$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa File: 4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa (raw, json) Hash identifier: OUlN0rWoYaRVcJsnPzFM7GMxOqGm5FCrcio/hscx/ac= Subject key identifier: 6C:3D:30:66:C8:9C:23:E0:42:43:E6:D3:24:65:3A:1D:0C:4A:F3:52 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 72A00640461B333B5942118612CF660771539F0B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa Signing time: Thu 26 Feb 2026 00:50:08 +0000 ROA not before: Thu 26 Feb 2026 00:50:08 +0000 ROA not after: Wed 27 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fed:c000::/40 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 72:a0:06:40:46:1b:33:3b:59:42:11:86:12:cf:66:07:71:53:9f:0b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 26 00:50:08 2026 GMT Not After : May 27 23:59:59 2026 GMT Subject: serialNumber=12ec50a43ffad1011b2ac9717ffce15b64b2a3bcc44132dbbf8e198b7d90d532, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:33:09:10:fc:dc:1c:45:e9:a7:a4:45:af:f8: 02:d4:e6:1e:23:31:f4:80:ec:bb:62:b8:3a:6a:9c: ce:6f:ad:7f:6e:90:36:fc:7b:f7:98:83:26:6c:c5: 76:ee:5e:13:63:1f:ee:7e:17:0f:ea:9f:c4:78:18: bb:b5:f5:8d:bc:81:6e:e3:8d:02:8b:ba:b2:ef:66: f0:37:f1:95:2d:31:46:38:86:d3:fe:b0:79:27:0e: e1:53:be:40:c1:19:31:df:ee:f3:86:be:3c:32:27: 39:fe:3a:ff:4f:74:07:c4:87:42:c0:41:b2:43:17: ff:1d:25:29:63:62:b6:62:5c:7d:4b:55:10:b8:ba: 17:6e:fd:65:08:0f:c1:58:5f:40:73:e2:d4:c9:0a: 91:d6:4f:62:00:ef:3c:7d:63:ee:75:aa:d3:6e:04: 38:4a:4b:78:db:21:c2:dd:15:d9:d2:66:be:67:71: 12:a2:72:9d:12:95:d1:cc:9b:a4:16:d6:bc:aa:56: d3:74:ff:ce:08:62:be:cd:95:55:a3:ff:bc:6a:71: 7c:3f:06:68:bf:ad:cd:b2:a7:b6:09:84:40:bf:25: 38:50:9e:42:52:84:d3:49:7c:18:06:6a:dd:cf:63: 99:a8:a6:cb:a7:14:75:75:5b:ef:73:a5:48:a3:cf: 61:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:3D:30:66:C8:9C:23:E0:42:43:E6:D3:24:65:3A:1D:0C:4A:F3:52 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/4f51e87e-0cb5-416a-a750-f433b2a9fa07.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fed:c000::/40 Signature Algorithm: sha256WithRSAEncryption 4c:b3:d7:16:ed:a2:ce:2b:92:d2:b9:42:8f:02:f3:16:c2:6c: a1:80:09:48:90:c2:65:ba:e9:8d:5f:04:56:ca:b9:e3:ea:f8: e6:4a:16:18:20:c4:71:7f:60:b1:d7:5c:34:4b:f7:25:5d:e0: fe:b8:60:78:15:bd:2d:0e:38:10:8c:91:5f:9e:aa:ee:48:f4: 8e:da:63:87:c7:2f:fc:3e:fd:41:a9:70:d7:68:cd:fd:54:dd: b4:ae:3f:60:a6:f8:b3:e7:e7:da:48:26:06:56:e4:fc:6f:4e: 3b:74:c2:a2:e6:75:4b:7b:ca:b1:8c:8c:14:bb:8e:40:9f:2d: 71:d4:0f:2f:67:cf:23:50:16:33:42:a0:3e:4b:78:e4:7e:cc: 92:73:76:24:42:b8:82:88:fb:2e:50:2d:ff:f3:42:9b:a5:0b: 67:bf:63:d9:a8:6e:e9:f6:41:93:19:b5:ac:25:7a:fc:0c:45: b2:b9:ce:68:0c:79:b0:3c:80:34:d4:f8:2a:20:13:fa:96:1f: 85:eb:09:c0:64:d5:0c:de:43:41:69:e9:5f:b2:f5:5d:0c:15: 7e:d2:65:6e:dd:e6:f0:6a:f5:a4:3f:a2:7b:22:10:31:b6:bc: b4:82:7e:a7:3e:a7:3a:f9:e0:ac:66:f5:96:f2:08:1d:d6:0a: 11:ad:24:d1 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUcqAGQEYbMztZQhGGEs9mB3FTnwswDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI2MDA1MDA4WhcNMjYwNTI3MjM1OTU5 WjB6MUkwRwYDVQQFE0AxMmVjNTBhNDNmZmFkMTAxMWIyYWM5NzE3ZmZjZTE1YjY0 YjJhM2JjYzQ0MTMyZGJiZjhlMTk4YjdkOTBkNTMyMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCeMwkQ/NwcRemnpEWv+ALU5h4jMfSA7LtiuDpqnM5vrX9u kDb8e/eYgyZsxXbuXhNjH+5+Fw/qn8R4GLu19Y28gW7jjQKLurLvZvA38ZUtMUY4 htP+sHknDuFTvkDBGTHf7vOGvjwyJzn+Ov9PdAfEh0LAQbJDF/8dJSljYrZiXH1L VRC4uhdu/WUID8FYX0Bz4tTJCpHWT2IA7zx9Y+51qtNuBDhKS3jbIcLdFdnSZr5n cRKicp0SldHMm6QW1ryqVtN0/84IYr7NlVWj/7xqcXw/Bmi/rc2yp7YJhEC/JThQ nkJShNNJfBgGat3PY5mopsunFHV1W+9zpUijz2EXAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUbD0wZsicI+BCQ+bTJGU6HQxK81IwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzRmNTFlODdlLTBjYjUtNDE2YS1hNzUwLWY0MzNiMmE5ZmEwNy5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB/twDANBgkqhkiG9w0BAQsFAAOCAQEATLPXFu2iziuS0rlCjwLzFsJs oYAJSJDCZbrpjV8EVsq54+r45koWGCDEcX9gsddcNEv3JV3g/rhgeBW9LQ44EIyR X56q7kj0jtpjh8cv/D79Qalw12jN/VTdtK4/YKb4s+fn2kgmBlbk/G9OO3TCouZ1 S3vKsYyMFLuOQJ8tcdQPL2fPI1AWM0KgPkt45H7MknN2JEK4goj7LlAt//NCm6UL Z79j2ahu6fZBkxm1rCV6/AxFsrnOaAx5sDyANNT4KiAT+pYfhesJwGTVDN5DQWnp X7L1XQwVftJlbt3m8Gr1pD+ieyIQMba8tIJ+pz6nOvngrGb1lvIIHdYKEa0k0Q== -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:08 2026 by rpki-client