$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57d2923e-17c1-4032-bff8-041a85a6f302.roa File: 57d2923e-17c1-4032-bff8-041a85a6f302.roa (raw, json) Hash identifier: s8clIFomySc6CQHzuZTZUrq8HgQk561EyNsnqQJHZFQ= Subject key identifier: BE:72:76:1E:4A:51:60:62:AB:7B:65:3D:CF:F2:54:B1:BA:67:82:A9 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 324E04D70BE5175F5B7A1DAF6E8B269596ED884C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57d2923e-17c1-4032-bff8-041a85a6f302.roa Signing time: Wed 25 Feb 2026 01:20:50 +0000 ROA not before: Wed 25 Feb 2026 01:20:50 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:3400::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:4e:04:d7:0b:e5:17:5f:5b:7a:1d:af:6e:8b:26:95:96:ed:88:4c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:20:50 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=0bddd32eb0de09cd08dde5386e88d5dc473e5d74fa4e1250523edcff410d1660, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:f7:ad:51:54:d4:ba:4b:16:f1:69:3b:0a:59: 35:22:aa:b4:f7:a9:1f:19:4d:05:c3:eb:44:e8:f1: c2:e0:92:d7:d4:76:92:7d:3b:4a:75:41:7f:36:a6: b2:b1:c8:5a:9a:19:66:12:7e:25:71:ac:e8:b1:0d: ac:18:17:90:e0:aa:30:b3:fa:53:c1:92:83:3e:82: b2:d4:10:ce:63:65:52:09:13:f8:0d:94:d6:da:67: 57:3f:ee:dd:69:f4:c3:ec:62:c0:62:29:02:ce:aa: 7a:9b:19:43:4a:9c:10:f8:24:7c:93:b0:dd:c1:3b: 31:dd:5d:dd:16:30:1a:54:86:3a:0b:3f:3f:3f:6d: 39:97:62:ca:72:30:e2:8c:37:a4:13:4e:06:b3:7d: 57:14:35:9f:62:07:b9:9a:1f:c3:d4:37:70:13:4c: 26:c2:77:20:9c:7b:ef:79:71:88:3e:6a:5a:91:05: 2d:70:4d:88:88:c7:d6:b4:93:1e:60:2e:8f:96:be: c1:c4:83:36:44:f7:34:4c:d5:ec:cc:c9:12:5a:c6: 23:08:e9:be:2a:cc:59:a8:fd:96:85:ed:42:e1:5c: 3b:78:22:c1:e9:b2:65:8b:e9:41:10:0b:b3:34:df: d9:e4:87:6a:98:54:9a:9b:2a:c2:f9:c2:a7:ba:b7: 68:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:72:76:1E:4A:51:60:62:AB:7B:65:3D:CF:F2:54:B1:BA:67:82:A9 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/57d2923e-17c1-4032-bff8-041a85a6f302.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:3400::/40 Signature Algorithm: sha256WithRSAEncryption 35:31:99:55:79:d8:3c:47:f7:7c:00:17:f8:a3:22:b3:e6:e8: 78:83:4b:03:97:d0:ec:4f:d2:b4:4a:4b:37:60:9c:7c:0b:33: ed:e6:b1:75:fd:93:ef:ba:17:d4:2b:ff:24:a0:4f:59:3e:4c: 0f:5b:d1:72:8d:a1:91:6d:7a:c8:65:07:88:a1:c6:11:87:be: b7:29:bc:56:63:db:1a:28:4e:3c:1f:71:e3:ea:6f:47:56:bc: b0:b0:4f:dd:0c:3d:df:d3:3d:3e:be:82:8a:e7:f6:72:41:64: 8f:66:64:d6:60:40:f2:49:1d:47:0b:33:b1:23:f9:bf:af:54: 92:fe:26:27:c9:9f:7c:fe:38:53:03:7d:f0:6b:10:bb:84:e2: 7e:01:9e:4c:71:08:5d:3b:44:2a:08:35:f0:26:7e:9d:0c:b7: 66:01:c8:0e:98:d5:34:12:e8:5f:62:d5:b4:09:f9:ba:63:10: a7:bd:ed:8b:b1:4d:c9:b9:08:f1:c7:c0:8c:27:89:cf:bd:46: 75:e0:9f:9e:19:b1:c0:69:5a:20:f7:86:cd:b0:f8:a8:b8:4b: f0:4b:fe:02:cd:d8:f4:31:d3:5f:76:dd:58:d0:1c:27:1f:1c: 64:e0:21:25:5b:d6:93:60:1d:7a:86:62:a2:c4:e8:fc:a9:c3: 82:b0:49:8b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUMk4E1wvlF19beh2vbosmlZbtiEwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMDUwWhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwYmRkZDMyZWIwZGUwOWNkMDhkZGU1Mzg2ZTg4ZDVkYzQ3 M2U1ZDc0ZmE0ZTEyNTA1MjNlZGNmZjQxMGQxNjYwMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCk961RVNS6SxbxaTsKWTUiqrT3qR8ZTQXD60To8cLgktfU dpJ9O0p1QX82prKxyFqaGWYSfiVxrOixDawYF5DgqjCz+lPBkoM+grLUEM5jZVIJ E/gNlNbaZ1c/7t1p9MPsYsBiKQLOqnqbGUNKnBD4JHyTsN3BOzHdXd0WMBpUhjoL Pz8/bTmXYspyMOKMN6QTTgazfVcUNZ9iB7maH8PUN3ATTCbCdyCce+95cYg+alqR BS1wTYiIx9a0kx5gLo+WvsHEgzZE9zRM1ezMyRJaxiMI6b4qzFmo/ZaF7ULhXDt4 IsHpsmWL6UEQC7M039nkh2qYVJqbKsL5wqe6t2h7AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUvnJ2HkpRYGKre2U9z/JUsbpngqkwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzU3ZDI5MjNlLTE3YzEtNDAzMi1iZmY4LTA0MWE4NWE2ZjMwMi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgAmAB84NDANBgkqhkiG9w0BAQsFAAOCAQEANTGZVXnYPEf3fAAX+KMis+bo eINLA5fQ7E/StEpLN2CcfAsz7eaxdf2T77oX1Cv/JKBPWT5MD1vRco2hkW16yGUH iKHGEYe+tym8VmPbGihOPB9x4+pvR1a8sLBP3Qw939M9Pr6Ciuf2ckFkj2Zk1mBA 8kkdRwszsSP5v69Ukv4mJ8mffP44UwN98GsQu4TifgGeTHEIXTtEKgg18CZ+nQy3 ZgHIDpjVNBLoX2LVtAn5umMQp73ti7FNybkI8cfAjCeJz71GdeCfnhmxwGlaIPeG zbD4qLhL8Ev+As3Y9DHTX3bdWNAcJx8cZOAhJVvWk2AdeoZiosTo/KnDgrBJiw== -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:56 2026 by rpki-client