$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ea5b7ae-7572-4cb6-ad11-f441a34761fe.roa File: 5ea5b7ae-7572-4cb6-ad11-f441a34761fe.roa (raw, json) Hash identifier: yvWlfh2GofTqgc1BWYkpK1vOaOoyD/kN4Fzmoj69etY= Subject key identifier: 10:40:FC:D2:44:6A:EE:96:DA:67:57:D7:13:10:4F:CC:B6:7A:A4:AD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 544545079F735E52F825A4C81239E4526B73FE33 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ea5b7ae-7572-4cb6-ad11-f441a34761fe.roa Signing time: Wed 25 Feb 2026 00:31:37 +0000 ROA not before: Wed 25 Feb 2026 00:31:37 +0000 ROA not after: Tue 26 May 2026 23:59:59 +0000 asID: 14618 IP address blocks: 2600:1f2c:c800::/37 maxlen: 37 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 54:45:45:07:9f:73:5e:52:f8:25:a4:c8:12:39:e4:52:6b:73:fe:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 25 00:31:37 2026 GMT Not After : May 26 23:59:59 2026 GMT Subject: serialNumber=0663df4988e4295fe94c9a91de262d9871dd62ec3ecbf9b39a2d2f6d2a7ae7cd, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:16:b9:d2:a3:b9:93:36:98:76:7f:a0:81:8e: b2:59:88:43:17:e1:13:74:57:71:71:de:c2:03:53: 48:49:6d:a3:bb:55:6c:03:92:6a:23:03:85:da:69: 26:e4:70:4d:1b:dc:92:30:3c:03:97:fd:fc:a1:3e: 33:4a:e9:bd:8d:64:13:21:7c:3d:18:34:46:be:59: 8a:05:cc:e4:ee:27:fa:64:4e:53:63:0b:18:1d:d5: 7d:47:a4:fa:13:de:76:2e:3a:c0:b9:1e:4e:e7:95: dc:84:3d:57:69:d2:12:44:97:f8:65:2f:08:0f:a1: 67:1c:76:00:f7:1a:24:b7:fc:77:17:45:24:46:86: 20:e2:5a:71:30:92:b3:33:56:86:42:be:49:fe:af: e7:75:19:c9:83:d6:23:10:ce:b1:53:d1:17:ce:1f: 94:d9:b2:60:9d:a3:e4:6b:2b:e7:c2:c7:b0:72:88: b7:b9:ba:2e:39:59:ca:61:21:8c:43:6b:90:04:55: c4:38:32:83:26:c8:2e:c6:75:3e:24:8e:1e:5d:41: f8:ad:b8:b0:3b:00:cc:c3:8b:ba:ff:c4:aa:ef:c9: e2:72:64:2f:7e:f3:87:83:5d:c8:75:f0:db:31:ff: e3:a6:93:2d:c5:22:6b:5d:d6:95:cd:19:eb:a9:73: 3c:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:40:FC:D2:44:6A:EE:96:DA:67:57:D7:13:10:4F:CC:B6:7A:A4:AD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/5ea5b7ae-7572-4cb6-ad11-f441a34761fe.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f2c:c800::/37 Signature Algorithm: sha256WithRSAEncryption a8:a2:b9:1e:59:5c:34:b7:96:b4:a3:06:1d:12:14:cc:4d:4f: e9:98:66:af:dc:ed:7e:44:38:b7:1f:28:48:e7:2b:cb:0f:2f: 06:46:c4:20:d7:02:bf:32:e8:a9:03:b5:2a:70:87:17:37:86: 56:68:79:9c:13:02:71:ff:00:13:85:0b:ad:05:1b:6c:81:2a: 1a:e2:6b:c0:ab:08:92:3a:b3:3e:fb:b3:71:6e:9c:3b:8e:ff: 77:50:f8:b7:0d:c1:e5:3b:d3:e0:53:8f:cd:b3:2e:49:02:c7: 91:0b:7e:c0:5a:16:29:bb:3e:a0:91:b3:b4:d5:45:e0:60:f5: 02:c8:ec:e3:94:a1:f4:6f:b5:b9:f4:79:50:69:e7:3b:3f:92: 25:01:5f:c4:4e:7e:7b:75:11:26:d8:b8:45:ae:46:95:c3:8b: 57:de:3b:c7:04:31:7a:65:fb:d9:b0:35:6f:70:ab:d5:47:85: 8c:a6:70:f5:71:48:a9:39:6b:86:a7:72:a9:a0:1a:09:8e:59: 72:8b:0d:a7:39:5b:ea:b7:e2:ce:fd:cb:c1:93:fc:eb:f8:ef: f0:bc:d4:47:0f:0f:bb:69:cf:29:bd:9e:15:1b:b8:c5:8e:03: cc:a9:89:54:13:93:20:07:63:c6:54:6d:0f:50:6a:5e:dc:69: 84:ec:7f:3b -----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgIUVEVFB59zXlL4JaTIEjnkUmtz/jMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI1MDAzMTM3WhcNMjYwNTI2MjM1OTU5 WjB6MUkwRwYDVQQFE0AwNjYzZGY0OTg4ZTQyOTVmZTk0YzlhOTFkZTI2MmQ5ODcx ZGQ2MmVjM2VjYmY5YjM5YTJkMmY2ZDJhN2FlN2NkMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDDFrnSo7mTNph2f6CBjrJZiEMX4RN0V3Fx3sIDU0hJbaO7 VWwDkmojA4XaaSbkcE0b3JIwPAOX/fyhPjNK6b2NZBMhfD0YNEa+WYoFzOTuJ/pk TlNjCxgd1X1HpPoT3nYuOsC5Hk7nldyEPVdp0hJEl/hlLwgPoWccdgD3GiS3/HcX RSRGhiDiWnEwkrMzVoZCvkn+r+d1GcmD1iMQzrFT0RfOH5TZsmCdo+RrK+fCx7By iLe5ui45WcphIYxDa5AEVcQ4MoMmyC7GdT4kjh5dQfituLA7AMzDi7r/xKrvyeJy ZC9+84eDXch18Nsx/+Omky3FImtd1pXNGeupczyrAgMBAAGjggKzMIICrzAdBgNV HQ4EFgQUEED80kRq7pbaZ1fXExBPzLZ6pK0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzVlYTViN2FlLTc1NzItNGNiNi1hZDExLWY0NDFhMzQ3NjFmZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMA4EAgAC MAgDBgMmAB8syDANBgkqhkiG9w0BAQsFAAOCAQEAqKK5HllcNLeWtKMGHRIUzE1P 6Zhmr9ztfkQ4tx8oSOcryw8vBkbEINcCvzLoqQO1KnCHFzeGVmh5nBMCcf8AE4UL rQUbbIEqGuJrwKsIkjqzPvuzcW6cO47/d1D4tw3B5TvT4FOPzbMuSQLHkQt+wFoW Kbs+oJGztNVF4GD1Asjs45Sh9G+1ufR5UGnnOz+SJQFfxE5+e3URJti4Ra5GlcOL V947xwQxemX72bA1b3Cr1UeFjKZw9XFIqTlrhqdyqaAaCY5ZcosNpzlb6rfizv3L wZP86/jv8LzURw8Pu2nPKb2eFRu4xY4DzKmJVBOTIAdjxlRtD1BqXtxphOx/Ow== -----END CERTIFICATE-----Generated at Sun Mar 1 22:34:33 2026 by rpki-client