngo30+vKDkud12OlujOBCVRP2UJk0H16js9 +D9WatXCVWNVDwDGZkjXcqQ3of7BQ5gunPaiQ8QVEwfjsUHBXwo5YIedbJ2vfQ8t G9fbv0VpZAoVdR7eJvoK5HRKUwwnNew5Lvp4AjQKHVZtw3LsFP5WxBsiA1x+4g== -----END CERTIFICATE-----Generated at Mon Mar 2 06:30:57 2026 by rpki-client