$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40421296-de4f-4dce-bee5-5aa02008e8b4.roa File: 40421296-de4f-4dce-bee5-5aa02008e8b4.roa (raw, json) Hash identifier: CSol89xXi8n16Ci0R7HxqHRACSR5mHFXTPHI2g3N2Yk= Subject key identifier: B1:24:B9:89:AD:44:68:6D:D6:6B:8B:8B:1E:55:9E:D2:B3:E1:8C:28 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0C388EA735D09CF92B7E28B60C16505143963AC1 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40421296-de4f-4dce-bee5-5aa02008e8b4.roa Signing time: Fri 13 Feb 2026 00:11:03 +0000 ROA not before: Fri 13 Feb 2026 00:11:03 +0000 ROA not after: Thu 14 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff3:ecc0::/46 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0c:38:8e:a7:35:d0:9c:f9:2b:7e:28:b6:0c:16:50:51:43:96:3a:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 13 00:11:03 2026 GMT Not After : May 14 23:59:59 2026 GMT Subject: serialNumber=05a92a2b2fa48247bf4d6b17b26ccde32b7f412feb9515978b49205282c76742, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:78:25:70:8f:b1:c4:d1:89:47:62:f0:04:98: 86:b8:06:ce:ab:e4:0f:ac:9c:dd:04:0b:77:1f:e9: 14:6b:bd:d0:b0:94:d0:9a:2c:08:1c:41:f0:88:23: a8:1d:74:d3:82:fc:79:4a:03:43:57:c6:f6:1a:ea: 8f:a7:a6:a5:47:f8:e1:46:0a:69:e5:7f:3a:14:31: 86:c3:c6:c5:ee:1d:7a:19:06:82:5b:47:6c:3a:42: 0d:28:dc:d9:c0:66:08:24:a7:b3:00:16:ae:5e:51: 6b:64:51:39:1a:a0:01:d1:20:4a:d8:89:19:cd:95: f8:34:c8:56:92:7f:b8:81:36:48:ba:e6:67:7e:c3: d0:2b:da:97:e9:8a:9d:37:8f:1a:89:d9:f1:2a:25: a4:bf:51:65:9e:10:90:c3:f7:bf:55:03:bd:88:1a: e8:b7:c4:1e:db:d5:6d:16:28:05:56:65:b3:e4:ae: 70:70:b5:ed:ab:a0:64:6d:27:bf:56:e6:dd:21:3b: 35:41:cf:1c:b6:1d:65:01:b3:6e:95:fd:52:50:ab: 7b:48:5b:6b:be:d8:e1:fe:aa:4b:b3:3f:54:32:8b: 3d:28:04:1b:15:fc:6d:67:06:1c:ff:c7:37:86:1a: 25:05:e6:8e:7f:9e:0b:ad:b6:27:69:d1:20:b3:42: 75:35 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:24:B9:89:AD:44:68:6D:D6:6B:8B:8B:1E:55:9E:D2:B3:E1:8C:28 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/40421296-de4f-4dce-bee5-5aa02008e8b4.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff3:ecc0::/46 Signature Algorithm: sha256WithRSAEncryption bb:0d:8f:96:88:8f:d8:ba:b7:0a:25:13:27:d3:d4:12:0d:0d: 26:05:0a:d6:4e:80:52:79:ba:09:68:1e:e9:ab:a0:df:51:fc: 21:5f:c9:dc:eb:84:1b:d5:5f:ce:17:20:cc:02:8f:c3:cc:8e: f2:c2:7f:77:d4:b5:92:65:88:07:88:3e:b5:36:1a:ce:72:80: e2:45:30:c5:a6:0e:2e:29:1b:92:ad:85:bb:a0:49:9d:a4:de: f3:6a:35:64:8a:f0:f7:a0:d5:14:be:5a:28:df:8b:73:f5:df: db:00:e2:51:7d:a4:1f:fe:de:08:e6:16:0c:16:31:10:ad:7b: 74:fa:03:a6:be:9e:b1:95:0a:05:e6:26:58:1e:3b:87:4a:30: 30:a2:fe:3c:0a:7a:0e:b3:db:27:ff:f4:4a:c0:fd:9b:ae:7e: ee:a5:c9:c8:08:d9:8e:f4:65:89:a9:d5:92:2d:9d:e0:98:0f: 16:bf:e1:a6:25:0c:ef:78:34:e4:12:24:6f:78:8b:a7:20:40: ed:45:19:bb:af:c5:c0:df:2a:cb:d5:10:78:ec:2f:e0:67:81: f1:91:65:3e:b7:6e:89:11:39:26:70:89:b0:25:33:fc:66:fc: 44:22:46:df:2b:08:8a:a4:fd:91:60:24:be:1f:f2:d5:23:d5: e6:e4:73:47 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUDDiOpzXQnPkrfii2DBZQUUOWOsEwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjEzMDAxMTAzWhcNMjYwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNWE5MmEyYjJmYTQ4MjQ3YmY0ZDZiMTdiMjZjY2RlMzJi N2Y0MTJmZWI5NTE1OTc4YjQ5MjA1MjgyYzc2NzQyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCpeCVwj7HE0YlHYvAEmIa4Bs6r5A+snN0EC3cf6RRrvdCw lNCaLAgcQfCII6gddNOC/HlKA0NXxvYa6o+npqVH+OFGCmnlfzoUMYbDxsXuHXoZ BoJbR2w6Qg0o3NnAZggkp7MAFq5eUWtkUTkaoAHRIErYiRnNlfg0yFaSf7iBNki6 5md+w9Ar2pfpip03jxqJ2fEqJaS/UWWeEJDD979VA72IGui3xB7b1W0WKAVWZbPk rnBwte2roGRtJ79W5t0hOzVBzxy2HWUBs26V/VJQq3tIW2u+2OH+qkuzP1Qyiz0o BBsV/G1nBhz/xzeGGiUF5o5/nguttidp0SCzQnU1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUsSS5ia1EaG3Wa4uLHlWe0rPhjCgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQwNDIxMjk2LWRlNGYtNGRjZS1iZWU1LTVhYTAyMDA4ZThiNC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwImAB/z7MAwDQYJKoZIhvcNAQELBQADggEBALsNj5aIj9i6twolEyfT1BIN DSYFCtZOgFJ5ugloHumroN9R/CFfydzrhBvVX84XIMwCj8PMjvLCf3fUtZJliAeI PrU2Gs5ygOJFMMWmDi4pG5KthbugSZ2k3vNqNWSK8Peg1RS+Wijfi3P139sA4lF9 pB/+3gjmFgwWMRCte3T6A6a+nrGVCgXmJlgeO4dKMDCi/jwKeg6z2yf/9ErA/Zuu fu6lycgI2Y70ZYmp1ZItneCYDxa/4aYlDO94NOQSJG94i6cgQO1FGbuvxcDfKsvV EHjsL+BngfGRZT63bokROSZwibAlM/xm/EQiRt8rCIqk/ZFgJL4f8tUj1ebkc0c= -----END CERTIFICATE-----Generated at Sun Mar 1 22:18:52 2026 by rpki-client