$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa File: 3e37dce6-073c-42e1-9afc-071c9e360693.roa (raw, json) Hash identifier: /cLS5MUaCU89pod9nUop21mr+wH5i/V8ofCwmzKY1ME= Subject key identifier: 77:A6:3E:21:11:15:9C:80:29:7E:50:9B:69:52:0B:15:F5:75:01:80 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3A75CE1B873BA89B0A7FDE1340CA8212FEBA239A Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa Signing time: Wed 25 Feb 2026 01:10:04 +0000 ROA not before: Wed 25 Feb 2026 01:10:04 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f16::/34 maxlen: 34 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3a:75:ce:1b:87:3b:a8:9b:0a:7f:de:13:40:ca:82:12:fe:ba:23:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:10:04 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=f0206d584df4a7fe27eae2ac60bd4a1b3b97a443a1c432ba254eb749151c159a, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:c9:88:f6:92:cc:9d:10:d3:d8:c4:0c:51:b2: 5d:63:ff:8d:e0:1c:f3:98:02:8e:93:fa:39:d9:a5: e9:4e:f8:c5:d9:ac:e6:fc:e0:a3:2c:f6:58:66:05: 97:f3:42:04:f4:84:19:eb:55:43:c6:90:03:03:ac: 71:c7:3b:62:6e:34:e0:26:09:ea:23:5d:3f:1d:08: 4d:c6:4d:af:56:70:f4:36:65:1c:93:64:d0:fa:ad: f0:9c:5d:df:48:cb:c5:0a:e9:d1:73:d5:62:ff:16: 27:27:49:3d:e2:fe:c4:0c:da:55:52:e3:73:53:b1: 7a:99:28:58:1f:25:9d:e2:85:e6:47:2a:65:77:a9: ee:6f:2b:2b:43:6e:9d:57:66:6a:b4:54:0b:14:2b: 22:27:f2:f8:9b:90:d8:fb:67:64:f1:47:19:82:36: 72:68:12:64:10:e8:f5:a9:df:2c:b1:f5:77:82:05: 3b:0a:1b:ff:55:bc:69:12:a5:6d:f6:5d:9e:91:10: 91:7a:d7:c9:51:e8:1b:9c:f6:26:ce:4f:56:02:4d: b2:b8:78:fc:b4:96:60:51:fc:5f:9e:0e:8a:b8:d1: d5:b1:75:e6:05:26:2e:45:84:30:8a:8f:10:f0:64: 24:b1:b4:23:aa:d0:2f:db:08:86:1d:b3:2d:96:e9: ca:9b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:A6:3E:21:11:15:9C:80:29:7E:50:9B:69:52:0B:15:F5:75:01:80 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/3e37dce6-073c-42e1-9afc-071c9e360693.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f16::/34 Signature Algorithm: sha256WithRSAEncryption 71:cb:8e:1e:f9:91:c5:b3:56:85:5c:d1:36:c1:a1:88:03:b4: bd:11:75:8d:a3:9f:b3:3a:d3:4d:71:eb:a1:e3:5f:6d:c8:65: 59:d8:19:60:9e:98:e1:df:c7:ea:17:22:d9:31:a9:6c:a7:a7: 8f:a0:16:34:79:03:8b:ad:14:36:fb:21:57:ad:86:ad:1b:b0: 4e:32:a1:93:39:4e:54:ff:e8:4c:f8:17:bc:d2:2c:51:34:d0: bb:cb:7e:94:55:dc:87:52:e2:8f:a3:62:03:eb:8f:88:fe:c2: e0:3d:de:24:59:a6:40:f5:2f:ca:54:95:24:48:cb:2f:20:3a: a4:c6:37:b4:a7:e1:13:76:f6:03:b7:b2:13:5b:dd:66:4d:64: b3:22:94:54:d8:34:58:da:33:6e:d9:a0:bd:1c:f6:e9:5b:fe: df:26:cf:f1:17:1e:23:3a:84:19:3a:97:80:90:11:f9:c3:8c: 17:c1:b9:fd:13:a3:37:7e:c2:eb:f6:fe:69:f0:63:d7:73:bd: 17:c1:85:0d:a6:4e:8b:90:76:2f:d0:2c:09:b8:5f:10:74:c5: d2:84:cc:53:30:18:95:a0:9d:2a:11:0b:7b:27:39:11:fe:8a: b2:e6:b5:86:ec:ba:c6:3f:8e:45:51:a8:ae:3a:1f:02:90:bc: 01:6f:d6:7c -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUOnXOG4c7qJsKf94TQMqCEv66I5owDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDExMDA0WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmMDIwNmQ1ODRkZjRhN2ZlMjdlYWUyYWM2MGJkNGExYjNi OTdhNDQzYTFjNDMyYmEyNTRlYjc0OTE1MWMxNTlhMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDSyYj2ksydENPYxAxRsl1j/43gHPOYAo6T+jnZpelO+MXZ rOb84KMs9lhmBZfzQgT0hBnrVUPGkAMDrHHHO2JuNOAmCeojXT8dCE3GTa9WcPQ2 ZRyTZND6rfCcXd9Iy8UK6dFz1WL/FicnST3i/sQM2lVS43NTsXqZKFgfJZ3iheZH KmV3qe5vKytDbp1XZmq0VAsUKyIn8vibkNj7Z2TxRxmCNnJoEmQQ6PWp3yyx9XeC BTsKG/9VvGkSpW32XZ6REJF618lR6Buc9ibOT1YCTbK4ePy0lmBR/F+eDoq40dWx deYFJi5FhDCKjxDwZCSxtCOq0C/bCIYdsy2W6cqbAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUd6Y+IREVnIApflCbaVILFfV1AYAwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzNlMzdkY2U2LTA3M2MtNDJlMS05YWZjLTA3MWM5ZTM2MDY5My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgYmAB8WADANBgkqhkiG9w0BAQsFAAOCAQEAccuOHvmRxbNWhVzRNsGhiAO0 vRF1jaOfszrTTXHroeNfbchlWdgZYJ6Y4d/H6hci2TGpbKenj6AWNHkDi60UNvsh V62GrRuwTjKhkzlOVP/oTPgXvNIsUTTQu8t+lFXch1Lij6NiA+uPiP7C4D3eJFmm QPUvylSVJEjLLyA6pMY3tKfhE3b2A7eyE1vdZk1ksyKUVNg0WNozbtmgvRz26Vv+ 3ybP8RceIzqEGTqXgJAR+cOMF8G5/ROjN37C6/b+afBj13O9F8GFDaZOi5B2L9As CbhfEHTF0oTMUzAYlaCdKhELeyc5Ef6Ksua1huy6xj+ORVGorjofApC8AW/WfA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:13:23 2026 by rpki-client