$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49cb767a-aa41-47fb-9d8f-2b7b02b47981.roa File: 49cb767a-aa41-47fb-9d8f-2b7b02b47981.roa (raw, json) Hash identifier: BRJ0t0OsPFQ8ryud7RUgrLDhstHUfIy+4nH9tYGsK3Y= Subject key identifier: 84:6A:62:FA:2B:86:19:10:04:52:6B:A0:7F:20:8B:C1:93:28:86:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2A7381FA2FBD0912B9F71F28074D8CD399BA15D0 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49cb767a-aa41-47fb-9d8f-2b7b02b47981.roa Signing time: Wed 25 Feb 2026 01:50:12 +0000 ROA not before: Wed 25 Feb 2026 01:50:12 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff5:8000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:73:81:fa:2f:bd:09:12:b9:f7:1f:28:07:4d:8c:d3:99:ba:15:d0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:50:12 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=ffadeb03f0475705badffb19969f6ddd6b0de64f06b550d816f225bfed1b1dc1, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:7c:ea:4a:44:40:08:7f:ef:69:d2:dc:a7:8b: a8:ce:d0:f1:0b:5c:c3:d2:65:0c:47:4e:de:46:ed: a4:ea:5b:01:cd:d6:d5:cd:af:c4:11:38:34:56:1b: de:5f:8c:a7:03:ca:cf:f0:36:fb:c1:36:7c:b2:10: ac:7d:5f:cf:34:d1:fa:94:70:68:72:d9:ac:84:f1: 5b:7d:cd:53:d7:b2:78:d7:da:25:61:ea:32:52:e3: 58:f8:0b:58:1d:83:45:37:39:ef:44:10:84:e9:23: a3:17:e2:cd:99:cb:94:55:c6:a6:88:ff:17:98:0e: 18:a3:0b:50:11:9f:aa:07:e2:64:9d:a4:e7:7f:98: c2:0a:19:cb:06:ea:fb:a1:ae:f0:ae:6e:7c:77:38: 82:fc:de:3d:d3:ca:46:d0:75:32:f7:4a:25:25:e4: f3:57:39:74:83:9f:4d:07:48:be:80:ed:34:cf:c6: 16:32:66:a0:c7:1b:95:9d:2c:11:a8:2a:c3:6a:17: 5f:2d:b5:60:3c:af:ff:23:06:f3:86:15:7f:78:3f: 25:cf:a2:84:3f:cc:8c:26:2f:24:3f:f8:0a:7f:41: ce:44:dd:2d:e1:98:a2:68:e4:6b:28:93:33:58:69: 5e:ec:3e:df:58:6c:7a:8a:55:d4:2d:53:d6:b0:b7: 13:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 84:6A:62:FA:2B:86:19:10:04:52:6B:A0:7F:20:8B:C1:93:28:86:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/49cb767a-aa41-47fb-9d8f-2b7b02b47981.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff5:8000::/40 Signature Algorithm: sha256WithRSAEncryption 4a:cd:7b:87:af:08:e1:63:02:b6:44:49:dd:8f:d5:34:46:97: c9:1b:fa:98:7f:6d:10:7b:1b:12:b1:02:76:62:a6:cb:12:57: 66:72:09:01:14:24:28:30:38:a5:65:a8:2e:e7:ca:19:60:f3: 9d:e6:a3:2f:33:7a:43:47:7d:42:27:80:e4:d6:81:5d:eb:c4: d5:42:b9:b6:96:17:36:cb:d2:0a:7f:a0:f5:89:02:58:60:33: 5b:41:97:56:ad:b9:22:db:5c:6b:35:db:27:24:24:94:75:d0: cf:61:46:26:66:1d:db:a4:37:9b:e4:1b:84:c6:b1:96:19:95: ee:48:f4:d5:93:52:9e:02:f1:5e:ef:b3:21:b4:7f:a9:f0:53: 81:51:b2:38:c9:e3:44:eb:c6:93:66:a2:c8:f1:b9:ec:c3:9c: 04:07:ec:4a:ca:4d:ba:f9:44:d6:f0:23:62:0c:2e:bb:2f:85: 5a:d6:6b:8c:ce:ae:b1:ba:e4:74:48:82:e2:f7:e9:13:b1:7a: 56:e4:02:64:a0:63:15:b6:0b:c0:3c:d3:9a:5d:e4:44:12:4d: a4:b0:44:c2:85:67:be:b8:a9:0d:35:f9:9e:f1:d6:51:14:a2: 85:ae:a4:37:df:ee:ea:f5:56:96:ee:81:e3:ef:b0:d7:e0:ea: c0:74:ed:e7 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUKnOB+i+9CRK59x8oB02M05m6FdAwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDE1MDEyWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BmZmFkZWIwM2YwNDc1NzA1YmFkZmZiMTk5NjlmNmRkZDZi MGRlNjRmMDZiNTUwZDgxNmYyMjViZmVkMWIxZGMxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDUfOpKREAIf+9p0tyni6jO0PELXMPSZQxHTt5G7aTqWwHN 1tXNr8QRODRWG95fjKcDys/wNvvBNnyyEKx9X8800fqUcGhy2ayE8Vt9zVPXsnjX 2iVh6jJS41j4C1gdg0U3Oe9EEITpI6MX4s2Zy5RVxqaI/xeYDhijC1ARn6oH4mSd pOd/mMIKGcsG6vuhrvCubnx3OIL83j3TykbQdTL3SiUl5PNXOXSDn00HSL6A7TTP xhYyZqDHG5WdLBGoKsNqF18ttWA8r/8jBvOGFX94PyXPooQ/zIwmLyQ/+Ap/Qc5E 3S3hmKJo5GsokzNYaV7sPt9YbHqKVdQtU9awtxMnAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUhGpi+iuGGRAEUmugfyCLwZMohvgwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzQ5Y2I3NjdhLWFhNDEtNDdmYi05ZDhmLTJiN2IwMmI0Nzk4MS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/1gDANBgkqhkiG9w0BAQsFAAOCAQEASs17h68I4WMCtkRJ3Y/VNEaX yRv6mH9tEHsbErECdmKmyxJXZnIJARQkKDA4pWWoLufKGWDzneajLzN6Q0d9QieA 5NaBXevE1UK5tpYXNsvSCn+g9YkCWGAzW0GXVq25IttcazXbJyQklHXQz2FGJmYd 26Q3m+QbhMaxlhmV7kj01ZNSngLxXu+zIbR/qfBTgVGyOMnjROvGk2aiyPG57MOc BAfsSspNuvlE1vAjYgwuuy+FWtZrjM6usbrkdEiC4vfpE7F6VuQCZKBjFbYLwDzT ml3kRBJNpLBEwoVnvripDTX5nvHWURSiha6kN9/u6vVWlu6B4++w1+DqwHTt5w== -----END CERTIFICATE-----Generated at Sun Mar 1 22:16:04 2026 by rpki-client