$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/438e3de2-0641-433c-813f-9cab4fe3328d.roa File: 438e3de2-0641-433c-813f-9cab4fe3328d.roa (raw, json) Hash identifier: ecEyZJVlm7USeJcRbX7yrnV9SB5++BURf7shCBNKXLg= Subject key identifier: 24:04:42:BB:6A:40:61:12:E7:3B:11:03:71:3F:BE:C6:35:AE:39:06 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3CFC70EB9C7236F367F5E720013B8F05AEAC4B8C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/438e3de2-0641-433c-813f-9cab4fe3328d.roa Signing time: Tue 24 Feb 2026 00:51:10 +0000 ROA not before: Tue 24 Feb 2026 00:51:10 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:8080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:fc:70:eb:9c:72:36:f3:67:f5:e7:20:01:3b:8f:05:ae:ac:4b:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:51:10 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=a409d7dcfa09a1c0ea07f096b166fa69b24eb99e97eacc8b113bd3778721b8a3, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e7:ef:79:00:ca:df:94:ea:d8:31:09:df:42: 9c:5c:af:c7:64:53:eb:3c:e7:68:c4:bc:95:96:ae: 3c:e4:00:e4:b9:3d:dc:93:37:f5:04:78:c4:d2:8e: 8e:15:37:c3:0e:e9:12:62:00:8a:af:04:71:b7:1c: db:5b:0e:c3:cb:b0:b9:99:0a:b4:83:6a:cc:80:74: ce:4b:c7:a1:8d:ae:27:68:0a:c3:9e:f6:42:e8:23: d4:76:32:e7:ed:06:86:0b:c4:51:cd:94:73:69:be: de:7a:ab:ee:58:8a:36:e9:12:a3:8a:e6:ec:c7:cc: 49:41:1f:58:4a:59:b6:1f:13:25:48:b4:81:c7:5c: e6:a0:b4:dd:ed:e4:6c:a7:d5:df:ad:db:71:9c:18: 05:9e:c5:17:5d:65:a9:9c:5c:3a:ea:8f:34:64:3f: b1:07:59:7a:a3:ca:33:a1:44:43:bd:a6:6f:e7:17: 90:71:1a:ba:84:36:87:ff:57:e3:43:ab:ec:eb:6d: 6e:0a:34:4d:1f:a9:62:5b:0e:01:29:08:9f:15:55: 9a:f2:59:7c:ed:3c:03:50:2f:7e:38:1c:84:c7:e6: 62:f8:59:f1:29:09:37:c2:1e:d0:c5:91:dc:41:82: a7:43:58:5b:bf:26:ac:e5:59:65:64:5d:ba:f7:b0: 3c:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:04:42:BB:6A:40:61:12:E7:3B:11:03:71:3F:BE:C6:35:AE:39:06 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/438e3de2-0641-433c-813f-9cab4fe3328d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:8080::/48 Signature Algorithm: sha256WithRSAEncryption 46:ee:98:5f:7a:63:ce:d5:39:14:12:30:d7:11:5a:89:22:d8: 08:1f:ad:8d:74:e5:b3:0b:76:4d:5c:7c:b6:18:2e:37:9c:3e: d4:8a:a8:ed:a1:e7:ae:96:ec:17:fe:b5:0c:7f:9b:56:3a:7f: 83:f8:70:3a:58:f7:cb:b0:02:07:e3:8a:c8:1d:74:0d:fa:f9: a8:92:00:6a:40:ad:c1:27:99:58:bb:fc:46:e3:dc:cb:31:39: c0:b1:06:cf:18:d4:b0:80:f9:7e:7b:91:ec:71:b4:2c:f1:48: 47:d8:6f:ce:3a:87:8c:8a:39:ce:4b:45:32:5d:16:4e:8d:28: 86:97:74:41:07:62:d8:e6:ef:b3:2d:b2:59:6c:9b:8d:c4:22: 9e:8a:a4:ad:a4:a3:f9:ef:7c:40:51:55:55:8e:08:07:16:8a: 96:99:93:c4:53:8f:e6:18:64:0a:8e:82:9d:bd:7b:79:83:43: ad:5c:3d:ff:51:00:44:51:40:55:76:c2:5d:01:04:1d:70:7a: 07:aa:67:75:0c:61:6a:8d:cd:03:3c:05:b7:d8:40:af:c8:18: e5:14:f4:9e:5a:c0:69:fa:dc:5e:3c:d1:b7:b4:1e:5d:2b:90: 5f:a7:27:cc:98:5b:da:44:97:e2:33:c4:be:32:b2:22:49:0b: 16:f4:a0:3c -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPPxw65xyNvNn9ecgATuPBa6sS4wwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA1MTEwWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BhNDA5ZDdkY2ZhMDlhMWMwZWEwN2YwOTZiMTY2ZmE2OWIy NGViOTllOTdlYWNjOGIxMTNiZDM3Nzg3MjFiOGEzMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCr5+95AMrflOrYMQnfQpxcr8dkU+s852jEvJWWrjzkAOS5 PdyTN/UEeMTSjo4VN8MO6RJiAIqvBHG3HNtbDsPLsLmZCrSDasyAdM5Lx6GNrido CsOe9kLoI9R2MuftBoYLxFHNlHNpvt56q+5YijbpEqOK5uzHzElBH1hKWbYfEyVI tIHHXOagtN3t5Gyn1d+t23GcGAWexRddZamcXDrqjzRkP7EHWXqjyjOhREO9pm/n F5BxGrqENof/V+NDq+zrbW4KNE0fqWJbDgEpCJ8VVZryWXztPANQL344HITH5mL4 WfEpCTfCHtDFkdxBgqdDWFu/JqzlWWVkXbr3sDzRAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUJARCu2pAYRLnOxEDcT++xjWuOQYwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQzOGUzZGUyLTA2NDEtNDMzYy04MTNmLTljYWI0ZmUzMzI4ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ygIAwDQYJKoZIhvcNAQELBQADggEBAEbumF96Y87VORQSMNcRWoki 2AgfrY105bMLdk1cfLYYLjecPtSKqO2h566W7Bf+tQx/m1Y6f4P4cDpY98uwAgfj isgddA36+aiSAGpArcEnmVi7/Ebj3MsxOcCxBs8Y1LCA+X57kexxtCzxSEfYb846 h4yKOc5LRTJdFk6NKIaXdEEHYtjm77Mtsllsm43EIp6KpK2ko/nvfEBRVVWOCAcW ipaZk8RTj+YYZAqOgp29e3mDQ61cPf9RAERRQFV2wl0BBB1wegeqZ3UMYWqNzQM8 BbfYQK/IGOUU9J5awGn63F480be0Hl0rkF+nJ8yYW9pEl+IzxL4ysiJJCxb0oDw= -----END CERTIFICATE-----Generated at Mon Mar 2 07:26:00 2026 by rpki-client