$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/620594b5-1029-4a02-96f9-54c8e7262586.roa File: 620594b5-1029-4a02-96f9-54c8e7262586.roa (raw, json) Hash identifier: JcNtHoUjjoy7XRCzG/uFkcDimVlWLRmmxI/sWR5Pmwk= Subject key identifier: 5D:4D:21:28:A8:A5:25:3B:34:7A:12:76:D0:8C:05:94:FE:2A:05:CA Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3547AA835A4D61BA8201AF05573418D3E1700673 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/620594b5-1029-4a02-96f9-54c8e7262586.roa Signing time: Tue 24 Feb 2026 02:20:08 +0000 ROA not before: Tue 24 Feb 2026 02:20:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f61:e080::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 35:47:aa:83:5a:4d:61:ba:82:01:af:05:57:34:18:d3:e1:70:06:73 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 02:20:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=e1f5930ce856282ec754515bdf4272ae5b075e90156d254b1b9dc8b090d92ed4, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:98:33:37:23:15:68:9f:2c:50:b6:77:65:3b: dc:c6:30:31:4a:72:61:47:c1:2f:2b:00:22:8b:f4: ff:93:bb:d3:97:60:29:a8:24:6b:e3:55:1f:9f:73: 0a:04:94:88:d1:e5:9a:82:08:72:cb:e8:65:36:75: 19:17:6f:ae:d4:c6:1c:81:fb:83:4c:9e:55:fa:38: d8:25:68:84:fb:57:de:89:aa:3d:0d:16:6d:cb:42: 67:dd:c2:47:e0:8a:7f:26:7f:96:84:8e:ce:d4:4b: 35:d0:6e:a9:e5:5d:6a:95:27:89:e5:f0:4e:12:de: b4:43:2a:0b:68:a2:48:b4:4c:a0:22:8f:0b:d1:51: b6:25:5e:d9:58:f1:cc:20:61:67:59:73:97:42:97: 34:9f:6a:a2:ce:72:ce:52:9f:f1:bb:96:b0:43:6c: 74:68:ae:2a:6d:b1:d4:e4:69:ee:54:db:7c:d2:30: 85:9b:95:b2:84:65:d8:c6:40:60:dd:08:88:22:b9: 08:2f:36:5f:99:57:6a:5f:c2:a7:f1:34:e2:83:5c: cb:e6:74:eb:d7:d4:f5:ee:64:4f:4d:9b:7f:b1:fb: a5:b0:8f:bb:f4:81:86:7d:45:18:a6:7c:84:04:83: 77:a8:d6:ba:c5:a2:b8:b9:bc:27:db:6e:02:ca:29: d3:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5D:4D:21:28:A8:A5:25:3B:34:7A:12:76:D0:8C:05:94:FE:2A:05:CA X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/620594b5-1029-4a02-96f9-54c8e7262586.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f61:e080::/48 Signature Algorithm: sha256WithRSAEncryption 47:d9:86:0c:ba:af:9c:ea:30:15:2d:04:4d:8b:82:3b:93:49: 17:2f:a0:e6:70:69:23:d2:a6:34:80:91:03:57:8f:f7:46:e6: 5f:a0:5c:1f:75:29:eb:bf:f4:3b:91:e7:ed:3e:93:21:92:f6: 59:51:89:1a:58:e4:41:33:42:02:3b:29:52:59:4f:af:b0:b5: d7:e4:99:82:1d:15:72:a5:e4:e3:9c:90:80:d2:02:72:66:14: 03:a2:28:39:35:3e:58:02:0f:13:41:11:87:ca:15:88:c9:a0: c0:ab:dd:42:9f:6d:06:b6:14:26:a9:b7:d3:fa:2e:99:58:17: ea:c5:ec:c1:07:b0:df:90:24:bd:f7:02:a5:e5:72:be:47:da: 88:c0:c0:f6:35:c8:c7:f6:72:36:e1:9d:ec:1f:ef:89:a9:c7: 28:b8:62:c6:a8:a2:6a:e6:a9:8c:2f:7b:09:ef:c4:1f:d5:db: b5:ee:38:9e:f2:ec:8a:32:f3:e2:68:d2:f4:e3:1f:3c:2c:fa: 2c:36:65:3b:7c:2f:ab:f2:63:8f:2c:3f:21:bf:a2:c7:69:5a: b1:c4:ac:7d:99:4f:19:f6:be:1e:cd:8d:3e:12:2a:26:eb:7d: 77:d4:7e:5b:e6:65:e6:7b:7c:21:06:1e:b8:42:1b:5a:a9:3f: 32:f7:8e:fc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUNUeqg1pNYbqCAa8FVzQY0+FwBnMwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDIyMDA4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0BlMWY1OTMwY2U4NTYyODJlYzc1NDUxNWJkZjQyNzJhZTVi MDc1ZTkwMTU2ZDI1NGIxYjlkYzhiMDkwZDkyZWQ0MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnmDM3IxVonyxQtndlO9zGMDFKcmFHwS8rACKL9P+Tu9OX YCmoJGvjVR+fcwoElIjR5ZqCCHLL6GU2dRkXb67UxhyB+4NMnlX6ONglaIT7V96J qj0NFm3LQmfdwkfgin8mf5aEjs7USzXQbqnlXWqVJ4nl8E4S3rRDKgtooki0TKAi jwvRUbYlXtlY8cwgYWdZc5dClzSfaqLOcs5Sn/G7lrBDbHRoriptsdTkae5U23zS MIWblbKEZdjGQGDdCIgiuQgvNl+ZV2pfwqfxNOKDXMvmdOvX1PXuZE9Nm3+x+6Ww j7v0gYZ9RRimfIQEg3eo1rrFori5vCfbbgLKKdOJAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUXU0hKKilJTs0ehJ20IwFlP4qBcowHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyMDU5NGI1LTEwMjktNGEwMi05NmY5LTU0YzhlNzI2MjU4Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB9h4IAwDQYJKoZIhvcNAQELBQADggEBAEfZhgy6r5zqMBUtBE2LgjuT SRcvoOZwaSPSpjSAkQNXj/dG5l+gXB91Keu/9DuR5+0+kyGS9llRiRpY5EEzQgI7 KVJZT6+wtdfkmYIdFXKl5OOckIDSAnJmFAOiKDk1PlgCDxNBEYfKFYjJoMCr3UKf bQa2FCapt9P6LplYF+rF7MEHsN+QJL33AqXlcr5H2ojAwPY1yMf2cjbhnewf74mp xyi4YsaoomrmqYwvewnvxB/V27XuOJ7y7Ioy8+Jo0vTjHzws+iw2ZTt8L6vyY48s PyG/osdpWrHErH2ZTxn2vh7NjT4SKibrfXfUflvmZeZ7fCEGHrhCG1qpPzL3jvw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:28:14 2026 by rpki-client