$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/521e61ab-e5de-4fb1-9f98-f4c87c754b8f.roa File: 521e61ab-e5de-4fb1-9f98-f4c87c754b8f.roa (raw, json) Hash identifier: wDkzmxhDASZ4uaw1RZTDkS+rwz/gFkFFh0zmDhuJvVE= Subject key identifier: 9D:72:CC:79:39:81:D6:5C:B8:90:67:09:13:0A:D0:FB:91:2A:56:FC Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6492350EE02966772559E4A5927041AD4CF47943 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/521e61ab-e5de-4fb1-9f98-f4c87c754b8f.roa Signing time: Tue 24 Feb 2026 00:41:06 +0000 ROA not before: Tue 24 Feb 2026 00:41:06 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 8987 IP address blocks: 2600:1f00:2000::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:92:35:0e:e0:29:66:77:25:59:e4:a5:92:70:41:ad:4c:f4:79:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:41:06 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=5623b5c0fc3af11fac38cc48efa7d62e99c51861df4f0bbbf5a58a1c27751d21, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:b1:e8:36:5d:62:2a:d1:51:44:1e:4d:92:36: d8:79:39:f8:08:65:fb:20:b9:2b:2c:36:ae:3c:60: 2b:7c:7e:cf:2b:81:5a:e2:73:dd:78:61:4f:e9:62: a0:07:09:0e:20:2d:22:56:06:92:47:af:2f:9b:61: 18:0d:8a:10:ca:63:c2:37:9e:5f:37:a8:eb:c0:f4: 4b:29:79:38:19:21:3c:f3:06:da:fc:d3:9d:60:18: 48:05:f4:dd:9d:6b:3b:ed:c2:2a:f6:c3:6a:62:ba: b4:a4:91:6e:f1:7e:70:db:f3:ee:a7:3b:2e:66:67: 6c:de:67:88:70:fc:f4:96:0d:9d:90:9e:6c:6a:4e: 6b:95:c1:a0:55:1f:34:10:8e:9d:d9:2a:5c:f1:7b: 73:02:ca:59:0c:7c:85:0b:43:ff:85:4c:7d:97:9c: 65:78:0c:93:fd:9c:eb:61:ce:be:e6:79:ec:d7:e9: 33:82:8f:c3:23:13:f2:44:f4:b4:5b:50:64:ab:f4: b5:fb:09:7c:6e:1f:31:86:e3:13:06:b1:3f:06:4e: bc:f3:45:42:74:f0:15:2c:57:55:77:34:6a:34:bf: ee:a9:a5:53:18:2b:f8:51:f1:9a:37:27:11:77:21: ad:03:6c:c3:bf:75:4c:67:ef:2c:2d:00:0f:a5:84: e5:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:72:CC:79:39:81:D6:5C:B8:90:67:09:13:0A:D0:FB:91:2A:56:FC X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/521e61ab-e5de-4fb1-9f98-f4c87c754b8f.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f00:2000::/40 Signature Algorithm: sha256WithRSAEncryption c1:fe:81:31:64:81:28:49:e3:23:3a:38:f6:75:81:23:52:2f: 9e:42:fe:9e:00:e9:64:6a:1e:4c:dd:22:76:e8:20:20:1f:08: 7a:72:a2:09:75:61:fd:5a:96:21:73:08:44:07:14:f7:50:55: 59:de:d7:e3:7a:70:5c:d9:b1:6f:12:a6:9c:12:18:f8:61:f1: b7:59:b8:08:d1:15:24:dc:9f:12:49:b2:58:17:65:78:4f:1b: dd:6e:e5:fc:2a:fd:f8:c4:b8:c8:fd:b8:a2:a4:21:5f:0c:cf: e5:34:5c:c3:41:b2:e2:84:3d:3f:08:ce:a7:26:4f:17:0b:0f: 82:06:8d:9a:55:4e:8c:71:71:53:4a:57:3a:c3:d4:93:de:26: 83:b3:9e:cb:ee:1a:c9:26:75:1f:55:02:8c:09:b6:62:e4:2b: 5c:2d:d9:46:5f:ff:22:e7:73:04:6c:40:04:8b:46:9e:8d:e0: f5:73:1a:f5:5e:81:cf:ec:65:09:a5:e3:56:3c:ba:50:da:d9: 52:91:ed:98:a8:c9:3c:ef:ed:04:0b:9a:0b:75:1e:b7:65:5a: 07:8f:44:70:8a:1c:14:24:3a:fd:36:d2:7e:0f:3c:28:c2:e9: 80:e3:4b:96:47:c1:53:e7:bd:c1:63:10:f9:6e:f7:b2:db:82: 5b:bd:04:c5 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUZJI1DuApZnclWeSlknBBrUz0eUMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDA0MTA2WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A1NjIzYjVjMGZjM2FmMTFmYWMzOGNjNDhlZmE3ZDYyZTk5 YzUxODYxZGY0ZjBiYmJmNWE1OGExYzI3NzUxZDIxMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC2seg2XWIq0VFEHk2SNth5OfgIZfsguSssNq48YCt8fs8r gVric914YU/pYqAHCQ4gLSJWBpJHry+bYRgNihDKY8I3nl83qOvA9EspeTgZITzz Btr8051gGEgF9N2dazvtwir2w2piurSkkW7xfnDb8+6nOy5mZ2zeZ4hw/PSWDZ2Q nmxqTmuVwaBVHzQQjp3ZKlzxe3MCylkMfIULQ/+FTH2XnGV4DJP9nOthzr7meezX 6TOCj8MjE/JE9LRbUGSr9LX7CXxuHzGG4xMGsT8GTrzzRUJ08BUsV1V3NGo0v+6p pVMYK/hR8Zo3JxF3Ia0DbMO/dUxn7ywtAA+lhOXvAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUnXLMeTmB1ly4kGcJEwrQ+5EqVvwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzUyMWU2MWFiLWU1ZGUtNGZiMS05Zjk4LWY0Yzg3Yzc1NGI4Zi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB8AIDANBgkqhkiG9w0BAQsFAAOCAQEAwf6BMWSBKEnjIzo49nWBI1Iv nkL+ngDpZGoeTN0iduggIB8IenKiCXVh/VqWIXMIRAcU91BVWd7X43pwXNmxbxKm nBIY+GHxt1m4CNEVJNyfEkmyWBdleE8b3W7l/Cr9+MS4yP24oqQhXwzP5TRcw0Gy 4oQ9PwjOpyZPFwsPggaNmlVOjHFxU0pXOsPUk94mg7Oey+4aySZ1H1UCjAm2YuQr XC3ZRl//IudzBGxABItGno3g9XMa9V6Bz+xlCaXjVjy6UNrZUpHtmKjJPO/tBAua C3Uet2VaB49EcIocFCQ6/TbSfg88KMLpgONLlkfBU+e9wWMQ+W73stuCW70ExQ== -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:37 2026 by rpki-client