$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72a7c231-dc49-4e1e-8a38-37649f06c626.roa File: 72a7c231-dc49-4e1e-8a38-37649f06c626.roa (raw, json) Hash identifier: dDhREGEoZFUA7LeZ9/tJC5qOlWOhxUH+d4x8WQkgbvM= Subject key identifier: 13:2B:7C:D6:67:FD:1A:0A:46:24:DA:D5:BE:3A:7A:20:44:7C:03:F8 Certificate issuer: /CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Certificate serial: 3E98BD343181C8BE293C5526931B294DBAF6C458 Authority key identifier: 10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72a7c231-dc49-4e1e-8a38-37649f06c626.roa Signing time: Tue 24 Feb 2026 01:00:44 +0000 ROA not before: Tue 24 Feb 2026 01:00:44 +0000 ROA not after: Mon 25 May 2026 23:59:59 +0000 asID: 16509 IP address blocks: 2600:1f38:7480::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/1ba302b8-8dab-491d-b9ed-d7c92d030d82.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Tue 03 Mar 2026 17:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:98:bd:34:31:81:c8:be:29:3c:55:26:93:1b:29:4d:ba:f6:c4:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7 Validity Not Before: Feb 24 01:00:44 2026 GMT Not After : May 25 23:59:59 2026 GMT Subject: serialNumber=1d25b04b5a7033fa8ea08923a8318a91c392ad84066779e559cac23fc8c7317e, CN=b25c970f-d813-445c-bfe2-62668518c87e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:0e:6c:37:93:76:b4:80:be:2c:e4:a6:6e:65: 5b:62:5e:3a:07:10:a6:bc:a2:85:b3:a8:d0:6b:99: 69:39:1d:84:bb:ee:a9:4d:9c:ed:7c:78:14:95:d1: 33:26:75:8a:b2:64:d4:79:d6:0c:19:15:9b:b1:39: 92:31:76:95:13:72:eb:6b:d6:b5:ff:6c:14:23:7a: 71:4a:cf:d6:06:f4:ff:54:28:ac:08:64:99:ac:42: 49:eb:88:b9:6b:c9:a5:37:96:1c:fb:27:56:2e:4f: 21:41:42:a0:c6:83:90:50:1d:55:af:18:86:c4:12: 22:68:d2:6d:9c:35:e8:ab:19:bb:09:e1:0d:0a:b1: d9:f2:a1:4b:c3:7b:0c:8c:25:b4:92:01:87:89:24: 87:ba:dc:cf:1e:3f:0f:38:c8:d1:3c:b4:72:62:9a: 8c:5d:01:21:03:1d:a9:d2:56:18:98:da:c4:56:d4: 02:d1:09:6f:5f:14:0c:84:ab:08:53:a3:08:fd:60: d4:c7:6b:42:b6:33:ce:12:c3:89:92:66:84:f2:01: e2:60:44:f2:cb:88:ea:85:d8:2d:ce:8f:86:c8:81: 1d:19:b3:82:0e:fd:b3:1e:04:e9:1d:64:80:8c:ad: a8:f3:09:68:bb:15:38:f0:a6:4f:fd:a1:95:44:f4: 68:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 13:2B:7C:D6:67:FD:1A:0A:46:24:DA:D5:BE:3A:7A:20:44:7C:03:F8 X509v3 Authority Key Identifier: keyid:10:5D:D7:8D:55:78:40:AB:43:5D:BD:15:21:20:8F:29:FA:49:3F:AE X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1ba302b8-8dab-491d-b9ed-d7c92d030d82/6ed88cad11feac77449f018d42be358eb37107dbe8cb71d0a7.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/72a7c231-dc49-4e1e-8a38-37649f06c626.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/20aa329b-fc52-4c61-bf53-09725c042942/_qx3RJ8BjUK-NY6zcQfb6Mtx0Kc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2600:1f38:7480::/48 Signature Algorithm: sha256WithRSAEncryption c7:02:9e:1b:49:ca:d4:89:ce:af:b2:9f:36:f9:bf:3f:a8:16: a4:b0:0a:9d:e6:16:d7:79:1c:94:1e:cd:58:91:c7:5d:c1:80: 58:55:9c:80:e7:7e:ba:11:2b:e9:2c:e5:b6:28:a4:f4:b1:f8: 60:4e:9b:32:da:df:cf:00:75:29:41:81:de:5c:78:c4:2c:f5: da:bc:00:ea:24:d7:57:27:39:1f:72:77:68:5a:e0:8d:4a:aa: 81:81:a2:c8:e4:09:6b:f8:72:0e:7b:8d:a6:d7:3a:2e:15:b8: 43:60:a7:19:39:63:69:42:38:5c:9b:b9:90:c7:ff:94:03:33: 2a:33:ab:e3:88:a0:a5:38:31:ed:fc:86:7c:1c:17:42:aa:98: f0:3c:d6:0b:b7:51:8a:b9:83:cf:84:58:dd:1b:d3:f7:0b:fd: 89:7e:29:5e:8e:3c:79:c1:28:28:de:68:bf:43:fc:45:25:cb: 9b:63:55:f8:fa:e4:8c:c7:17:9b:26:86:0c:44:54:a2:59:d3: bd:cf:94:0e:47:8a:9e:97:89:e8:5e:2b:64:81:a1:df:d5:91: e1:7d:62:a4:39:e0:8a:a3:67:e7:97:ea:fa:5c:99:0f:40:ff: 3f:22:0c:f7:15:2f:fb:51:40:fa:9d:2e:40:b5:43:d1:f4:67: 89:76:7a:bc -----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgIUPpi9NDGByL4pPFUmkxspTbr2xFgwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyNmVkODhjYWQxMWZlYWM3NzQ0OWYwMThkNDJiZTM1OGVi MzcxMDdkYmU4Y2I3MWQwYTcwHhcNMjYwMjI0MDEwMDQ0WhcNMjYwNTI1MjM1OTU5 WjB6MUkwRwYDVQQFE0AxZDI1YjA0YjVhNzAzM2ZhOGVhMDg5MjNhODMxOGE5MWMz OTJhZDg0MDY2Nzc5ZTU1OWNhYzIzZmM4YzczMTdlMS0wKwYDVQQDEyRiMjVjOTcw Zi1kODEzLTQ0NWMtYmZlMi02MjY2ODUxOGM4N2UwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCWDmw3k3a0gL4s5KZuZVtiXjoHEKa8ooWzqNBrmWk5HYS7 7qlNnO18eBSV0TMmdYqyZNR51gwZFZuxOZIxdpUTcutr1rX/bBQjenFKz9YG9P9U KKwIZJmsQknriLlryaU3lhz7J1YuTyFBQqDGg5BQHVWvGIbEEiJo0m2cNeirGbsJ 4Q0KsdnyoUvDewyMJbSSAYeJJIe63M8ePw84yNE8tHJimoxdASEDHanSVhiY2sRW 1ALRCW9fFAyEqwhTowj9YNTHa0K2M84Sw4mSZoTyAeJgRPLLiOqF2C3Oj4bIgR0Z s4IO/bMeBOkdZICMrajzCWi7FTjwpk/9oZVE9GjFAgMBAAGjggK0MIICsDAdBgNV HQ4EFgQUEyt81mf9GgpGJNrVvjp6IER8A/gwHwYDVR0jBBgwFoAUEF3XjVV4QKtD Xb0VISCPKfpJP64wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xYmEzMDJiOC04 ZGFiLTQ5MWQtYjllZC1kN2M5MmQwMzBkODIvNmVkODhjYWQxMWZlYWM3NzQ0OWYw MThkNDJiZTM1OGViMzcxMDdkYmU4Y2I3MWQwYTcuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvMjBhYTMyOWItZmM1Mi00YzYxLWJmNTMtMDk3 MjVjMDQyOTQyLzcyYTdjMjMxLWRjNDktNGUxZS04YTM4LTM3NjQ5ZjA2YzYyNi5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lLzIwYWEzMjliLWZjNTItNGM2MS1iZjUz LTA5NzI1YzA0Mjk0Mi9fcXgzUko4QmpVSy1OWTZ6Y1FmYjZNdHgwS2MuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgAC MAkDBwAmAB84dIAwDQYJKoZIhvcNAQELBQADggEBAMcCnhtJytSJzq+ynzb5vz+o FqSwCp3mFtd5HJQezViRx13BgFhVnIDnfroRK+ks5bYopPSx+GBOmzLa388AdSlB gd5ceMQs9dq8AOok11cnOR9yd2ha4I1KqoGBosjkCWv4cg57jabXOi4VuENgpxk5 Y2lCOFybuZDH/5QDMyozq+OIoKU4Me38hnwcF0KqmPA81gu3UYq5g8+EWN0b0/cL /Yl+KV6OPHnBKCjeaL9D/EUly5tjVfj65IzHF5smhgxEVKJZ073PlA5Hip6Xiehe K2SBod/VkeF9YqQ54IqjZ+eX6vpcmQ9A/z8iDPcVL/tRQPqdLkC1Q9H0Z4l2erw= -----END CERTIFICATE-----Generated at Sun Mar 1 22:16:40 2026 by rpki-client