$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f17303e-fb3f-43d5-8067-de8367b1fc63.roa File: 4f17303e-fb3f-43d5-8067-de8367b1fc63.roa (raw, json) Hash identifier: xkcqreBTKqJq3Fo1fT79zQakDn+McPftHwnRJ9xFQgA= Subject key identifier: 16:6D:39:33:A7:B3:9E:D5:97:EA:99:87:C2:46:83:E1:3E:AC:01:29 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 03AC0BFC3058A35A85F7FE5ADCFE79D1C8EE0A26 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f17303e-fb3f-43d5-8067-de8367b1fc63.roa Signing time: Thu 26 Feb 2026 01:00:13 +0000 ROA not before: Thu 26 Feb 2026 01:00:13 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:e000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 03:ac:0b:fc:30:58:a3:5a:85:f7:fe:5a:dc:fe:79:d1:c8:ee:0a:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 01:00:13 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=e53ebd7cc3945911c94a6d9d09dc79a038dc5d9336e16f20a3776b89860592b5, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:03:7d:c7:d0:a5:95:eb:11:67:28:b9:30:ae: e7:c9:48:13:08:3b:82:78:e7:38:e1:e4:02:2d:01: 65:21:7d:29:30:ee:91:9b:a7:11:1f:e4:19:ae:50: f5:ba:59:04:95:38:6c:9f:47:42:f3:11:19:2d:15: f4:13:5e:0a:12:65:30:22:16:43:de:20:33:29:2d: d9:ca:7f:dd:24:ee:2f:0b:1a:9b:6b:0c:76:cc:37: af:14:52:f7:4b:d0:2c:1c:db:55:09:87:64:94:76: 60:f9:33:5f:15:85:7c:03:75:84:d7:1a:23:bd:cb: 81:c2:f4:b5:ce:54:bb:00:3e:0d:cf:4a:39:dc:99: f6:07:d3:9e:e6:1f:d5:43:7f:70:3e:14:7e:73:76: 24:e1:25:b9:44:21:cb:76:21:67:c1:35:00:05:65: c2:05:37:13:27:ed:9d:7a:cf:90:46:d7:94:05:ef: 65:ab:a9:35:c7:85:e3:ef:76:e4:84:0e:4a:42:a2: 7c:66:06:44:18:7e:75:2e:ab:21:0d:e5:53:35:b1: 03:40:ce:1e:cf:de:89:e2:38:62:54:14:53:73:0e: 41:6a:ba:ef:f7:60:4e:6e:1e:b4:e0:ee:2b:c3:c5: a5:bb:da:81:1b:68:f2:5a:a3:72:53:a3:bf:c2:62: bc:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:6D:39:33:A7:B3:9E:D5:97:EA:99:87:C2:46:83:E1:3E:AC:01:29 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f17303e-fb3f-43d5-8067-de8367b1fc63.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:e000::/40 Signature Algorithm: sha256WithRSAEncryption be:33:1e:3a:af:f6:9e:78:39:4a:cf:9b:70:48:08:51:7f:29: c2:48:c8:38:9c:56:af:d6:39:64:58:15:f9:fa:76:1d:48:a3: 90:c0:78:10:42:79:ee:4a:62:d5:74:27:96:0e:2c:ca:ff:f9: 4c:5d:ca:5b:68:df:91:57:58:93:3f:52:7a:2b:ee:f7:a0:27: 6b:34:b5:e9:a2:19:c2:06:71:d2:ec:eb:b1:cf:76:05:6e:37: 29:80:12:a4:b6:0e:28:c1:c3:d4:88:bf:c4:d0:d1:d7:88:3d: 1f:79:7c:80:a5:87:41:33:e6:7f:c9:a2:9a:38:a6:01:d9:43: e3:a9:b9:7d:0c:df:ba:8d:89:fc:32:74:76:f8:e6:c2:ab:c3: ee:18:f9:96:fd:c3:f9:4e:96:95:15:1e:59:96:50:03:72:0f: 4a:14:5b:6e:4a:86:bf:8d:c2:0c:07:1e:0c:51:2c:7f:ce:c6: 0d:9d:7c:13:82:a7:68:fc:dc:98:57:f7:39:03:9c:f6:a1:6f: fc:0b:33:d6:6e:df:0a:93:13:8b:1e:2a:19:1f:27:69:f3:93: 86:ac:9b:fd:3f:c5:c4:74:6a:7c:b8:9b:bb:b5:30:2f:20:21: 97:eb:41:bf:f4:01:57:5d:0b:ee:55:9a:10:5f:82:ad:58:fd: bc:51:63:56 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUA6wL/DBYo1qF9/5a3P550cjuCiYwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDEwMDEzWhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0BlNTNlYmQ3Y2MzOTQ1OTExYzk0YTZkOWQwOWRjNzlhMDM4 ZGM1ZDkzMzZlMTZmMjBhMzc3NmI4OTg2MDU5MmI1MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCqA33H0KWV6xFnKLkwrufJSBMIO4J45zjh5AItAWUhfSkw 7pGbpxEf5BmuUPW6WQSVOGyfR0LzERktFfQTXgoSZTAiFkPeIDMpLdnKf90k7i8L GptrDHbMN68UUvdL0Cwc21UJh2SUdmD5M18VhXwDdYTXGiO9y4HC9LXOVLsAPg3P SjncmfYH057mH9VDf3A+FH5zdiThJblEIct2IWfBNQAFZcIFNxMn7Z16z5BG15QF 72WrqTXHhePvduSEDkpConxmBkQYfnUuqyEN5VM1sQNAzh7P3oniOGJUFFNzDkFq uu/3YE5uHrTg7ivDxaW72oEbaPJao3JTo7/CYrw7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUFm05M6ezntWX6pmHwkaD4T6sASkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmMTczMDNlLWZiM2YtNDNkNS04MDY3LWRlODM2N2IxZmM2My5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/t4DANBgkqhkiG9w0BAQsFAAOCAQEAvjMeOq/2nng5Ss+bcEgIUX8p wkjIOJxWr9Y5ZFgV+fp2HUijkMB4EEJ57kpi1XQnlg4syv/5TF3KW2jfkVdYkz9S eivu96AnazS16aIZwgZx0uzrsc92BW43KYASpLYOKMHD1Ii/xNDR14g9H3l8gKWH QTPmf8mimjimAdlD46m5fQzfuo2J/DJ0dvjmwqvD7hj5lv3D+U6WlRUeWZZQA3IP ShRbbkqGv43CDAceDFEsf87GDZ18E4KnaPzcmFf3OQOc9qFv/Asz1m7fCpMTix4q GR8nafOThqyb/T/FxHRqfLibu7UwLyAhl+tBv/QBV10L7lWaEF+CrVj9vFFjVg== -----END CERTIFICATE-----Generated at Mon Mar 2 03:07:08 2026 by rpki-client