$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa File: 6352e220-cec8-412c-9a38-a2b74750551e.roa (raw, json) Hash identifier: UDISavujlGSqIaWXtI0OWi0RWOBcZV/6czewfVcutoE= Subject key identifier: F2:C8:BE:4C:8E:FF:72:54:D4:56:79:19:38:77:9E:56:50:09:DE:CD Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6A74B21471B82CCF3493FCFC038ED83533F90B9B Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa Signing time: Tue 24 Feb 2026 00:31:03 +0000 ROA not before: Tue 24 Feb 2026 00:31:03 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1ff2:7440::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6a:74:b2:14:71:b8:2c:cf:34:93:fc:fc:03:8e:d8:35:33:f9:0b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 00:31:03 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=813a2afd719d41bd1236f92596c1cd942536f1298a39c3267789912379979cbf, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:e3:81:ae:7c:d1:f7:df:12:13:f5:bd:19:ea: 1c:78:48:e1:a6:6e:7c:6b:82:5f:54:ac:46:6b:d3: 94:be:bf:f0:38:b8:bd:99:27:8d:a9:73:cf:b6:0d: c8:2d:de:54:34:dd:93:20:f8:10:00:86:3e:56:35: 52:ed:bb:60:9f:b2:80:3a:da:a9:84:38:19:b3:4b: 38:49:83:23:a0:1c:96:5a:71:a2:7f:d8:db:32:7a: 20:37:97:ca:c6:63:d2:90:da:69:50:a4:c7:04:51: 7b:c4:4a:3e:83:de:6c:e7:7a:29:03:50:49:f7:cc: 34:5d:bd:7c:23:c4:e8:08:9c:e4:15:2c:f3:37:c8: cb:40:fa:01:43:da:51:4c:96:32:a8:ad:c3:5e:9e: 88:43:2e:a0:94:b7:60:6b:f8:ec:a9:3e:1f:37:25: 01:61:1c:9e:98:ea:80:0b:21:5c:3f:41:76:2c:b3: df:ec:ee:49:d8:fa:38:de:e6:8c:b6:30:5d:32:65: 4d:b2:84:81:be:1c:58:38:9c:6f:48:32:d9:50:b9: 91:66:69:33:e5:fd:f4:63:c1:fe:86:3b:9c:4f:46: 0e:9e:e8:05:ac:dc:44:0f:40:f0:cd:e6:74:fa:fa: bd:01:05:62:b3:3e:6e:d2:9c:20:97:b4:6d:39:9f: 63:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:C8:BE:4C:8E:FF:72:54:D4:56:79:19:38:77:9E:56:50:09:DE:CD X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/6352e220-cec8-412c-9a38-a2b74750551e.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1ff2:7440::/48 Signature Algorithm: sha256WithRSAEncryption 3d:18:c2:66:89:b0:84:16:59:84:dc:03:fd:23:43:ab:b2:34: d4:33:5f:1d:3f:e2:c3:2e:5b:bb:60:ab:fd:7b:30:8c:ef:48: b4:01:67:05:ed:a1:05:02:e7:5e:3b:ef:6f:f6:30:66:36:ce: 75:db:31:8d:e1:26:5b:53:98:e6:45:60:19:a1:12:ca:bc:bf: 5a:ba:74:63:d4:04:df:d9:5f:e4:83:c3:4b:42:c4:86:38:15: b8:c3:a8:9e:3e:be:67:f0:a8:5e:81:bc:9a:4d:28:45:bd:e9: 77:4a:b3:bf:07:a8:ae:eb:83:b7:91:7d:93:f6:5c:d1:6e:17: 1e:a0:3f:ac:d3:8f:77:9f:c9:bf:3a:e1:85:a9:fc:46:29:99: 9c:b1:1d:13:8c:02:da:55:1b:6b:df:38:69:f3:26:bd:34:06: b3:77:8d:ca:fa:74:64:f1:94:24:00:c8:db:08:9f:29:d0:69: 98:df:65:87:ee:e2:62:79:b0:c3:3e:17:89:cf:70:64:f4:93: 58:b8:1a:7b:d0:d6:c7:2e:8f:33:9d:db:e5:27:0e:3e:4e:71: f9:1b:43:42:81:99:7a:ef:67:c8:1d:1c:29:f3:f7:a5:e0:61: 53:47:eb:8c:97:69:e2:2b:67:19:fb:86:12:e0:2b:8e:ee:a4: 50:80:de:cf -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUanSyFHG4LM80k/z8A47YNTP5C5swDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDAzMTAzWhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0A4MTNhMmFmZDcxOWQ0MWJkMTIzNmY5MjU5NmMxY2Q5NDI1 MzZmMTI5OGEzOWMzMjY3Nzg5OTEyMzc5OTc5Y2JmMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQC044GufNH33xIT9b0Z6hx4SOGmbnxrgl9UrEZr05S+v/A4 uL2ZJ42pc8+2Dcgt3lQ03ZMg+BAAhj5WNVLtu2CfsoA62qmEOBmzSzhJgyOgHJZa caJ/2NsyeiA3l8rGY9KQ2mlQpMcEUXvESj6D3mzneikDUEn3zDRdvXwjxOgInOQV LPM3yMtA+gFD2lFMljKorcNenohDLqCUt2Br+OypPh83JQFhHJ6Y6oALIVw/QXYs s9/s7knY+jje5oy2MF0yZU2yhIG+HFg4nG9IMtlQuZFmaTPl/fRjwf6GO5xPRg6e 6AWs3EQPQPDN5nT6+r0BBWKzPm7SnCCXtG05n2N1AgMBAAGjggK0MIICsDAdBgNV HQ4EFgQU8si+TI7/clTUVnkZOHeeVlAJ3s0wHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzYzNTJlMjIwLWNlYzgtNDEyYy05YTM4LWEyYjc0NzUwNTUxZS5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB/ydEAwDQYJKoZIhvcNAQELBQADggEBAD0YwmaJsIQWWYTcA/0jQ6uy NNQzXx0/4sMuW7tgq/17MIzvSLQBZwXtoQUC514772/2MGY2znXbMY3hJltTmOZF YBmhEsq8v1q6dGPUBN/ZX+SDw0tCxIY4FbjDqJ4+vmfwqF6BvJpNKEW96XdKs78H qK7rg7eRfZP2XNFuFx6gP6zTj3efyb864YWp/EYpmZyxHROMAtpVG2vfOGnzJr00 BrN3jcr6dGTxlCQAyNsInynQaZjfZYfu4mJ5sMM+F4nPcGT0k1i4GnvQ1scujzOd 2+UnDj5OcfkbQ0KBmXrvZ8gdHCnz96XgYVNH64yXaeIrZxn7hhLgK47upFCA3s8= -----END CERTIFICATE-----Generated at Sun Mar 1 22:23:24 2026 by rpki-client