$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa File: 6281a3cd-fc20-4f89-a2d4-8e1827292796.roa (raw, json) Hash identifier: qaLq1g3jmUbqH7YqOcr1MI9WmmrQqDXR+0V2Bk/vYD8= Subject key identifier: 71:11:9B:2A:63:7F:55:2A:4A:66:83:C1:C7:38:59:5D:8F:BF:92:6F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 2113F57E3CB305370A720D8537E92B145DF01D1C Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa Signing time: Tue 24 Feb 2026 01:00:08 +0000 ROA not before: Tue 24 Feb 2026 01:00:08 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1fff:6060::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:13:f5:7e:3c:b3:05:37:0a:72:0d:85:37:e9:2b:14:5d:f0:1d:1c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:00:08 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=1449c38b17ba20ab813546258ad67403705317ec91f8e2ab092c7f3c42975c49, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:a2:9d:d3:37:9c:45:ff:0d:d2:63:c9:e0:0d: 1e:ac:19:b7:fd:b5:c5:ba:2c:41:47:82:bd:26:d7: 4c:1c:82:a0:75:a6:05:de:48:5c:e4:bf:00:74:4c: 89:ad:85:3c:6e:96:00:e3:a1:03:5e:6a:8f:b6:b2: 19:80:4c:d2:c2:3e:0b:a6:9e:33:c6:78:83:17:e1: f5:7b:39:e1:b6:a6:aa:d2:c0:89:95:b8:a3:3b:b9: 45:24:cf:24:28:14:9c:c6:c8:79:bb:79:8e:29:ca: ed:76:80:e3:e6:48:a4:ce:56:5a:f2:6c:49:9a:ec: 23:70:a0:56:b4:49:99:c3:5c:dc:74:5e:39:7d:90: c6:14:62:f2:26:47:14:08:79:c7:a5:da:64:9e:42: ed:2f:dc:c8:58:43:4c:f2:a2:ab:fd:8a:67:41:87: 1b:a0:40:c0:83:a5:85:d7:58:ee:5e:0e:9c:63:92: d9:97:14:f6:91:6c:56:69:da:6f:b3:8a:b0:88:02: ce:91:f9:fa:bf:19:1f:d7:e9:ac:eb:33:d2:77:4d: 6a:85:b2:34:cf:2b:d5:d7:ac:04:e0:36:a5:6b:cd: e4:82:61:df:e7:7f:a2:21:ad:83:51:55:81:bc:01: d3:8b:a2:ae:dc:d6:9b:aa:72:47:14:1f:c7:95:b9: 28:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:11:9B:2A:63:7F:55:2A:4A:66:83:C1:C7:38:59:5D:8F:BF:92:6F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6281a3cd-fc20-4f89-a2d4-8e1827292796.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1fff:6060::/48 Signature Algorithm: sha256WithRSAEncryption 4b:1a:6c:ca:0c:44:fc:92:52:b2:2b:16:67:62:dd:4d:c9:8b: 33:10:c9:aa:0d:c5:e8:2c:3d:a0:bd:63:b6:a6:be:26:e5:36: 98:43:1d:5c:3f:8b:c2:66:11:87:74:26:3f:fc:77:9b:5d:76: ff:2c:4e:6d:74:ee:9b:c5:85:26:f9:b1:c3:8f:e6:4f:49:26: f7:96:11:06:ce:0a:8f:08:8f:8a:75:b7:49:61:81:91:39:41: 83:5f:60:93:74:2c:d9:e5:43:6b:57:b9:af:f2:35:d0:59:4b: 26:67:26:65:88:50:0e:4f:21:c2:bf:d1:c9:0c:49:9b:fc:69: fb:8b:a9:56:06:66:f4:4b:fc:31:8b:8b:f0:ed:11:46:92:ae: 2c:62:0f:03:11:18:67:c4:8d:4a:af:a5:95:96:25:2b:43:52: a8:ed:ce:79:81:70:ec:85:d3:0a:08:8b:fb:42:9c:9b:a7:10: d8:9d:53:34:f2:35:33:a8:d2:4b:09:6a:f8:e0:bf:69:7d:a9: 3c:2f:b3:b7:54:58:7a:ed:a0:7c:21:af:ba:ce:23:25:e6:16: bb:0f:5d:97:ee:3a:6f:2f:0e:27:59:75:72:9d:ee:5c:4d:19: 36:7f:98:24:be:ad:fa:93:75:c7:e4:c7:28:95:90:b0:b1:09: 9e:d6:61:0d -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUIRP1fjyzBTcKcg2FN+krFF3wHRwwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMDA4WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxNDQ5YzM4YjE3YmEyMGFiODEzNTQ2MjU4YWQ2NzQwMzcw NTMxN2VjOTFmOGUyYWIwOTJjN2YzYzQyOTc1YzQ5MS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC5op3TN5xF/w3SY8ngDR6sGbf9tcW6LEFHgr0m10wcgqB1 pgXeSFzkvwB0TImthTxulgDjoQNeao+2shmATNLCPgumnjPGeIMX4fV7OeG2pqrS wImVuKM7uUUkzyQoFJzGyHm7eY4pyu12gOPmSKTOVlrybEma7CNwoFa0SZnDXNx0 Xjl9kMYUYvImRxQIecel2mSeQu0v3MhYQ0zyoqv9imdBhxugQMCDpYXXWO5eDpxj ktmXFPaRbFZp2m+zirCIAs6R+fq/GR/X6azrM9J3TWqFsjTPK9XXrATgNqVrzeSC Yd/nf6IhrYNRVYG8AdOLoq7c1puqckcUH8eVuSgDAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUcRGbKmN/VSpKZoPBxzhZXY+/km8wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYyODFhM2NkLWZjMjAtNGY4OS1hMmQ0LThlMTgyNzI5Mjc5Ni5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB//YGAwDQYJKoZIhvcNAQELBQADggEBAEsabMoMRPySUrIrFmdi3U3J izMQyaoNxegsPaC9Y7amviblNphDHVw/i8JmEYd0Jj/8d5tddv8sTm107pvFhSb5 scOP5k9JJveWEQbOCo8Ij4p1t0lhgZE5QYNfYJN0LNnlQ2tXua/yNdBZSyZnJmWI UA5PIcK/0ckMSZv8afuLqVYGZvRL/DGLi/DtEUaSrixiDwMRGGfEjUqvpZWWJStD UqjtznmBcOyF0woIi/tCnJunENidUzTyNTOo0ksJavjgv2l9qTwvs7dUWHrtoHwh r7rOIyXmFrsPXZfuOm8vDidZdXKd7lxNGTZ/mCS+rfqTdcfkxyiVkLCxCZ7WYQ0= -----END CERTIFICATE-----Generated at Mon Mar 2 02:13:40 2026 by rpki-client