$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4efc828a-9663-4121-9eb7-bc79eba4c3f0.roa File: 4efc828a-9663-4121-9eb7-bc79eba4c3f0.roa (raw, json) Hash identifier: nFHMyIz27+792qARs2AyO5SPLtLgMmaxOa2Y61WWPys= Subject key identifier: 4A:6A:06:7A:7B:7A:11:0C:DB:3B:6F:0A:EE:EF:19:EA:E6:D0:9A:87 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2710F612DD0F917C04348C8D2964137DA5459DF4 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4efc828a-9663-4121-9eb7-bc79eba4c3f0.roa Signing time: Wed 25 Feb 2026 01:00:05 +0000 ROA not before: Wed 25 Feb 2026 01:00:05 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f24:4000::/36 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:10:f6:12:dd:0f:91:7c:04:34:8c:8d:29:64:13:7d:a5:45:9d:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:00:05 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=cab43f8928fa6de0897372870f765e8352dbf49d0138b41460833003f8b152b2, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:09:67:aa:d8:1b:bd:61:c2:64:58:64:42:99: f4:58:5a:dc:4d:cc:e4:60:af:c6:35:4d:ec:16:ea: 29:05:c2:fc:8d:d9:23:e7:af:8e:62:2b:51:5f:99: e5:66:1d:a4:d2:29:30:0f:9c:33:d2:88:b6:ec:2f: 9e:57:98:88:8d:f3:92:fc:48:a8:42:af:5b:17:44: ac:82:a6:9b:d2:42:c3:37:43:1c:b0:cf:dc:0f:e2: ee:29:11:eb:5c:c2:73:39:f5:78:ed:50:42:17:ec: b3:a7:6d:0c:ae:4e:03:c3:77:11:9f:f4:ed:97:1a: b2:7e:26:74:a6:be:09:3a:3d:c7:f1:c0:1d:b6:88: 75:55:9f:ca:12:94:a5:3a:8a:5f:ab:48:08:bb:99: d4:8e:ac:b6:80:cb:03:11:0a:81:79:9d:62:52:11: 55:44:68:f8:b7:97:33:36:07:5d:84:58:c0:e9:02: 98:53:73:aa:e0:2b:00:de:3f:14:82:0f:aa:16:08: eb:cf:49:0a:65:24:d7:ec:f0:8b:56:96:f3:3d:77: 52:73:95:77:b7:b3:e9:26:d6:5b:25:c2:34:46:0a: 62:89:1f:e2:77:4b:74:42:3b:21:77:16:b7:9a:a5: 00:24:bc:20:f9:43:74:50:16:d9:7a:c3:45:dd:50: 5f:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:6A:06:7A:7B:7A:11:0C:DB:3B:6F:0A:EE:EF:19:EA:E6:D0:9A:87 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4efc828a-9663-4121-9eb7-bc79eba4c3f0.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f24:4000::/36 Signature Algorithm: sha256WithRSAEncryption d0:8b:48:78:a8:4c:5d:b1:58:54:75:c1:90:cf:fd:27:c2:42: 51:85:7f:fa:25:ee:5d:17:7b:29:9d:3e:c2:3c:ab:7e:2c:ba: b5:8c:ab:18:f7:3f:80:d2:d8:55:82:11:a6:de:c0:7b:59:f2: a2:9a:d4:fd:48:08:f4:c4:c4:c5:85:f3:37:05:e4:01:99:a4: d5:72:9a:65:d9:6b:cf:55:b1:52:e4:7b:91:7d:0e:c9:2b:73: ba:d1:de:af:36:0d:a9:10:6f:89:c0:99:e8:0d:24:9e:3a:77: 06:fb:dd:bc:2b:67:c2:ea:c3:93:90:1c:cd:48:11:da:0e:85: 16:92:a9:ad:1b:47:e6:47:5b:5e:c2:38:aa:ed:c8:5a:32:0c: c4:b4:08:50:d0:80:4c:49:b7:d2:0b:fc:2d:5f:79:16:84:0b: 84:88:01:38:26:36:f8:be:39:9a:07:78:1f:1d:d5:a6:a6:18: db:99:06:e0:81:c7:d8:f4:3d:ca:40:8f:0b:91:06:90:69:41: 82:ac:7d:9e:c6:c6:b8:e5:37:c0:87:c4:c8:bf:fe:06:1c:23: 8d:57:d7:1f:81:b6:9b:ae:d4:0e:f1:cd:07:68:f8:81:0e:be: 80:f7:07:a0:4e:4d:18:79:b6:81:bd:e6:77:46:fe:44:cf:90: ab:30:71:d8 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUJxD2Et0PkXwENIyNKWQTfaVFnfQwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEwMDA1WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0BjYWI0M2Y4OTI4ZmE2ZGUwODk3MzcyODcwZjc2NWU4MzUy ZGJmNDlkMDEzOGI0MTQ2MDgzMzAwM2Y4YjE1MmIyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCiCWeq2Bu9YcJkWGRCmfRYWtxNzORgr8Y1TewW6ikFwvyN 2SPnr45iK1FfmeVmHaTSKTAPnDPSiLbsL55XmIiN85L8SKhCr1sXRKyCppvSQsM3 Qxywz9wP4u4pEetcwnM59XjtUEIX7LOnbQyuTgPDdxGf9O2XGrJ+JnSmvgk6Pcfx wB22iHVVn8oSlKU6il+rSAi7mdSOrLaAywMRCoF5nWJSEVVEaPi3lzM2B12EWMDp AphTc6rgKwDePxSCD6oWCOvPSQplJNfs8ItWlvM9d1JzlXe3s+km1lslwjRGCmKJ H+J3S3RCOyF3FreapQAkvCD5Q3RQFtl6w0XdUF8/AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUSmoGent6EQzbO28K7u8Z6ubQmocwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRlZmM4MjhhLTk2NjMtNDEyMS05ZWI3LWJjNzllYmE0YzNmMC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgQmAB8kQDANBgkqhkiG9w0BAQsFAAOCAQEA0ItIeKhMXbFYVHXBkM/9J8JC UYV/+iXuXRd7KZ0+wjyrfiy6tYyrGPc/gNLYVYIRpt7Ae1nyoprU/UgI9MTExYXz NwXkAZmk1XKaZdlrz1WxUuR7kX0OyStzutHerzYNqRBvicCZ6A0knjp3BvvdvCtn wurDk5AczUgR2g6FFpKprRtH5kdbXsI4qu3IWjIMxLQIUNCATEm30gv8LV95FoQL hIgBOCY2+L45mgd4Hx3VpqYY25kG4IHH2PQ9ykCPC5EGkGlBgqx9nsbGuOU3wIfE yL/+BhwjjVfXH4G2m67UDvHNB2j4gQ6+gPcHoE5NGHm2gb3md0b+RM+QqzBx2A== -----END CERTIFICATE-----Generated at Sun Mar 1 22:10:11 2026 by rpki-client