$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/455d7b92-4c00-4985-ae91-ef6d61407b05.roa File: 455d7b92-4c00-4985-ae91-ef6d61407b05.roa (raw, json) Hash identifier: 6a+lpKQUOuZWlvClDOu/PRKUxlyykusTQBFf/wJRjq4= Subject key identifier: 20:8E:33:59:09:DA:C4:A0:74:C2:73:D9:F0:C1:61:74:18:B0:5E:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6D58B82793346DCEC5B24666F62353ECEAE446E0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/455d7b92-4c00-4985-ae91-ef6d61407b05.roa Signing time: Tue 24 Feb 2026 02:10:52 +0000 ROA not before: Tue 24 Feb 2026 02:10:52 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:40d0::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6d:58:b8:27:93:34:6d:ce:c5:b2:46:66:f6:23:53:ec:ea:e4:46:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:10:52 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=72a660d7bd83b037f8a5023c459e66c69c6a25bbb2ef1aedee50c977329001d1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e8:b9:e8:d4:fd:61:b5:56:cd:06:be:8a:d1: 17:85:b5:50:73:7c:bb:30:34:c5:ff:51:75:6c:58: 05:46:a1:7f:40:27:09:d0:d5:a6:08:37:d9:db:cb: ca:59:3b:a8:db:dc:e4:84:41:26:92:fc:a6:da:3e: 99:9c:4f:b9:5e:35:79:e7:fb:15:54:a3:c3:8e:6c: 84:73:cd:e2:29:32:78:aa:f7:16:00:84:b8:5f:44: 46:da:13:6d:a2:ae:bf:c6:d5:35:ba:a1:12:9b:1f: fb:82:10:e7:84:3f:7c:b7:ca:16:3d:d2:44:1d:0a: 34:22:68:d1:40:0e:f6:84:9f:fa:b7:c0:c4:89:9f: 49:ad:31:4a:fd:b0:df:dd:f1:8c:a5:3e:4f:65:6d: 70:1a:88:35:e8:27:8e:66:9b:df:ae:b2:9d:9a:32: 6b:db:11:21:3e:5c:6c:cd:30:18:1b:6a:f3:f9:31: b4:dd:35:7c:5d:96:ca:80:3d:f7:dd:10:d6:1c:f0: 34:48:d9:ca:39:8c:f8:a9:26:14:88:6a:ab:3a:ab: 95:a5:99:91:f0:9f:f5:c5:cb:2d:33:f0:bd:4a:53: 2f:cc:cd:33:e7:d3:f7:ef:9a:00:8c:39:24:eb:af: b7:83:60:59:28:2a:31:8d:79:af:a0:0b:5e:cf:21: 17:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:8E:33:59:09:DA:C4:A0:74:C2:73:D9:F0:C1:61:74:18:B0:5E:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/455d7b92-4c00-4985-ae91-ef6d61407b05.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:40d0::/48 Signature Algorithm: sha256WithRSAEncryption 19:99:3a:39:01:a4:5c:b6:06:1b:13:4d:37:56:4e:c4:fd:b2: 8e:34:2e:76:4f:be:7a:b6:1e:db:66:75:43:48:d0:51:3e:e8: 04:af:e1:5d:6b:f5:e6:a8:cf:a3:1d:27:4e:11:be:93:2b:8c: 46:46:0e:9b:d4:71:cd:2c:f6:ee:46:b3:a1:56:5e:29:7d:45: 93:70:42:02:64:93:20:bc:fa:26:85:8e:77:ad:85:de:f0:03: db:03:f0:05:b9:78:d1:83:c8:87:22:69:8f:82:ef:da:3c:cd: 32:96:ee:93:7f:d9:0e:c6:1d:b8:24:d5:f4:4a:c5:7e:63:3b: 1f:91:e5:55:a1:9e:63:a7:4a:29:5d:3c:57:35:43:11:a0:ad: 16:25:9c:1b:b6:0e:56:6e:0c:e5:34:0a:a1:3b:6a:ec:f7:d8: 3b:c1:3f:75:8c:20:e3:e8:e5:cd:10:7c:ae:fe:ce:cf:9e:ca: e6:f5:34:75:17:ce:76:14:d4:aa:86:cb:f5:96:a9:94:22:b1: 6f:5b:ea:ee:30:39:1d:a5:7d:f8:98:15:e2:b1:c7:f5:21:2e: 39:50:27:96:87:56:c4:c1:d7:a3:a5:78:34:7b:b6:7c:dd:a7: de:91:01:21:a7:6f:a9:ec:81:04:9c:ed:fd:c7:92:c3:fc:13: 6f:d5:02:a3 -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUbVi4J5M0bc7FskZm9iNT7OrkRuAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIxMDUyWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A3MmE2NjBkN2JkODNiMDM3ZjhhNTAyM2M0NTllNjZjNjlj NmEyNWJiYjJlZjFhZWRlZTUwYzk3NzMyOTAwMWQxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDC6Lno1P1htVbNBr6K0ReFtVBzfLswNMX/UXVsWAVGoX9A JwnQ1aYIN9nby8pZO6jb3OSEQSaS/KbaPpmcT7leNXnn+xVUo8OObIRzzeIpMniq 9xYAhLhfREbaE22irr/G1TW6oRKbH/uCEOeEP3y3yhY90kQdCjQiaNFADvaEn/q3 wMSJn0mtMUr9sN/d8YylPk9lbXAaiDXoJ45mm9+usp2aMmvbESE+XGzNMBgbavP5 MbTdNXxdlsqAPffdENYc8DRI2co5jPipJhSIaqs6q5WlmZHwn/XFyy0z8L1KUy/M zTPn0/fvmgCMOSTrr7eDYFkoKjGNea+gC17PIRdDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUII4zWQnaxKB0wnPZ8MFhdBiwXocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ1NWQ3YjkyLTRjMDAtNDk4NS1hZTkxLWVmNmQ2MTQwN2IwNS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//QNAwDQYJKoZIhvcNAQELBQADggEBABmZOjkBpFy2BhsTTTdWTsT9 so40LnZPvnq2HttmdUNI0FE+6ASv4V1r9eaoz6MdJ04RvpMrjEZGDpvUcc0s9u5G s6FWXil9RZNwQgJkkyC8+iaFjnethd7wA9sD8AW5eNGDyIciaY+C79o8zTKW7pN/ 2Q7GHbgk1fRKxX5jOx+R5VWhnmOnSildPFc1QxGgrRYlnBu2DlZuDOU0CqE7auz3 2DvBP3WMIOPo5c0QfK7+zs+eyub1NHUXznYU1KqGy/WWqZQisW9b6u4wOR2lffiY FeKxx/UhLjlQJ5aHVsTB16OleDR7tnzdp96RASGnb6nsgQSc7f3HksP8E2/VAqM= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:17 2026 by rpki-client