$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d040b3b-9d8e-4f2c-aa17-4b9a18b103b3.roa File: 3d040b3b-9d8e-4f2c-aa17-4b9a18b103b3.roa (raw, json) Hash identifier: bCIcW1XCCr6e5IPt6LEC98h2Qsg0bOOA9u7Qfm/kkOE= Subject key identifier: E4:61:33:9A:6B:78:66:E0:B5:44:7F:2C:A0:52:69:E9:E6:7B:1B:BB Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 390162FE492BCBCBC2C527BFCE8702478DE19903 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d040b3b-9d8e-4f2c-aa17-4b9a18b103b3.roa Signing time: Wed 25 Feb 2026 02:21:17 +0000 ROA not before: Wed 25 Feb 2026 02:21:17 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f36:1000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 39:01:62:fe:49:2b:cb:cb:c2:c5:27:bf:ce:87:02:47:8d:e1:99:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 02:21:17 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=f3ac3a9f3b4e90e630ddaa613a9b7e979749f134b19bb8b4b9ec7de433da5d61, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:58:a2:73:a0:ec:db:79:2b:56:5a:a3:88:d3: d3:8c:70:a0:72:2f:1c:d6:1d:b4:26:bf:9f:23:8e: 42:fd:16:3f:a5:15:d5:4a:69:b7:bf:a0:62:1f:ff: c5:f9:9e:b5:04:9d:a6:3b:f3:d0:0f:bd:75:e2:8e: ad:11:10:3e:68:a3:9d:fc:c9:06:be:c9:f2:59:4e: 18:60:33:5e:e0:4d:64:36:7d:e1:d6:7a:fb:db:75: 4a:f2:dd:5f:5f:dc:d7:0c:96:da:b3:00:e5:3f:e1: 84:28:c7:9b:61:2b:af:ea:f6:18:f4:94:65:57:32: ff:ca:4a:c5:dc:f4:55:c7:99:7a:8e:6e:7f:51:21: ed:6f:e9:20:2a:d7:f0:ec:a3:1c:b2:d6:0e:47:45: 19:50:d2:f4:c8:42:c6:0e:b4:88:04:e5:96:ef:47: bb:d8:77:2a:f9:fe:cf:9e:21:09:20:51:ad:f5:20: 80:f1:b8:d9:43:69:78:59:97:57:07:33:0a:9e:2d: 4d:7a:c1:3c:76:46:43:a0:7a:0d:ca:5c:07:07:1a: 02:8b:a5:c0:61:9b:c9:e0:a6:4e:a1:f3:cc:dc:95: 4d:62:d6:80:e3:09:d8:ae:7b:26:8b:66:b2:af:71: 9d:f6:05:d4:f4:38:7c:65:b8:6f:54:c4:5d:a1:43: 6f:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:61:33:9A:6B:78:66:E0:B5:44:7F:2C:A0:52:69:E9:E6:7B:1B:BB X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3d040b3b-9d8e-4f2c-aa17-4b9a18b103b3.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f36:1000::/40 Signature Algorithm: sha256WithRSAEncryption 81:5a:bd:f5:1d:85:a4:59:5c:0c:40:79:3f:0c:c6:60:89:45: 67:84:7a:a8:d4:92:db:54:ab:d4:aa:4b:9a:30:67:d2:85:27: cb:61:3f:4b:88:8d:86:39:c9:ce:a8:86:c1:44:dd:75:14:ae: 8f:56:44:74:84:16:b6:e4:9f:9a:49:65:6e:28:b5:64:e2:e4: af:92:1c:46:f4:fe:0f:57:67:e4:87:af:f0:7b:c8:69:c2:35: 3c:7c:6d:96:80:63:7b:9f:cf:82:77:8e:d7:0c:49:8a:bd:09: ea:0f:7c:a2:ba:02:99:6a:ad:bb:34:3a:c6:e4:ea:ab:df:ee: ba:bf:cc:3c:6d:46:bc:6d:f4:a8:29:8b:aa:94:2a:b2:12:30: e3:29:31:06:8e:b2:b1:e5:f4:77:49:9d:3f:4f:c0:04:98:d0: 34:a8:d4:8c:8a:77:47:d7:85:b0:10:c2:b6:61:93:57:8a:b7: 0d:6c:79:f2:8d:27:ca:c7:29:4f:de:a5:82:9c:92:70:dc:9a: 5a:1c:28:15:3b:ff:72:cd:13:cd:a1:a5:05:0c:96:a4:60:e0: d3:4c:78:9c:18:12:09:45:ec:c3:55:7d:98:26:97:96:75:4b: 51:84:a3:5e:9c:cc:ae:43:88:19:79:0b:12:1c:5d:7f:e5:93: ea:31:93:cd -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOQFi/kkry8vCxSe/zocCR43hmQMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDIyMTE3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmM2FjM2E5ZjNiNGU5MGU2MzBkZGFhNjEzYTliN2U5Nzk3 NDlmMTM0YjE5YmI4YjRiOWVjN2RlNDMzZGE1ZDYxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCgWKJzoOzbeStWWqOI09OMcKByLxzWHbQmv58jjkL9Fj+l FdVKabe/oGIf/8X5nrUEnaY789APvXXijq0RED5oo538yQa+yfJZThhgM17gTWQ2 feHWevvbdUry3V9f3NcMltqzAOU/4YQox5thK6/q9hj0lGVXMv/KSsXc9FXHmXqO bn9RIe1v6SAq1/Dsoxyy1g5HRRlQ0vTIQsYOtIgE5ZbvR7vYdyr5/s+eIQkgUa31 IIDxuNlDaXhZl1cHMwqeLU16wTx2RkOgeg3KXAcHGgKLpcBhm8ngpk6h88zclU1i 1oDjCdiueyaLZrKvcZ32BdT0OHxluG9UxF2hQ2/BAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQU5GEzmmt4ZuC1RH8soFJp6eZ7G7swHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNkMDQwYjNiLTlkOGUtNGYyYy1hYTE3LTRiOWExOGIxMDNiMy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB82EDANBgkqhkiG9w0BAQsFAAOCAQEAgVq99R2FpFlcDEB5PwzGYIlF Z4R6qNSS21Sr1KpLmjBn0oUny2E/S4iNhjnJzqiGwUTddRSuj1ZEdIQWtuSfmkll bii1ZOLkr5IcRvT+D1dn5Iev8HvIacI1PHxtloBje5/PgneO1wxJir0J6g98oroC mWqtuzQ6xuTqq9/uur/MPG1GvG30qCmLqpQqshIw4ykxBo6yseX0d0mdP0/ABJjQ NKjUjIp3R9eFsBDCtmGTV4q3DWx58o0nyscpT96lgpyScNyaWhwoFTv/cs0TzaGl BQyWpGDg00x4nBgSCUXsw1V9mCaXlnVLUYSjXpzMrkOIGXkLEhxdf+WT6jGTzQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:10:48 2026 by rpki-client