$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa File: 71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa (raw, json) Hash identifier: PQpOM16ZIM7RQkxquRpbVYrSDiSeWE9zTeav8L9vWpI= Subject key identifier: 5F:74:32:FF:5A:78:1F:64:02:9C:76:7E:83:41:EA:36:52:AB:0A:3F Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 6F73CA13A1D6937C40A6889C8BB19320CEFA67 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa Signing time: Sat 28 Feb 2026 00:11:15 +0000 ROA not before: Sat 28 Feb 2026 00:11:15 +0000 ROA not after: Fri 29 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f1a:c000::/36 maxlen: 36 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:73:ca:13:a1:d6:93:7c:40:a6:88:9c:8b:b1:93:20:ce:fa:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 28 00:11:15 2026 GMT Not After : May 29 23:59:59 2026 GMT Subject: serialNumber=8423f9f704df76509a8ad9de2f4c40157558191270d6a9eb004809b3208bc412, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:34:38:55:35:61:41:fd:08:dd:56:45:e0:35: de:2c:e4:ac:5f:38:35:97:12:93:c4:39:73:92:37: 36:99:29:84:38:71:f6:8a:f1:a4:4c:b0:54:fb:4d: 25:ec:c4:00:b7:fa:c9:ac:8a:d7:34:b3:fe:48:d1: ee:b0:39:0d:b2:37:49:76:cd:08:f4:53:4e:bf:5c: 94:cc:57:98:aa:fe:68:8b:42:cd:c4:4f:c6:e1:07: ba:43:cf:ea:68:26:49:c3:a0:82:d6:96:27:84:28: 82:44:ae:1c:44:ac:17:25:33:c9:b7:6c:f7:02:e6: 56:b1:17:66:f3:88:10:c7:5f:3d:6b:17:40:69:07: c2:55:64:66:47:14:96:b8:ba:7e:fd:aa:e7:99:72: 61:ed:65:5c:6a:30:13:04:a9:f8:89:10:b0:38:79: 10:5c:07:bd:ce:83:58:30:17:53:47:28:52:3c:5d: 0f:4e:c3:58:f8:b1:2f:dc:d1:89:41:c0:fe:9f:8c: b5:bd:5a:3d:8e:ef:db:88:da:04:93:fa:ff:32:71: fd:f0:26:ee:27:2f:cc:d3:41:fb:60:eb:ee:dd:8f: e2:8e:18:e0:a0:63:3b:ee:9e:5c:15:65:56:8c:e5: b2:be:b3:75:0b:79:46:e7:7c:2e:31:f9:52:11:3f: a4:d1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:74:32:FF:5A:78:1F:64:02:9C:76:7E:83:41:EA:36:52:AB:0A:3F X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/71937dc4-d3db-41fb-a6f6-d6794fbe1c65.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f1a:c000::/36 Signature Algorithm: sha256WithRSAEncryption 94:b2:62:c3:27:c7:fd:52:64:bd:a2:b1:a8:4e:99:c8:7a:2c: c4:f2:d7:22:a7:ea:2f:85:31:52:5d:43:65:f5:7d:0a:f3:20: f8:ed:0c:36:30:2e:7c:ca:21:66:4e:7f:07:10:fd:4a:63:a5: 54:b3:83:0d:4f:d7:f4:da:41:02:c2:12:f1:cb:70:80:57:35: db:49:37:90:1a:33:f3:8d:2d:49:c1:f2:d2:8f:18:56:4d:f8: da:fb:12:7e:ad:5e:16:92:9f:f6:29:3d:cc:17:e1:e5:6a:1c: e9:66:96:ee:d9:8b:60:67:a4:32:78:80:09:a2:3c:83:6a:0c: bf:84:d6:b5:24:1f:2c:e1:ec:62:6c:a4:e9:df:4a:d0:af:c0: 95:2a:c8:75:fb:f5:57:a0:2a:4d:f0:ea:9d:ff:0d:fa:54:42: ce:e5:c3:f8:6b:be:e9:ce:b2:75:df:88:18:81:99:e9:c9:42: ac:c9:56:fb:27:5f:aa:22:0d:1b:27:75:23:fa:43:d0:1a:3b: d1:77:2f:c5:64:5b:f5:d8:8e:2b:ea:0a:27:d5:66:38:a3:ad: 83:d0:cf:d0:23:cc:91:04:7c:96:e3:1e:8d:b6:1e:90:2d:93: 85:62:08:b8:8b:f5:f3:cd:40:51:6f:4a:79:08:4f:57:2b:30: c5:a6:7e:46 -----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgITb3PKE6HWk3xApoici7GTIM76ZzANBgkqhkiG9w0BAQsF ADA9MTswOQYDVQQDEzI2ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAxOGQ0MmJlMzU4ZWIz NzEwN2RiZThjYjcxZDBhNzAeFw0yNjAyMjgwMDExMTVaFw0yNjA1MjkyMzU5NTla MHoxSTBHBgNVBAUTQDg0MjNmOWY3MDRkZjc2NTA5YThhZDlkZTJmNGM0MDE1NzU1 ODE5MTI3MGQ2YTllYjAwNDgwOWIzMjA4YmM0MTIxLTArBgNVBAMTJGIyNWM5NzBm LWQ4MTMtNDQ1Yy1iZmUyLTYyNjY4NTE4Yzg3ZTCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBALE0OFU1YUH9CN1WReA13izkrF84NZcSk8Q5c5I3NpkphDhx 9orxpEywVPtNJezEALf6yayK1zSz/kjR7rA5DbI3SXbNCPRTTr9clMxXmKr+aItC zcRPxuEHukPP6mgmScOggtaWJ4QogkSuHESsFyUzybds9wLmVrEXZvOIEMdfPWsX QGkHwlVkZkcUlri6fv2q55lyYe1lXGowEwSp+IkQsDh5EFwHvc6DWDAXU0coUjxd D07DWPixL9zRiUHA/p+Mtb1aPY7v24jaBJP6/zJx/fAm7icvzNNB+2Dr7t2P4o4Y 4KBjO+6eXBVlVozlsr6zdQt5Rud8LjH5UhE/pNECAwEAAaOCArMwggKvMB0GA1Ud DgQWBBRfdDL/WngfZAKcdn6DQeo2UqsKPzAfBgNVHSMEGDAWgBQQXdeNVXhAq0Nd vRUhII8p+kk/rjAOBgNVHQ8BAf8EBAMCB4AwgfMGCCsGAQUFBwEBBIHmMIHjMIHg BggrBgEFBQcwAoaB03JzeW5jOi8vcnBraS5hcmluLm5ldC9yZXBvc2l0b3J5L2Fy aW4tcnBraS10YS81ZTRhMjNlYS1lODBhLTQwM2UtYjA4Yy0yMTcxZGEyMTU3ZDMv MmEyNDY5NDctMmQ2Mi00YTZjLWJhMDUtODcxODdmMDA5OWIyLzFiYTMwMmI4LThk YWItNDkxZC1iOWVkLWQ3YzkyZDAzMGQ4Mi82ZWQ4OGNhZDExZmVhYzc3NDQ5ZjAx OGQ0MmJlMzU4ZWIzNzEwN2RiZThjYjcxZDBhNy5jZXIwgZ4GCCsGAQUFBwELBIGR MIGOMIGLBggrBgEFBQcwC4Z/cnN5bmM6Ly9ycGtpLXJzeW5jLnVzLWVhc3QtMi5h bWF6b25hd3MuY29tL3ZvbHVtZS8yMGFhMzI5Yi1mYzUyLTRjNjEtYmY1My0wOTcy NWMwNDI5NDIvNzE5MzdkYzQtZDNkYi00MWZiLWE2ZjYtZDY3OTRmYmUxYzY1LnJv YTCBiAYDVR0fBIGAMH4wfKB6oHiGdnJzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0 LTIuYW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMt MDk3MjVjMDQyOTQyL19xeDNSSjhCalVLLU5ZNnpjUWZiNk10eDBLYy5jcmwwGAYD VR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwDgQCAAIw CAMGBCYAHxrAMA0GCSqGSIb3DQEBCwUAA4IBAQCUsmLDJ8f9UmS9orGoTpnIeizE 8tcip+ovhTFSXUNl9X0K8yD47Qw2MC58yiFmTn8HEP1KY6VUs4MNT9f02kECwhLx y3CAVzXbSTeQGjPzjS1JwfLSjxhWTfja+xJ+rV4Wkp/2KT3MF+HlahzpZpbu2Ytg Z6QyeIAJojyDagy/hNa1JB8s4exibKTp30rQr8CVKsh1+/VXoCpN8Oqd/w36VELO 5cP4a77pzrJ134gYgZnpyUKsyVb7J1+qIg0bJ3Uj+kPQGjvRdy/FZFv12I4r6gon 1WY4o62D0M/QI8yRBHyW4x6Nth6QLZOFYgi4i/XzzUBRb0p5CE9XKzDFpn5G -----END CERTIFICATE-----Generated at Sun Mar 1 22:19:07 2026 by rpki-client