$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a671fe1-235f-4059-aaa3-935ef59dcd6d.roa File: 5a671fe1-235f-4059-aaa3-935ef59dcd6d.roa (raw, json) Hash identifier: Nhll2EszDQX8rmn2+3SMxQ/DkqX8xFRz8aGO+XWV6Uo= Subject key identifier: BB:68:76:6F:CD:E1:82:58:FD:52:ED:A0:13:78:08:E8:41:CB:FD:2C Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 0141E86FBD40CC03733C1787A05EBEBDB4736BBB Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a671fe1-235f-4059-aaa3-935ef59dcd6d.roa Signing time: Wed 25 Feb 2026 01:20:56 +0000 ROA not before: Wed 25 Feb 2026 01:20:56 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f29:4000::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:41:e8:6f:bd:40:cc:03:73:3c:17:87:a0:5e:be:bd:b4:73:6b:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 01:20:56 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=944eb6b1086717d39c04f98564b105a10561fd70c89a62cc1278bcd96b5d4019, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:b3:29:97:7f:2c:9e:96:e9:97:f1:04:7d:7f: 05:8f:c5:6e:62:d4:f8:54:b0:47:21:40:6b:55:ac: 03:a2:d2:ba:af:b1:c9:46:05:2e:50:aa:17:15:41: cb:88:aa:e0:79:8f:86:10:3c:1d:0d:48:4a:12:e8: 7a:c3:83:d9:81:d4:08:7e:51:04:c6:43:a5:33:3f: d4:fc:16:38:24:13:63:cb:1d:26:f8:4f:a0:b3:da: 8f:d8:a0:0b:7f:50:bd:96:43:b8:da:01:fa:1c:e7: 0c:ac:ac:58:b1:90:ed:30:57:a4:ef:c2:95:44:f9: ee:a5:c9:da:1b:94:80:6a:ee:33:7d:c2:5a:d5:bd: 91:b9:a1:e0:a0:89:00:2e:bb:42:2b:ad:1c:c2:b8: 5a:1d:ed:b4:66:6d:4a:ec:37:26:cf:d5:15:e6:50: 93:bf:32:b6:e2:52:20:dc:f7:06:f4:0c:98:2d:1f: b0:2f:14:ea:56:0c:a1:31:2b:32:2b:a9:a6:9e:e4: 2f:6e:49:99:93:42:41:66:f7:9c:df:43:62:2a:a0: 5e:ec:a3:63:f6:7f:2d:0c:75:36:71:b0:a2:6b:39: 93:a9:73:33:04:00:a3:86:21:6d:06:79:82:08:d8: d3:8c:52:0c:c3:37:e1:a3:6c:95:2b:38:ea:1c:ff: 36:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:68:76:6F:CD:E1:82:58:FD:52:ED:A0:13:78:08:E8:41:CB:FD:2C X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5a671fe1-235f-4059-aaa3-935ef59dcd6d.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f29:4000::/37 Signature Algorithm: sha256WithRSAEncryption b4:f7:d2:49:7b:c8:ba:96:78:60:e7:d9:3d:aa:dd:7d:5e:b8: 42:95:aa:2e:78:40:cc:11:62:91:65:cc:9e:c8:21:23:57:24: 5e:04:37:4e:ab:bd:3f:ea:33:9d:9b:73:e7:b6:34:d1:5f:f3: 47:12:8a:99:84:8c:d6:65:44:e8:df:6d:5a:0c:43:e2:bf:ff: 51:22:80:5b:7a:b3:d7:b9:81:64:5a:da:88:25:5e:84:66:b8: 05:39:b8:02:dd:b5:4a:eb:d7:07:76:6b:4c:f4:f9:8f:a1:91: 05:5a:18:06:b3:8b:85:30:fc:7e:47:f6:0e:41:94:49:5e:12: 98:6e:24:70:ea:fb:63:bf:e7:2d:4f:49:c7:05:35:cc:5a:27: f9:2a:df:03:5d:89:dc:d7:16:f0:47:c6:4d:4b:15:8b:55:32: a6:d0:cb:d4:37:93:f0:fd:90:34:8d:54:be:25:08:e3:57:f7: 8c:48:a0:31:8b:3a:74:1d:c1:43:77:75:d3:0e:60:d2:7e:a1: 7d:c7:37:f9:bb:97:78:87:92:d4:cc:ac:d6:1f:80:eb:4c:a9: af:20:cb:9a:8f:ef:49:a5:78:e2:6d:17:47:6f:63:e8:f2:5e: b1:1d:63:7d:a4:ad:4e:da:65:2f:7e:8e:b2:4e:bd:7f:21:aa: 03:3c:ae:58 -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUAUHob71AzANzPBeHoF6+vbRza7swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDEyMDU2WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0A5NDRlYjZiMTA4NjcxN2QzOWMwNGY5ODU2NGIxMDVhMTA1 NjFmZDcwYzg5YTYyY2MxMjc4YmNkOTZiNWQ0MDE5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCzsymXfyyelumX8QR9fwWPxW5i1PhUsEchQGtVrAOi0rqv sclGBS5QqhcVQcuIquB5j4YQPB0NSEoS6HrDg9mB1Ah+UQTGQ6UzP9T8FjgkE2PL HSb4T6Cz2o/YoAt/UL2WQ7jaAfoc5wysrFixkO0wV6TvwpVE+e6lydoblIBq7jN9 wlrVvZG5oeCgiQAuu0IrrRzCuFod7bRmbUrsNybP1RXmUJO/MrbiUiDc9wb0DJgt H7AvFOpWDKExKzIrqaae5C9uSZmTQkFm95zfQ2IqoF7so2P2fy0MdTZxsKJrOZOp czMEAKOGIW0GeYII2NOMUgzDN+GjbJUrOOoc/zZ9AgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUu2h2b83hglj9Uu2gE3gI6EHL/SwwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVhNjcxZmUxLTIzNWYtNDA1OS1hYWEzLTkzNWVmNTlkY2Q2ZC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8pQDANBgkqhkiG9w0BAQsFAAOCAQEAtPfSSXvIupZ4YOfZPardfV64 QpWqLnhAzBFikWXMnsghI1ckXgQ3Tqu9P+oznZtz57Y00V/zRxKKmYSM1mVE6N9t WgxD4r//USKAW3qz17mBZFraiCVehGa4BTm4At21SuvXB3ZrTPT5j6GRBVoYBrOL hTD8fkf2DkGUSV4SmG4kcOr7Y7/nLU9JxwU1zFon+SrfA12J3NcW8EfGTUsVi1Uy ptDL1DeT8P2QNI1UviUI41f3jEigMYs6dB3BQ3d10w5g0n6hfcc3+buXeIeS1Mys 1h+A60ypryDLmo/vSaV44m0XR29j6PJesR1jfaStTtplL36Osk69fyGqAzyuWA== -----END CERTIFICATE-----Generated at Sun Mar 1 22:21:33 2026 by rpki-client